last executing test programs:

17.084393299s ago: executing program 4 (id=3846):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x8, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value=0xd000000, @void, @value}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0xfffffc01, 0x0, r0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

16.644371415s ago: executing program 4 (id=3849):
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x83, 0x66, 0x7d, 0x10, 0x2040, 0x264, 0x4ed1, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x90, 0xf1, 0x9c, 0x0, [], [{{0x9, 0x5, 0x84}}]}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = io_uring_setup(0x3f1e, &(0x7f0000000400)={0x0, 0x0, 0x400, 0xe, 0x2d5})
io_uring_setup(0x400280d, &(0x7f0000000200)={0x0, 0x9017, 0x800, 0x2, 0x218, 0x0, r1})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)
recvmmsg(r2, &(0x7f0000001580)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
recvmmsg(r2, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f00000027c0)=[{&(0x7f00000002c0)=""/247, 0xf7}, {&(0x7f0000000140)=""/114, 0x72}, {&(0x7f0000001480)=""/217, 0xd9}, {&(0x7f00000000c0)=""/43, 0x2b}, {&(0x7f0000001600)=""/103, 0x67}, {&(0x7f0000001680)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/27, 0x1b}], 0x7}}], 0x1, 0x0, 0x0)
syz_genetlink_get_family_id$SEG6(&(0x7f0000009040), r2)
add_key$keyring(0x0, &(0x7f00000001c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
fcntl$getflags(r3, 0x40a)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000100), 0x8000000000000, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_aout(r5, &(0x7f00000010c0)=ANY=[], 0x1a3)
write$binfmt_misc(r5, &(0x7f00000012c0), 0xe09)
ioctl$LOOP_CONFIGURE(r4, 0x4c0a, &(0x7f0000000640)={r3, 0x0, {0x2a00, 0x80010000, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e40d9683dda1c51ea89de2b7fb0a01000000000000ecff0200", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00008000"}})
r6 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r7 = socket$kcm(0x10, 0x2, 0x0)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000480)="54188e63ff", 0x5}, {&(0x7f00000008c0)="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"/358, 0x166}], 0x2}, 0x844)
sendmsg$kcm(r7, &(0x7f0000000600)={0x0, 0x3, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

14.716541775s ago: executing program 0 (id=3863):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000001080)={0x26, 'hash\x00', 0x0, 0x0, 'xcbc(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg$unix(r1, &(0x7f0000000700)=[{{0x0, 0x0, 0x0}, 0x3000000}], 0x1, 0x10000, 0x0)

14.364897454s ago: executing program 0 (id=3865):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'vxcan0\x00'})
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x22010, 0xffffffffffffffff, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000000)
openat$apparmor_thread_exec(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=ANY=[@ANYBLOB="4800000003002104000001000000000000000000", @ANYRES32=0x0, @ANYBLOB="adffa88800000000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32], 0x48}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB], 0x30}}, 0x0)
flock(0xffffffffffffffff, 0x5)

13.858219935s ago: executing program 4 (id=3869):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x3f, 0x822f01)
r1 = openat$mice(0xffffffffffffff9c, &(0x7f0000000080), 0x0)
r2 = syz_io_uring_setup(0x24f5, &(0x7f0000000300)={0x0, 0xfffffffc}, &(0x7f0000000100), &(0x7f0000000080))
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r3, 0x0)
syz_emit_ethernet(0xe5, &(0x7f00000001c0)={@broadcast, @local, @void, {@llc_tr={0x11, {@snap={0x1, 0x154, '=^', "359f92", 0x22f0, "65d8fce7ab7bacf3096f15c802e60bbf5d3658c9bf35de30096b78eff0abb96f4045d5faeae5aafef2f3cfa503061eeed744c4dd32158b1af2d739f73d2005c6530a644da66729f36fa0f145d2775ad9a404c3f6feab7ca99e9d729bdf6917fa0fc1a7faf9dca88fd79e3d3492fea20f2b6952b6b4a1ae8a4bbbaf4824a907566f6d9ef308c76b5c4c553210aa5c35a6022ee6be5d91a96b47bb7dd35141dba373cd33a8a961fce606acc924938fb987ea6171493cde233e1cb386a494fa72eac049357ce23f37a27536ba11a21c"}}}}}, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
r5 = fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x0)
mknodat(r6, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, r4}})
r7 = openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x918)
r8 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x100)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r8, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r8, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1})
ioctl$DRM_IOCTL_MODE_ATOMIC(r8, 0xc03864bc, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r8, 0xc00c642e, &(0x7f00000002c0)={<r9=>0x0, 0x0, r1})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r7, 0xc00c642d, &(0x7f0000000380)={r9, 0x80000})
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_REM(r7, 0x84, 0x65, &(0x7f00000003c0)=[@in6={0xa, 0x4e20, 0x3, @mcast2, 0xc}, @in6={0xa, 0x4e21, 0x4, @private1={0xfc, 0x1, '\x00', 0x1}, 0xc13}, @in6={0xa, 0x4e21, 0x1ff, @local}], 0x54)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000801d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r10 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r10, 0x29, 0x2, &(0x7f0000000000)=0x8000, 0x4)
bind$inet6(r10, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x18)
recvmmsg(r10, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
sendto$inet6(r10, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)

13.532668327s ago: executing program 4 (id=3872):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r1, 0x89f0, &(0x7f0000000180)={'sit0\x00', &(0x7f0000000480)={'tunl0\x00', 0x0, 0x8, 0x80, 0x6, 0x5, {{0x5, 0x4, 0x0, 0x6, 0x14, 0x67, 0x0, 0x40, 0x29, 0x0, @rand_addr=0x64010102, @local}}}})
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002880)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fstat(r4, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x10, {[@main=@item_4={0x3, 0x0, 0xa, "fbc97f44"}, @local=@item_4={0x3, 0x2, 0x0, "93bf0280"}, @main=@item_4={0x3, 0x0, 0x0, "7488dffc"}, @main]}}, 0x0}, 0x0)
r5 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r5, 0xc018480b, &(0x7f00000000c0)={0x1, 0x2, 0xb, 0x7fffffff, 0x1, 0x400})

13.330580614s ago: executing program 2 (id=3873):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r1, 0xc100565c, &(0x7f0000000140)={0x0, 0x5, 0x1, {0xa, @pix_mp={0x9, 0x81, 0x0, 0x8, 0x2, [{0xc}, {0x3, 0x8003}, {0xa64a80ed, 0x7fffffff}, {0x200, 0x3ff}, {0x5, 0x1}, {0x4ce, 0x8}, {0x7ff, 0x9}, {0x5, 0x1}], 0x2, 0xff, 0x6, 0x1, 0x5}}})
syz_usb_connect(0x0, 0x4b, &(0x7f00000004c0)=ANY=[@ANYBLOB="120100003f9aab106d04f0080d50010203010902390001000016470904000003"], 0x0)

13.246005862s ago: executing program 3 (id=3874):
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xc)
r0 = openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$sysctl(r0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x41, 0x0, 0x0, 0x0)
acct(&(0x7f0000000000)='./file0\x00')

12.841100908s ago: executing program 3 (id=3875):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01080000000000000000030000000900010073797a3100000000080002400000000614000000110001"], 0x50}}, 0x0)
close(r0) (fail_nth: 2)

11.784254321s ago: executing program 3 (id=3876):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_choke={{0xa}, {0x4}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c}, {0x4}}]}]}, 0x58}}, 0x0)
syz_clone(0x10200, &(0x7f0000006780)="d0e82609d2ada1519e8725c81455c7b3ba129ec467c3867f9bb3957d66d6402b7b4f4bdaddf1e48549098b56a70d", 0x2e, 0x0, 0x0, &(0x7f0000006840))
write$tun(0xffffffffffffffff, 0x0, 0x80)
r3 = socket$inet6(0x10, 0x3, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, 0x0, 0x4080, 0x0)
read$FUSE(r4, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
r5 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet(r5, &(0x7f0000000080)={0x2, 0x0, @empty}, 0x10)
r6 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r6, &(0x7f0000000940)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000000)="d8000000100081046881f782db44b904021d080b01000000e8fe55a11800150006001418000000120800040043000000a80016000a0001400600d4c140e99d5a57dfcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a98516277ce06bbace8004cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f1aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4ed92d2f52eb233dcb9ef3d93452a", 0xd8}], 0x1}, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0)
r7 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="020100001b61e308d016a91052300102030109021b0001000000000904000001ff7f8800090503020000000000"], 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000040)=@newlink={0x4c, 0x10, 0x503, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_MACSEC_SCB={0x5}, @IFLA_MACSEC_REPLAY_PROTECT={0x5, 0xc, 0x9a}, @IFLA_MACSEC_ENCRYPT={0x5}]}}}]}, 0x4c}}, 0x0)
syz_usb_control_io(r7, 0x0, &(0x7f0000001640)={0x84, &(0x7f0000001240), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

11.437265482s ago: executing program 2 (id=3877):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01080000000000000000030000000900010073797a3100000000080002400000000614000000110001"], 0x50}}, 0x0)
close(r0)

10.805451752s ago: executing program 2 (id=3879):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000000000040de28421100000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f00000001c0)={0x2c, &(0x7f0000000000)=ANY=[@ANYBLOB="e4923748"], 0x0, 0x0, 0x0, 0x0}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000001c0)={'bridge_slave_1\x00'})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x200000000000011, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x10, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008009776b7040000000000008500000033"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="580000001000010400"/20, @ANYRES32=r5, @ANYBLOB="0000000000800200380012800b0001006272696467650000280002800c002300fbffffffffffffff05002400000000010500240001000000060027"], 0x58}}, 0x0) (fail_nth: 7)

10.584916697s ago: executing program 4 (id=3880):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000002c80)={0x0, 0x0, &(0x7f0000002c40)={&(0x7f0000003180)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a01080000e0030000000e02000000090001007300803000000000080002400000000214000000110001"], 0x50}}, 0x0)
sendmsg$NFT_MSG_GETRULE(r0, &(0x7f0000002740)={0x0, 0x0, &(0x7f00000013c0)={&(0x7f0000002600)=ANY=[@ANYBLOB="20000000070a0102000000000000000002"], 0x20}, 0x1, 0x0, 0xffffffffffffffa6, 0x80040}, 0x4058840)

8.340256731s ago: executing program 3 (id=3884):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x989680}}, 0x0)
r0 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
pipe2$watch_queue(&(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
syz_emit_ethernet(0xcd, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_DESTROY(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f00000001c0)={'tunl0\x00', &(0x7f0000000140)={'syztnl2\x00', <r4=>0x0, 0x8000, 0x7800, 0x10, 0x3, {{0xd, 0x4, 0x3, 0x1d, 0x34, 0x67, 0x0, 0xe, 0x29, 0x0, @rand_addr=0x64010101, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@lsrr={0x83, 0x1f, 0x38, [@multicast1, @initdev={0xac, 0x1e, 0x1, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}, @empty, @loopback, @local, @empty]}]}}}}})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r2, &(0x7f0000002540)={0x0, 0x0, &(0x7f0000002500)={&(0x7f00000045c0)={0x2034, r3, 0x1, 0x0, 0x25dfdbfc, {}, [@ETHTOOL_A_FEATURES_WANTED={0x2014, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_VALUE={0x1004, 0x4, "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"}, @ETHTOOL_A_BITSET_SIZE={0x8, 0x2, 0x7fff}, @ETHTOOL_A_BITSET_MASK={0x1004, 0x5, "cc9e6c975d773081338027c6434a229023265ccb4f5a970e29fb1eb5d8e6fa178d512c7eef0daa713d216bd90d7f971b45242402c5fe8cd376f120aa38a7e99267f185b51adcb607527483fdec7d66b293dc9ce5bbe4970055026e5b43f27528273f5ebb2e24604ea48f5212da41a24fa5b67e548697d32f8494e9dfa04ec93eb1c40df2f84c688442c3fda29bf00b50280f6c03f7be4e767e08b2a1758a1d697cdc7e2c1fbbc03e3d453592b44ac01592a39302b9225a70690d2cc73fb2571f6427bb98e2351bd93e1681fd1bc5381acf03b1262c3ec92f2b6c66b51f805074d84e67f58c27b04f2499b441bc849134fec81d3cc6647b6ec9aebafd611747149a73f640a0e2618db921fa4ddaeb580a72168573935df9ea48b18697451a2e89a5c94594fcf28677ade6e93b6c1c62e9b817466fd5579c87306e34c38fc1fad85667f0a95e8dd5e3642e2bb31f3817c3d2fd69fbb39c903a8b3ee0ed9d48a4248a1fe15210b6b12ed5cc91d95048cd1789eefbc3f4865f0a1c604b9437394ef82f55979514a71f8e7ed6f86dd6a3b3c8e678a3f3f622a0f2dd8d797f0a40540f4e7a539ddfb7181a8f20f8bffae6977ce9fa6511d6935d31e952bdf7fafdb4d76c26f9505093963d59ed6ba629c2c21ab681a0d87b7fb66c31ba8df9153c4a7faf6574b02a303f5f574962029a85ad83da1e07c386e715f246519a5755c9348876f1ae97678167c1a0252683f6c4351309c159604239a4e554d9511fe1f88f31e334573a4a27015296f65c080acc36ed71059ca5c9436ff9621450f32726a275458da457c6377afd5655a082d9044e7a6dbb92f002e86853f24188cee3a4aee3613f94c773e31ec4bbb2042338c0d8c74ae7eb31aca8c5db2af4826abf4a5f5a68b66cead09ef79d2c87395913cf55941c54575d93a07a967f9e813015c0351ab96b2dbdd0ad29f266618a65fd71f3e7ebea5f0f8176b76d1dfd7b3cb1700fbfbc48b5942336e102c03c6598389d4c5a8deb7a7fe824c21bd243cd0bf4f30174dec4749924e304f8302e5d29ea218d738f1c686c6e78a7bd680aead88cb7ee2960584b267e462652387ce34fa215dfc72b09f467bac1f1d1cecced65354ee4993ac4593b955e12e2fbd6d76ce519135f34955b837914572dbffdac7b885a400e3bd9fb29cc7a93939216560d78b95aa03d62ca6bbc41a644ab1052029a2118e8ed63fc32d264752275ed8f62ba3baf21fae7b228256cce6675424a493d66497e90907be824321f72c1132fee8622331771af2541426d25280b604bc91a0da7acfc0dfdb6ea6984dfc4ab51a0692c8408182367e15a61e8b531464f28ada1957d07cd3d70c532a58c3aaed6cb847e8799adb80ba91a8241fe620cd09cd286957caf25808f2608b240f1cab0a4aea7bbe8ec82b76abbc4d5e186a9ae686a3e30dbede2b94723879336dd60c9e5bf2434d824c55721b9dc7710a5f673de4c57ec4bed255945fa51ff4abe3a721728f8689b1adb9dd4bb4bca439d89cfeda9470135de1a2d439c8110e26ddae42d6eabd7ad41d192ecfa31ec23034669d29349c7cf3422a946c43e6c7749cafbc60d705b4a6c92565222fd5027bf645dd24a54157454bb842d36452c942c818712075715299879a51607ec79bd6a7c7eace325cd688714688efd009f53bd77214c7934451710e547adebdbc47825a368356a87e98669e065f2ffe9188b0ecf80bc189616e3d9f04f19a3dc48121f6d869c65e46c271bb2d007821330a19e32de73fbc664e4c275541a408818e5b73c43110facda5e251cc64cf13abedaf4b034599c7a55cee3f020da597a589bde384c0a8eac7c99b17a3768a4426abc6cd28d8b45670a2a6c475f8e74c1b8bf44fb72fbb3b90e37a228df2d14b4fe5c75dbb961fa8cfef05f3e73796a1ac73734a656c87c10c0b6746dda8753b4f3ddf5d2135737c998ac696fe70382599d7f5a45a0d233f28a6ea9a128b2d59b11a7547e61094ed3af568290947f5702c0bf28bf98dd20801070cad5db6f81c32e1f01168cd1ae7d46e651757864c1d06415753265b1af3470f4390accf9d5104792de9be6b27fa7ee3305fa71e1db241c37fdd0e3b0ab9fb94afb4b9f745be54a6e3b2bced1657ff213d317bfcebe6d7db48162dd301465f2e8ecdb99bcfb9ae9009ae8829239bd4e6fdc2cea03bdb76d63662f5e0b2421f9dd6790a92c8474fd999940441da76032121660a0b7f7cb4a1cfc5e9d3e2ff40fc51359c917f930868ea1caa421641ef73f138f0a9875383b9192533c8246b9b132c88404cb9a24f63f47da9ccaa7c867ad02619234cd4e06f328b30c866e60c10047844a84d83da568c2f8ce70bfdd2223306e4a6d388a5385561e64aff36757cde74171c5f776b9caa061504f058d71b0d4310068e42d990cec0789f82d51415cc2d6a16de731666be8201b764d7b08fbbb3ca32e47aedf70f972210a7edd87905ceff7253706f73c6d3006951c43ee8928a72607b848b985e3ea07c1c851c3a161a661d5a3b4eabad7b2f733e87a283ca6bccf5dc03a2ca2af5765597c02ce33888497c0130ea4021eec192344b750411fe9edd5437b32e7ec77a23b04d3cdb6aa4c09cd871c071fdda90113884ec5e66823cb276ce84edbd1990494d8d23b6774099f12153ecae4dbb4cd3e7c1d5bdadcfcd233123042c7acd8fd9c889523e95e5e45f2c0d57794e42b762362182839ca3776370a72c5b63f52ed788b2d48a713bf4690fde96335f4812ace14c44b109b5e2237e6c9600f2b9aed4f4068cce5293e4bc89f19d3f0d568174aafa2bf1be4158a944bdc0379c220eab322b6ebeffe3e9640ada2f380432c65ac78287faf42328a08cd8c855845bb03b6ec9fd383097fa9e7c7e0085262036b173192279f10e26a8ff4a4cb778b852f3d1939efa1a0688d3472366d91535f8bd64db60d9b2d5e94df52f2a98ab49e94085649b1c122fb0e090d404c169897165b85001e6c2b0632533bc347d6f14329f4275c6585b5269048dced4b2c0ce6fef77dc5add42470a48812b0274d7715711cae584a45dd99b44096795fa0d3d1f9f779f026cc15e3d2438c5a16bbb18c8ca9367879c8f1c102c15307d162f56f46fd3e9f8712be0defcc1e9fb30857589f220d285456a810975dc9791c9d9272549e8109edd0b0c4634207e7f470ba7c317ff7b1045250b1649088749010ff3181abb4693a3673d67c3ba8709bc2f1030a87cfa996c91d7abdde8d235725b9960b0c435e4fa8b40ae88e1461edf459ecfc986973efe975b25051c15a10b398a6fc7db92135abdd4396d4e252a76603756a09b4d546698a2583cce6492e17bbbb33b14b45d3da684903c652c7c62f009f58dead48a280138ddbd508267d1f88e876116e4f980c42848451830890fb83713f7bf94bf93658bb30b897b7b345399038b5d3fe996a2fcb6ff7bcc9604b17750cfeca47a6d0191eb05a60937af365b3a014f7fb5fe1ecbce96fa9a2e3a3fcfa041fcf7907fb1c5d1f050ae9848ebc25961c3f690231527b44a98d0b41c875900fdd34a5f24b2ef6b723177e7bd89b30a0949820ebce89c6e86e034d2bd062eca90cd9fc114ef5b9677a240ca58f431bd11e4b1bb9322840b1a3a7ee3383c0a7e54b75104379e600d287a8e852c25d7136ab3b298ed4ff00479b2ec5d3d3d4825a1e33a41134e974844477d6d2ea936821e2313385889c152d50586ba274d2bf711f501fc9dc591230caa75a1929336cb78a71d4e7b2637d1dd07ad39e08a5b826904b5df03974cfb8f687f09ae45a0200000000000000ec9a82ab414168e3ce998fff85c0bc653dd57c3808dff8e32ed191ffe9b4d2d74b72eb1da86a6b368ea7c7715d8014087d05c65df5ceef89faf181e57d4d2b6bc0e631b53136fba42e41447489afe0cb07bbda22edab14996f8789cd5a72072e0139437d2e3a2d6528dad70c12e9dc908c873c76d5b0213fa8eae7ac600ecf5be5868519d814fde7e33ddf47a0716243bf9d7a1dc48bc6f51446675462e0f33d4a43d96f9c590c3f8ef12e5d3f7bde866391cf10bed5d304552d0e886eda850a65b02d000198c3ee9deff18cc8fca3035af3bb74af905c0bdeccb57da0c77ee741a1452c944f72152f0521fd60be5d65b3cfde2a8a8736afa135dfb18008ce7c0ba39b492e569d59c419fc627870714c18b980ccd958fd23177fe5d4d35f290568042743fe37e0983c0d7ed9a169c75fb3207b129ac7f254ad9f15160a69c2988cce88cfeef05261c975ebcddeb3a5e69b797ee96877708cdde315430ef4deab3afe77a38338c389a56e51d0732b8b26de5b99d7f721a0e1053dd1d26bf4d5997afc31df5a78ad1b44c7b961b35c2a2d7aea916f9d67d0227dff7d4949d1c3dd87682b865e8c015605f17a0d47ae0feaf56d5b58ea75f53ddf22894e480e04a56ed2951d3b8e37c0ae62070b99bcd03f72dfd5395aa1dcdfc0bc3b0c46fa25e3b5fdc119ae7fb9c94a2e7e57ace44bdb404a8c35bd5dac4ffda4fe5d5cb909bf6983c3b4f142014f1b711c19ea067ba74b2fe8010d867a6912eb6f4e2bbc9536d0049db0b93c3633ab825c276b4c50c67e53c054cc457c839b4fb0a36cab7b3dea730743dd915183567869d24b61a956a7f1b4064892801e24bf2ad05b3e256ce39a03ca591c80b6377f827c1bf15b366e3a844602d699ca78414163582e88cdae2e537ffc529e405927ad4a02a70dc5ad37aedec8eb14ac9fc3a5980bff63c27307f8299dcb98618b1831722671dd8ebed47f4fdd102339eb899318da1d17b72f9c38259e912dab496ace5ccee0aa950e68196918b5c5f8f9ad4e5788c01c9f03dc7ea83de481301b5f366f28654a587ea4a6b557f8c29338e6878b963bd5793880c56bbb21ee7b5fbb79d261b1e71848d85e48bf57f32f042d0ae00787f66c34132c8b04677a35ddc27bcc5909894bb470cb1c97fbde7c5f40d1cf3c9b5171c4df111eb980145bae25d6e7520de05aee6b7bd5c0e935eccd85cf072b107aa5b91f622552604b01ebfe1828f472be0a41b6fa2dd0c120a8fa35b7631557feda1010a44ba6b5f714dd120834b805ce9ee4b998161889212610481800abcb1cf8938beb54c463659295083a1525e8e3780582fbd7d4d7c910050f51f5fccbe02f5e32ff0a75bc6bbc10e3ab33f9e05ae98a9a900dbf188d5f8aa3e37b7812a864f7c1c44497929f576796141f7906bf9ae94cad4286c44dadb679ec37c62e56c466c553b59f4d661deb235c7cc9765e5fc8818eca112af383989b4ab1920f14ee23e2942e873136c8685ecfe7bfc84332797a0d516fb96515e086f5ccd08de518bf758a7a9b50c528aade977eb3887691bc5114cf7b66cf11ffad8233a05ccd49deb21f6d18c138515ee99eb90ea7b7c5d5a1206facccc95eec5b4c43e589a88e0fdf66b46906f5cb2a565d23af651e7d2dd1657191223992638eb675df3342b912ebfc76a86a0d779f7a1a63615521c3ea479233e645828952c0d995544a55c613094c54f3558e008f888b6ce758024e6ae37802e10f87e4fe5247036282ad0918dd1a8d605d59e6873aede52285d8559ba5a08c30ab3e3f1a0c2f201eddc833a1e1754b0d1e26d9c5e8ec13a9a4bc1599e51430c6c38651a77f3b379ae02d8dfb00a72c5b3fd53cee67f818923ca522563d4bade34d292f75b6b658a7dc68460ef8234b35f0e9807516f61e311aa3b170b72be2725de3fd0f32692eb98902ae1181bccff000"/4096}]}, @ETHTOOL_A_FEATURES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x2034}}, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r1, 0x0)

8.272931627s ago: executing program 4 (id=3885):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xd18c9b25, &(0x7f0000000080)=[{&(0x7f0000000040)="c00e03002a000b05d25a806c8c6f94f90424fc601100077a0a000312050282c137153e370e0c1180fc0b0c000300", 0x33fe0}], 0x1, 0x0, 0x0, 0x600}, 0x0)

7.786959521s ago: executing program 0 (id=3886):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x955, 0x7214, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
r1 = socket$inet(0x2, 0x2000080001, 0x84)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10)
sendto$inet(r1, &(0x7f00000000c0)="18", 0x1, 0x0, &(0x7f0000000000)={0x2, 0x0, @private=0xa010100}, 0x10)
r2 = signalfd(0xffffffffffffffff, &(0x7f0000000140), 0x8)
syz_io_uring_setup(0x38a9, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x3, r2})
signalfd(r2, &(0x7f0000002340), 0x8)
getdents64(r2, &(0x7f0000000180)=""/170, 0xaa)
r5 = socket$netlink(0x10, 0x3, 0x4)
writev(r5, &(0x7f0000000280)=[{&(0x7f0000000340)="4800000014001d0d09074beafd0d8c560284606080ffe0064e204e20590000a2bc5603ca00000f7f8907000020008d42188fedc22e47ad8f75edc6d100000101ff0000000309ff5b", 0x48}], 0x1)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x8, "db19ff47"}]}}, 0x0}, 0x0)

7.78628334s ago: executing program 1 (id=3887):
socket$inet6(0xa, 0x80001, 0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd1, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ipvlan0\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="44000000100003050000", @ANYRES32=0x0, @ANYBLOB="2d8e261000000000140012800b0001006970766c616e00000c00028008000500", @ANYRES32=r3, @ANYBLOB="080004000001"], 0x44}}, 0x0)
r4 = syz_open_dev$vcsu(&(0x7f0000000180), 0x1, 0x2242)
preadv(r4, &(0x7f0000000580)=[{&(0x7f0000000380)=""/160, 0xa0}, {&(0x7f00000004c0)=""/161, 0xa1}], 0x2, 0x0, 0x6)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="580000000102010800000000000000000a000000440002802c00018014000300fe8000000000000000000000000000bb14000400fc010000000000000008000000000000100002800500010006000000040003"], 0x58}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="5400000000010104000021001200000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000001c0010800800014000000008080002"], 0x54}}, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x141}, &(0x7f0000000080), 0x0)
r7 = openat$cgroup_ro(r4, &(0x7f00000001c0)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000040), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000002, 0x12, r7, 0x0)
r8 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r8, 0x2201, &(0x7f0000000040))
setsockopt$inet6_MCAST_MSFILTER(r7, 0x29, 0x30, &(0x7f0000000c40)=ANY=[@ANYRESHEX=r4], 0x20000)
syz_open_dev$loop(0x0, 0x81, 0x10b40)

7.785178739s ago: executing program 3 (id=3888):
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="c0400001", @ANYRES16=<r0=>0x0, @ANYBLOB="000000000000000000001b000000200022801c000080"], 0xc0}}, 0x800)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYRES32=r0, @ANYRES32, @ANYBLOB="220001", @ANYRES16=r0, @ANYRESHEX=r0], 0x38}}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000340)={0x0, 0x0, 0x0, r3})
socket$nl_generic(0x10, 0x3, 0x10)
capset(&(0x7f0000000080)={0x19980330}, &(0x7f00000000c0)={0x0, 0x0, 0x100000})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(0xffffffffffffffff, 0xc0045540, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = syz_clone3(&(0x7f0000000340)={0x200080, &(0x7f0000000040), &(0x7f0000000100), &(0x7f0000000140), {0x1c}, 0x0, 0x0, 0x0, &(0x7f0000000180)}, 0x58)
prctl$PR_SCHED_CORE(0x3e, 0x1, r5, 0x1, 0x0)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
preadv(r6, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
r7 = userfaultfd(0x801)
ioctl$UFFDIO_API(r7, 0xc018aa3f, &(0x7f00000000c0))
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
gettid()
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r10, 0x4008ae89, 0x0)
ioctl$UFFDIO_REGISTER(r7, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r7, 0xc028aa05, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})
ioctl$KVM_IOEVENTFD(r2, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x8, r3, 0x1})
socket(0x10, 0x3, 0x0)

6.834085202s ago: executing program 1 (id=3889):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r0 = signalfd(0xffffffffffffffff, &(0x7f00000002c0)={[0x7fffffff]}, 0x8)
r1 = gettid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x17, 0x4, @tid=r1}, &(0x7f0000000080)=<r2=>0x0)
read$FUSE(r0, &(0x7f00000008c0)={0x2020}, 0xfffffef0)
timer_settime(0x0, 0x0, &(0x7f0000000300)={{0x0, 0x1}, {0x0, 0xe4c}}, 0x0)
timer_settime(r2, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)

5.931775913s ago: executing program 2 (id=3890):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ_RESET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x20, 0x15, 0xa, 0x5, 0x0, 0x0, {0x3, 0x0, 0x4}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
syz_io_uring_setup(0x43bc, &(0x7f0000000000)={0x0, 0xbe6f, 0x80, 0x1, 0x298}, &(0x7f0000000080), &(0x7f00000000c0))

5.750127782s ago: executing program 3 (id=3891):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a000"], 0x0)
r1 = dup(r0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
io_uring_setup(0x3eae, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'pimreg\x00', 0x4801})
ioctl$TUNSETSNDBUF(r2, 0x400454d4, &(0x7f0000000340)=0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'macvtap0\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001000010400"/19, @ANYRES32=0x0, @ANYBLOB="93630100200501001c00128009000100766c616e000000000c000280060001000000000008", @ANYRES32=r4], 0x4c}}, 0x0)
write$cgroup_devices(r2, &(0x7f0000000740)=ANY=[], 0xffdd)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

5.692958232s ago: executing program 1 (id=3892):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x1, 0x2, &(0x7f0000000140)=@raw=[@ldst={0x1, 0x0, 0x4, 0x0, 0x1, 0x79}, @exit], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x3010000, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

5.674905671s ago: executing program 2 (id=3893):
r0 = syz_open_procfs$pagemap(0x0, &(0x7f0000000000))
ioctl$PAGEMAP_SCAN(r0, 0xc0606610, &(0x7f00000000c0)={0x60, 0x0, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0xd6, &(0x7f0000000040)=[{0x5858, 0x9, 0x8}, {0x10, 0x3, 0xffffffffffffff9b}, {0xb59e, 0x3, 0xf}], 0x3, 0x7, 0xc, 0x0, 0x1c, 0x10})
r1 = epoll_create(0x5)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/zoneinfo\x00', 0x0, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r2, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000200)={&(0x7f00000001c0)={0x24, 0x1, 0x4, 0x801, 0x0, 0x0, {0x2, 0x0, 0xa}, [@NFULA_CFG_FLAGS={0x6}, @NFULA_CFG_QTHRESH={0x8, 0x5, 0x1, 0x0, 0x1}]}, 0x24}, 0x1, 0x0, 0x0, 0x240000c0}, 0x4c000)
ioctl$SG_SET_DEBUG(r2, 0x227e, &(0x7f0000000280)=0x1)
ioctl$IOC_PR_REGISTER(r2, 0x401870c8, &(0x7f00000002c0)={0x1800000000000, 0xb, 0x1})
epoll_create1(0x80000)
setsockopt$SO_J1939_ERRQUEUE(r2, 0x6b, 0x4, &(0x7f0000000300)=0x1, 0x4)
accept$unix(r2, &(0x7f0000000340), &(0x7f00000003c0)=0x6e)
fcntl$notify(r0, 0x402, 0x80000024)
r3 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000400), 0x210000, 0x0)
ioctl$SG_GET_NUM_WAITING(r3, 0x227d, &(0x7f0000000440))
fsetxattr$trusted_overlay_origin(r1, &(0x7f0000000480), &(0x7f00000004c0), 0x2, 0x1)
ioctl$DRM_IOCTL_ADD_CTX(r2, 0xc0086420, &(0x7f0000000500)={<r4=>0x0})
ioctl$DRM_IOCTL_NEW_CTX(r2, 0x40086425, &(0x7f0000000540)={r4, 0x2})
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r3, 0x84, 0x13, &(0x7f0000000580)={<r5=>0x0, 0x4}, &(0x7f00000005c0)=0x8)
setsockopt$inet_sctp_SCTP_MAXSEG(r3, 0x84, 0xd, &(0x7f0000000600)=@assoc_id=r5, 0x4)
r6 = syz_open_dev$evdev(&(0x7f0000000640), 0x400, 0x10002)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r3, &(0x7f0000000780)={&(0x7f0000000680)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000740)={&(0x7f00000006c0)={0x48, 0x140d, 0x6, 0x70bd26, 0x25dfdbfd, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_RES_MRN={0x8}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x1}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_RES_MRN={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_RES_MRN={0x8, 0x3e, 0x3}]}, 0x48}}, 0x4008000)
syz_open_dev$sg(&(0x7f00000007c0), 0x100000000, 0x10200)
socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r3, 0xc01864c6, &(0x7f0000000840)={&(0x7f0000000800)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x80000, 0x0, <r7=>0xffffffffffffffff})
ioctl$SG_SET_RESERVED_SIZE(r7, 0x2275, &(0x7f0000000880)=0x3ff)
write$eventfd(r2, &(0x7f00000008c0)=0x8, 0x8)
ioctl$AUTOFS_IOC_READY(r6, 0x9360, 0x5)
pipe(&(0x7f0000000900)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
ioctl$SG_IO(r8, 0x2285, &(0x7f0000001f40)={0x0, 0x8000000000000004, 0x28, 0x7, @scatter={0x7, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000940)=""/111, 0x6f}, {&(0x7f00000009c0)=""/250, 0xfa}, {&(0x7f0000000ac0)=""/189, 0xbd}, {&(0x7f0000000b80)=""/4096, 0x1000}, {&(0x7f0000001b80)=""/120, 0x78}, {&(0x7f0000001c00)=""/147, 0x93}, {&(0x7f0000001cc0)=""/101, 0x65}]}, &(0x7f0000001dc0)="357f6d41d8b80268a5237bcad9511a56ea6c1c8d3fd3c4931ebdc2355f32333f034304a727f2baaa", &(0x7f0000001e00)=""/207, 0x0, 0x1, 0x1, &(0x7f0000001f00)})
read$FUSE(r3, &(0x7f0000001fc0)={0x2020, 0x0, <r9=>0x0}, 0x2020)
write$FUSE_CREATE_OPEN(r8, &(0x7f00000040c0)={0xa0, 0x0, r9, {{0x5, 0x0, 0x9, 0x3, 0x6, 0x7ff, {0x1, 0x7, 0x0, 0xe7, 0x5, 0x1, 0x6, 0x3, 0xff, 0x1000, 0x75f, 0x0, 0x0, 0xa, 0x6}}, {0x0, 0xa}}}, 0xa0)

5.440171999s ago: executing program 1 (id=3894):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet6(r0, &(0x7f0000000080)={&(0x7f00000000c0)={0xa, 0x4e20, 0x80000, @empty}, 0x1c, 0x0, 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="180000007ffffff7290000000b000000000000000000000010000000000000002900000037"], 0x30}, 0x4000000)

5.30856738s ago: executing program 1 (id=3896):
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000040)={0x0, 0x7, 0x2, {0xd, @win={{0x0, 0x600}, 0x0, 0x0, 0x0, 0x0, 0x0}}})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
fchdir(r0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002540)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f000000af00)={0x2020, 0x0, <r2=>0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
syz_fuse_handle_req(r1, &(0x7f0000002580)="5536182daefa2fc6ee10a1b2d4e27cff3c3e628d4656f7b27979e371b15b420c01ae674ddb8fff7b2bc41e7c5927065cd32f2ff7908ef7dd74cdc82f3799ab12edbbfd0b8f6d2194d7f72aec3a136e25c7bf733436bf6cbfc94431ad053a2ec4ccac5aaada8a41ac38c0e1849e599dce84e431ac501db105b4484146b338c0ae9124877ccb8273c7fbb32603251e2d66c71398a7a715bcbe5c9d87e41af55f837e2931c4c1b6b7bbc30dfedfe6e61a39e28f66bbe56496745fbe03f6035183257edac4b0fe3087e7f3e79c2152a07341f3ae9ec68e78875b6e12b5a2a1abbcca4d7963be818a7a31290cad5a025ccd05b609c7ac49ea85d49f354c1e76091a917966665e77471005a46a195b290c01bb7ddf4709e94543471d87a0a5047d3631b00862e1e9a00c60b83371cc16ba087463122a892a1b21786fe3d450c7ba97799d88126f09a698a421242e9c67c981ebc576f57ba3df22e0071db74fa22e97b0fbe589894931a4c4e0eda8bb9533c4ce503fba218d0ae43ab4b4d0c705e04442d093ca5299ae8499c6db904bda6c68105bc2a1cd8e16067215476e573745d1e99daa73400567a9978dd7bffb21429479ace30c95afdfaebd7faf74343cd58e14ce6d2fada5a1c665049eeaa717ee681666c8b63c6d54e66df86144f85d80dcaa3ae7a13b58d5f2b607029efbbf8593afc75e0ce0a875a5fbedecb425a22624a0bb8e2fd06212a1fdafb92430d309f8f68504484fb1246f3d7b0893d3dc9d0b6c8d7476b6aea871eb4f32c283e22435fccb221484409cc28a6609dd869b99547fc81b2e517809a5b77783f9fc11b5fe584b9f64c0fec35d3db21ae30d0b8b88d722dea4a376d2a610f0a9d08b311e2ed3ef5d72d0e040e41d3dc45e5a17d740c67db88d95b18c8610fed3302aef0c3c1871ff8a5ae1908bf9668f0bc8e5867f56cc59cd303bafabde6a4034a96ba66b98a910dfaaff712673dcbf84c5354f066126068de620f08be67e6034138dd9a312f9ff197fca56a77bad46e59edfd79dfa3aee4582bfe01ce2201f6569178be7a4bdd28e495114944e538ee7b8f11e0812d9f822cd9760316809eccb9b0bbc5f0630224a1534f88600bbb2af2882562e76d149b44780380b62241829e5734fdfff1a2b3a052f3504dffe04d4632e9fef82762fe1950fbaceeb961464dfe2699f0a898fc8783cfdde45ecc3a16f052c4777beb1fddb080fc802a8cc760d1a0d4606b669e78ee9ba1ac398914ed5096850dedc513e5c71eca19d51af9075151f4ca3d8a841b7b1d205f5f3d223f7e48685daa0836f93017935ad1d942c7392667145ccc1d4700f5d8fb2fc218fd6d70357667d339a28dba3360761857b19f9f91e56a0e0281af1042a409a4e2839f3d21b73a5c352b22e4ff06e563e92c00b48e7f8bcdbbbd398c65331298f779dafe875854e301394b0faac2126138908fa8598b4f5e58ed1ac451eb0187e20077099d12d745fcff0b7fb5e8b9fa65ac617ea6c953e8786229b67a604c46810876650f919e6bc6792db22ec0be29cff94e9c24eb6e1830f890bb4b6bcd74b39060506095b99b95f2a8addfb8dfe11f47479fd23cc7c0701ae00774c430b3b9f52ab2579d47a2c2095365aa569f55a1431f93e651c01f0d67ff9337708a72e352c0e699f14bf07f9b9c056897c78edcf34ade3dfd17a04446d565fb6e7c701a237fe1a3d932371654a43b56e7f5ccdadc0f506d746c3f0047b69c0c174cbbfe092f139c09c0e2e76d9a777142813cb78174630ea8d73301e3343b94856fe610777468a9fb4518a0cf68243a4bd715e38e3431a811f962edb1306d76d89e0aad9be5800e7bebb82ccaec2382c9c110191aee013acca2d8ddf99465e760bd185453a9eb4e5a78383094603b749c6242ad227124ef4b7ec7506b8a76f714099c954f0b2f2d427af0451a7ea3d1dbfa8a3e644c3640d397de3ce942311deb73fad3a5dcba773f416314e81e70bda715b342113a18a249300b43250cb3b3aa46ecabe42d0e8c1dc4be286e539c71f0d1c0b0e1795ae7428a3887f36b79e9c76401a5dd460f45b9d8277e04c7c1e615fb33d0fbc444421f3fd0bff4e045d790610aaa2b62945e4b398024c75680b5e12235c35f5b23ddd99454fe527acad6d08fb37c35d9ecc0a8b10e2c31fac786666eb2ad499ddb7d06c7526fb1c5412f6a0df003410e69b81fe523057b6b73cdecf0e5bc4d3b87757889fe49dbdb3ec79c7eb3a868480fc87528e80400de837cccd4a6345508386ada1833f57a20c56e973569bc7821088d343e80009b7b35390975323d24e764aa6c90d3dd5fdec08ed363dc9ab57de949282994cd3858f829c7e5e9a745261383db27c9c53e9e98e109fda6cbb88649ba40b5067470d73b7471d406e5ea8041f9fa25f5b6c919aef84f7595511141e9f090ee103b20a13b22c9a88348ed6d284c0d7a58326e0c4c9626d9a5390bae2be199b201ea136a9aac76e6125db9bf58f61e6a46f8145a9df1305415989435f51529da03f09a67e3629e6f6cb6b70407d9d848f554f1a7e63602e678e62d3b41b4bf4ddda713ed2c291536d8cc12a16bde144ef56acc17778b1aa8eeeeeb60c781365b615be4435c7158d926351cdb46b89fa82acb384c7318dcb2e51db8bdb223aff2c8f36d9e6b1135ad18f7e0b9d91a76972c3140f8e21dc71422de12a4f5d08624bdaeb983619a5ff82cf788c6b8a5fbf0f78e61ae4058d6e03a3d5130646dfc13686e356a1325434caac94ced659529181561fee7ce4f7e1e7945f119ad8474ea6b00257ceb7af2d9b3f9ad5782cd986f1b097d61bf26a6c48c3ab597e4678d609f3050eec9f3bbea1bc67314407521950526e6d71e34e35392067ac84b66badc82a54bb0dc8ed2f1050711ef2d47af5252075c0441aad6900539fcc649c1b1ffc70a1cc39e0c2136c764ba718d50f4800dc29769c4bc9a2fd0f43eb6ffb717a473ccb14ccd58bd506c4e4a0f4ea1158b59b3d6bf1a2d010c456c1f099bff69add46cc60fd2d9779f603ebb943ab8eb02627ac8aebdd52f25b069f64a61e90fa9ac979cb4c6cf0ebcd070099a1a6e6a747e8989e84afe090390953f988f2dcee405086ce51b1d2d8d249f45899b4e862008d28efad8aa5abd0912fa456aa9d3a918a0dd3420d7c4b04b9e3d65c41a1548b7caeef5fbcededf64697786a0bae73d2c5352658b871c806bd150c91bbf8f4735dddee9cfd3e152b5d44cbcce912a2809760e225b9018fa498c86ccb2359cb0834bcefab92c0468522648fbefbe25cf8d82b897371b5369e8f2972502574c0a3235066969c4d5d67fc312d6631702f66a113d22063ba2ac7d9ab387ad1e115e9c98275f3e0dacd2e8f0843f24687b297bf42bca11b89c6db2fc7026d364486ef2d614bc45d5cff0758d69fd48ea06b8a97667e4d7d30bf7f1c30b62287637f50468bf144fd177fdabcbd0d12b50c9cbd052dcd66993c72f48bd6086412ed5f9af3d44dffdf7c012aadd5cf7bd3b314f236660fa1c0e4773a4e9ccc36fd130ffda59a9bf41f7fbf79e5e3333365a3ed2e7714e50805bc70bc6fd20203cacbbeecb8e01a2ce626756cdbd01c53717c2e7b56b47e21f13209c2bf2b1b251e7a93f8a085dcc61d9ae82303a962441372ff7c0b8b8ba75bbf5b861ff7ddbc9781d40c90ae467bdeddfdf949e9a8b8c9fb7db3a9323d05d15bef19ce2e7634b84ac082d50e84b66f99f34b2f852fefe67faa403e848f3de110eb1d9faefa176c3cacd20c7f87d74e858a1a7bfc2c9e895541f691f99a2b8771c8755300ee74e3d6a048b30d02ca16202ecfc207a0b29302aabc1c5b57c7d0d31d43be5cb1f7230dc238fb701e7037aa00c9b57c6fc85baccaa56754d27b975872051566187b0983d93b9ec052edf3b33f7ddab343eac6f7aed97771e708e40a4cc6797f85d91a0debd5c6169895e895f67a10685af5e0b80b0e728731cbffbff8be603469d03bd47dbca4456108c79c029af16482c5c2590c1e0673c7e943699ea107d906a3e667fe7b2afaeb489548b6a11d9862e86a0b549a42b607ffeda6e3ba0f567b63b0be6edb9098cf3a44e6864c5e99fa5f475acb57e2b7343eb7fe3e8c139b515348b188defd2d3021fd27950d822f6df5f9c93584fd95f3f88c85231943ed4d511249f96447f7903779e4d8c4a680661fe5133d415b862e668441e8077bfb827293a9eb733e914f37a19e01ad4b014ef87ed5a5817ab8123af9fd863090b8e9a50ce29cf706b2182fd79660cbdbb53ba71b750e71a21d0ed01db3335cad91d5cb4d4648f46468b6e51f63e4088386913ae6b6cbf103947c32d25a8a825118cd6ce23f53ffe3c087114700e9a5932faf3d844fc6b323b3e722ed3ed75037bd9a7fd9d256b2b9a168e66802e284853a0d6b47d39675900f02f005050425731f9c2cb329f70d7a5ce2ee256212bf8b2ba9ece0df39c58f0fbac06c4da946787abf19dadb536bddbf7e51d89f22413575e064c6482d936a89d48be159aeb5055feb0577ced6c5334411d1d58a7e6d02eca6164d90fda39685fd619269fea7f21db51f6aa6961250e03c9e00788c178dabeb68f13dea29f8cdcf30478dbca15c4519bb342ba8b201019061bf8317022dbc5673fb4ed92ef1a1dea0a1a00cb3cbca291f7ebcbec27ea5e824f04b82f5644d4368cdf8026550bc2f86b83da6a265357eb548a9eec6622204b3dcd28ac661dae12819ade4ba53b53b1e6ab906fe0cacabb9c15e8b657475a0dad62dbcb1037aa8617787abce24a0aa4cf1b5c85c030a14277832a95d8b29a4ea86fb80148ece147ce4bf386995ac28e1ad1e2072f3f4fce5c05d9bdd0af118815d6ee89aabfa3f8173e6fa59dfa4a8c1ba7641291b3c18c6ccc4c3588d56d169d397facb4e67485610cc68197b3a43fe78b9458dc47e5057d5bc6b8e3b65bf414818b65d41ed7cfd7a35fe79c9851ef39c3e059fb3dffe331a791ce75728efcd58dd9b3ed1c93b128469afa648f4f91de6e39d5bef7a0e69bdf5b2202682d857847a64b33432ea0f33bbfd1948ad0b6c66d853fef1e6c0d712b86c40f79ff4d125baebf2a4b32dfc8bed2a697f745cfeb16303b4f8e866ee0bb6a5eb6c6ce513b5cb84e2b44854c72ed0cf2e838245be8d098a6943d845f5a8c07c1036da86cab0d5be4ce29545fade4323acf2085b7645107dd12d5b3af7bb37be1b291cbd6fe297c4b4a2a23280358711be91f21305c035bf1f57467a1853c999b3fb478b11c49cfac66429a76099633a54689047d66fd8bd6eebea94fc8007d9e2765e2969608a78d0b96d6b30360e81fb9df5262c8ff15f2fd7000756d8cda1db3847d6f793bf803b159344c57b480c87702cb3d1260692a19ebdceb2e05a2fe2eb5ac5cfa76551a04795915bfaba9849a623e46ac1832157d0ea5255b5cacd4efa844b0ce5f2f0e1a9dc4fb115fce2640ec6d03c5fe15b4837bd6e6127349f2b6b0fd61c82c96531714f5b623ce4e4978c4a0c86b3c10400000067d283ec934ed36ba7360a10ffeeb7864113eeaa25cccc66613e0757782381614b8da3cd0a85cef7bc384969517c920e8454a5a0f112d1653b2828e895d0614e5bf4dec0ec863432cce9337ce7c29affa7f29fff97bd54a6947cc68df8fed17850209242c1c67d0d7aced2efec4b3c006678bcb8716e8e9e40d78781fd6cc5b5522b8ed2ec8cecb677849b778c0a2a17817a3dd2278080e109906dd4e99b772d5911893fa09ade4296876921d1e009e714df7e4973ab1d2e593d88ecf2151e97ec66176549d3af66652c8377e162454ce7cc8ab34397d31978e84aea92a3c0a8106a2a31e33a8dfe942819fa1f2c1272d0f3cbd7dae820642cbc00202455ab7fb81857ef050a1965a291001874b38397ed9a8e8106dcfcdfd80d0f5d0ef0d5775e53cc5aeb1d6bc13886f8f3491cd6af5dd77ace3689fa2bf56e9b4d1e4964f8fd8f0a4a8b5d7fb678f0f3adcb4a19b5168ac5aeee6f087af15af3bde52a9be0f550b21b10ce98da70445284d9db9416732e63b6efb3ced984c0df50c11aa677f822af7ad39b8b4c0d236e4b36a00ff73587b39f917d7effbb37b95a96e350a430d544d68623c80bf2cd2d689b4dc41e8ef374c393092a2619055f268fbdcb9de494e6582be90a4798bac801bcac8389c823759860e7c9d692f41ee2a6b9624da3c09a2c8e7cdeaa100ba8ca25a737046d8bb237b9546641cfbb2eac9bbee9e125b14dfabac642e634d32151c06ceb3ddbb3d3f038ab2efdd063152270449ed5eca2655cd0016147ebbd00003eb8cd25297350afbffae43cfd9867543b81da4510850b1afaa199d0477837017e9098bf5b3973efe218a88b3d2bb172fe77278088997758fdc1dbb0b1fb6af2ab9db1ddf3e3fbd8e8dd35f918779ccba75b3cdfa317fc6e3cbeaa8b11ce2a30cc53292bcb9dc2a18ca400c674360c041c97ee6aec1448a025c6b04ae9efb3a01d31e3f897cfd5dc94dac95c88b95a26676cc6153e203535891116a5f4ebf54c71cbbe3215a04c57c7ba874a1e203bc66d8161d5b556f661244d9d405a2e6baaedd0d0e4c7e093c2ac0e5ee83b7ddf91669dd59016f7cb53d19896fcc838dc008da4a5fdc0a4fac1a6d7f49b24bcc01467df04d8a3f3181cc4e811942a53daf784b59186a17756a8f3a41ad93035a893a4ff60dd8f54a533e94cf87864169287804df3aa38dc5ce6021a06c58d48985c562a0f51d8b32879f9fb7d4a1d3d442626810f151b161b7e35f9a0b3bec05979e381140f31c03ee6f5549e6e7f116be5e87e0a9ab71ee632f837e9a0f9ad1b4979304c26bad6e84eff0b5b79b667e3d74e354d04f5b2c237102e41a1a4dcac99cbb911d9484aebe6ab2cb539a1db3e3302fb833a44a2d725e858ea9a65d43bb7661842b655c51a1ff25207956e8c6c94b514ff975d69f688dfa34c59771488028e3d7500ba0cb71ae5751a51b568e67bdf2abb63838aba5e5cfbbeaf02285f6cbe58428a92a6fc25abb01f8d55ecbd7cc0ea69cdfb188b79048dbea488493681b0e70234463ca3e425d24e2ae4d800ce3adb04ce69428b5f884f8dc83392c22e456a2e195b86d717ac45003a99ae9a59c94167eb04aba3612528f94dad3360b46bc456fbb78072eb7f96418c71bec09831b0a63e83816ffde0d9909c06e765a666c2c41b20c339e0d39107311830ae9ad912f0a85f2ec5ca66a79798a568dae14f76b6d59e6c0bc0f9ebdff29c0fce58367c9705bd4323d3c3e125cdb13da6e58f3fdb0851401014e393e3fc688f04080a90430e531767a7c4f3187ccb7b90880955e766aba6091c4e8fed36482bb5a63372350dd08fe84bf5afd1a30a0f8f4de7a640fa84b9c0447073a0b39bf875d0377c8a572adefec3e033fb3dad91b22bfe22c01f23f27ab0c6a1ce19d2f4f4235281cbca15dafe50f383ba89a8c46a666b106c1ac534955df71f4c560010934fd3eb68eebd55487defa1e024f75ac30139cd190bde1dc8684936bc23a1882ae469fc4af8730d29658f996f71c219526497918e359228b55849d952f4b2996fe5f45a6cfdf87da93bfada579479b18d05c4e964c85b88a7bfc6e4f2b5d6e98e00635e8bd2ebb9eb40b99a9e9db2f688b2d94b8cc8c5fb2a1928624fa5df1c228e6499d992453772084bcd33dda984d97e3857b6fee43c6666b3206ccfe3af52debe5659dc186edd194b90309213f5c4805f454c7e57bc759377aae9727e484391486be0849c5cdfa99c5a0d0687d6afdce97a32e01d45fef015e7c869ca190219a778b91d881a7b595313fb462e5bf78260c78285d6ccf5e4c50ed56ff28e3f49912773f0a58093f259b5cf4e7f607c51a81576fa95b97bf32d0e2e3511b5d784eba29a15246a97ccf608db456cd70adacc6c31913416f24f38dec3544ac2e88c409b5ff7771d873ea8d7a1868775c8b5502273c784cf945680fb14f143140b56462cd46874ffeacde7bf329fe8369df9c4b95a42535ea56ad6fa260f5c738eb9627f890f4a34f80bf3b8fe568d44c3895029b5f9557f17469a53fe4c0d581eb29029ff162ca906cd0e4bb81138be91a254752bf849232ed7042a82cda1e14dfbfdf74a09c17a9039749c789ab0242ed2d0249231c4ad70c23c805676968bdeb96c2d8886f784ecc3e42e6493e45aa20b6e8ede65c49136c9e9414a4371e3012bf596d55315be17ea9396b1df7f82db27f0d121f8aa66c40365fa686a46f430b4cd336da0d9937d5c26284bdcc6c4e0d5a6acc1be089e1a5d6ec422ad3961fb5c5c9836466c3366e6d3f2686b19b529549cacb6252b0d7a7f5df42ea2961ac59ba0b911311ccc4d83f8611f0c4b071544236037b2863d673303a4e3d428131b07f60eb2cd507dc43503456ce829aed8254bf0b51b38008d42e445acb0effc2ab7e4bc26ad76ffba1220f2e878fe9b5de39bf4f25a9ed468cdb100008ffac6bef401df4817b23463e771a3c834c32993274689c01004eb94b89bc44257b7d2b3936caab6d86937b5bb8f705d00fb6f091711222b6dc25eeaa0e350fe484337396162c86bf7d3a1ab82591ad35d393664617041142c0f8b528e947c092f28c3142493d056bd548910615e7300f041f5d01a2f00138ae5d7849244ef9215f5c9dd874e60ca4ad883f86e71690a510831e35c24de1e0d1261172bf4a8625af958febb7b109c5ca5bfffd4342c43ad02136c6eb117b4a6ea98c07a91279731c1228b01e6be755c1c1d095d3cdfe950ac32eee77327a0e7e342ccfc13c69ab6ab113b18c1abe72d39c03e351986cb3326b8b17ada5884aa7d0a553b0d35e32b8c09f1a4106f5d675a88a1508de4a0e9c598c082ae5b229b75579e39e297b225a852e3f6a7d0990a45fdf68771991acf9b7a5c04bc21a40c57817d500e8ebc6b5919219a4110395817c92bf9eb9c623606d4d98ed68dc0b51a0278b0addce8753f86316158bb4bd6a7a0c4c72b0d17b9545695e54826021a6ac44b4de1b4ea977b20af3c47b8860b0ed29a68c1a883777097d54b162cc58edc0f4de1afbbad7c340a5cd9f2f93133cb2a4babc2a688e2ddd580ef8d9d0846c269c265ce9d978aa233c73aa11eb78d3a67d1e7a3dd035ef5a1f832ada87c7dfa377b77215f8c23b1a78e4a7faa6d0c1a4a28a0ef7b32b36bd566d8c478d0133ab43f9c2a4829624eec535234eb89a177ca8d4e9d2d422f33a24d15044822e4a4c1bca5f470b8c8fde09fb69160297218398da27f4e80dbd480782ee75cecd20ad23fdbcc1d4a0acbc63241c1e2cf1a0b12949e42f707ba06b6fdbd8f336bd72d7f96ddf9ec2b5cfcc4c8da6e1ea573e97eeaea537511ac9fd2ae78eb18cb50c13b595f8b6d65ce8c08e9028fffff6b512080dbbd3fb5e5068538c05f73254969f9727db9bff0c6aeaaf83713812499308792a7fc8318e6b2996bcd1b072641be1eb8e028cbd6b0a5f1fa13bfe35b5cd0d2ca21d9cf8ed97f724ef73ab5a99d65befa38d636f2f827d229479377f25501f3a6ece12cb095549503b2299db7806d32751d4851d62b0c6a91e2e961d475d33a8874c96df52c75bb5a0569e892743937451f75345e0351bfa334d37aa43f01ad1ff984dec164faebc713de31470db5e536a0681a042ced0f9839d9ce89259349075961985171c27c410c99458d4c25614ea1d4252293c4f85b0d2ded9ac560cfd024c199d5f0f4bd47763690ba1bca88b8cc81059bb9fe82c955488523114db8c2caf8a63c0049e90ca524330b57edcf718f6a7aab0efe282079d198cc3c1294f35d1a1bf5f69a8838cfc5d4363f9ca9383f83e4f9576de3fac48866ddcde282e5e4ee3f852a063bd6423ac1fdc6201b1facd6c36609fa2faf96afc1c0b76fff27bce059ad6390fd1e3f735806ce654ed555a78ea8e59fb16ff5ac5ad183aab9de37c3d033b3018d591e7ff1a896de969f561260f797603df5fc232076ccdc2e1fe9fc789253a54af151dd50f89e777c2541591101720c893647bd4b3e6257de85251c9bcd700154e85db2a9e2c4d9d2e531a18bfaa05d16ce75f823e60416b3afebce16555536120d5f554fd13e861d74c4947a62d2d09473d8d75f03d354572b371b02e16f3976b1b0b235582ee38d938fe843b107c77c2acd88f34e1669816eb3867134b1c5fce5afad3c70f9bca972ed494577f2ba6362a6ee6b4720bd86938bb49490982a1b5ce6dd54b79f093ce27051530e1233f03d6641392d4fe7a1f7dcec8ba86d8f32f00f0ad50a29b1e17de07bd0205c0d893532c198f23656f7f5d1d9c0745b7e0b7e8afdd29c8fa1639a06039980d9a5fba11801db4e7868a9b77925a03a770aae3430b1ccbddb8bd766f51fef71ba25cf9184c9cfa6f9921d69066d09a656070f3c5fe475ccab94cdfccd76f3c7dada9236d1be861eb5fe6247ae9f97b7705bb71c375e8b98203c5bd224202c1aa714da47e0daf98fd3eca617f9a255df5dbe98a7520a1e6db9b88af893521f2ecf7fd2b08a7f3c5aeb77ebe6f52739b473840889c41315407477b82242d9a805f9aa200a129c4701d1c88ccd34871f356caf02da9937a88612a9755315914f4e8e1bf471a46c00650457cc06db168e5457fb3f9662994d901a1f58306156979aa795afacc1a7d6111cbea53e97fb71c7bbe44558fb06f8d78ee08e3678b5d218e13f79cf06f1da9f7e128647884589c487147b3edbdaffa16f9388568d3c8caa34a6b944e4f171842cdbb293474fcd5201b7440e05ddcf9e0b476773119516ef45077705e8bab5f877657205bf9eaaa7c86734b1b6c3661dfd4b9eb8590f962e17ad51b44058d558744e5b44cf9db280bff1062b2431d298064f11e7700ba4c8ece6f4df659d4880c4983db0152f1f903023672f6234620134bd5d1d888022da128a527d82e8fa1a562827a4f1592efe3b0bb78060626e8688ef3d5162afe9f1060123dbb1f93b7bdb6ad4ad6e1772bf8705cca424d9c42e4992eb5bef1ec7961bd4260d1e55e863fa9c8e0cb6d28b495fa37b5f59fdcfcec6319288dd7363821e47ec46664e1994157319eb0d466b42fd9b5fac5ba979a9baf4f699dc539bf77852e18014074f88108b654219e4f9396696c94eb9fb9b360e59920f187029608bed76d09dd006f4033d384cd109726d51850202ba564599dbff7808591f834cc4084db29111de86a70217defa490e39c6e281650d15b1e44bb55164be0f6da58e838bf5f4d7cc2a23b818557ab1fad0fb2253c4da6af41591940b2608f6fa6bc25939ede95317ff96050bbc1f389235caa78adc0d801a56b2fb4cc41e73d5131552985b5af241722e0637f3b88e46b09ea875e5cf66f534666368ff8e46413e5ab557236134afa63478e18328d33b1a235deb2034955cdbb2bfd0e55fd885f380ae8efca1feea985a946519a712df1384f9e024efec61c30a6989aa3b5bd486366f3fccadc0add175c1cf0d2730ab97370eb47bcda4226ee140edbcd9b38b8ee913587125cb185adb4df18e80df2b0ea6e3e87dc8755fe6823ab5ee1feaebb1e6208cf3dd5ad5581f2388be9200", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x18, 0xfffffffffffffff5, 0x400000000000000, {0x1000004}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r1, &(0x7f00000004c0)={0x50, 0x0, r2, {0x7, 0x9, 0x0, 0x400000}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000006ec0)="61bbdafca822c911b304738006db7b15e0e2831a336f514684b2d6c8a9f3293cca8de24cbdc1d41ab778ac721c42bb6d1f2977dd3bdf4d21260c365cc5eb18be1199bfab890f84bcc26b7c5a86a92b95c03d6533c22f6c114d681c9f24ee22edc8c54e455f222370d0783240373804bc920186dc5c862e8e525a3266e170f08b51a39a7dd0df10e6232561c7cebb178e6150f02031d77244d36f1f75d3c2425aaf0905dfafd7895d0bcf774e69b3b059cd7886d7759d6b30bf7161e6a70d3d9d4c3e8fe0e74d5b45a7eb25d2602506a15ddb22eeddd997d357577e0f570885eacd5ae6f659c8dfd8110bec6afee802658657f3dfe9b713cfacdbf107c541ddbca7ab30d4de95c16364dc24500a433c22bd046a640ca7ebb3cbb2bb6a34408c48c8da3dadfdc0f285fcbfcb52328ca584931cc6c3aec022f70f38904912b448f08634478687a24b06a99b19779048db6907d03e0659d8c5a3ad0c0d7878591224c4a746b00cb022b8539c4e4913c2d68ab86c5efc118dcdd8eb325194b0f581ac2b94244268dcefa94cad95540815b92aff0921d2002f52a3e3e754421a5d15f683e813281e5ea092146cd8dbc61d66f3908e66f521e538ffa88d9ffadcd93068dba8fb80ec38e4fbf1e6a86d16c5ea1928318f0ee3ce2d34d2944b5f78d268eebe95ec40cc6b09fc6337625a0c4e72326407e853bc02b4b617efbac2187bfa6ad99f1dba5e1dda79be8a7e01c2d81ddc99995a269b6c241d24039d223722052d519a2a2377bf1e0192c4f5ed88cf511437079c312e0d2dd4fba061ecabcca57956513da8e1aa17776737372afd2f4c519916d7d30e48d3c0fe0b57f374396aa57abbd4b18660b441b98eef9092abc9646b49591c79b6a44cf51e2a3095d184aaa46fe40a6f2dcf89460b5cc971ebd4cfce52a15b9e2ec808685d4754ff91243ee7c1759d2d86d87d38a424b976dd8d8208d15130c7424dc27fdc3227202640896360079935591e3cbb3b0b69a73559d369618557061ac63655244c89de07503bbcc2ae5feef4b55059335c1a1a9060ca3fafb51e173fb0dc6b82ac361d4ea9223c69e6972a4660bf868e3e2475c9d4c7e260769357ca4d99eb1f71250eff75691b297a4173f7b1cb0949d6fd483ec46209738808fd0f93765811d44df60db91e6e1dfef5f90ee63edfe70a5fd4ae322bd04a312760f47ac452593ffd6bdaebf3fdc9eab668d0ab389d225c6136b15c27a9e520e05972137ff374f823d01ff3913fa8f657dd6c3ba00bc0705cbd3a5517c76b3293ca9124dfc1d6546f7eb9dc5a031608803b9f3471a381d5d89cdbfb2b0e25c8ce76f32a868a461d9c13890152294e825de0eafba15fce2645eaf7b0f8f6c25d182603310a6f0dcfbc5e29e285688da3ee34f6c412e4ea78559e98324f45dd95ae8f41979937ae7677783087e4b252d7d37db8d1c449445d7354834139b1a35e087d6345084d26891afda531af70dde063cb3bc53f7f938d88ebf8189d9baa385d10a12b835f55a94ecfb02c83f7f6b35474060bf6adba6ce09c68401d255670baf8aec4fd2e9aa923dbce180bcbee0490443a6e384fd15a01d588b6858d57ef86238ceed03c3a4594843bdfadc2d40897a07873a643e96280f221332a99dcda25650a4036406cac1c2962b4ac690514133de2098c17f901519eca0b7571dbe9e771d1a9337dfa744911068176e7e3d74e2f2a34e31479d6b048dced6c9b836bfc138436f0bf89ffbc176ea15567dacdcc46f68c7815ccd741a732f8b0d809e8421cfcfe2c702b3f78e7c3d61911ba7ac23568bed03e5c68ec5405b28fb603829f16cb7a51a17c6c7e99940da59ab83c94619ca00143598f305057799b11f535e77d92721b63cc1d6c903b34d560490a2751c5f185b7bb6fc3df307a6b32ad15cb9424e3777859f1892e458a7d860bee9b00586d4b8c6cbe1fecaf96fb6c42815c5a92d35a58c0f768014bf2d2af0798637dd558f71a12378dd2499ee9214add06a634eeccb71736588dac40a24897d1d4344b48201e4bcc81ca5b8e84f69a2c7408b8a65ce656f76c2b8abe083e5c9252b81d094656da5cabfb6d2e2b5b07c431c143aa27580c9da6cf3b6e2c1592da48684f2442b030e6bcf76c8669c09a6d975e6ad64e4e6a3b55fb848dfcc7b132e52b516da2ad4503dc54e3efe53fd989f1b660ee48165bf97c765558dcdd38616289126cda1fc7c25675498c0367f7d0639793a60f0e1315ed5a32dce128b5e369dd42a45606dc22bc04c28a79b2f5f89968e95e29332e32e7f466152cbe0981928365e82dbcd6cc450d707f3b20e5146bfe4561bb711586bbc41e5f06d94da64d9820d153eee649e2611ae98e7ce765a804a858b84cc361073dfecc96dfd59f510db22a9b8724f7d2c1cdc966f9b952ca82f84977bac76fa74fe3675a73fb2a71ae77f0f62d4057cdf5e2104b5f2ee2b5dfa6ed45819c6ee0e7da1bf1ff649f64a935e9ed10ba8c8fc803650808efb84052a88665af5d4d0f1fab19ef6fd5aeab7a67f7ed4750bbda2007f9fed8b199a4b7d585eb9d228f15e3d559d6c81628b91cea4403c2ec0b415963c2f35f493475e7c0022c631f83d9c5179ef4dd34c41759240bbbdce554bd2052e3b5eb11f70065dc6e14824654097fdbdc9c342db82e0226b99c859c1a87eda7f5cb3040a9985dfeb68aa9285466d91a151af35c7975079f46a4150046d7123eba71fc0e3424df0a3c34200b52d91d95ef49d7860eb66df62e1074bb874138b86aff43f5a03375f129a3f578ad26184b4a5071e7545223f043d5e378e65c57e6ded39cf557850382d149b624a95918e8b4bf52f892608b379e0758b82a402985c33d3bdc6b46999701a10547131a3b09a5aea0dac4ec8b9bc8a4b17cde186aad300f8a9b49b76321c3dd433fbce765de0f385b6b0351c1c01cdbc5f9cd8a831100b5de8c47e9fcc6129c0f5f93db7dc790d7863a919dc40c03b35c49db7a454b815f8f4bcc228130725926173b5041ad4faa671ef72251d37e1c5a8622a9ec6fc01b75be1f6e8ef06fd0f87f1990dd4583d30491a333aacad8d6516b7ecaaf661d7c11c4bf1108aeae55b82aeda009ef1fe326e07712668461421042c8579ba80fa23fd02077a0cc1f623ea6a37ca74ee42909c58724995e1fe579c1bebb9698876a368653539884abb5eb6a34ab7ab7edb7214342efa5d4d6bf2fff070a73017631a7b8a09609e4efeacbb9c0683ff61ca313db2d78f8c33288c5fd1ad4e7056f9f67f2a546e5d412836c20242efbd107a30bb50cf82f5417f01e9b0cb1ca75296f673e21e3f8af069d7834d9b4649e0300197df1f11ee6b423579cef5cdee2d099c73e7ae4454b72b211a958fa265f3bf0343df74789791ebaaae2f25b573bac285b00c2aef8d6be1b3ee99b057f464589329d773b59d2f332bc03c172f49f38e31c39068bf3adf63bf5d54443e14e5bfbb1d5db1935136a8b3b0de80df3eda40bf41de0ddefd599e489654b4832784444cff8fe229e5969a5fe592e90239d191569b25de52250e8c80dce2897d5abb27ac7affc5bf2df29c0b5324146ea3528e9c6566722fae108f6cb82d925a0624a4eb8b56e0e8d37f463a653faf920aaf56098b30fa36a22672701732333203256e186bc45c83629aaf6fb537c7c15daa5a498623a107b019dce15c7f4249a7f357c67f99eac1a96b75e56a275033a27dc3fdd85c48a882087b96a6bb62a65849071748b2a06800ef0232ff0c1c2a8566ec68c7ef55a684c5761f966c9573a677308935f52846f14b284150c741e177ffb23157a8674016b6f039150df3e3a8476be1eaed6cb97f7615285d1508a8f62aeea477ef85d4aa76d90a2765d2abb43980c29eb4032b06ef2f36aab0e38b7f393ba03ef678d130e2a612517ea0bd5a7711ea60de507affb263a348c98d8fef328c43f87c00409a134e1eba2d24b3609184ec93d68cda75b24193893da75ceb0058a1ed92c0fdaac99330a4acfa24705d3fe2520d8a8018908e1e9bf2ebacba79c8c67da0fde4ce2de966030fff7330292c6e7db52e0e451c0cdce1dd1682610b0dc340890a8900a818318170ab4f957cbef1a0afebc4ebba84db785409e30d423f86419d10fda93915c44531ebd94aff97a7b987624af7f3d75fd051894cd64d6da46b4424b3475b22ab9eec1d8bd1a8015a1076ba55ab58ec69f80acbe200a1e3efd99921c1609a972fcdecb76e9ca53e3283ec581d76862177295d2b565686bf40dec9a38086f8930dd05b08e7efd7cc6577b2ac05f0740e665e68adeaa0e8b8e57ad98d9b5a5371c1079d07a2659eeda9a1ba0f618732c70efd4b0c638db140c6caa1a58a3403fad7f84dc0ced13f4d5821cfbcb694452988c39daf23f601a3db08205fbf8ea16af125704667e22643c633502bd76a393c8a176e92c5beb581c4efe4cc2ed478c50a74272cb715e6992a3161ddf846e27d613102b5eeeb763a329ad68dfb6e3a9c1dbb960d087b6aab4a9e1083885898db0c1cf3498395492dcb6a8f1254d4d533cf22ab21303e03ed4e4605de1ebd408cc2ef1fb0099595d9a6592f4c5e26ff93156ab1242b17b92c9279f132a062dd862bea173cc5890df621d992dce2eca5b7e3ced0c1cd870ff545f70094dbbf49e3d5223c80d79219240deef2b2bce0ad2374524c46321cda93c2e7830d016f8bced60045fddd54335589278eb9d8603cfe74cfe6c09d1e73ef8addccbc69534aa598dbc930081cdf8c4e9a90fd993a577b07744b09ab17fc04a958ab4f61f2487a248ea55f78f4262ebfd683ea4f2588f369bedacf345aab596851ca5a8e60680202a1c1122d0fb7d42bfb3f1c979b87872a5b5573032eddd837bd2aff2e797cd68ef9585086d131d84c4872eeb171beabdafb803362aff3b6e2e968d43e61a1b700e5a51c3c4df1546648df167626eec1fd7e2eb52cb8973679822e1b06e2f267f72f4dce766aadfab9b377aa6bc63722c817c3523c6d20c77d84248ad0ca3c76196d0bb70f2b3b7b496aaa47fffe5ad8dfe2ae1e28e8fc29aab834ae1ba95aa53e30345ce8260ca42cf4a8e3a7989f59ab9d6ee2a30b96b731e144f53ff9e7665b90263d575c5f42a92e5e53a50c612af0a1b3b907d472573eea9091619790b5d3a56efbe253fd76ee36f3f5a2d3c340073c311aee56add7d8cf380b2d1624763e761258708511760b1ddc0e6e8948504fc37092417a57e9a3e8a1c361c1245b14c98f5b84a6f9d5f8876cb9944fd47dfbff3fc032bd15081b9c645a58eaae38b3499e55e22821c8a6c7a587a8b726ac3b38025c2222d71b95d816d76d58a45002f0241da0a2f2c9d150102979418f00138d2c5639d115e898da470ff2f4a1333fbb5146f7758afc220ca6895fa5fdfb98b49e3be5131879b15f48c905307b2dc7ffa2b7b3ceb29282ca0492c50b4c701fef646f74a1429f2e1e275946852ebb33b2da347bb0f1b890d4ce37e1d5b1cb252c61e3c46751a539a9c33a12eee0364d3d229b5b21087036219d5d821ebb05082feba108bce7b05e6143f5553ea2a9404d2a0e6f21bc36ff6779107b5a1499462536bf76f464ac43d7ca3561a92ee13c190378af20f6967444d63afdb94c2bcf6fd32a6370bba33ea3d6deabdcba090ca15eb8b468dbd4de9f86b37fd1ee07e78e18c2a09d819a1a712223f810b9394dfc4a2f5be9f6f316c4f4be62e4efceab5873373c7e7b2a86fc5f4e92f6281e097bddb3276bb952211bc8f871a1907c3ecfeec3e6eb3c7dd58ae0e4eb016d0ed14dd0ca79d6777eb29065befff3f278abf6a4df704af53c24b0e50b85c773339f6daddaca12ac0c5295b8832f7da7e6d2f7151691ac787f4cb56f9ef21e5bcb3820d3711f0fd29b0fe3f1b3286dc7c028fb4b4b74474aa3387acfb906dcc3e9453c7cd3c7156114a50744eb9de4884e46bf3fcd0a05e8fe18445ca91a52c060396c529e1bd6370dcaa23b6f31c2d41f82ffd20b4d1178257114d647c29e7f1fd13e5bb58e50e799ea229989b27f2cc1353dbc4d0f5230b49416aaa3c994482c8df9e69957c2038ca7e68f80bd407108fcbe9e9b99a3c39adbb888567f873004983ab3f7ee364473b1f3a5e38e7774241d493c00704c73c4fe956611e32fda53b5cd25d0ec18b3e3458b12899c11bd9846d399f2fd50f21d56d967c317a443f578d00455726304d69c44da6e5d04d786b0cbb3d7bbdffb44d69995bb87c0b0e7a2343e0c9c2c98aa8be33ebf44f019f48fc66cb884278993ea58bd06e3a39b8fbfcba2ff0a36e9dd7d3d0d94b4435cd3d8a9abe18509a48f22dc509b60bcafbc0110e3ab8e0bbe79c2d67c3e8ecc1de58cab4026f56d7b70b78ddc4e5e2209115ca59b2d2c4591ae471e7268568da3774fccdf64727611460b2e17feb855187d1e6f3c2b6ebb99301c1d27160dee3d9e41b4b96d8dbc6e4764622be139dc21bd21f0373dbc804a37dfb1f3860fbbb30f646b652778a9d9831798c251c0488070c56bf1f0794c2152648548d5f3c137c1e1ce9fd67e6da2ce6467bf1aaa454afb948102e5ece44408d24b87cab80772ff5dec0740c3fd9d8bd2eb837d547512d1028e7eeb4365321c50af92175d183cefa790f824f7c89a7e356cd829c0a20eeb325090e69f0b964c244007bcfae61c4786649b234a0f630e9e5248835c2786ec31868465f421060724eb5f701918a382b316378547f67afb3f22656e5cda874616601c5f36d7f88b64b940f4bc25e2221ca7e11f7476f8ca1916c779452a76e8b3bc909679d38ac64d4009a5e330a35f2c4e3c462147a9a17478b64178ce4e76faa452c533b4ca38e99fd15da41dfba4bcf40b845f24a5cb5cb5f9b6148edb943dc020e3885043b3a5b12274c0ed19c5be71a90152aa00b5691f39127a3bedb5cbd857e79871fa5ab4e3f86c5b2b5e37ba232cac99a07f2fc16a920751e80c0b2a11e3f57718715f7f78cf11f4c899202a4e9eff37c73a20b1b6b17537377bf2bccd61d43dabbbdff947f6644b7e4a45cecc538e3f514edb85178aca1d964ee5ff5378b0a58823be37a7f55e3045ff75eca0caa6d740c9f055b6e112c3a1e0a106ee7de1aa5e66df171c7328a076b06be2d411b0249847b5a1edcfa6fb565e54660726bb8bcc91fe4f925fae15a02e62bd929deb7a6282fcb4701fe9ba51dfc17c77f0b7450d86b3db124acb4832af2581c6c5de3f8fbd3f484a582137d9e0c2fcd9cf1e5043b7f61b510d249359a9a64ed1cdafdac9e95a2824ea9d17ccebea1cc290353700b7da3f7a7535d5a406c95ecce0d532488cd87037f160d92cd3e85ee1b4e0a1b314f770768f495c9f50ab88f841da8f6a85495e9c2c4f084b5919aeb60a9ca5466ef95dc15c93e041e06a1047b862a0b98679ded6d1b230628b99fb28ad56cb26c43e39712edb8e1b33dab8dad6f6151aab04c0c626e0a195881bc68c32d1f3ff7db997e6bf061a9c4c5ed673b6a7a25c6d520177ad69b7ac1d0c8032dbcebb0aa48f3c1688e2e10ab96cf2c85faa07b3437e3fc616c5a246b62587a8f21df4831615afcaa79531b0dccaf0aeed5f042f94dcca3b2eaa02102b2a8a3b07ba8a6571df4bf03b7795bec2baec13a148538aba90a9d7f1a3ae76d46fe39eeb73831b7d3886766130be5f769d6e8588d1ae054f2ed4d3cd4a699a7e3fb2ee9e3e7950342185743375bffdd29f3514eb7af5209ea925309772c1bce304513a1ab69b7c745af7d0353d91b24c1e82bdef2d16e13414b53629343c523c3b2f044024bdcc07ce3401f37e5be0e1bb6b65caa4b8b332df585b551452a68c835a31a9e8faedb3db3f0f55162868dfb8cd8d4db8193b7b706665588343b6581c582e6a1ae320a6a310ddcb2ba148c50a121c460b1ff9e639a6c6d0a6893fe0b8b06b88f5323b717b263524471b91bc92c6424fd95ece736bcc80ed7b371251d3a97e8097bd6afeabe94d53df20c28c0dfe9bfb2c42d21b23cd0b9736cdf40338c202cf3d04e578fa32f9761743cce981f2817a55e6160821b896601b829e20e3055f3ccdef24c91a311faf157d08bff00678ccddce368f8c7bed956b4fa0c0df7904234bbebd16aa0a32653acc6b5321e61ee9e58084c6ac8fe27d4cfa8dac58e122e3262dcecb639f3a6c0ee8332b9b080fd9826d4a9487f62562cc9b3fc9409d10566c67cdaaa345e794a1b3a342057b9c0c3943702702676b5e5d5171827e6ec829f2fe8824d931b30938d53420686410810ad4799a7579f2900b9e2ce2c032cf630121e4281faac5a26eb1bd0a999387619e1fed4042315d25d5ec93ad832ef92443c8dc781b428b96f80783712847601632e41abcf01386b71b8b4dcf1c30da6aa636f761573a55fe7831876105f111bcd6f04863b8c049bf185df9f2612ae4af6ee8fc3ba7ec603b91cc6f691191f2be40ed83f183556fc9a125a8333a3b0e3357433005cb7cb7553b1a125bace32a4c86c6794dc081fbe603a1a0cb36c0d1927d00fdcd4d12e1233bac711b0aee69f4812b6ced90375c74d5995672ee79a64e52d2916c29fc399b12ca7ddf0e55789b5b8cf676dfd3ed5a566ea6a7934f9652a7a5c7db2ee29c98f01fad90052c4df530e432acea0f5af7459b017f4f7ca4353ec6dc37de777d60ebcc7fd84e25fd642bc454b3807b0fe9f5053e3064cb4d705c7bc3b87f5196734e4ebc4c7b007cb13d7f344cee70ab0eeabe6f9fc946b18af9638acdddddeeb258545047e12886d58a901d31182e1afc77b8223011717a16ef1261c399fde480caba1a9cb8b37abe0e3d5c67f838d9db72b41e331280128a7bbbdc2fead0a94efa63b1b621d6263a76395e53d2c703ee133f2d4b2dafb267417c4f7370c9f80329c08b32cdb83b277893091f75e382fcb5c9cd64206a2b37e3b5f4872ebfd661f1ee4956796746740c89521de80791a4eac38b4d480288c45a08a3a08112391826c1b1d89db2398bd32c6c645b115fe9937dbbf671281f6412ffaf963c247b59ef88c69c775f462692896b643df3da4a0c1bb5c0756e7c59cbf96ef7f9780fa1ad985743bbf0d776c3dca2d61fdaaff3d4cfc13abb433a7fafb5a41d8ea189d3d41edec803d9c7cc5f62fe0047d06dea408547107aa09b98076ec83cebedc089be24c2bbd3a8d31826dc52b404e713bff7f000000000000e86daa567ba73dfd1e2f625468a72a6557e9678dc436187c4ca3822cde70c40cc617d9ab59e38c58c2f9a90334c3f5c995799d00833ca89106123c2fc6db257aa1074ceb10bd61f24b91522eef613286c1567b777dc8e7987979a118381879a9db74c9f1d8a9f6cdccf0d2f3830725f0f8ac35664227cf84cc9d79cf8996f44b68cc0e9b9873c349b960498c6e4eb2c909f8fdd3fdd889940e335fba5161dada90923e59550779efd0479fab415fdf9d7d6b2604edbd6d26600544fea9342537f1c8ba7d1b8bc739003725fd656f9386b53d2528e1cd998cf6ee58e2e44b80f06933baadc87b53159d6c05d85467804b75c5c1258a7ebc7c59eec65278711293f83ea84c205ab5a520929bad2ae3863152dcb2783e85582ba804285fe8d3bfd9fb8f95456aa3213e0291a8013e67dd1cb6c8ebea2e3b9253d3441dab1a4c6564babc96d69f6285b53ca7bb07bbfd87065d76cdcc6e9d5b181d8d748457f08ada427f197925885cd63fb49404369a7b210d715a071e49e8d700bec584cd7f2d9a07bda46d72e1a80221d550a6aa0d496cd4985d06fad0a28ea555368b921001310468406fbefb3fa9b3f3c9c750c6c81ba325b41ddacf21c79b09fc742c69eb253d08a52f15114ff0927c22cdd9cccce269b88fff2e318a6070dcf78d10e666d5b5af3788ea2883378482581f58d9aeea18ffe9fe8c061ff3d758c80d2f3c2c1c0a0bb541bc0a79d755de62021285e97ed0c36b094aca59f3f11ca646625e8b812dac1d8a635722966d96f1a99d854f84d02b7099c27182c6465602b0ab48205d93a24bb9a80a432d351f70dae5a77de8d17fe7d625109e2c8b222198c3d878707308cd4874ab9b7a4780e1dc2b8156e1c3a90ddeb03e04a97ac2e17374faa64239e61db3eaaaa1aad1a9c1f948c349c313a4bd28a91a72ae145d051681d087ea7320836dc45bc2ee20f88425edc597c3877fe0bd38a693b822550b01e0ca70a48f6c178cc7d09dedb86dfc807b5259e4d2726ee856e5951c8d0c4bab64ce1735ae78542872f17a43c0ba6865dbc2b06fcdb383346174bd916be43da98032b33e7d57593f0505f5ef3b76040a6d0fd9aa883110a3ff2931dadc9add0c3737bcda478b40879511035a2a17190bb6f6e440bf53d5ff58fce41985c578d6f41e76b8b78ad8381515861f324c2e56172b94952354c7d63765869d1cfc72e84cf83a762679cc0730dbb6bebf27d04c7c4a0acb4c26810ccdcdd7437f70dfcab0eb5b517159ee7881d17c063a22c31fda52165c0a24d14bef7dfe75eeee54dc46ad270380a97b5c8b2ecfaf56d065c01409d6e56141ecf20b1f74e07c957cdb16789fd943a1f90646957dd26db659419c5beb7d16e97436d6afa89dac7df1c9ffa9ec61a176dfe1caffe7b6f1deb2f6b8ad3aeccd0c7e4ef915802099f645fb76dcf4b5d80d234130a01d708535ac8e70494d56633175330e26cd91f838ea3173593416b32e6025b54e19c356ff67b7d803192693d68a6eb81f72743621a429f21dcb9aeff6dcc027db34699bdde5d1afa2088eb8a188643e34095d77fb595e9344489ea1d99683e1b03ddc7c7ffe846e35760b39928317d28acea8db656d32aa07cc38776ab0e464f06344da70197d50ff702c7de1f3b0e90398c25c3dd26e68fbb0a9ff56dd7a5633ab34955ec93a84c395f9836780a16d295b5bd1786828998c794aed2f89619ea69abb615e72a85d6c596383507fa9444b3ff7944e2ace3b439e2463339d5ee0785979476e773a8d486dff065e9e89fc3dadfc14f6f534c74098ae0c517a42aabc04a0191e1c33c00e9f7b35b8cb5ce8c35940c590368c58e0edddc37abe3c04ab1385fef4b86583cd3d06892116b70a4a6aa7cfa1aacc85f038c89ee7fefd603363322e9e8780eca38d994d722b3d35e56da04dd987660362e085e611e08e6a342444d37c05c66d6cefd0d0b17d95ad128a1a76598b35bb2b10bd967a1a1929d5e4f9bff57124288f478b8b4d6909e14809e90a53460d9bc6b727b6551a08c67023ca0e8b94ea99fc90d4fec62c14e0ddd0c73007471632be3abc73506fb17c23e81a82a1c4e473a358c6706f3c572e75ea192c41282293b8becbbc71c8017ac151791a576e052152a0a948357e8ddbdfed47689c4abde8b54ceda982bb29b7ccec04cc79b7093d9e25f9eff94386621e9c803596f932ab60e8e31c2ebf11f16596c6f71fd2d2e8435d03c637b094ebac49c002f0beb80f6f2fdf7d6803e0b6f2015c8582976379c0dc06d51c35f712e053fd29749afe5ce05865a670b45bde5356f2d5fa67f7af50b944b65b44efb437c51c7cbdad791fa282a2fe31d732e4c7d5e100", 0x2000, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000004740)={0x78, 0x0, 0x3, {0x6, 0x2, 0x0, {0x0, 0x0, 0x0, 0x3, 0x7fff, 0x2, 0x8000009, 0x0, 0x4, 0x2000, 0x8000000, 0x0, 0x0, 0x800000, 0x6}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
chown(&(0x7f0000000080)='./file0\x00', r3, r4)
r5 = io_uring_setup(0x6f7, &(0x7f0000000380)={0x0, 0xc81b, 0x100, 0x1, 0x307})
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r5, 0x10, &(0x7f0000000ac0)={0x7, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000540)=""/81, 0x51}, {&(0x7f00000005c0)=""/177, 0xb1}, {0x0}, {&(0x7f0000000700)=""/135, 0x87}, {&(0x7f00000002c0)=""/3, 0x3}, {&(0x7f00000007c0)=""/238, 0xee}, {&(0x7f00000008c0)=""/106, 0x6a}, {&(0x7f0000000940)=""/217, 0xd9}], &(0x7f0000000480)=[0x5, 0x1, 0x9, 0x7], 0x8}, 0x20)
chown(&(0x7f0000000000)='./file0\x00', 0x0, 0xffffffffffffffff)
syz_fuse_handle_req(r1, &(0x7f0000004e40)="bda840bf8564f643960c03ebea2702559c76eb9e5c16c260dbe9cc075196e7ff1c4a46d0a30c3fea4385b225a1c32049d5825decbefcc476714c63a6ed2e8c8a36c4f6ed99dc1655371ceb9f10db8f2e07bc1549d8980c658f23f92c599029749e609556626ac1ca88a458eb61894fa875ddd5b78732e6cd63cd2141828e206195cca5bfa47548e6d08c411d03986c1e89659cdfe9bdb87095d6860f8bf621eb29eaae9dc67afa8fa9f2dce8191f193ac7b446e61b92aa3c5354831d0798ad159a151e2947100855b4d01c78a00956bd132dba259aaab3ddc62839abdf8b0d2a7115af77e9b5b351ebe0487137db4f68e68c42e77bd4517691f7a10ebaeec5207f7d816ebce9e9c10479a76ab4556fe87a7a09667b438df1d3a2a4476d23985c6d45003cc2ab540a3395d0c469a6e94ee59517faef7357f332347f8e0e1a6c259aea2a22ba1dd5a076f5ea4538d3fd708b6d715564fc54a9703e64290408e6daccf90150ed29dae774c8f21978a703e01a14fb9631d1c28e6a00ecf1e02e81e6123335542ffe05bf242247a8ff017652e0bdf9197e0f3d893001c45e9d3c4a85fe16f00cc5c107ffcdc702a5161c1c8449ec095ebacdf4ff0f7447c39c90cbd2d29e9f4464ce0dd94d594f558aa5a2e9684b2ae76302f1c4b67043fb5a9763e9b5cca8a4e8ba1d71d78e7629bd0e630abe26c514712d893ec23829015698d069c7840e397ea28204b670f14eebc600e1ee2aa7ca595a792ea6b6d088b27e0dc88eed56dfd536e5ad11802ee7d3be2f04b202bb098c8dbf35948e785a84543d21844f98d9bed83785204de6781fa3a684e271779121f59bb5b925dcf5ff2df9ba19cc2cf6b95a3febb5742a4f51075d8350b7985d67b089b5d041d043b060a7202b60e49fa370bb05131c268eb5007757696f20f350f375770b87c835d78b8cac16d7aa93f6956575a61ca1d43a2d6a5242145fc9a5d2279623c7f45b353f91bae4df426bc97b987da3685fa94deb3940b0a85526764b9b71a66e9ad2e4ab0638b50d0bce5dace9c151f88e4794c7b6ed4f52ac9262a12ab3485d9e0220dff98df56cc38c8f6cbc33309e20432170d3971d0e6b2acc28dfd6583a8df8e798dc9bf60c54efda61af2efec32f7092093b21f64812f0898914abd64b2c0e73e0e9a11a617aa4bf40dfaa16dc00b036d4bc23aec73714ae104ec87cc15ba166e4c3250163df347b0ab7a02e6090914b6f1573342233a73a474c128d5abb9772ea63cbc950f45a08bbbabc4aa00639e999ae8cb5425ad413fa64ee3a93ab34a9212612419392da112694eb6cf5cd0109d4fb171a882d0f8f4b3ed6b40b46a6dc2107374b43644df27fb99b5e16e06c033920abcee076733d8b0a027e8f5940d8ced24b73e5fc84257b0ac093ee1799d45afde7f5af2789de9b361ac315562b83de4cb4033f5f725469a1f77a4a03b51e3c63427affca7d59836bcca77862bdd4ec42a535bc52d0f8d9022c2fa88f189d898145e720f4b8f1cc26669e42be8908f5f3f1ed9eedfbaba6faeb3a4c75ea1cd6eba7c8df76ecd1487fa1e240de5749063d84a8bc00b6b6311505386e10466867c5b250a92e398ef4395d57fee9430f5937a3618b0208de1ff55d93bc428e56a2ee15ce845a80e8c8f14e4bc3fa8b8d27bb32dc4e1c19ac4a7f853b200bcad84fa50883b825b3d0acdb4d1049ebcd2e028f15e3467fe76acf36f44ade5a97ad3aa457eee4a1ccfd7c348add2e5991ccaa594b0bb38019e4f9901d1ea51e0f414f253cba93d94d789af215485b24ee25600714bea0421e1e4410dd3664ea9158ee318fc8630804457b00c4bf6ea639f5aff74822bc6b93f9f1000f340721afa90d2cf34e8be3c91b944ba89aca7b73c3a4c23653f2ef5264db8e775f2d8a5250bee342439a31509dd55a4249d94e95c91564e0138b6c05598e7caf400383ffc71c9e5b9214e7cdde95076e3fc666f7de4402bcbfa498089a3e233820866f7b4c4b7a2dec747c8b92f3cbcba9c0cab56f3f440877482919c1c772072b4c73315f4a4b69f91463ca29fb12fc4696c172ae9c74a66c63eda0be874d0aaea1da363c4375c43816eeb92fb6e1c44e0676cd8110056da8e23faa87b7397f2ae368432a7b370f8e6687931448e7cab1c9dac730676267cf4d6eea730d855f0b165c2dc32177219decb0d1695d1ac5e87c0ac7b260257dd22db1fb84fe175fdaa0dba972155ac5289830a81f03f37e9f8e47f97e7b59a0d84a1008442554de97b1634fcdc18bb8e57a7cceed9bf5518db5580e319d73e782a20d85ba3ecdd48c4d8e6dd22c58dee0de08c589c55a2428a2c158ec09c2d317e5e4e0a7e0c23616cedf03805f8ae9ddb45c8ad5c0a5c27bdf1078713f3c68ccda6f27328cde05181eaae78c5ae60ce8ee35fa62406955470aa3bd379dcef326faca19fc3f004b6a56dc2ad9744ec54f9a9c7c95f8e5a40997e4ea9074e7d74f3a1fccd9241475819195cc6f7026d3f10363277279068543256ef66ae5ad135daa7f33dd93cd22ebbd94b216d570e520f5003e974f5a96a8f6e38b2f52365b671cd31ba0a05164a34314b70156b8136174f9ae78b989f48d3431a754cc606679a8b114a1af211223bd9d8849a3b81434b29789a2373b9c39bba089afd4d54a5828999a12fe782cb67747b1fc622c3c4b8ba75201ba028c433386831cca747a9b4b7202b789d48f2b49516a6619fd105ffaaeff74f2895c009242a2a84396dddccd06c165633804ef0532613755828003fd2a0cfc8ccf28df67b473fcf13bfa9755f38e88def0a959cb096ad9d5f861080dc7a8af03ad3f12d04dbb6fdc300d69e8a337bab830062b791330350aa1d34bcbc6b1bfa4f0bd354c46040bb3799d1c1a1c25efe58131d1b656ce40b64fa627c075a92ef09014b9ac2f434e8b7cdc480d96bfc6e45a0837832d1fcfa5176e7155d602d18264a06b1a1096c806c360f6a01e8166b138b4d7f6785b228bdbeecc003cc65d8979d2dcfd84cdf0ab0b8861a29c0b96289646b296e863aa27f6733609f903f82dc361a9c13ef91121dfff6afc872b511819dd2c1edcf99977909d13cbf39105ab08731d7343cfe6bfb9d55a6f03f325c8d0210e64e1106434fb7c58589bf35c5bb5c5ba481364feaa3c05221083e44bca615c756dd487a055d01bd8a01b7d53e303184b1a24f6749ca91047eced6f89713ac30ef1d4ce1bf9c50dc1c57278f8607babe63bf2847072726eadbbf2f83e9eaa09dce033d35ff2bf628c51157f65583bc83b74748e6b0faa75a1f1da71e82f3cfb6b95d709b79c50cc76e4892bb7ac89649f1b6dbd93b67c67a89122b027e6f7e63100e77f06eedab5635ac891fb6c367bda46ece341d09f39994c3419592bab648f70b09ba360912b7d62e1335bf0bf3f3c962118b6e0825d900a249aa3499267a4bd793f4fc935417364aaffe4da0ca7125dc630c5f9dd0945c5e0954026be2c30bbfc8c739ed3ed87f2f8a62a60650adcaeed91e53a7e54a4f1f3aef2d5886c3d01f910c72be78790c962849e4d57a48ffcf1f15115d06b664aa2d20627722e629d848a0f71ac090bf6ec626113ce3b5550947d12b2d6a2dbc786d8db30646ab1199d29d9f3f2756bd8c8ef850dc78970905430c49aec57b780df9e5e5602949445df4d646471b283689a8a75956f4eccb95146e6e8aabab4191c44e4e8b2b4ddb34ca3c8358ac8326e42e25517a42d327705f233808cf6d0807fb7767c9e083231142c999077c7fa0ef5620aea3f6411bfb4fe261f3dd9381321a818b5f9f6c26ab5f0bdcd4ef3b3660df61c08e9fd82b4544246132a2ce192e610b01d8ee49d8ab9e9bca0e8aa09818b3d1ebaf99a2ab589ed387f26359024fd8fcec1a618a1c51298b8dbadb55d9ef4ebdbb536312e7bfa0b32a62a518317f5b39cb82b83c26cf58a68e1b2e3375adca77d0f9b90a2a56d6a49c94707780ee9122b3234dd9f3761f8b10d2e2efa76bbe33491f61fb2c57d9cd416f81586efbc13bae66a3df74417f48694b6c4f7d2fd3381616f4eaeb83c54e90e75b99e70d724fcaf597d3fa0886c3fabf66b80279114a45f9399f0d037bd163aa3378425678081ff21800e664a64e5f3e21847e6ffe510b145da7da6bf803c430518b9d480de9246e5abfae8c96b9b77ecb4bec23fd954a21999122f2749a73a34f784d61734dc14ee1afe69345b3120c98e86a923e17de799692a8a6dfab95bd981f63d9be569ca1f890bdb502c4ec9aaa3977258587f8e00e3afc3ddc8783a393dbf813898346d1ddbefa7bb4ad567e79eb52e17da8ea85f3de1889dba8445eaf8a817f01dce3b3ccb4b9f32e1081db7cff971b51472903c118c8dc846323061d320ed25adb8bdfd3320acd544c7bc9d88dfe8735b61118afa39e835690a56001c0f99a4045af490d1eb33434cc6961780af8bd23937cbeaafced31e9a1e154ed13307006d4409ca45b28ef911b009b00f104c15ed8e4888911162960fffd14a999827845e3b1346d9205cf424e5aef58980535ff5730194b1654b2eaf544531a0cdda0724c10757f74c5fd3ef7e31036766c7b96c4c80422192035c68dbbe179a0e06619a5d1befcc9a3fb6068a3023d490eba0a5cfa92f3148bfda774c8ba3e3b7b81a700e7984c24d64b49b96c72eeda4cd7754a11e6b9f9044ea015eff94c9309b3ec8f71d8dfdc79b71595b6df0f47a34550fd7c8d66781d48c6a602f5348f3f60084d519a9ddd69e258021e0e5bf7215d90163efef2bae1bb807ebf20d21a0d49c0f138c954d662e739e4abc3a3777ec412213f6843377599e8d150d9d908f989dfd6b6ca88ae62fcccfa84d444848efea34fe3b297d0a2f2ace28a81e37fecc60cfd4f8867fd629571da3b596416c965b06bfaa61f5925cb1de325a6793f958785ba5cd7fd452edb76e5b4bb1b1c85feeac8455a048c7841cea2a2269878dce473a6b6d015087dd68415bbed75f800eeb724ca2f56c725ac0f3499048dca911ca32ecb5542a19112b75ee393f61a5f7916f13281297f275ae5bd5cbbeb2c3bb01546990396908c59f1b22278d1a73547dbbaf9186b88735952bb535efe6311519bedaf751e142d101da340ad2eaba4b4f8012d6fd58a1b4669eba5a1da541aaad0d6f80cbded36a668d6fd390c350b8ae2bb873ca76d504e9f7e435b4e34f6809105e50c2d0d2a93aa7aacddd960144ac0f8ea87d3418af75ffff092164366e9ca3f2fc6e4929e074f18ac631fd1f7127c1e05ef3bf680c936173a3d2a6db119ab6fb4f7c4d28d5a877744adb161ecc92af27907c4ea87088d684a91ce4b9c8cd33b64e9a53d6c196cdf3db3179d3a3bbd683f4ff13b21eec6713a5587087056c2785927c15c9677ea5a13f19c93008073d348066b97548c07fbb20da0d3cad1b53766a1f5ef7c6652d8dd832257a7c284ed5abb1cb6d642d7bda39c19c21d4efdad79f5d20f73e3b205bd8097fd2d2bbe967092899a11c484e66d7ed8aa3d4bc5dfa97994bbd554ffc65e847c172b9ff4e2cda205b22bd6cc48d039cc15f8f80a64845719111475d4464d4292e17a477e1d934b743a55e149bd6fd15d08d02c88229388653d23d2f97dfe5c993790f6f0092e1271d65e1e760e498e7d2d2bc813b4e75ac59eedbaadd1daedb49921d33aeac7f82f3a6c762bd8511da6aafbbcafd1ccf1a637e74403023c9f165d4a3fdcc6fdfcca5830190be761112304633728fce0974d53c0a3b901ca9e7c406e20c2bd2e6870e717b45b1ff09d21322a864ad0ab354b9a72db71bcb6cd2a26d2b59a0a817b2e7e214b0904ff65fc0f3c1b794bbd6fb39a9d5a58839b19842aa0c473b7ccc0cd07ab73285b1a4b4b2919c05a79ebc3342abcc923787a63993813443cf850c2e8cc06bb024c7249b0b7d740d69de65442821c2d98eeb1b1e1016dc4a2f37cefdf8c7a773137953bb5b44316351d82a16f914a63949a5a9e8cf1bdc83da582691270739dceaf2fd8b0a3e271ddf815ebffb87cb6f5633745c388a81e739ae18ec825dd7d38e13d2912ab19b2e92fe6e50559de16e0d8b62a8dcaf5ccb59a599043212f474403a442d28d37146efc8dd28f685f7f21b84a80f32a26df553eec1c9dde2cf6baf34ee50c3d5a098077b4e33b0e41af2b9fbdb1ff1e0b4588b3d8702fd2a2f033bc4e7518b6b3a5f0fef436a89a978e1a36c81703363af973b89baeaae57963cb82e91211f481633cccdf9e2d537f95dd4c4ca6de5ba99da39280575a98b6b4c4d5761b376419d88ba3aa56a255226993dfdfa491588a5c2e2149031b18d4e3db3c8adb73fe505b722ce94eff53702c8ceec83d38d2e001aca5b00c4b7165df59f2093338ba3d83a7d71f2714e7c563642d339befdc33e7649b9a1bae2b8f48ffc5ad036bcc70a282f7f20aafec9bb1b38633d00a9ce297c07c6b6b1f5b3b17c440ba03335df78def5922bedd770428b532503d8a7374371d9d0effb8ed76d57d7b46c7ae1ef23a943c99a1bb7b98cad895d0f38e2e1094e4487fe42da7747d778cbd646ceadabb2745b57ea80726a5f2704b64d252e6806ceeebbe8ee8a393657b57eb2b667d63e6644fd9027b89227596216562702544206b3550753507dab5ddd97de908d1f46e5ed7dbe1dd7428717ba2a0420a19a3d30d1ed8c4d3a03b6e8345cbb3dd73f3a7eb910c9db8633d7776461f0614c2c4034eedb656aad69887973a035652a33a8b8868f426f84a8957c455a27b5c0e7a8c089a07e32ba2c7bfe676f453c71d0a755affecadba592827b1778e04c99123a5ffe7d1871a63ccf958c1e9945da317b5532ddb0c69bedfa22edf36f4f126253371c2352f4114c2d7d50b00d16cf5522f23890ea835947c38b4b10a40563d75d585bb61d798f8c1bc15bef39ea7e109b4db2d753dfbbe55463db73b2f52a7905570d6089fd75e6ab996b32de20967557ceac17b16de57d55bbffc4b154245c2a2d280edb72f724425b48b2da2cc89a5cbe54e706ec6d4337a638fd89bf44e6aa836cf07ae94cdb7e4cff0cb56f5b00aa2c733c7635c51ba6236aa4901fec6f7ac339a3bf2071c3ec0608868138787ff90e2dd0b09c640a3e4d44e186f0fe046dd0bdfc39cedbd1f6eddef9d0695248a1e265f4c6d059536a78f9b184cde234b3bbe5e0af572ae2464b29cfb8c552503409f4ed7250736e0bbb185fabc745f4fcd655f695c624918c1bb6207e13274de0c5298e71ce4b478f00b70faed154459fdc94f273a377e9431e5b82cd6b108b06dc7805b4e634abc57eff5c980813fb18620364cc0791382a60030ea9916d096f9783fa37f940003ad09d44da1664084f28bea7a689da3d5409277aa6a077cda0f3c844c694ffa4ad9f6b8095bc3517dee3bd97c17d3345bc027c7ecc376af65a06da5770ec54ac0282024c32e4d761cf99e85c2a016ffc735ba11c5bf7f52bd6bfc1c9ca77b3981d4e1d5fae838dbb85ac64352401190f671be52271130f44e95b4e7c1a101062e9b017e2197104907873cff24100d3103c9ed5b4ee5c0d1cb26cccaebb368a015aabac193104f2928422e459581fbafce77e5c4dc5d6fbedad83669865196eb90ed276ded53ffbcf0d6a65a7c12cfbc745f66ffc4c20a2fb9a4eda5ecd1836f9655b963ccf667d4aeb055991765a230340519d98a1733a8e504a3fb32a68f48c5a1754735dbcf4c0418bbad6ef48466d7e8b81aa5aa96c86fb87b8a92affd09ec8a01acc7f0977d426fca9e5bd55201a66098ea56a13ccd16491bb10767d6388a897762f74f7b16f4e68666454e6d3ff466eb5e16dc95a2f307bb199c9107ec4b8732053717f541f59ffce9c3cc19cf5f46501f78b761de97ada936a21924550b5a0196ee1b6fabac8564bc96667ec8eafe8bccd517572aebdecb04628071c7a33a74366d3dbcc88e0eb108bcf2dfa770862312e52a984eba1b1f395f6bc2af84a2b5fe23ec3da68be6b80a06641eb64a6eccb464728879cb1735f2c781a7f66403ea7f4ca2f5455b7802f8ab6f7fb7c458e2a4f0221b6b153e0f3cce1eac92fbf59b14960e7673665a640d5794ef981a81138d386850ad5856a192ca43b90d56e369b2f7caeef0b6290792c4da1d614bd2422e7378f957eb19e015eccf200e599656627ad7e0fe53367f5871808b58de8aca620c1e2002006d1639e5e94e60dcfe3b28ff8d1d1aa58ef235723a44dd3cedfedc6f3e84df513214394303b664a9560e596b4c18dfccd377155e854d80253321ee5a64cac55c0a2adbcb6ba13ef11b235efb229d64247a548db4798048fd6d5c39e5ec906a248a1b5db0383c617c625c2dfb1e0650a9805e6189710cb91142f4ed1f54d08c4c30de89ab077a4d415bdcee5b84bb80010090000004c2abc0515f39551d74b06c2832eebc141f95527f2a85b53f4b33ad438394beb9ce7b0ae1ba6761f5bd415bacc3ea6efe80807541ef00e128154183feb12da58a002d5cbdd33e74f1eaa8a5a3dee4744839b4e705460f24db5da80840b2f78b9f0f6413737fe079ae70d5f2f731b20f00d9410a53c1f04dcb6a342abc1a753e7a4016598508e0d396557cd3110984e56f4431673e8ab6dd06bbd73f1bd0601ea5156cd5323054faa8192f28d8848e8d24cdd819ac96193dc57bbfbbd270701a289b9595dc694a2b80c5807bdf83f12ecc65dbc02f628351eb3e95fa1163ef19d9f78bb7cc71d4d56cfc9dfe42c6f08abdc6081312d9d3087f007d01a0ed64e019d0553bcd28a205a2afa75ecc1c88fa949c75e63487cc6701d5f2cf2d30ffe18bcb801b85820fb05d7e055ecc8cd3007159531dc0efde53afac493803a6ca5e7da4daef420643737991e068b9f178bf4d806421473d2fd16a373620a89c8a53f40ffe0dd9aa3621304662d6077d81163821fb59ae8805eef021e72057048956fea8e3c22de0fa689e68b29adc4ee4c8e777a6f9b33800abc2871ba5dab3de5ef4008003a96cfe3fd66ea6f11f31bd3f4ea37f032ba4bb3ceb966c65a831060f188d9c52d40e92375dd77c2cd21c665968997893c10568d748ab6b0f6e14f62b7399a2b9cf0bd1c1d6ba8fc81e5ab6e2d04ea0d1b625ed10ee4cb96165681585c83dfb4b35013447c3445c873c7cb8c08158c1605f2c13c49316d421b359c1027add89d3327e7da9077c0a7cda7ae1281ded37e277a38d1db6ae1785ad2e16440d3a7a9602bdff33242be87a068d51d1c8bae626bc3051c83ef9a2f88f24044d81f940c58070824d462aa36e6397489e6399526d286f6f657c73e3b669ac3c4ad4a33ced0415ea0b9c417d83f4417387d77f2e25b12ec2128ddfecb14c09f46ed914d464dce1bcf2866b3cbf84cf381698b8f78549b881d98d7e66e7b416cd5c3ea2b6e2730c1e59adb19963a75a3006d85997f024c44c6d9181f23847575ad0a98ee2fdacb1d8ff2cc57e8c18e2fa656fb500d13485e8e88dbde9aba88e695c084d13e3121b10852a1d6591f5e3f54a43a04797d15e4ef9b382f02ef7ac96d16c26eeadd99957949a1382a3b5a4888d6846adb945c5c058d79d762be0c994cb2fa9a504544c88fa1a44ac6a5cada8c41a154d9d7fe5b66e33a13d89677b7d6ba22df6b34f6e360477d6587f05081e98e9f7ef755d4ce7941348e9d09f5378d459e3a4e7ff381fbcd371c2b0333cacbda427c10dccd26989a7d579713abeaff12cb25e603bf4a23bb47e48a6a2c4b931ff4d361b920cc32739cc9bd55c0f132c1686c6c13f8fe9c21ff0547e65352cf57e3a0c656a88fb1e7b94d1f07830a13ebfcc2bb5d11f3cead6541cce872c1032584088a635ad5d9b86387b494fe741fe75ffb8ba4e32b5bf4724bf08dd65bdb80f77404f87cd480c1b96830dc2fbf30dc7dff32ba673859cd13fafc24b5df5ff6ad4cabfa3327090300522f0c8bbdffc270af06cc5178797036765847697ac6509c07b5b2a315d7736c3b611c2622370f2055072aea42d79a280286a06103c0ec4739e55ef6332c92b4bf80bc8d60a897673cb11e3caf5ef102dc5c44b808b86c191d61c9b8c55c66afb076fde4980b9e81ecdc3bbbc058db5805f800e8c8078bc12e91a908dccd1355766c7dab7124b3b4002c69c244a1941dd2aff6c949d76b578f3ff209ee5563603a6be2a917001a8bb17107b5484875ff918d631ebb888adddf1dcd4a331bacac30568c87b9af9472ca55597f29fd406b2e7f008780ddaa76d850262d00c333dbe1c631f9ab1fc5ac669c35ba626e5bda4fa2a57f302db675fd017fff2e1271ed377f719963e9f8e5dd267618c319d65ae913bd3b3113fa137ec34f2ae000554fd030e02efe3a4b21da39d664ac687949c55ac05c7bc6711499d31d0ed9de0fca2af20169cf1a825b31167ef36f7dcecadffadb0416372d0142d00d7a413dd7c8649a68de04bab2066963a692476601b1755540d871d9acf25bc3db9621a392ef309c6fb7bf83296a2d63878d69244b79dc67bdfe94ffc331ac5500373c86d523bbdca52d578f76a6a60f327405bc8d7f8b3e9fac74f143979b8d3f2d4ee2c6cd97a5384e1ece53b0c4e2dd176dee6290379b83d81bd8a368d4847625b19d9a0929833ff2ba424617e3eb4924c921c23822c71984c903026672bd45c46b4a28a8f95626b0921b2a79315a1372cddb77b3b91ff1339d886e006f41814cf27b7c5d0f7e12325b1973f69e23a67a86d473a0405d063b097f32bf25d2b6aae46d21e179a28a808c58447146533b5667a7f20ac64fa8e0c9c5c7cf072c4aa5fd737e21f9ec859804d9a8dd080f2286f4b2734d20ac04e3a55457babc1b06bb69bad33d12917c621081f902fa85ad1e6ebccb9576d1fd7377abca634f8b59bbbafbd80af999f51da72b6600e3ca92b0952d88b2800095ade6c3a893086fc7f7d16b6b3df6892337b813732f74d649ff862a3acbc5978d0155a98f81416eebbae58144d9fdb446f4fcce8ca4943d46bac646bb6db81f4d89ca269ad556d6f4377a2d82fda404703184e48eb4d779728d0de049ba365d75e1381df90a96fea5478d7987a80946a6abe232fb3856c8c0ab4a32e7abdc1006920f068f4b47c550a63eb9af54677157b25acf2b985c5a8c18193f4871841f22baad43ce4173c6526968d994298a38e80bcac1aaa5f67e440dbfd3ce6735b727b7acfeec27a0573a02874a02437e00da031ef07631f49380b324e3049998d2eef729829593d5189487fc7e86f687773bcd8dfa06fc7ace7fc83889c6b805d59e0b55d52da9d0f145d4ed6cf5ec4de9de996899ca12f7ae010f5ed31ce093376194106406cef24f6d6ba319196b67344f4c857e14bde4c9fb55de30fa2140bab3daf4c00038f9957582419c6a76495e4da41940cd40e4894af9f408ac0d3b44b1e522c77b294216a7c170d3ade05f6eab93b08ccdbdec74161335f009bf438c1fc183869ad0bdccee7248e43c102f1c02c0d4551d733690ea1ac801f2d21c81f621b55d359d55a11ff76242e842c8aacfb5d6d8bcff9c87382045e08d4e487b6c869438c21ae677ca36893c30dde547ea83d11ff58b4a46d2c1d7faeb42", 0x2000, &(0x7f0000006e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

5.242018118s ago: executing program 2 (id=3897):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r3, 0x4068aea3, &(0x7f0000000380))
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x10, r4, 0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x1})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01080000000000000000020000000900020073797a310000000008000000080003400000000a140000001100010000000000000000000000000a00"/100], 0x64}}, 0x0)
openat$ocfs2_control(0xffffffffffffff9c, 0x0, 0x80, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[], 0x74}, 0x1, 0x0, 0x0, 0x4}, 0x0)
syz_usb_connect(0x0, 0x34, &(0x7f0000000100)=ANY=[@ANYBLOB="12010000892e79106d042107259c0102030109022200010000000009040000000e0100000824020101020000087d31d01e930b"], 0x0)
ioctl$KVM_SET_PIT2(r2, 0xaea2, &(0x7f0000000040)={[{0x2, 0x81, 0x0, 0x3, 0x0, 0xc5, 0x70, 0x0, 0x7, 0xc, 0xda, 0xf8, 0x800}, {0x0, 0xf3f, 0x2, 0x7d, 0xa, 0x7, 0x2, 0x4, 0x0, 0x7, 0xd, 0x41, 0x6}, {0x4, 0x9, 0x13, 0xfc, 0x5, 0x7, 0x1, 0x10, 0x2, 0xf4, 0x55, 0xe, 0xffffffffffffffb5}]})
r6 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r8=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="90000000", @ANYRES16=r7, @ANYBLOB="050000000000000000004400000008000300", @ANYRES32=r8, @ANYBLOB="080026008509000005002400160000000a001800030303030303000008009f0005000000080027851600000008009f0001000000080026008516000008009f00060000000800a0"], 0x90}}, 0x40840)

4.469912372s ago: executing program 1 (id=3898):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r1, 0x9e235000)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
openat(0xffffffffffffff9c, 0x0, 0x40, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
io_setup(0x0, &(0x7f00000030c0))
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c831, 0xffffffffffffffff, 0x64000000)

4.232723772s ago: executing program 0 (id=3899):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = syz_clone(0xa9000000, &(0x7f0000003b80)="cf51b33114a48f", 0x7, &(0x7f0000003c80), 0x0, 0x0)
migrate_pages(r1, 0x6, 0x0, &(0x7f00000050c0)=0x1)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001"], 0xcc}}, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000007, 0x401d031, 0xffffffffffffffff, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$bt_hci(r2, 0x84, 0xd, &(0x7f0000003140)=""/4111, &(0x7f0000000000)=0x4)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r3, &(0x7f0000000440)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
listen(r3, 0x4)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r3, 0x84, 0x71, &(0x7f0000000140), 0x8)
sendto$inet6(r4, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
syz_emit_ethernet(0x3a, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x3, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x10, 0x4e26, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0xc2, 0x200, 0x0, 0x0, {[@mss={0x2, 0x4, 0xa005}]}}}}}}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ_RESET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)={0x14, 0x15, 0xa, 0x5, 0x0, 0x0, {0x3, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

3.808191222s ago: executing program 0 (id=3900):
openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000040)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
r4 = socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r4, 0x84, 0xc, &(0x7f0000000240)=@assoc_value={<r5=>0x0}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000006c0)={r5, 0x10001, 0x20}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x1, &(0x7f00000005c0)=@raw=[@generic={0x5, 0x4, 0xc, 0x10, 0xfff}], &(0x7f0000000080)='GPL\x00', 0x8, 0xff7, &(0x7f0000001e00)=""/4087, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
connect$vsock_stream(r3, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
socket$alg(0x26, 0x5, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x1ff}, 0x0, 0x0)
pselect6(0x40, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x0)

0s ago: executing program 0 (id=3901):
socket$inet6(0xa, 0x80001, 0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd1, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ipvlan0\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="44000000100003050000", @ANYRES32=0x0, @ANYBLOB="2d8e261000000000140012800b0001006970766c616e00000c00028008000500", @ANYRES32=r3], 0x44}}, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000580)=[{&(0x7f0000000380)=""/160, 0xa0}, {&(0x7f00000004c0)=""/161, 0xa1}], 0x2, 0x0, 0x6)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="640000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c00028005000100000000000800074000000001"], 0x64}}, 0x0)
syz_usb_connect(0x3, 0x3e0, &(0x7f0000000c80)={{0x12, 0x1, 0x110, 0xff, 0x2d, 0x5a, 0x10, 0x12d1, 0x25ff, 0xd5d0, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3ce, 0x2, 0x2, 0x3, 0xe0, 0x4a, [{{0x9, 0x4, 0xa0, 0x9, 0x10, 0xff, 0x4, 0x1, 0x8, [@uac_as={[@as_header={0x7, 0x24, 0x1, 0xeb, 0x0, 0x2}]}], [{{0x9, 0x5, 0x4, 0x10, 0x8, 0x7f, 0x1e, 0x40}}, {{0x9, 0x5, 0x80, 0x0, 0x10, 0xd, 0x80, 0xb}}, {{0x9, 0x5, 0xa, 0x10, 0x20, 0xe, 0x7d, 0x5}}, {{0x9, 0x5, 0x5, 0x10, 0x10, 0x26, 0x4, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x1, 0x12c9}]}}, {{0x9, 0x5, 0x8, 0x8, 0x0, 0x80, 0x1, 0x3}}, {{0x9, 0x5, 0x2, 0x3, 0x7b107eff2f008d04, 0x2f, 0xc, 0x8, [@generic={0xd, 0xb, "9d4874e6d4d08b60eeaa4d"}, @generic={0x38, 0x3, "58422ac675216869caa9919684f8a0565b8b2499de40dd1c1ba9f8c52ba9638813648878b21ed9b03fe1108f857613e9842409e09625"}]}}, {{0x9, 0x5, 0xf, 0x0, 0x20, 0x1, 0x2, 0x0, [@generic={0x27, 0x6, "1415c2bd9bfd53880d3596a3a037eb9e8754871ed7956c3aeb4d89c3bc5d23ab54fdfc1beb"}, @generic={0x52, 0xe, "61db2a1e5caf8a02fdde3bcefec3762b4fb845b0520f756b3f5edf04c955940566ff43d54219e463c18b9549cec6e825609feb831100518069037a63d613d1400c2ac47f57fd91035f113fdde56736ff"}]}}, {{0x9, 0x5, 0xf, 0x10, 0x400, 0x5, 0xa, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x8, 0xdb0}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x2, 0x8}]}}, {{0x9, 0x5, 0x2, 0x3, 0x20, 0x10, 0x2, 0xd3}}, {{0x9, 0x5, 0xc, 0x0, 0x40, 0x1, 0x80, 0x5, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0xe, 0x8000}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x8c, 0x6}]}}, {{0x9, 0x5, 0x9, 0x0, 0x200, 0x3, 0xa7, 0x5, [@generic={0x4e, 0x21, "4c6e32a1787f7a78a0d4acf136aae60498556cc32eca36c2545e1a69456278e2743408c7198412740d7f21cbf9f684b89676ea60544887775a1d586c349a7b73195032bd840f0d3a4f399fe9"}, @generic={0xa9, 0x0, "304de3710072e421c01def66e0195a9d293e4427d9b1629a1f507d4e3a2327f79c86c18a77562c5d22a85771e080c8c8813f9e6db467f3a0d075712f9c1956b0563bb5b4b0c256fcc73c39e02d39ffe3242ee115c6b5f01bb486d3b668539c3c5da090c57f9accdbf1dda37f5749d143a1dd0cfdb494c210ebc114bd51832e2f9ff7554137b46a48a1adb297b13151f7223c4907b1c5e54cadc634cb5c28b350a2625a2e821241"}]}}, {{0x9, 0x5, 0x80, 0x10, 0xe8e1fc25297c2c57, 0x9, 0x9, 0x7}}, {{0x9, 0x5, 0xc, 0x0, 0x40, 0x2, 0xe, 0x8, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0xe2, 0x8}]}}, {{0x9, 0x5, 0x3, 0x1, 0x200, 0xb, 0x81, 0x6}}, {{0x9, 0x5, 0x8, 0x0, 0x200, 0x94, 0x5, 0x8, [@generic={0xb8, 0x6, "7721c72ce77fcf9a3906696d10c898255f9fd6faecf87cad48221b334d20726dbee17c84f9ede40d181efde04b20bf6583362964b3565c26f279e221025e899be48db24e5320324720c484a39ce8e14fa897dc64d78e10fe5b3ab8f338678124284c0eda496a4e4e206fab08ada20f4d7fefbf262072bd18382d12b5a26dd293f43a752d2533e0ab751431c4896c740c71682fa3f9331c968a942b6bbfc46ca0ba7c7c2d7b6000fbd65bb344b673b1099171b76ffac9"}]}}, {{0x9, 0x5, 0x2, 0x8, 0x10, 0x7, 0xf, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x3, 0x1317}]}}]}}, {{0x9, 0x4, 0x2, 0x8, 0x1, 0x43, 0x1f, 0x7f, 0x2, [@cdc_ecm={{0xa, 0x24, 0x6, 0x0, 0x0, "3927f220d6"}, {0x5, 0x24, 0x0, 0xff}, {0xd, 0x24, 0xf, 0x1, 0xa2, 0x2, 0x200, 0x2a}}], [{{0x9, 0x5, 0x8, 0x8, 0x40, 0xfe, 0x1, 0x9, [@generic={0x55, 0x83961bb6bbf50c93, "3422c100fc200a031d29df1212314ccd7eef8dbd2476efdd1e7ea3c525534aef937e2d810c609c46063d230c1b8f050bd6b2b01e4e71524a01ce8337123378fc4b26efb7d91c02d05b818570e7d0d5f2685d6a"}, @generic={0x4, 0x22, "9326"}]}}]}}]}}]}}, &(0x7f0000000a00)={0xa, &(0x7f0000000840)={0xa, 0x6, 0x201, 0x5, 0x3b, 0xa, 0x10, 0x3}, 0x17, &(0x7f0000000a40)={0x5, 0xf, 0x17, 0x2, [@wireless={0xb, 0x10, 0x1, 0x2, 0x40, 0x1c, 0x1, 0xfffe, 0x5}, @ext_cap={0x7, 0x10, 0x2, 0x2, 0x9, 0x4, 0x9}]}, 0x3, [{0x8a, &(0x7f00000008c0)=@string={0x8a, 0x3, "43554951b4724d703fde141c5ad624f7a90d38f836b1a64be4dff9a828ebfc67ff579c56fdcd8997958d11cf03d0fa111e7e7303ecacee015c53f7b2d6caa1abe62b7fc8b5e0da7dad6d8a4225246d19dd67942e6032a1f7d62c919d0aa366ae033ff161de5d815ca435eb0014009a11732b7003b790a436cf5f1f252ac0da81eefb02a0cd9cc8a3"}}, {0x66, &(0x7f0000000a80)=@string={0x66, 0x3, "c102c7d1ff889f72eea5b611d92bc7caa7c33f8d723542c50eebfee9784973ae0facd58c4f8e58857020ab52c7ac68e37ac3cf19d4b813c4f4a1487763ada49427da5ab260a36b16a0d9559e3501acb6c6921c6d07f79e67ef870a52f319f00952e1e158"}}, {0x4, &(0x7f00000009c0)=@lang_id={0x4, 0x3, 0x240a}}]})
socket$can_bcm(0x1d, 0x2, 0x2)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[@ANYBLOB="580000000102010800000000000000000a000000440002802c00018014000300fe8000000000000000000000000000bb14000400fc010000000000000008000000000000100002800500010006000000040003"], 0x58}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = getpgid(0xffffffffffffffff)
syz_open_procfs$namespace(r6, &(0x7f00000000c0)='ns/pid\x00')
sendmsg$inet(r5, &(0x7f0000000600)={&(0x7f0000000200)={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000002c0)=[{&(0x7f00000006c0)="dddd0376bde2fbd7ff098d009d499a6b2f38efd98e6a86618119e55a9e21cf0f373bbedfbd7e4e5925e0105df9bda135f568d3cd086bf46993fc9e032b75cfb81ad0204f7d32b415d5fff6940ad1c7c6d81ba496f8916a9fff4980707c8519f2fd27f014decf4162954933aab7484015f0435461b7729b33a23c85683bae26eee7c59000a0ec0abb7a13d542dac843afae0a893f93282381a9a0c5436de857ad7614812668b56d3c5690c7f600e52245656e08ab73d8e119981c50fbd6c71f96cbd2583818e7e040c9429ac45bd265a58a50456e44d69513921abb94a0a68afbbb4401a541ad5027ed3adcebafdb5832cb9dcd88b3", 0xf5}, {&(0x7f0000000240)="05f57947b688411d0cc45d928efb7324902ecd5af6854c7b", 0x18}], 0x2, &(0x7f00000007c0)=[@ip_tos_u8={{0x11, 0x0, 0x1, 0x8}}, @ip_ttl={{0x14, 0x0, 0x2, 0x4}}, @ip_tos_int={{0x14, 0x0, 0x1, 0x6}}], 0x48}, 0x20008000)
sendmsg$IPCTNL_MSG_CT_NEW(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="5400000000010104000000001200000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000001c0010800800014000000008080002"], 0x54}}, 0x20040044)
syz_io_uring_setup(0x0, &(0x7f0000000000)={0x0, 0x0, 0x141}, &(0x7f0000000080), 0x0)
r7 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000040), 0xfecc)
r8 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r8, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000040)="1400000035000b0fd25a806c8c6f94f90424fc60", 0x14}], 0x1, 0x0, 0x0, 0x20000000}, 0x8080)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000002, 0x12, r7, 0x0)
r9 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r9, 0x2201, &(0x7f0000000040))
setsockopt$inet6_MCAST_MSFILTER(r7, 0x29, 0x30, &(0x7f0000000c40)=ANY=[@ANYRESHEX], 0x20000)
syz_open_dev$loop(0x0, 0x81, 0x10b40)

kernel console output (not intermixed with test programs):

88] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1243.192886][T17388] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1243.218356][T17388] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1243.232089][T17388] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1243.338396][T15144] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[ 1243.396518][T17388] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1243.413372][T17388] 8021q: adding VLAN 0 to HW filter on device team0
[ 1243.431305][T15019] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1243.438454][T15019] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1243.447991][T15019] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1243.455100][T15019] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1243.476791][T15144] usb 4-1: device descriptor read/8, error -71
[ 1243.611739][T17388] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1243.661438][T17493] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1243.692357][T17388] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1243.771125][T17388] veth0_vlan: entered promiscuous mode
[ 1243.791962][T17388] veth1_vlan: entered promiscuous mode
[ 1244.018271][T17388] veth0_macvtap: entered promiscuous mode
[ 1244.040452][T17388] veth1_macvtap: entered promiscuous mode
[ 1244.097546][T17388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1244.118060][T17388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.134569][T17388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1244.165734][T17388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.182793][T17388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1244.194892][T17388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.214785][T17388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1244.232872][T17388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.252207][T17388] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1244.263820][T17388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1244.280163][T17388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.293965][T17388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1244.311907][T17388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.323869][T17388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1244.348750][T17388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.368254][T17388] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1244.383244][T17388] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1244.399659][T17388] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1244.421025][T17388] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.434259][T17388] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.446327][T17388] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.455349][T17388] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1244.582467][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1244.601675][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1244.637624][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1244.650071][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1244.868504][T17508] binfmt_misc: register: failed to install interpreter file ./file0
[ 1246.014468][T17534] x_tables: ip_tables: osf match: only valid for protocol 6
[ 1246.093490][T13141] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[ 1246.255603][T13141] usb 1-1: Using ep0 maxpacket: 16
[ 1246.278102][T13141] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1246.311308][T13141] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1246.349170][T13141] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1246.410255][T13141] usb 1-1: New USB device found, idVendor=0458, idProduct=0087, bcdDevice= 0.00
[ 1246.454031][T13141] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1246.500922][T13141] usb 1-1: config 0 descriptor??
[ 1246.781058][T17530] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1246.820696][T17530] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1246.912711][T17530] vlan2: entered promiscuous mode
[ 1246.931681][T17530] batadv0: entered promiscuous mode
[ 1246.989775][T17530] team0: Port device vlan2 added
[ 1247.032486][T13141] usbhid 1-1:0.0: can't add hid device: -71
[ 1247.046187][T13141] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1247.071974][T13141] usb 1-1: USB disconnect, device number 23
[ 1247.135637][T14308] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[ 1247.317046][T14308] usb 2-1: device descriptor read/64, error -71
[ 1247.595918][T14308] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[ 1247.736239][T14308] usb 2-1: device descriptor read/64, error -71
[ 1247.845872][T14308] usb usb2-port1: attempt power cycle
[ 1248.206635][T14308] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[ 1248.256518][T14308] usb 2-1: device descriptor read/8, error -71
[ 1248.269709][   T29] audit: type=1326 audit(1728906871.585:1362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17566 comm="syz.3.3711" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7039d7dff9 code=0x0
[ 1248.555588][T14308] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[ 1248.676136][T14308] usb 2-1: device descriptor read/8, error -71
[ 1248.796037][T14308] usb usb2-port1: unable to enumerate USB device
[ 1248.847905][T17572] FAULT_INJECTION: forcing a failure.
[ 1248.847905][T17572] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1248.870884][T17572] CPU: 1 UID: 0 PID: 17572 Comm: syz.0.3713 Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1248.881706][T17572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1248.891792][T17572] Call Trace:
[ 1248.895103][T17572]  <TASK>
[ 1248.898073][T17572]  dump_stack_lvl+0x241/0x360
[ 1248.902779][T17572]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1248.908002][T17572]  ? __pfx__printk+0x10/0x10
[ 1248.912628][T17572]  ? __pfx_lock_release+0x10/0x10
[ 1248.917688][T17572]  should_fail_ex+0x3b0/0x4e0
[ 1248.922396][T17572]  _copy_from_iter+0x1ed/0x1d60
[ 1248.927271][T17572]  ? __virt_addr_valid+0x183/0x530
[ 1248.932402][T17572]  ? __pfx_lock_release+0x10/0x10
[ 1248.937465][T17572]  ? __alloc_skb+0x28f/0x440
[ 1248.942077][T17572]  ? __pfx__copy_from_iter+0x10/0x10
[ 1248.947387][T17572]  ? __virt_addr_valid+0x183/0x530
[ 1248.952521][T17572]  ? __virt_addr_valid+0x183/0x530
[ 1248.957655][T17572]  ? __virt_addr_valid+0x45f/0x530
[ 1248.962787][T17572]  ? __check_object_size+0x48e/0x900
[ 1248.968100][T17572]  netlink_sendmsg+0x73d/0xcb0
[ 1248.972896][T17572]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1248.978208][T17572]  ? aa_sock_msg_perm+0x91/0x160
[ 1248.983176][T17572]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1248.988471][T17572]  __sock_sendmsg+0x221/0x270
[ 1248.993168][T17572]  ____sys_sendmsg+0x52a/0x7e0
[ 1248.997934][T17572]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1249.003216][T17572]  __sys_sendmsg+0x292/0x380
[ 1249.007798][T17572]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1249.012903][T17572]  ? __pfx_vfs_write+0x10/0x10
[ 1249.017669][T17572]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1249.023988][T17572]  ? do_syscall_64+0x100/0x230
[ 1249.028745][T17572]  ? do_syscall_64+0xb6/0x230
[ 1249.033420][T17572]  do_syscall_64+0xf3/0x230
[ 1249.037916][T17572]  ? clear_bhb_loop+0x35/0x90
[ 1249.042583][T17572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1249.048489][T17572] RIP: 0033:0x7f2cb5d7dff9
[ 1249.052888][T17572] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1249.072484][T17572] RSP: 002b:00007f2cb6be5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1249.080891][T17572] RAX: ffffffffffffffda RBX: 00007f2cb5f35f80 RCX: 00007f2cb5d7dff9
[ 1249.088856][T17572] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000003
[ 1249.096829][T17572] RBP: 00007f2cb6be5090 R08: 0000000000000000 R09: 0000000000000000
[ 1249.104811][T17572] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1249.112865][T17572] R13: 0000000000000000 R14: 00007f2cb5f35f80 R15: 00007f2cb605fa28
[ 1249.120836][T17572]  </TASK>
[ 1249.368723][T17575] fuse: Bad value for 'rootmode'
[ 1249.728559][T15022] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1250.430097][T17588] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3720'.
[ 1250.596266][T17593] FAULT_INJECTION: forcing a failure.
[ 1250.596266][T17593] name failslab, interval 1, probability 0, space 0, times 0
[ 1250.637946][ T5237] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1250.679136][ T5237] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1250.693528][T17593] CPU: 0 UID: 0 PID: 17593 Comm: syz.1.3721 Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1250.704436][T17593] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1250.714528][T17593] Call Trace:
[ 1250.717838][T17593]  <TASK>
[ 1250.720794][T17593]  dump_stack_lvl+0x241/0x360
[ 1250.725502][T17593]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1250.730733][T17593]  ? __pfx__printk+0x10/0x10
[ 1250.735365][T17593]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[ 1250.740951][T17593]  ? __pfx___might_resched+0x10/0x10
[ 1250.746276][T17593]  should_fail_ex+0x3b0/0x4e0
[ 1250.751009][T17593]  ? key_alloc+0x341/0xff0
[ 1250.755460][T17593]  should_failslab+0xac/0x100
[ 1250.760165][T17593]  ? key_alloc+0x341/0xff0
[ 1250.764606][T17593]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1250.770005][T17593]  ? key_user_lookup+0x1b2/0x450
[ 1250.774978][T17593]  key_alloc+0x341/0xff0
[ 1250.779261][T17593]  keyring_alloc+0x44/0xb0
[ 1250.783713][T17593]  join_session_keyring+0x202/0x470
[ 1250.788943][T17593]  ? __se_sys_keyctl+0x9c0/0xa50
[ 1250.793901][T17593]  __se_sys_keyctl+0x9c8/0xa50
[ 1250.797808][ T5237] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1250.798673][T17593]  ? __mutex_unlock_slowpath+0x21d/0x750
[ 1250.807328][ T5237] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1250.811201][T17593]  ? __pfx___se_sys_keyctl+0x10/0x10
[ 1250.819120][ T5237] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1250.823388][T17593]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 1250.831109][ T5237] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1250.836305][T17593]  ? __fget_files+0x3f3/0x470
[ 1250.836346][T17593]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1250.854041][T17593]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1250.860411][T17593]  ? do_syscall_64+0x100/0x230
[ 1250.865213][T17593]  ? __x64_sys_keyctl+0x20/0xc0
[ 1250.870097][T17593]  do_syscall_64+0xf3/0x230
[ 1250.874633][T17593]  ? clear_bhb_loop+0x35/0x90
[ 1250.879338][T17593]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1250.885263][T17593] RIP: 0033:0x7f514cf7dff9
[ 1250.889700][T17593] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1250.909335][T17593] RSP: 002b:00007f514c9ff038 EFLAGS: 00000246 ORIG_RAX: 00000000000000fa
[ 1250.917791][T17593] RAX: ffffffffffffffda RBX: 00007f514d135f80 RCX: 00007f514cf7dff9
[ 1250.925795][T17593] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000001
[ 1250.933806][T17593] RBP: 00007f514c9ff090 R08: 0000000000000000 R09: 0000000000000000
[ 1250.941817][T17593] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1250.949925][T17593] R13: 0000000000000001 R14: 00007f514d135f80 R15: 00007f514d25fa28
[ 1250.957945][T17593]  </TASK>
[ 1251.409853][T15022] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1251.706383][ T5338] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[ 1251.825523][T13141] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[ 1251.905595][ T5338] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1251.927473][ T5338] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1251.964337][ T5338] usb 2-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[ 1251.995751][T13141] usb 5-1: Using ep0 maxpacket: 8
[ 1252.001300][ T5338] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1252.015895][T13141] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[ 1252.044570][T13141] usb 5-1: config 0 has no interface number 0
[ 1252.052937][ T5338] usb 2-1: config 0 descriptor??
[ 1252.059346][T13141] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1252.096754][T13141] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1252.183163][T13141] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1252.233342][T13141] usb 5-1: config 0 descriptor??
[ 1252.248382][T15022] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1252.284049][T13141] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1252.303251][T14625] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1252.320290][T14625] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1252.329403][T14625] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1252.345621][T14625] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1252.355070][T14625] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1252.362766][T14625] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1252.482458][T14308] usb 5-1: USB disconnect, device number 13
[ 1252.496019][T14308] iowarrior 5-1:0.1: I/O-Warror #0 now disconnected
[ 1252.513213][T17603] chnl_net:caif_netlink_parms(): no params data found
[ 1252.918811][T17609] FAULT_INJECTION: forcing a failure.
[ 1252.918811][T17609] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1252.968417][T17609] CPU: 1 UID: 0 PID: 17609 Comm: syz.1.3729 Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1252.979243][T17609] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1252.989329][T17609] Call Trace:
[ 1252.992624][T17609]  <TASK>
[ 1252.995571][T17609]  dump_stack_lvl+0x241/0x360
[ 1253.000274][T17609]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1253.005492][T17609]  ? __pfx__printk+0x10/0x10
[ 1253.010107][T17609]  ? __pfx_lock_release+0x10/0x10
[ 1253.015168][T17609]  should_fail_ex+0x3b0/0x4e0
[ 1253.019872][T17609]  _copy_from_iter+0x1ed/0x1d60
[ 1253.024743][T17609]  ? __virt_addr_valid+0x183/0x530
[ 1253.029882][T17609]  ? __pfx_lock_release+0x10/0x10
[ 1253.034943][T17609]  ? __alloc_skb+0x28f/0x440
[ 1253.039565][T17609]  ? __pfx__copy_from_iter+0x10/0x10
[ 1253.044879][T17609]  ? __virt_addr_valid+0x183/0x530
[ 1253.050011][T17609]  ? __virt_addr_valid+0x183/0x530
[ 1253.055150][T17609]  ? __virt_addr_valid+0x45f/0x530
[ 1253.060278][T17609]  ? __check_object_size+0x48e/0x900
[ 1253.065591][T17609]  netlink_sendmsg+0x73d/0xcb0
[ 1253.070385][T17609]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1253.075696][T17609]  ? __pfx_bpf_lsm_socket_sendmsg+0x10/0x10
[ 1253.081629][T17609]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1253.086936][T17609]  __sock_sendmsg+0x221/0x270
[ 1253.091650][T17609]  ____sys_sendmsg+0x52a/0x7e0
[ 1253.096449][T17609]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1253.101782][T17609]  __sys_sendmsg+0x292/0x380
[ 1253.106394][T17609]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1253.111539][T17609]  ? __pfx_vfs_write+0x10/0x10
[ 1253.116342][T17609]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1253.122700][T17609]  ? do_syscall_64+0x100/0x230
[ 1253.127488][T17609]  ? do_syscall_64+0xb6/0x230
[ 1253.132189][T17609]  do_syscall_64+0xf3/0x230
[ 1253.136713][T17609]  ? clear_bhb_loop+0x35/0x90
[ 1253.141416][T17609]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1253.147333][T17609] RIP: 0033:0x7f514cf7dff9
[ 1253.151776][T17609] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1253.171670][T17609] RSP: 002b:00007f514c9ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1253.180129][T17609] RAX: ffffffffffffffda RBX: 00007f514d135f80 RCX: 00007f514cf7dff9
[ 1253.188215][T17609] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000007
[ 1253.196211][T17609] RBP: 00007f514c9ff090 R08: 0000000000000000 R09: 0000000000000000
[ 1253.204204][T17609] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1253.212207][T17609] R13: 0000000000000000 R14: 00007f514d135f80 R15: 00007f514d25fa28
[ 1253.220216][T17609]  </TASK>
[ 1253.336152][T14625] Bluetooth: hci1: command tx timeout
[ 1253.588599][T15022] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1253.634937][ T5338] usbhid 2-1:0.0: can't add hid device: -71
[ 1253.642345][ T5338] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1253.655863][ T5338] usb 2-1: USB disconnect, device number 41
[ 1254.203183][T17603] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1254.211227][T17603] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1254.219232][T17603] bridge_slave_0: entered allmulticast mode
[ 1254.227194][T17603] bridge_slave_0: entered promiscuous mode
[ 1254.235147][T17603] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1254.242366][T17603] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1254.249696][T17603] bridge_slave_1: entered allmulticast mode
[ 1254.256765][T17603] bridge_slave_1: entered promiscuous mode
[ 1254.409441][T17603] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1254.447681][T17603] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1254.473260][T14625] Bluetooth: hci0: command tx timeout
[ 1254.831733][T17603] team0: Port device team_slave_0 added
[ 1254.873656][T17603] team0: Port device team_slave_1 added
[ 1254.930563][T17615] chnl_net:caif_netlink_parms(): no params data found
[ 1254.997787][T17603] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1255.004937][T17603] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1255.069003][T17603] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1255.178690][T17603] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1255.202549][T17603] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1255.281617][T17603] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1255.355470][T14625] Bluetooth: hci1: command tx timeout
[ 1255.515194][T17628] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1255.768996][T17603] hsr_slave_0: entered promiscuous mode
[ 1255.808165][T17603] hsr_slave_1: entered promiscuous mode
[ 1255.816663][T17603] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1255.824272][T17603] Cannot create hsr debugfs directory
[ 1255.866966][T17615] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1255.891862][T17615] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1255.909469][T17615] bridge_slave_0: entered allmulticast mode
[ 1255.927764][T17615] bridge_slave_0: entered promiscuous mode
[ 1255.946273][T17615] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1255.953400][T17615] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1255.995812][T17615] bridge_slave_1: entered allmulticast mode
[ 1256.002918][T17615] bridge_slave_1: entered promiscuous mode
[ 1256.031172][T15022] bridge_slave_1: left allmulticast mode
[ 1256.037149][T14308] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[ 1256.073836][T15022] bridge_slave_1: left promiscuous mode
[ 1256.086494][T15022] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1256.107973][T15022] bridge_slave_0: left allmulticast mode
[ 1256.113697][T15022] bridge_slave_0: left promiscuous mode
[ 1256.125662][T15022] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1256.226245][T14308] usb 2-1: Using ep0 maxpacket: 8
[ 1256.234616][T14308] usb 2-1: config index 0 descriptor too short (expected 9093, got 27)
[ 1256.253661][T14308] usb 2-1: config 24 has too many interfaces: 158, using maximum allowed: 32
[ 1256.285723][T14308] usb 2-1: config 24 has an invalid descriptor of length 47, skipping remainder of the config
[ 1256.316748][T14308] usb 2-1: config 24 has 0 interfaces, different from the descriptor's value: 158
[ 1256.335490][T14308] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1256.375479][T14308] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1256.555569][T15144] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[ 1256.566566][T14625] Bluetooth: hci0: command tx timeout
[ 1256.619566][T14308] usb 2-1: string descriptor 0 read error: -71
[ 1256.627459][T14308] usb 2-1: USB disconnect, device number 42
[ 1256.736655][T15144] usb 5-1: Using ep0 maxpacket: 8
[ 1256.793223][T15144] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[ 1256.803938][T15144] usb 5-1: config 0 has no interface number 0
[ 1256.836157][T15144] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1256.871754][T15144] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1256.886364][T15144] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1256.900456][T15144] usb 5-1: config 0 descriptor??
[ 1256.924055][T15144] iowarrior 5-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1256.925484][T13141] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[ 1257.145576][T13141] usb 1-1: Using ep0 maxpacket: 16
[ 1257.169106][T13141] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1257.201251][T13141] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1257.226389][T13141] usb 1-1: Product: syz
[ 1257.235137][T13141] usb 1-1: Manufacturer: syz
[ 1257.255689][T13141] usb 1-1: SerialNumber: syz
[ 1257.274759][T13141] r8152-cfgselector 1-1: Unknown version 0x0000
[ 1257.287700][T13141] r8152-cfgselector 1-1: config 0 descriptor??
[ 1257.436721][T14625] Bluetooth: hci1: command tx timeout
[ 1257.484382][T17657] block device autoloading is deprecated and will be removed.
[ 1257.492665][T17657] syz.1.3740: attempt to access beyond end of device
[ 1257.492665][T17657] loop41: rw=2048, sector=0, nr_sectors = 8 limit=0
[ 1257.639167][T15022] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1257.659619][T15022] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1257.680459][T15022] bond0 (unregistering): Released all slaves
[ 1257.722407][T13141] r8152-cfgselector 1-1: USB disconnect, device number 24
[ 1257.810307][T17657] netlink: 132 bytes leftover after parsing attributes in process `syz.1.3740'.
[ 1257.821256][ T5238] usb 5-1: USB disconnect, device number 14
[ 1257.860618][ T5238] iowarrior 5-1:0.1: I/O-Warror #0 now disconnected
[ 1257.870870][T17615] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1257.909582][T17615] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1258.265673][ T5289] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[ 1258.398722][T17615] team0: Port device team_slave_0 added
[ 1258.445633][ T5289] usb 2-1: Using ep0 maxpacket: 8
[ 1258.453229][ T5289] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1258.472909][ T5289] usb 2-1: config 8 has an invalid interface number: 165 but max is 0
[ 1258.500388][ T5289] usb 2-1: config 8 has an invalid descriptor of length 48, skipping remainder of the config
[ 1258.556914][ T5289] usb 2-1: config 8 has no interface number 0
[ 1258.564828][ T5289] usb 2-1: config 8 interface 165 altsetting 1 has an endpoint descriptor with address 0xCC, changing to 0x8C
[ 1258.616896][ T5289] usb 2-1: config 8 interface 165 altsetting 1 bulk endpoint 0x8C has invalid maxpacket 5
[ 1258.675788][ T5289] usb 2-1: config 8 interface 165 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1258.689644][ T5289] usb 2-1: config 8 interface 165 has no altsetting 0
[ 1258.700437][ T5289] usb 2-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=32.e3
[ 1258.755514][ T5289] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1258.765641][T14625] Bluetooth: hci0: command tx timeout
[ 1258.780853][ T5289] usb 2-1: Product: Ñ•
[ 1258.785082][ T5289] usb 2-1: Manufacturer: Б
[ 1258.793898][ T5289] usb 2-1: SerialNumber: syz
[ 1258.953371][T17660] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1258.982609][T17615] team0: Port device team_slave_1 added
[ 1259.183967][ T5289] ir_toy 2-1:8.165: required endpoints not found
[ 1259.224167][ T5289] usb 2-1: USB disconnect, device number 43
[ 1259.245270][T17615] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1259.273892][T17615] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1259.352970][T17615] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1259.460108][T17615] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1259.482543][T17615] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1259.514768][T17615] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1259.535672][T14625] Bluetooth: hci1: command tx timeout
[ 1259.779199][T15022] hsr_slave_0: left promiscuous mode
[ 1259.858769][T15022] hsr_slave_1: left promiscuous mode
[ 1259.872108][T15022] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1259.915662][T15022] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1259.984731][T15022] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1260.015633][T15022] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1260.106870][T15022] veth1_macvtap: left promiscuous mode
[ 1260.112445][T15022] veth0_macvtap: left promiscuous mode
[ 1260.156896][T15022] veth1_vlan: left promiscuous mode
[ 1260.162185][T15022] veth0_vlan: left promiscuous mode
[ 1260.786277][T14625] Bluetooth: hci0: command tx timeout
[ 1261.066192][T14308] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[ 1261.275656][T14308] usb 1-1: Using ep0 maxpacket: 8
[ 1261.303328][T14308] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1261.346019][T14308] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1261.358764][T14308] usb 1-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[ 1261.385540][T14308] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1261.719255][T14308] usb 1-1: config 0 descriptor??
[ 1261.754404][T14308] usbhid 1-1:0.0: can't add hid device: -22
[ 1261.774555][T14308] usbhid 1-1:0.0: probe with driver usbhid failed with error -22
[ 1262.223978][T15022] team0 (unregistering): Port device team_slave_1 removed
[ 1262.284330][T15144] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[ 1262.341503][T17693] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1262.350516][T17693] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1262.364426][T15022] team0 (unregistering): Port device team_slave_0 removed
[ 1262.476714][T15144] usb 2-1: Using ep0 maxpacket: 16
[ 1262.484589][T15144] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1262.513579][T15144] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1262.533906][T15144] usb 2-1: New USB device found, idVendor=0458, idProduct=5017, bcdDevice= 0.00
[ 1262.550057][T15144] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1262.572229][T15144] usb 2-1: config 0 descriptor??
[ 1262.797867][T17691] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1262.822344][T17691] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1262.844164][T17691] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1262.866671][T17691] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1262.890665][T17691] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1262.913917][T17691] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1262.941121][T17691] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1262.957280][T17691] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1262.983617][T17691] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1263.003124][T17691] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1263.128249][T15144] usbhid 2-1:0.0: can't add hid device: -71
[ 1263.136451][T15144] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1263.162105][T15144] usb 2-1: USB disconnect, device number 44
[ 1263.471174][T17684] batadv_slave_1: entered promiscuous mode
[ 1263.496627][T17684] batadv_slave_1: left promiscuous mode
[ 1263.588966][T17615] hsr_slave_0: entered promiscuous mode
[ 1263.608030][T17615] hsr_slave_1: entered promiscuous mode
[ 1263.626367][T17615] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1263.633986][T17615] Cannot create hsr debugfs directory
[ 1263.755622][T13141] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[ 1263.910458][T13141] usb 2-1: Using ep0 maxpacket: 8
[ 1263.945540][T14307] usb 1-1: USB disconnect, device number 25
[ 1263.968596][T13141] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 1263.976936][T13141] usb 2-1: config 0 has no interface number 0
[ 1263.983062][T13141] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1263.994163][T13141] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1264.003607][T13141] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1264.021553][T13141] usb 2-1: config 0 descriptor??
[ 1264.065185][T17603] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1264.078497][T13141] iowarrior 2-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1264.145616][T14308] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[ 1264.193298][T17615] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1264.239179][T17603] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1264.242931][T15144] usb 2-1: USB disconnect, device number 45
[ 1264.255739][T15144] iowarrior 2-1:0.1: I/O-Warror #0 now disconnected
[ 1264.269869][T17603] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1264.305593][T14308] usb 5-1: Using ep0 maxpacket: 8
[ 1264.313586][T14308] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1264.329769][T14308] usb 5-1: config 8 has an invalid interface number: 165 but max is 0
[ 1264.345669][T14308] usb 5-1: config 8 has an invalid descriptor of length 48, skipping remainder of the config
[ 1264.363048][T17615] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1264.378235][T14308] usb 5-1: config 8 has no interface number 0
[ 1264.384375][T14308] usb 5-1: config 8 interface 165 altsetting 1 has an endpoint descriptor with address 0xCC, changing to 0x8C
[ 1264.408231][T17603] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1264.438824][T14308] usb 5-1: config 8 interface 165 altsetting 1 bulk endpoint 0x8C has invalid maxpacket 5
[ 1264.465449][T14308] usb 5-1: config 8 interface 165 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1264.496775][T14308] usb 5-1: config 8 interface 165 has no altsetting 0
[ 1264.508305][T17615] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1264.509146][T14308] usb 5-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=32.e3
[ 1264.545629][T14308] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1264.584560][T14308] usb 5-1: Product: Ñ•
[ 1264.589285][T14308] usb 5-1: Manufacturer: Б
[ 1264.593823][T14308] usb 5-1: SerialNumber: syz
[ 1264.611653][T17701] raw-gadget.3 gadget.4: fail, usb_ep_enable returned -22
[ 1264.682761][T17615] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1264.834406][T14308] ir_toy 5-1:8.165: required endpoints not found
[ 1264.850754][T17603] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1264.861222][T17709] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3754'.
[ 1264.927690][T17603] 8021q: adding VLAN 0 to HW filter on device team0
[ 1264.999205][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1265.006414][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1265.087382][T15022] bridge_slave_1: left allmulticast mode
[ 1265.093096][T15022] bridge_slave_1: left promiscuous mode
[ 1265.099823][T15022] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1265.132020][T15022] bridge_slave_0: left allmulticast mode
[ 1265.158356][T15022] bridge_slave_0: left promiscuous mode
[ 1265.164135][T15022] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1265.528662][T14308] usb 5-1: USB disconnect, device number 15
[ 1265.925686][T14308] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[ 1266.118367][T14308] usb 5-1: Using ep0 maxpacket: 8
[ 1266.155839][T14308] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[ 1266.169779][T14308] usb 5-1: config 179 has no interface number 0
[ 1266.188884][T14308] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1266.211355][T14308] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1266.233251][T14308] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1266.264030][T14308] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1266.285470][T14308] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1266.311636][T14308] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1266.331265][T14308] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1266.372369][T17720] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1266.530416][T15022] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1266.554370][T15022] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1266.589109][T15022] bond0 (unregistering): Released all slaves
[ 1266.730604][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1266.737812][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1266.757208][   T29] audit: type=1326 audit(1728906890.075:1363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17719 comm="syz.4.3758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1266.865836][   T29] audit: type=1326 audit(1728906890.075:1364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17719 comm="syz.4.3758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1266.908525][T17717] netlink: 'syz.1.3757': attribute type 10 has an invalid length.
[ 1266.932112][T15022] tipc: Left network mode
[ 1266.966658][   T29] audit: type=1326 audit(1728906890.145:1365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17719 comm="syz.4.3758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1267.145722][   T29] audit: type=1326 audit(1728906890.145:1366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17719 comm="syz.4.3758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1267.313731][   T29] audit: type=1326 audit(1728906890.145:1367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17719 comm="syz.4.3758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1267.338958][T17724] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1267.381523][T17615] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1267.418705][T17603] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1267.451188][   T29] audit: type=1326 audit(1728906890.175:1368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17719 comm="syz.4.3758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1267.481603][T17615] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1267.492144][T17731] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1267.530038][   T29] audit: type=1326 audit(1728906890.175:1369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17719 comm="syz.4.3758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1267.530694][T17615] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1267.579921][   T29] audit: type=1326 audit(1728906890.185:1370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17719 comm="syz.4.3758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1267.622786][   T29] audit: type=1326 audit(1728906890.185:1371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17719 comm="syz.4.3758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1267.702002][   T29] audit: type=1326 audit(1728906890.815:1372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17719 comm="syz.4.3758" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1267.744999][T17615] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1267.785607][T15022] hsr_slave_0: left promiscuous mode
[ 1267.791614][T15022] hsr_slave_1: left promiscuous mode
[ 1267.799201][T15022] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1267.816077][T15022] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1267.853026][T15022] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1267.883710][T15022] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1267.996807][T15022] veth1_macvtap: left promiscuous mode
[ 1268.002392][T15022] veth0_macvtap: left promiscuous mode
[ 1268.025551][T15022] veth1_vlan: left promiscuous mode
[ 1268.044297][T15022] veth0_vlan: left promiscuous mode
[ 1268.666140][T14307] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[ 1268.675932][T15144] usb 5-1: USB disconnect, device number 16
[ 1268.676059][    C1] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1268.907398][T14307] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1268.925610][T14307] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1268.964176][T14307] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1268.973407][T14307] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1269.003890][T14307] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1269.016578][T14307] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1269.024829][T14307] usb 2-1: Product: syz
[ 1269.033227][T14307] usb 2-1: Manufacturer: syz
[ 1269.041837][T14307] cdc_wdm 2-1:1.0: skipping garbage
[ 1269.055838][T14307] cdc_wdm 2-1:1.0: skipping garbage
[ 1269.083967][T14307] cdc_wdm 2-1:1.0: skipping garbage
[ 1269.085804][T17744] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3765'.
[ 1269.093684][T14307] cdc_wdm 2-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1269.118411][T17744] openvswitch: netlink: Tunnel attr 0 has unexpected len 1 expected 8
[ 1269.285557][ T5289] usb 2-1: USB disconnect, device number 46
[ 1269.777575][T15022] team0 (unregistering): Port device team_slave_1 removed
[ 1269.890119][T15022] team0 (unregistering): Port device team_slave_0 removed
[ 1269.974243][T14307] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[ 1270.137913][T14307] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1270.146934][T14307] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[ 1270.171324][T14307] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1270.192765][T14307] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1270.223260][T14307] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1270.233929][T14307] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1270.258829][T14307] usb 2-1: Product: syz
[ 1270.263042][T14307] usb 2-1: Manufacturer: syz
[ 1270.272463][T14307] cdc_wdm 2-1:1.0: skipping garbage
[ 1270.294280][T14307] cdc_wdm 2-1:1.0: skipping garbage
[ 1270.300141][T14307] cdc_wdm 2-1:1.0: skipping garbage
[ 1270.307204][T14307] cdc_wdm 2-1:1.0: probe with driver cdc_wdm failed with error -22
[ 1270.805338][T17603] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1270.915799][T17603] veth0_vlan: entered promiscuous mode
[ 1270.927118][T17603] veth1_vlan: entered promiscuous mode
[ 1270.948718][T17603] veth0_macvtap: entered promiscuous mode
[ 1270.958104][T17603] veth1_macvtap: entered promiscuous mode
[ 1270.973399][T17603] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1270.984074][T17603] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1270.993978][T17603] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1271.004514][T17603] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.016312][T17603] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1271.026302][T17603] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1271.036818][T17603] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.046855][T17603] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1271.057353][T17603] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.067235][T17603] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1271.077736][T17603] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1271.088906][T17603] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1271.099296][T17603] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.108161][T17603] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.117077][T17603] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.125999][T17603] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1271.361086][T17615] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1271.441801][T15023] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1271.450207][T15023] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1271.483410][T17762] netlink: 209800 bytes leftover after parsing attributes in process `syz.4.3766'.
[ 1271.512303][T17615] 8021q: adding VLAN 0 to HW filter on device team0
[ 1271.615219][T15021] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1271.622525][T15021] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1271.661877][T15023] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1271.694624][T15021] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1271.702092][T15021] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1271.720926][T15023] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1271.871475][T17615] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1271.944920][T17615] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1272.140412][T17615] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1272.276915][ T5338] usb 2-1: USB disconnect, device number 47
[ 1272.408259][T17615] veth0_vlan: entered promiscuous mode
[ 1272.454789][T17615] veth1_vlan: entered promiscuous mode
[ 1272.691371][T17615] veth0_macvtap: entered promiscuous mode
[ 1272.708731][T17615] veth1_macvtap: entered promiscuous mode
[ 1272.730261][T17615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1272.754862][T17769] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1272.763233][T17615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1272.890133][T17777] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3769'.
[ 1272.899490][T17615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1272.927502][T17615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1272.985618][   T25] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[ 1273.017622][T17615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1273.099745][T17615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.188334][   T25] usb 3-1: Using ep0 maxpacket: 16
[ 1273.205049][T17615] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1273.254524][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1273.351596][ T5237] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1273.370600][ T5237] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1273.380880][ T5237] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1273.429069][ T5237] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1273.437911][ T5237] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1273.447061][T17615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1273.458743][ T5237] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1273.525453][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1273.530925][T17615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.535228][   T25] usb 3-1: New USB device found, idVendor=05ac, idProduct=027d, bcdDevice= 0.00
[ 1273.627852][T17615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1273.679729][T17615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.698004][   T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1273.712076][T17615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1273.724688][   T25] usb 3-1: config 0 descriptor??
[ 1273.735341][T17615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.745574][T17615] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1273.777506][T17615] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1273.792288][T17615] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1273.862510][T17615] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1273.875928][T17615] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1273.886900][T17615] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1273.897947][T17615] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1273.899500][T17786] netlink: 64 bytes leftover after parsing attributes in process `syz.1.3773'.
[ 1274.030400][T15022] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.207982][   T25] apple 0003:05AC:027D.0026: hidraw0: USB HID v0.00 Device [HID 05ac:027d] on usb-dummy_hcd.2-1/input0
[ 1274.321517][T15022] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.480138][T15022] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.605856][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1274.618118][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1274.758186][T15022] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.856763][T17774] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1274.923403][T17774] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1275.055355][T15023] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1275.089572][T17781] chnl_net:caif_netlink_parms(): no params data found
[ 1275.104374][T15023] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1275.411664][T15022] bridge_slave_1: left allmulticast mode
[ 1275.420561][T15022] bridge_slave_1: left promiscuous mode
[ 1275.443183][T15022] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1275.470869][T15022] bridge_slave_0: left allmulticast mode
[ 1275.493582][T15022] bridge_slave_0: left promiscuous mode
[ 1275.508052][T14625] Bluetooth: hci2: command tx timeout
[ 1275.539134][T15022] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1276.457619][ T5289] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[ 1276.635532][ T5289] usb 5-1: Using ep0 maxpacket: 8
[ 1276.682884][ T5289] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1276.702817][ T5289] usb 5-1: config 8 has an invalid interface number: 165 but max is 0
[ 1276.720712][ T5289] usb 5-1: config 8 has an invalid descriptor of length 48, skipping remainder of the config
[ 1276.763341][ T5289] usb 5-1: config 8 has no interface number 0
[ 1276.770138][ T5289] usb 5-1: config 8 interface 165 altsetting 1 has an endpoint descriptor with address 0xCC, changing to 0x8C
[ 1276.800134][ T5289] usb 5-1: config 8 interface 165 altsetting 1 bulk endpoint 0x8C has invalid maxpacket 5
[ 1276.826445][T15144] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[ 1276.834635][ T5289] usb 5-1: config 8 interface 165 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1276.868697][ T5289] usb 5-1: config 8 interface 165 has no altsetting 0
[ 1276.903884][ T5289] usb 5-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=32.e3
[ 1276.922079][ T5289] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1276.930916][ T5289] usb 5-1: Product: Ñ•
[ 1276.935025][ T5289] usb 5-1: Manufacturer: Б
[ 1276.945990][ T5289] usb 5-1: SerialNumber: syz
[ 1277.022809][T15144] usb 2-1: config 0 has no interfaces?
[ 1277.031088][T17823] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1277.118437][T15144] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 1277.138347][T15144] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1277.171759][T15144] usb 2-1: Product: syz
[ 1277.178050][T15144] usb 2-1: Manufacturer: syz
[ 1277.182949][T15144] usb 2-1: SerialNumber: syz
[ 1277.201757][T15144] usb 2-1: config 0 descriptor??
[ 1277.595516][T14625] Bluetooth: hci2: command tx timeout
[ 1277.919544][   T25] usb 3-1: USB disconnect, device number 32
[ 1278.000072][T17835] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3782'.
[ 1278.205672][T15022] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1278.243377][T15022] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1278.293968][T15022] bond0 (unregistering): Released all slaves
[ 1278.355044][T17781] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1278.386553][T17781] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1278.393824][T17781] bridge_slave_0: entered allmulticast mode
[ 1278.431102][T17781] bridge_slave_0: entered promiscuous mode
[ 1278.467873][T17781] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1278.475305][T17781] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1278.494695][ T5289] ir_toy 5-1:8.165: required endpoints not found
[ 1278.501626][T17781] bridge_slave_1: entered allmulticast mode
[ 1278.508001][   T25] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[ 1278.519347][ T5289] usb 5-1: USB disconnect, device number 17
[ 1278.532002][T17781] bridge_slave_1: entered promiscuous mode
[ 1278.625141][T17781] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1278.687591][T17781] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1278.702456][   T25] usb 4-1: Using ep0 maxpacket: 8
[ 1278.722131][   T25] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1278.739256][   T25] usb 4-1: config 8 has an invalid interface number: 165 but max is 0
[ 1278.761456][   T25] usb 4-1: config 8 has an invalid descriptor of length 48, skipping remainder of the config
[ 1278.798787][   T25] usb 4-1: config 8 has no interface number 0
[ 1278.848809][   T25] usb 4-1: config 8 interface 165 altsetting 1 has an endpoint descriptor with address 0xCC, changing to 0x8C
[ 1278.901791][   T25] usb 4-1: config 8 interface 165 altsetting 1 bulk endpoint 0x8C has invalid maxpacket 5
[ 1278.924617][T17781] team0: Port device team_slave_0 added
[ 1278.944340][   T25] usb 4-1: config 8 interface 165 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1279.014034][   T25] usb 4-1: config 8 interface 165 has no altsetting 0
[ 1279.048483][   T25] usb 4-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=32.e3
[ 1279.073933][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1279.138202][T17781] team0: Port device team_slave_1 added
[ 1279.145593][   T25] usb 4-1: Product: Ñ•
[ 1279.149722][   T25] usb 4-1: Manufacturer: Б
[ 1279.173578][   T25] usb 4-1: SerialNumber: syz
[ 1279.220609][T17781] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1279.224026][T17838] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1279.250185][T17781] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1279.308957][T17781] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1279.631951][T17781] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1279.651803][T17781] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1279.665693][T14625] Bluetooth: hci2: command tx timeout
[ 1279.678413][T17781] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1279.718485][   T25] ir_toy 4-1:8.165: required endpoints not found
[ 1279.745501][   T25] usb 4-1: USB disconnect, device number 33
[ 1279.878186][    T8] usb 2-1: USB disconnect, device number 48
[ 1279.945738][T17853] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3786'.
[ 1280.092117][T15022] hsr_slave_0: left promiscuous mode
[ 1280.102582][T15022] hsr_slave_1: left promiscuous mode
[ 1280.110763][T15022] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1280.119300][T17857] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1280.132023][T15022] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1280.144874][T17857] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1280.201237][T15022] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1280.221243][T15022] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1280.308895][T15022] batadv0: left promiscuous mode
[ 1280.332206][T15022] veth1_macvtap: left promiscuous mode
[ 1280.350316][T15022] veth0_macvtap: left promiscuous mode
[ 1280.365562][    T8] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[ 1280.376910][T15022] veth1_vlan: left promiscuous mode
[ 1280.412575][T15022] veth0_vlan: left promiscuous mode
[ 1280.546354][    T8] usb 2-1: Using ep0 maxpacket: 8
[ 1280.606141][    T8] usb 2-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1280.618253][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1280.655333][    T8] usb 2-1: Product: syz
[ 1280.690525][    T8] usb 2-1: Manufacturer: syz
[ 1280.721985][    T8] usb 2-1: SerialNumber: syz
[ 1280.774235][    T8] usb 2-1: config 0 descriptor??
[ 1281.017151][    T8] dvb_usb_rtl28xxu 2-1:0.0: chip type detection failed -71
[ 1281.046769][    T8] dvb_usb_rtl28xxu 2-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 1281.095570][ T5289] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[ 1281.112528][    T8] usb 2-1: USB disconnect, device number 49
[ 1281.194403][T15022] team0 (unregistering): Port device vlan2 removed
[ 1281.275757][ T5289] usb 3-1: Using ep0 maxpacket: 8
[ 1281.306311][ T5289] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1281.329308][ T5289] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1281.385560][ T5289] usb 3-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[ 1281.427265][ T5289] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1281.457824][ T5289] usb 3-1: config 0 descriptor??
[ 1281.496595][ T5289] usbhid 3-1:0.0: can't add hid device: -22
[ 1281.503741][ T5289] usbhid 3-1:0.0: probe with driver usbhid failed with error -22
[ 1281.749097][T14625] Bluetooth: hci2: command tx timeout
[ 1282.025660][ T5289] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[ 1282.075038][T17871] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1282.092144][T17871] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1282.186852][ T5289] usb 2-1: Using ep0 maxpacket: 8
[ 1282.202231][ T5289] usb 2-1: New USB device found, idVendor=046d, idProduct=0900, bcdDevice=66.9e
[ 1282.218187][ T5289] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1282.235488][    T8] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[ 1282.246828][ T5289] usb 2-1: Product: syz
[ 1282.259154][ T5289] usb 2-1: Manufacturer: syz
[ 1282.273008][ T5289] usb 2-1: SerialNumber: syz
[ 1282.285274][ T5289] usb 2-1: config 0 descriptor??
[ 1282.298676][ T5289] gspca_main: spca500-2.14.0 probing 046d:0900
[ 1282.387765][    T8] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1282.405910][    T8] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1282.426372][    T8] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1282.447597][    T8] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1282.475289][    T8] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1282.492675][    T8] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1282.510739][ T5282] hid-generic 0000:0000:0000.0027: unknown main item tag 0x0
[ 1282.519016][T17866] loop4: detected capacity change from 0 to 7
[ 1282.527519][    T8] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1282.536103][T17866] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1282.545949][T15022] team0 (unregistering): Port device team_slave_1 removed
[ 1282.546259][ T5282] hid-generic 0000:0000:0000.0027: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[ 1282.563736][    T8] usb 4-1: Product: syz
[ 1282.568235][T17866] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1282.576622][    T8] usb 4-1: Manufacturer: syz
[ 1282.586452][    T8] cdc_wdm 4-1:1.0: skipping garbage
[ 1282.594009][    T8] cdc_wdm 4-1:1.0: skipping garbage
[ 1282.601179][T17866] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1282.611122][    T8] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[ 1282.618975][T17866] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1282.630411][    T8] cdc_wdm 4-1:1.0: Unknown control protocol
[ 1282.645879][T17866] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1282.663499][T17866] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1282.673953][T17866] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1282.691461][T17866] ldm_validate_partition_table(): Disk read failed.
[ 1282.699927][T17866] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1282.717396][T17866] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1282.737501][T15022] team0 (unregistering): Port device team_slave_0 removed
[ 1282.737545][T17866] Buffer I/O error on dev loop4, logical block 0, async page read
[ 1282.762294][T17866] Dev loop4: unable to read RDB block 0
[ 1282.768548][T17866]  loop4: unable to read partition table
[ 1282.774582][T17866] loop4: partition table beyond EOD, truncated
[ 1282.784548][T17866] loop_reread_partitions: partition scan of loop4 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[ 1282.784548][T17866] 
) failed (rc=-5)
[ 1282.816108][ T5289] gspca_spca500: reg write: error -32
[ 1282.825644][ T5289] gspca_spca500: reg write: error -32
[ 1282.844248][ T5289] gspca_spca500: reg write: error -32
[ 1282.851443][ T5289] gspca_spca500: reg write: error -32
[ 1282.866636][ T5289] gspca_spca500: reg write: error -32
[ 1282.879528][ T5289] gspca_spca500: reg write: error -32
[ 1282.886546][ T5338] usb 4-1: USB disconnect, device number 34
[ 1282.895039][ T5289] gspca_spca500: reg write: error -32
[ 1282.909363][ T5289] gspca_spca500: reg write: error -32
[ 1282.920701][ T5289] gspca_spca500: reg write: error -32
[ 1282.927540][ T5289] gspca_spca500: reg write: error -32
[ 1282.941669][ T5289] gspca_spca500: reg write: error -32
[ 1282.954065][ T5289] gspca_spca500: reg write: error -32
[ 1282.968874][ T5289] gspca_spca500: reg write: error -32
[ 1282.982597][ T5289] gspca_spca500: reg write: error -32
[ 1283.563990][T13141] usb 2-1: USB disconnect, device number 50
[ 1283.609985][T17781] hsr_slave_0: entered promiscuous mode
[ 1283.627328][T17781] hsr_slave_1: entered promiscuous mode
[ 1283.958808][ T5289] usb 3-1: USB disconnect, device number 33
[ 1284.086448][ T5338] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[ 1284.269487][ T5338] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1284.290957][ T5338] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1284.323159][ T5338] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[ 1284.356543][ T5338] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1284.412554][ T5338] usb 4-1: config 0 descriptor??
[ 1284.467650][T17885] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[ 1284.760551][T17781] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1284.783818][T17781] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1284.828337][T17781] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1284.862809][T17781] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1285.097450][T17781] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1285.131487][T17781] 8021q: adding VLAN 0 to HW filter on device team0
[ 1285.144116][T17878] fuse: Bad value for 'fd'
[ 1285.307280][ T5338] usbhid 4-1:0.0: can't add hid device: -71
[ 1285.344282][   T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1285.367590][ T5338] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1285.417712][ T5338] usb 4-1: USB disconnect, device number 35
[ 1285.622379][T15022] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1285.629523][T15022] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1285.742743][T15022] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1285.749946][T15022] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1285.963754][   T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1286.570196][   T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1286.787907][ T5237] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1286.799309][ T5237] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1286.808104][ T5237] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1286.816867][ T5237] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1286.824519][ T5237] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1286.832309][ T5237] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1286.894995][   T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1287.144971][T17781] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1287.161308][T17781] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1287.241900][T17914] fuse: Bad value for 'fd'
[ 1287.259811][T17914] netlink: 4 bytes leftover after parsing attributes in process `syz.3.3804'.
[ 1287.286693][T17907] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3803'.
[ 1287.361468][T17909] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3803'.
[ 1287.541152][T17781] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1287.872444][T17920] netlink: 'syz.4.3805': attribute type 10 has an invalid length.
[ 1288.074526][   T11] bridge_slave_1: left allmulticast mode
[ 1288.080407][   T11] bridge_slave_1: left promiscuous mode
[ 1288.087259][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1288.101080][   T11] bridge_slave_0: left allmulticast mode
[ 1288.255598][   T11] bridge_slave_0: left promiscuous mode
[ 1288.261507][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1288.705927][   T25] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[ 1288.873019][   T25] usb 5-1: Using ep0 maxpacket: 32
[ 1288.881979][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1288.903765][   T25] usb 5-1: New USB device found, idVendor=057e, idProduct=200e, bcdDevice= 0.00
[ 1288.913448][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1288.929256][   T25] usb 5-1: config 0 descriptor??
[ 1288.946350][ T5237] Bluetooth: hci4: command tx timeout
[ 1289.156938][T17930] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1289.177271][T17931] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1289.178316][T17930] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1289.200148][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1289.209126][T17931] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1289.222266][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1289.237993][   T11] bond0 (unregistering): Released all slaves
[ 1289.280844][T17929] netlink: 'syz.3.3810': attribute type 8 has an invalid length.
[ 1289.371035][   T25] usbhid 5-1:0.0: can't add hid device: -71
[ 1289.379079][T17781] veth0_vlan: entered promiscuous mode
[ 1289.392715][   T25] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1289.415266][T17781] veth1_vlan: entered promiscuous mode
[ 1289.446778][   T25] usb 5-1: USB disconnect, device number 18
[ 1289.595683][T17939] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3813'.
[ 1289.645247][T17908] chnl_net:caif_netlink_parms(): no params data found
[ 1289.682420][T17941] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3813'.
[ 1290.205597][   T11] hsr_slave_0: left promiscuous mode
[ 1290.282343][T17954] fuse: Bad value for 'fd'
[ 1290.310338][   T11] hsr_slave_1: left promiscuous mode
[ 1290.321914][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1290.334442][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1290.345301][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1290.364773][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1290.404567][   T11] veth1_macvtap: left promiscuous mode
[ 1290.418677][   T11] veth0_macvtap: left promiscuous mode
[ 1290.434111][   T11] veth0_vlan: left promiscuous mode
[ 1291.005611][ T5282] usb 3-1: new full-speed USB device number 34 using dummy_hcd
[ 1291.045555][ T5237] Bluetooth: hci4: command tx timeout
[ 1291.209846][ T5282] usb 3-1: New USB device found, idVendor=055d, idProduct=9000, bcdDevice=31.44
[ 1291.229807][ T5282] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1291.298750][ T5282] usb 3-1: config 0 descriptor??
[ 1291.320318][ T5282] pwc: Samsung MPC-C10 USB webcam detected.
[ 1291.380927][T17966] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1291.525609][ T5282] pwc: send_video_command error -71
[ 1291.550994][ T5282] pwc: Failed to set video mode VGA@30 fps; return code = -71
[ 1291.612268][ T5282] Philips webcam 3-1:0.0: probe with driver Philips webcam failed with error -71
[ 1291.667713][ T5282] usb 3-1: USB disconnect, device number 34
[ 1291.900821][   T29] kauditd_printk_skb: 4 callbacks suppressed
[ 1291.900851][   T29] audit: type=1326 audit(1728906915.215:1377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1291.976988][   T29] audit: type=1326 audit(1728906915.225:1378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1292.055221][   T29] audit: type=1326 audit(1728906915.225:1379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1292.081488][   T29] audit: type=1326 audit(1728906915.225:1380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1292.105257][   T29] audit: type=1326 audit(1728906915.225:1381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1292.129664][ T5282] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[ 1292.140305][   T29] audit: type=1326 audit(1728906915.225:1382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1292.183534][   T29] audit: type=1326 audit(1728906915.225:1383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1292.225532][   T29] audit: type=1326 audit(1728906915.225:1384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1292.265550][   T29] audit: type=1326 audit(1728906915.245:1385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1292.305628][ T5282] usb 3-1: device descriptor read/64, error -71
[ 1292.324121][   T29] audit: type=1326 audit(1728906915.245:1386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17971 comm="syz.4.3823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f56e6f7dff9 code=0x7ffc0000
[ 1292.325664][   T25] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[ 1292.396148][T17972] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.3823'.
[ 1292.436881][T17972] openvswitch: netlink: Tunnel attr 0 has unexpected len 2 expected 8
[ 1292.553959][   T25] usb 4-1: Using ep0 maxpacket: 8
[ 1292.565965][ T5282] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[ 1292.600704][   T25] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[ 1292.661668][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 1292.697374][   T25] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1292.735541][ T5282] usb 3-1: device descriptor read/64, error -71
[ 1292.785505][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1292.838326][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1292.858351][ T5282] usb usb3-port1: attempt power cycle
[ 1292.901875][   T25] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[ 1292.949142][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 1292.961633][   T25] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1292.973665][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1292.986175][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1293.069899][   T25] usb 4-1: config 168 descriptor has 1 excess byte, ignoring
[ 1293.106471][ T5237] Bluetooth: hci4: command tx timeout
[ 1293.195475][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[ 1293.249001][ T5282] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[ 1293.256759][   T25] usb 4-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1293.287703][ T5282] usb 3-1: device descriptor read/8, error -71
[ 1293.322394][   T11] team0 (unregistering): Port device team_slave_1 removed
[ 1293.354578][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1293.452819][   T25] usb 4-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1293.472204][T17981] fuse: Unknown parameter 'user_i00000000000000000000'
[ 1293.532824][ T5282] usb 3-1: new high-speed USB device number 38 using dummy_hcd
[ 1293.537821][   T25] usb 4-1: string descriptor 0 read error: -22
[ 1293.548791][   T25] usb 4-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[ 1293.571448][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1293.582164][ T5282] usb 3-1: device descriptor read/8, error -71
[ 1293.600782][   T11] team0 (unregistering): Port device team_slave_0 removed
[ 1293.608746][   T25] adutux 4-1:168.0: ADU100  now attached to /dev/usb/adutux0
[ 1293.712608][ T5282] usb usb3-port1: unable to enumerate USB device
[ 1293.827156][T13141] usb 5-1: new full-speed USB device number 19 using dummy_hcd
[ 1294.048462][T13141] usb 5-1: not running at top speed; connect to a high speed hub
[ 1294.074404][T13141] usb 5-1: config 95 has an invalid interface number: 1 but max is 0
[ 1294.094156][T13141] usb 5-1: config 95 has no interface number 0
[ 1294.105430][T13141] usb 5-1: config 95 interface 1 has no altsetting 0
[ 1294.147324][T13141] usb 5-1: New USB device found, idVendor=0763, idProduct=2030, bcdDevice=79.79
[ 1294.166911][T13141] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1294.195507][T13141] usb 5-1: Product: syz
[ 1294.199721][T13141] usb 5-1: Manufacturer: syz
[ 1294.206898][T13141] usb 5-1: SerialNumber: syz
[ 1294.853685][ T5338] usb 4-1: USB disconnect, device number 36
[ 1295.185611][ T5237] Bluetooth: hci4: command tx timeout
[ 1295.656959][T17981] bond1: entered promiscuous mode
[ 1295.672401][T17981] bond1: entered allmulticast mode
[ 1295.693938][T17781] veth0_macvtap: entered promiscuous mode
[ 1295.730922][T17908] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1295.749935][T17908] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1295.758746][T17908] bridge_slave_0: entered allmulticast mode
[ 1295.766074][T17908] bridge_slave_0: entered promiscuous mode
[ 1295.774345][T17908] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1295.781882][T17908] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1295.785897][T13141] usb 5-1: USB disconnect, device number 19
[ 1295.789221][T17908] bridge_slave_1: entered allmulticast mode
[ 1295.804730][T17908] bridge_slave_1: entered promiscuous mode
[ 1295.830042][T17781] veth1_macvtap: entered promiscuous mode
[ 1295.979359][T17908] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1296.018763][T17908] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1296.054965][T17781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1296.095634][T17781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1296.115576][T17781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1296.135948][T17781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1296.157741][T17781] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1296.237617][T17781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1296.258986][T17781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1296.280830][T17781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1296.311773][T17781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1296.342371][T17781] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1296.366278][T17781] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1296.397421][T17781] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1296.421704][T17908] team0: Port device team_slave_0 added
[ 1296.448528][T17908] team0: Port device team_slave_1 added
[ 1296.538908][T18007] FAULT_INJECTION: forcing a failure.
[ 1296.538908][T18007] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 1296.571216][T17781] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1296.590788][T17781] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1296.610370][T17781] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1296.627943][T18007] CPU: 1 UID: 0 PID: 18007 Comm: syz.2.3832 Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1296.638760][T18007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1296.648846][T18007] Call Trace:
[ 1296.652148][T18007]  <TASK>
[ 1296.655107][T18007]  dump_stack_lvl+0x241/0x360
[ 1296.659814][T18007]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1296.665039][T18007]  ? __pfx__printk+0x10/0x10
[ 1296.669678][T18007]  should_fail_ex+0x3b0/0x4e0
[ 1296.674386][T18007]  prepare_alloc_pages+0x1da/0x5b0
[ 1296.679528][T18007]  __alloc_pages_noprof+0x16f/0x710
[ 1296.684755][T18007]  ? __pfx___alloc_pages_noprof+0x10/0x10
[ 1296.690523][T18007]  alloc_pages_mpol_noprof+0x3e8/0x680
[ 1296.696016][T18007]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[ 1296.702029][T18007]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1296.707266][T18007]  folio_alloc_mpol_noprof+0x36/0x50
[ 1296.712585][T18007]  __read_swap_cache_async+0x250/0x8e0
[ 1296.718093][T18007]  ? __pfx___read_swap_cache_async+0x10/0x10
[ 1296.724105][T18007]  ? blk_start_plug+0x70/0x1b0
[ 1296.728900][T18007]  swap_cluster_readahead+0x392/0x7f0
[ 1296.734311][T18007]  ? __pfx_swap_cluster_readahead+0x10/0x10
[ 1296.740238][T18007]  ? xas_load+0x59b/0x5c0
[ 1296.744606][T18007]  swapin_readahead+0x1bb/0xdf0
[ 1296.749492][T18007]  ? filemap_get_entry+0x123/0x3b0
[ 1296.754655][T18007]  ? __pfx_swapin_readahead+0x10/0x10
[ 1296.760064][T18007]  ? __filemap_get_folio+0x949/0xbd0
[ 1296.765382][T18007]  ? swap_cache_get_folio+0xa6/0x570
[ 1296.770703][T18007]  do_swap_page+0x584/0x7b30
[ 1296.775326][T18007]  ? __pfx_lock_release+0x10/0x10
[ 1296.780381][T18007]  ? __pfx_validate_chain+0x10/0x10
[ 1296.785607][T18007]  ? mark_lock+0x9a/0x360
[ 1296.789968][T18007]  ? __lock_acquire+0x1384/0x2050
[ 1296.795022][T18007]  ? do_swap_page+0x15e/0x7b30
[ 1296.799819][T18007]  ? __pfx_do_swap_page+0x10/0x10
[ 1296.804871][T18007]  ? __pfx___pte_offset_map+0x10/0x10
[ 1296.810275][T18007]  ? __pfx_validate_chain+0x10/0x10
[ 1296.815503][T18007]  ? pte_offset_map_nolock+0x137/0x1f0
[ 1296.821004][T18007]  ? __pfx_pte_offset_map_nolock+0x10/0x10
[ 1296.826840][T18007]  ? __pfx_validate_chain+0x10/0x10
[ 1296.832059][T18007]  handle_pte_fault+0x61d/0x6800
[ 1296.837036][T18007]  ? __pfx_validate_chain+0x10/0x10
[ 1296.842278][T18007]  ? mark_lock+0x9a/0x360
[ 1296.846685][T18007]  ? __pfx_handle_pte_fault+0x10/0x10
[ 1296.852084][T18007]  ? __lock_acquire+0x1384/0x2050
[ 1296.857168][T18007]  ? mt_find+0x2a9/0x920
[ 1296.861455][T18007]  ? __pfx_lock_release+0x10/0x10
[ 1296.866522][T18007]  handle_mm_fault+0x1106/0x1bb0
[ 1296.871488][T18007]  ? mt_find+0x2a9/0x920
[ 1296.875783][T18007]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1296.881117][T18007]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1296.887484][T18007]  ? lock_mm_and_find_vma+0x9c/0x2f0
[ 1296.892800][T18007]  exc_page_fault+0x2b9/0x8c0
[ 1296.897492][T18007]  asm_exc_page_fault+0x26/0x30
[ 1296.902349][T18007] RIP: 0010:__put_user_4+0x11/0x20
[ 1296.907467][T18007] Code: 1f 84 00 00 00 00 00 66 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 89 cb 48 c1 fb 3f 48 09 d9 0f 01 cb <89> 01 31 c9 0f 01 ca c3 cc cc cc cc 0f 1f 00 90 90 90 90 90 90 90
[ 1296.927260][T18007] RSP: 0018:ffffc90003f5f8f8 EFLAGS: 00050206
[ 1296.933331][T18007] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000020002300
[ 1296.941301][T18007] RDX: 0000000000000001 RSI: ffffffff8c0adc40 RDI: ffffffff8c60fca0
[ 1296.949266][T18007] RBP: ffffc90003a8d260 R08: ffffffff901cf6ef R09: 1ffffffff2039edd
[ 1296.957235][T18007] R10: dffffc0000000000 R11: fffffbfff2039ede R12: ffff88807e6fc278
[ 1296.965202][T18007] R13: dffffc0000000000 R14: ffff88807e6fc3ac R15: 0000000020002300
[ 1296.973182][T18007]  n_tty_ioctl+0x2df/0x320
[ 1296.977627][T18007]  ? __pfx_n_tty_ioctl+0x10/0x10
[ 1296.982565][T18007]  tty_ioctl+0x998/0xdc0
[ 1296.986807][T18007]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1296.992873][T18007]  ? __pfx_tty_ioctl+0x10/0x10
[ 1296.997727][T18007]  do_vfs_ioctl+0xec8/0x2e40
[ 1297.002319][T18007]  ? __pfx_do_vfs_ioctl+0x10/0x10
[ 1297.007342][T18007]  ? mark_lock+0x9a/0x360
[ 1297.011676][T18007]  ? tomoyo_path_number_perm+0x208/0x880
[ 1297.017321][T18007]  ? __pfx_lock_release+0x10/0x10
[ 1297.022346][T18007]  ? lockdep_hardirqs_on+0x99/0x150
[ 1297.027552][T18007]  ? kfree+0x1a0/0x440
[ 1297.031621][T18007]  ? tomoyo_path_number_perm+0x68d/0x880
[ 1297.037262][T18007]  ? tomoyo_path_number_perm+0x71a/0x880
[ 1297.042900][T18007]  ? tomoyo_path_number_perm+0x208/0x880
[ 1297.048534][T18007]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1297.054543][T18007]  ? __fget_files+0x29/0x470
[ 1297.059133][T18007]  ? __fget_files+0x3f3/0x470
[ 1297.063814][T18007]  __se_sys_ioctl+0x81/0x170
[ 1297.068408][T18007]  do_syscall_64+0xf3/0x230
[ 1297.072904][T18007]  ? clear_bhb_loop+0x35/0x90
[ 1297.077581][T18007]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1297.083474][T18007] RIP: 0033:0x7f4f7857dff9
[ 1297.087888][T18007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1297.107493][T18007] RSP: 002b:00007f4f7943b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1297.115903][T18007] RAX: ffffffffffffffda RBX: 00007f4f78735f80 RCX: 00007f4f7857dff9
[ 1297.123871][T18007] RDX: 0000000020002300 RSI: 000000000000541b RDI: 0000000000000003
[ 1297.131843][T18007] RBP: 00007f4f7943b090 R08: 0000000000000000 R09: 0000000000000000
[ 1297.139813][T18007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1297.147777][T18007] R13: 0000000000000000 R14: 00007f4f78735f80 R15: 00007f4f7885fa28
[ 1297.155754][T18007]  </TASK>
[ 1297.160206][T17781] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1297.390403][T17908] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1297.402905][T17908] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1297.504664][T17908] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1297.763222][T17908] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1297.792749][T17908] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1297.818745][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1297.873144][T17908] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1297.904290][T18023] netlink: 132 bytes leftover after parsing attributes in process `syz.4.3835'.
[ 1298.126577][T18027] FAULT_INJECTION: forcing a failure.
[ 1298.126577][T18027] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1298.145624][T18027] CPU: 1 UID: 0 PID: 18027 Comm: syz.4.3839 Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1298.156439][T18027] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1298.166531][T18027] Call Trace:
[ 1298.169839][T18027]  <TASK>
[ 1298.172788][T18027]  dump_stack_lvl+0x241/0x360
[ 1298.177496][T18027]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1298.182718][T18027]  ? __pfx__printk+0x10/0x10
[ 1298.187343][T18027]  ? __pfx_lock_release+0x10/0x10
[ 1298.192406][T18027]  should_fail_ex+0x3b0/0x4e0
[ 1298.197120][T18027]  _copy_from_iter+0x1ed/0x1d60
[ 1298.201995][T18027]  ? __virt_addr_valid+0x183/0x530
[ 1298.207132][T18027]  ? __pfx_lock_release+0x10/0x10
[ 1298.212196][T18027]  ? __pfx__copy_from_iter+0x10/0x10
[ 1298.217513][T18027]  ? __virt_addr_valid+0x183/0x530
[ 1298.222648][T18027]  ? __virt_addr_valid+0x183/0x530
[ 1298.227780][T18027]  ? __virt_addr_valid+0x45f/0x530
[ 1298.232920][T18027]  ? __phys_addr_symbol+0x2f/0x70
[ 1298.237962][T18027]  ? __check_object_size+0x48e/0x900
[ 1298.243285][T18027]  file_tty_write+0x4b2/0x9b0
[ 1298.248170][T18027]  vfs_write+0xa6d/0xc90
[ 1298.252449][T18027]  ? __pfx_tty_write+0x10/0x10
[ 1298.257242][T18027]  ? __pfx_vfs_write+0x10/0x10
[ 1298.262045][T18027]  ? fdget_pos+0x19a/0x320
[ 1298.266490][T18027]  ksys_write+0x183/0x2b0
[ 1298.270843][T18027]  ? __pfx_ksys_write+0x10/0x10
[ 1298.275712][T18027]  ? do_syscall_64+0x100/0x230
[ 1298.280503][T18027]  ? do_syscall_64+0xb6/0x230
[ 1298.285203][T18027]  do_syscall_64+0xf3/0x230
[ 1298.289722][T18027]  ? clear_bhb_loop+0x35/0x90
[ 1298.294419][T18027]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1298.300351][T18027] RIP: 0033:0x7f56e6f7dff9
[ 1298.304787][T18027] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1298.324424][T18027] RSP: 002b:00007f56e7cc1038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1298.332888][T18027] RAX: ffffffffffffffda RBX: 00007f56e7135f80 RCX: 00007f56e6f7dff9
[ 1298.340896][T18027] RDX: 000000000000ff2e RSI: 0000000020000080 RDI: 0000000000000003
[ 1298.348895][T18027] RBP: 00007f56e7cc1090 R08: 0000000000000000 R09: 0000000000000000
[ 1298.356890][T18027] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1298.364885][T18027] R13: 0000000000000000 R14: 00007f56e7135f80 R15: 00007f56e725fa28
[ 1298.372905][T18027]  </TASK>
[ 1298.525035][T17908] hsr_slave_0: entered promiscuous mode
[ 1298.548797][T17908] hsr_slave_1: entered promiscuous mode
[ 1298.576505][T17908] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1298.584156][T17908] Cannot create hsr debugfs directory
[ 1298.743936][T15022] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1298.756006][T15022] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1298.816756][T15021] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1298.824725][T15021] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1299.064457][T18042] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3841'.
[ 1299.305508][    T8] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[ 1299.486620][    T8] usb 4-1: New USB device found, idVendor=06cd, idProduct=010c, bcdDevice= a.f0
[ 1299.503492][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1299.512034][    T8] usb 4-1: Product: syz
[ 1299.516615][    T8] usb 4-1: Manufacturer: syz
[ 1299.521239][    T8] usb 4-1: SerialNumber: syz
[ 1299.528323][    T8] usb 4-1: config 0 descriptor??
[ 1299.535719][    T8] keyspan 4-1:0.0: Keyspan 1 port adapter converter detected
[ 1299.548163][    T8] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 84
[ 1299.576359][    T8] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 81
[ 1299.584830][    T8] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 82
[ 1299.593188][    T8] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 1
[ 1299.600913][    T8] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 2
[ 1299.608643][    T8] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 83
[ 1299.616415][    T8] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 3
[ 1299.625640][    T8] usb 4-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[ 1299.763341][ T5282] usb 4-1: USB disconnect, device number 37
[ 1299.832754][ T5282] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[ 1299.891193][T17908] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1299.905680][ T5282] keyspan 4-1:0.0: device disconnected
[ 1299.931824][T17908] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1299.954058][T18061] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3850'.
[ 1300.035683][T17908] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1300.079125][T17908] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1300.205544][    T8] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[ 1300.252150][T17908] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1300.379862][    T8] usb 5-1: Using ep0 maxpacket: 16
[ 1300.388030][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.394494][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[ 1300.404681][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[ 1300.442940][    T8] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1300.472443][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1300.511856][    T8] usb 5-1: Product: syz
[ 1300.525177][    T8] usb 5-1: Manufacturer: syz
[ 1300.542327][    T8] usb 5-1: SerialNumber: syz
[ 1300.551008][T17908] 8021q: adding VLAN 0 to HW filter on device team0
[ 1300.644806][    T8] usb 5-1: config 0 descriptor??
[ 1300.662767][T15021] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1300.670025][T15021] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1300.685252][    T8] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1300.711941][    T8] em28xx 5-1:0.0: DVB interface 0 found: bulk
[ 1301.008410][T15021] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1301.015675][T15021] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1301.054379][T18083] netlink: 'syz.3.3859': attribute type 8 has an invalid length.
[ 1301.081098][T17908] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1301.241532][T17908] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1301.269572][    T8] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[ 1301.594701][T17908] veth0_vlan: entered promiscuous mode
[ 1301.625004][T17908] veth1_vlan: entered promiscuous mode
[ 1301.701075][    T8] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 1301.722339][T18063] netlink: 'syz.4.3849': attribute type 10 has an invalid length.
[ 1301.763045][    T8] em28xx 5-1:0.0: board has no eeprom
[ 1301.813375][T18063] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[ 1301.939532][T17908] veth0_macvtap: entered promiscuous mode
[ 1302.004510][T17908] veth1_macvtap: entered promiscuous mode
[ 1302.177398][T17908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1302.230366][T17908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1302.252839][T17908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1302.271532][T17908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1302.285447][T17908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1302.301813][T17908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1302.321457][T17908] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1302.332233][T17908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1302.343367][T17908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1302.365517][T17908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1302.381689][T17908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1302.399008][T17908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1302.420348][T17908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1302.486205][T17908] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1302.516833][    T8] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[ 1302.524679][    T8] em28xx 5-1:0.0: dvb set to bulk mode.
[ 1302.541563][T17908] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1302.588212][T17908] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1302.622740][ T5289] em28xx 5-1:0.0: Binding DVB extension
[ 1302.629967][    T8] usb 5-1: USB disconnect, device number 20
[ 1302.698578][    T8] em28xx 5-1:0.0: Disconnecting em28xx
[ 1302.719172][T17908] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1302.762217][T17908] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1302.792705][ T5289] em28xx 5-1:0.0: Registering input extension
[ 1302.793534][T17908] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1302.842776][T17908] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1302.893541][    T8] em28xx 5-1:0.0: Closing input extension
[ 1302.960950][    T8] em28xx 5-1:0.0: Freeing device
[ 1303.024131][T18120] netlink: 'syz.2.3871': attribute type 4 has an invalid length.
[ 1303.279939][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1303.305079][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1303.345614][    T8] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[ 1303.372409][T15019] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1303.408902][T15019] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1303.506260][ T5289] usb 3-1: new high-speed USB device number 39 using dummy_hcd
[ 1303.533821][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1303.576900][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1303.621613][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1303.679856][    T8] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1303.717788][ T5289] usb 3-1: Using ep0 maxpacket: 16
[ 1303.731534][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1303.748900][ T5289] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1303.784222][    T8] usb 5-1: config 0 descriptor??
[ 1303.792544][ T5289] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[ 1303.851087][ T5289] usb 3-1: New USB device found, idVendor=046d, idProduct=08f0, bcdDevice=50.0d
[ 1303.864980][ T5289] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1303.896300][T18134] FAULT_INJECTION: forcing a failure.
[ 1303.896300][T18134] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1303.920224][ T5289] usb 3-1: Product: syz
[ 1303.935319][ T5289] usb 3-1: Manufacturer: syz
[ 1303.955574][ T5289] usb 3-1: SerialNumber: syz
[ 1303.978202][ T5289] usb 3-1: config 0 descriptor??
[ 1304.012384][ T5289] gspca_main: STV06xx-2.14.0 probing 046d:08f0
[ 1304.052209][T18134] CPU: 0 UID: 0 PID: 18134 Comm: syz.3.3875 Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1304.063031][T18134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1304.073116][T18134] Call Trace:
[ 1304.076422][T18134]  <TASK>
[ 1304.079368][T18134]  dump_stack_lvl+0x241/0x360
[ 1304.084073][T18134]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1304.089297][T18134]  ? __pfx__printk+0x10/0x10
[ 1304.093926][T18134]  ? snprintf+0xda/0x120
[ 1304.098198][T18134]  should_fail_ex+0x3b0/0x4e0
[ 1304.102908][T18134]  _copy_to_user+0x2f/0xb0
[ 1304.107354][T18134]  simple_read_from_buffer+0xca/0x150
[ 1304.112761][T18134]  proc_fail_nth_read+0x1e9/0x250
[ 1304.117824][T18134]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1304.123397][T18134]  ? rw_verify_area+0x55e/0x6f0
[ 1304.128363][T18134]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1304.133939][T18134]  vfs_read+0x201/0xbc0
[ 1304.138118][T18134]  ? __pfx_lock_release+0x10/0x10
[ 1304.143171][T18134]  ? __pfx_vfs_read+0x10/0x10
[ 1304.147879][T18134]  ? __fget_files+0x3f3/0x470
[ 1304.152586][T18134]  ? fdget_pos+0x24e/0x320
[ 1304.157029][T18134]  ksys_read+0x183/0x2b0
[ 1304.161293][T18134]  ? __pfx_ksys_read+0x10/0x10
[ 1304.166079][T18134]  ? do_syscall_64+0x100/0x230
[ 1304.170867][T18134]  ? do_syscall_64+0xb6/0x230
[ 1304.175564][T18134]  do_syscall_64+0xf3/0x230
[ 1304.180091][T18134]  ? clear_bhb_loop+0x35/0x90
[ 1304.184790][T18134]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1304.190705][T18134] RIP: 0033:0x7fac2bf7ca3c
[ 1304.195136][T18134] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1304.214768][T18134] RSP: 002b:00007fac2cd24030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1304.223219][T18134] RAX: ffffffffffffffda RBX: 00007fac2c135f80 RCX: 00007fac2bf7ca3c
[ 1304.231217][T18134] RDX: 000000000000000f RSI: 00007fac2cd240a0 RDI: 0000000000000004
[ 1304.239210][T18134] RBP: 00007fac2cd24090 R08: 0000000000000000 R09: 0000000000000000
[ 1304.247209][T18134] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1304.255204][T18134] R13: 0000000000000000 R14: 00007fac2c135f80 R15: 00007fac2c25fa28
[ 1304.263232][T18134]  </TASK>
[ 1304.266457][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1304.274481][ T5289] gspca_stv06xx: st6422 sensor detected
[ 1304.538357][ T5289] STV06xx 3-1:0.0: probe with driver STV06xx failed with error -71
[ 1304.549675][ T5289] usb 3-1: USB disconnect, device number 39
[ 1304.766734][    T8] plantronics 0003:047F:FFFF.0028: unknown main item tag 0x0
[ 1304.792736][    T8] plantronics 0003:047F:FFFF.0028: unbalanced collection at end of report description
[ 1304.849131][    T8] plantronics 0003:047F:FFFF.0028: parse failed
[ 1304.885653][    T8] plantronics 0003:047F:FFFF.0028: probe with driver plantronics failed with error -22
[ 1304.982355][    T8] usb 5-1: USB disconnect, device number 21
[ 1305.324033][T18139] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1305.585719][    T8] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[ 1305.795680][    T8] usb 4-1: Using ep0 maxpacket: 8
[ 1306.870067][ T5289] usb 3-1: new high-speed USB device number 40 using dummy_hcd
[ 1307.535585][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1307.555443][    T8] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[ 1307.598685][    T8] usb 4-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[ 1307.619339][    T8] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1307.635046][    T8] usb 4-1: Product: syz
[ 1307.649413][    T8] usb 4-1: Manufacturer: syz
[ 1307.654592][    T8] usb 4-1: SerialNumber: syz
[ 1307.676691][    T8] usb 4-1: config 0 descriptor??
[ 1307.700869][ T5289] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1307.712185][ T5289] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1307.722151][ T5289] usb 3-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[ 1307.731327][ T5289] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1307.753410][ T5289] usb 3-1: config 0 descriptor??
[ 1307.851948][T18153] openvswitch: netlink: Missing key (keys=40, expected=100)
[ 1307.975938][    T8] usb 4-1: USB disconnect, device number 38
[ 1308.584868][   T35] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1308.852711][   T35] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1308.885095][T18167] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3887'.
[ 1308.912493][T18167] netlink: 'syz.1.3887': attribute type 3 has an invalid length.
[ 1308.944835][T18147] FAULT_INJECTION: forcing a failure.
[ 1308.944835][T18147] name failslab, interval 1, probability 0, space 0, times 0
[ 1308.958105][T18147] CPU: 1 UID: 0 PID: 18147 Comm: syz.2.3879 Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1308.968907][T18147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1308.979073][T18147] Call Trace:
[ 1308.982382][T18147]  <TASK>
[ 1308.985332][T18147]  dump_stack_lvl+0x241/0x360
[ 1308.990077][T18147]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1308.995305][T18147]  ? __pfx__printk+0x10/0x10
[ 1308.999927][T18147]  ? __pfx_lock_release+0x10/0x10
[ 1309.004986][T18147]  ? switchdev_handle_fdb_event_to_device+0x3e/0x70
[ 1309.011606][T18147]  should_fail_ex+0x3b0/0x4e0
[ 1309.016317][T18147]  should_failslab+0xac/0x100
[ 1309.021020][T18147]  ? __alloc_skb+0x1c3/0x440
[ 1309.025632][T18147]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 1309.031461][T18147]  ? br_switchdev_fdb_notify+0x43d/0x530
[ 1309.037127][T18147]  __alloc_skb+0x1c3/0x440
[ 1309.041562][T18147]  ? __pfx_br_switchdev_fdb_notify+0x10/0x10
[ 1309.047578][T18147]  ? __pfx___alloc_skb+0x10/0x10
[ 1309.052538][T18147]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1309.058556][T18147]  fdb_notify+0xa8/0x170
[ 1309.062829][T18147]  fdb_delete+0xf49/0x1220
[ 1309.067271][T18147]  ? __pfx_br_vlan_lookup+0x10/0x10
[ 1309.072497][T18147]  ? fdb_delete+0x3b0/0x1220
[ 1309.077146][T18147]  ? __pfx_fdb_delete+0x10/0x10
[ 1309.082058][T18147]  ? fdb_delete_local+0x50f/0x6b0
[ 1309.087130][T18147]  br_fdb_find_delete_local+0x123/0x140
[ 1309.092704][T18147]  br_vlan_delete+0x1b7/0x230
[ 1309.097413][T18147]  __br_vlan_set_default_pvid+0x51f/0xfb0
[ 1309.103165][T18147]  ? __kmalloc_cache_noprof+0x19c/0x2c0
[ 1309.108745][T18147]  ? __pfx___br_vlan_set_default_pvid+0x10/0x10
[ 1309.115044][T18147]  br_changelink+0x458/0x1840
[ 1309.119765][T18147]  ? __pfx_br_changelink+0x10/0x10
[ 1309.124926][T18147]  ? nla_strscpy+0x100/0x180
[ 1309.129545][T18147]  ? validate_linkmsg+0x71e/0x900
[ 1309.134597][T18147]  rtnl_newlink+0x1855/0x20a0
[ 1309.139311][T18147]  ? rtnl_newlink+0x4f1/0x20a0
[ 1309.144115][T18147]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1309.149166][T18147]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1309.154400][T18147]  ? __mutex_lock+0x9ab/0xd70
[ 1309.159116][T18147]  ? __mutex_lock+0x52a/0xd70
[ 1309.163833][T18147]  ? __pfx_rtnl_newlink+0x10/0x10
[ 1309.168882][T18147]  rtnetlink_rcv_msg+0x73f/0xcf0
[ 1309.173847][T18147]  ? rtnetlink_rcv_msg+0x1a7/0xcf0
[ 1309.178991][T18147]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1309.184489][T18147]  ? ref_tracker_free+0x643/0x7e0
[ 1309.189552][T18147]  netlink_rcv_skb+0x1e3/0x430
[ 1309.194346][T18147]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[ 1309.199835][T18147]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1309.205171][T18147]  ? netlink_deliver_tap+0x2e/0x1b0
[ 1309.210402][T18147]  netlink_unicast+0x7f6/0x990
[ 1309.215207][T18147]  ? __pfx_netlink_unicast+0x10/0x10
[ 1309.220528][T18147]  ? __virt_addr_valid+0x183/0x530
[ 1309.225667][T18147]  ? __check_object_size+0x48e/0x900
[ 1309.230985][T18147]  netlink_sendmsg+0x8e4/0xcb0
[ 1309.235785][T18147]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1309.241110][T18147]  ? aa_sock_msg_perm+0x91/0x160
[ 1309.246082][T18147]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1309.251397][T18147]  __sock_sendmsg+0x221/0x270
[ 1309.256197][T18147]  ____sys_sendmsg+0x52a/0x7e0
[ 1309.260994][T18147]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1309.266320][T18147]  __sys_sendmsg+0x292/0x380
[ 1309.270938][T18147]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1309.276097][T18147]  ? __pfx_vfs_write+0x10/0x10
[ 1309.280909][T18147]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1309.287269][T18147]  ? do_syscall_64+0x100/0x230
[ 1309.292061][T18147]  ? do_syscall_64+0xb6/0x230
[ 1309.296765][T18147]  do_syscall_64+0xf3/0x230
[ 1309.301290][T18147]  ? clear_bhb_loop+0x35/0x90
[ 1309.305989][T18147]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1309.312341][T18147] RIP: 0033:0x7f4f7857dff9
[ 1309.316778][T18147] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1309.336410][T18147] RSP: 002b:00007f4f7943b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1309.344859][T18147] RAX: ffffffffffffffda RBX: 00007f4f78735f80 RCX: 00007f4f7857dff9
[ 1309.352883][T18147] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000007
[ 1309.360875][T18147] RBP: 00007f4f7943b090 R08: 0000000000000000 R09: 0000000000000000
[ 1309.368872][T18147] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1309.376862][T18147] R13: 0000000000000000 R14: 00007f4f78735f80 R15: 00007f4f7885fa28
[ 1309.384869][T18147]  </TASK>
[ 1309.406225][T18167] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3887'.
[ 1309.669495][T14625] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1309.680745][T14625] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1309.691554][T14625] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1309.805510][T14307] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[ 1309.838863][T14625] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1309.846712][T14625] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1309.855294][T14625] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1309.965606][T14307] usb 1-1: Using ep0 maxpacket: 16
[ 1309.976559][T14307] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1310.005891][T14307] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1310.035334][T14307] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1310.122411][ T5289] usbhid 3-1:0.0: can't add hid device: -71
[ 1310.129600][ T5289] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[ 1310.157919][ T5289] usb 3-1: USB disconnect, device number 40
[ 1310.195659][T14307] usb 1-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice= 0.00
[ 1310.204700][T14307] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1310.219916][   T35] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1310.291376][T14307] usb 1-1: config 0 descriptor??
[ 1310.425683][   T35] bond0: (slave netdevsim0): Releasing backup interface
[ 1310.452428][   T35] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1310.879434][T18177] chnl_net:caif_netlink_parms(): no params data found
[ 1310.962197][T14307] input: HID 0955:7214 Haptics as /devices/virtual/input/input105
[ 1311.055956][   T35] bridge_slave_1: left allmulticast mode
[ 1311.061738][   T35] bridge_slave_1: left promiscuous mode
[ 1311.067821][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1311.068748][T14307] shield 0003:0955:7214.0029: Registered Thunderstrike controller
[ 1311.087490][T14307] shield 0003:0955:7214.0029: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.0-1/input0
[ 1311.123921][   T35] bridge_slave_0: left allmulticast mode
[ 1311.136080][   T35] bridge_slave_0: left promiscuous mode
[ 1311.141823][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1311.158445][ T5338] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[ 1311.313965][T18200] netlink: 20 bytes leftover after parsing attributes in process `syz.2.3897'.
[ 1311.356702][ T5338] usb 4-1: Using ep0 maxpacket: 32
[ 1311.366032][ T5338] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1311.381225][ T5338] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1311.402983][ T5338] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1311.428213][ T5338] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1311.455895][ T5338] usb 4-1: config 0 descriptor??
[ 1311.586780][ T5284] usb 3-1: new high-speed USB device number 41 using dummy_hcd
[ 1311.778256][ T5284] usb 3-1: Using ep0 maxpacket: 16
[ 1311.790939][ T5284] usb 3-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25
[ 1311.835766][ T5284] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1311.849736][ T5284] usb 3-1: Product: syz
[ 1311.864826][ T5284] usb 3-1: Manufacturer: syz
[ 1311.895170][ T5284] usb 3-1: SerialNumber: syz
[ 1311.904865][ T5284] usb 3-1: config 0 descriptor??
[ 1311.912594][ T5237] Bluetooth: hci3: command tx timeout
[ 1312.126120][T14308] shield 0003:0955:7214.0029: Failed to output Thunderstrike HOSTCMD request HID report due to -ESHUTDOWN
[ 1312.179631][T14308] shield 0003:0955:7214.0029: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[ 1312.198888][T14308] shield 0003:0955:7214.0029: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[ 1312.221920][T14308] shield 0003:0955:7214.0029: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[ 1312.263281][T18200] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3897'.
[ 1312.336430][T18206] sctp: [Deprecated]: syz.0.3899 (pid 18206) Use of int in maxseg socket option.
[ 1312.336430][T18206] Use struct sctp_assoc_value instead
[ 1312.813428][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1313.986753][ T5237] Bluetooth: hci3: command tx timeout
[ 1316.105553][ T5237] Bluetooth: hci3: command tx timeout
[ 1316.311182][T14307] usb 3-1: USB disconnect, device number 41
[ 1316.317432][T13141] usb 4-1: USB disconnect, device number 39
[ 1316.602689][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1316.629575][   T35] bond0 (unregistering): Released all slaves
[ 1316.653262][   T35] bond1 (unregistering): Released all slaves
[ 1316.981286][T18177] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1316.993046][T18177] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1317.024787][T18177] bridge_slave_0: entered allmulticast mode
[ 1317.043617][T18177] bridge_slave_0: entered promiscuous mode
[ 1317.086329][T18177] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1317.113903][T18177] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1317.153857][T18177] bridge_slave_1: entered allmulticast mode
[ 1317.175046][T18177] bridge_slave_1: entered promiscuous mode
[ 1317.328181][T18177] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1317.379679][T18177] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1317.591843][T18177] team0: Port device team_slave_0 added
[ 1317.618816][T18177] team0: Port device team_slave_1 added
[ 1317.710304][T18177] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1317.727638][T18177] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1317.791879][T18177] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1317.837389][T18177] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1317.864770][T18177] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1317.938982][T18177] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1318.155827][ T5237] Bluetooth: hci3: command tx timeout
[ 1318.188321][T18177] hsr_slave_0: entered promiscuous mode
[ 1318.205667][T18177] hsr_slave_1: entered promiscuous mode
[ 1318.291081][T18177] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1318.309116][T18177] Cannot create hsr debugfs directory
[ 1321.376726][T14625] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1321.387075][T14625] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1321.403824][T14625] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1321.415597][T14625] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1321.423545][T14625] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1321.434165][T14625] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1322.614037][ T5237] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1322.635655][ T5237] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1322.644493][ T5237] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1322.653386][ T5237] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1322.661337][ T5237] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1322.671782][ T5237] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1323.502419][T14625] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1323.511651][T14625] Bluetooth: hci5: command tx timeout
[ 1323.519401][T14625] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1323.527832][T14625] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1323.539626][T14625] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1323.547810][T14625] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1323.555102][T14625] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1324.707081][T14133] Bluetooth: hci6: command tx timeout
[ 1325.595456][T14133] Bluetooth: hci5: command tx timeout
[ 1325.665733][T14133] Bluetooth: hci4: command tx timeout
[ 1326.785766][T14133] Bluetooth: hci6: command tx timeout
[ 1327.633625][T14625] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1327.645067][T14625] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1327.656664][T14625] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1327.666796][T14625] Bluetooth: hci5: command tx timeout
[ 1327.674706][T14625] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1327.682679][T14625] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 1327.692974][T18229] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1327.746876][T18229] Bluetooth: hci4: command tx timeout
[ 1328.873977][T18229] Bluetooth: hci6: command tx timeout
[ 1329.745610][T18229] Bluetooth: hci7: command tx timeout
[ 1329.752504][T18229] Bluetooth: hci5: command tx timeout
[ 1329.832167][T14133] Bluetooth: hci4: command tx timeout
[ 1330.945728][T18229] Bluetooth: hci6: command tx timeout
[ 1331.831572][T18229] Bluetooth: hci7: command tx timeout
[ 1331.905723][T18229] Bluetooth: hci4: command tx timeout
[ 1333.905644][T18229] Bluetooth: hci7: command tx timeout
[ 1335.985518][T18229] Bluetooth: hci7: command tx timeout
[ 1361.906056][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.912408][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[ 1370.066626][T14133] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1370.087910][T14133] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1370.102164][T14133] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1370.111962][T14133] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1370.120061][T14133] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[ 1370.127644][T14133] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1372.235939][T14133] Bluetooth: hci8: command tx timeout
[ 1374.151982][T14133] Bluetooth: hci1: command 0x0406 tx timeout
[ 1374.305777][T18229] Bluetooth: hci8: command tx timeout
[ 1376.385870][T18229] Bluetooth: hci8: command tx timeout
[ 1378.466255][T18229] Bluetooth: hci8: command tx timeout
[ 1379.271913][T18229] Bluetooth: hci0: command 0x0406 tx timeout
[ 1382.111941][T18229] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[ 1382.135635][T18229] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[ 1382.144509][T18229] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[ 1382.154110][T18229] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[ 1382.161790][T18229] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[ 1382.175720][T18229] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[ 1383.182537][T14133] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[ 1383.196717][T14133] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[ 1383.208962][T14133] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[ 1383.217050][T14133] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[ 1383.227718][T14133] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[ 1383.235210][T14133] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[ 1384.226007][T18229] Bluetooth: hci9: command tx timeout
[ 1384.233503][T18229] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[ 1384.244810][T18229] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[ 1384.256656][T18229] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[ 1384.267832][T18229] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[ 1384.281582][T18229] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[ 1384.289076][T18229] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[ 1385.345915][T18229] Bluetooth: hci10: command tx timeout
[ 1386.315662][T18229] Bluetooth: hci9: command tx timeout
[ 1386.385672][T18229] Bluetooth: hci11: command tx timeout
[ 1387.426719][T14133] Bluetooth: hci10: command tx timeout
[ 1388.186617][T14133] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[ 1388.209489][T14133] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[ 1388.218749][T14133] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[ 1388.227505][T14133] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[ 1388.236587][T14133] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[ 1388.244480][T14133] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[ 1388.385518][T14133] Bluetooth: hci9: command tx timeout
[ 1388.472154][T14133] Bluetooth: hci11: command tx timeout
[ 1389.508773][T14133] Bluetooth: hci10: command tx timeout
[ 1390.315726][T14133] Bluetooth: hci12: command tx timeout
[ 1390.465647][T14133] Bluetooth: hci9: command tx timeout
[ 1390.546761][T14133] Bluetooth: hci11: command tx timeout
[ 1391.592387][T14133] Bluetooth: hci10: command tx timeout
[ 1392.385808][T14133] Bluetooth: hci12: command tx timeout
[ 1392.625598][T14133] Bluetooth: hci11: command tx timeout
[ 1394.465708][T14133] Bluetooth: hci12: command tx timeout
[ 1396.548587][T14133] Bluetooth: hci12: command tx timeout
[ 1399.748677][T18229] Bluetooth: hci2: command 0x0406 tx timeout
[ 1423.267756][ T1267] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.274108][ T1267] ieee802154 phy1 wpan1: encryption failed: -22
[ 1430.057242][T18229] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[ 1430.073482][T18229] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[ 1430.082129][T18229] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[ 1430.091905][T18229] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[ 1430.099977][T18229] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[ 1430.110738][T18229] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[ 1432.151109][T18229] Bluetooth: hci13: command tx timeout
[ 1434.226009][T18229] Bluetooth: hci13: command tx timeout
[ 1435.588810][T18229] Bluetooth: hci3: command 0x0406 tx timeout
[ 1436.307457][T14133] Bluetooth: hci13: command tx timeout
[ 1438.395758][T14133] Bluetooth: hci13: command tx timeout
[ 1442.003213][T18229] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[ 1442.013670][T18229] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[ 1442.023634][T18229] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[ 1442.037348][T18229] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[ 1442.045038][T18229] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[ 1442.054245][T18229] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[ 1443.003084][T14133] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[ 1443.014062][T14133] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[ 1443.023013][T14133] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[ 1443.031545][T14133] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[ 1443.042890][T14133] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[ 1443.052377][T14133] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[ 1444.052892][T18262] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[ 1444.069677][T18262] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[ 1444.079152][T18262] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[ 1444.088672][T18262] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[ 1444.107962][T18262] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[ 1444.115670][T18262] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[ 1444.155186][T18261] Bluetooth: hci14: command tx timeout
[ 1445.105695][T14625] Bluetooth: hci15: command tx timeout
[ 1445.836190][T14625] Bluetooth: hci5: command 0x0406 tx timeout
[ 1445.842265][T14625] Bluetooth: hci6: command 0x0406 tx timeout
[ 1445.848537][T18262] Bluetooth: hci4: command 0x0406 tx timeout
[ 1446.233540][T18229] Bluetooth: hci16: command tx timeout
[ 1446.239832][T14133] Bluetooth: hci14: command tx timeout
[ 1447.185754][T18229] Bluetooth: hci15: command tx timeout
[ 1448.040561][T14133] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[ 1448.052451][T14133] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[ 1448.062831][T14133] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[ 1448.071507][T14133] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[ 1448.080444][T14133] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[ 1448.088340][T14133] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[ 1448.307248][T18229] Bluetooth: hci14: command tx timeout
[ 1448.312873][T14133] Bluetooth: hci16: command tx timeout
[ 1449.265567][T14133] Bluetooth: hci15: command tx timeout
[ 1450.145820][T14133] Bluetooth: hci17: command tx timeout
[ 1450.395554][T14133] Bluetooth: hci16: command tx timeout
[ 1450.401098][T14133] Bluetooth: hci14: command tx timeout
[ 1450.950173][T14133] Bluetooth: hci7: command 0x0406 tx timeout
[ 1451.345713][T18229] Bluetooth: hci15: command tx timeout
[ 1452.225557][T18229] Bluetooth: hci17: command tx timeout
[ 1452.465720][T18229] Bluetooth: hci16: command tx timeout
[ 1454.315665][T18229] Bluetooth: hci17: command tx timeout
[ 1456.385625][T18229] Bluetooth: hci17: command tx timeout
[ 1465.505850][   T30] INFO: task kworker/u8:2:35 blocked for more than 143 seconds.
[ 1465.513548][   T30]       Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1465.545564][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1465.554298][   T30] task:kworker/u8:2    state:D stack:20440 pid:35    tgid:35    ppid:2      flags:0x00004000
[ 1465.675548][   T30] Workqueue: netns cleanup_net
[ 1465.680422][   T30] Call Trace:
[ 1465.683723][   T30]  <TASK>
[ 1465.755622][   T30]  __schedule+0x1895/0x4b30
[ 1465.760222][   T30]  ? __pfx___schedule+0x10/0x10
[ 1465.765113][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1465.812137][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1465.817982][   T30]  ? kthread_data+0x52/0xd0
[ 1465.822529][   T30]  ? schedule+0x90/0x320
[ 1465.852535][   T30]  ? wq_worker_sleeping+0x66/0x240
[ 1465.872501][   T30]  ? schedule+0x90/0x320
[ 1465.886914][   T30]  schedule+0x14b/0x320
[ 1465.891142][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1465.922067][   T30]  __mutex_lock+0x6a7/0xd70
[ 1465.926743][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1465.931450][   T30]  ? ieee80211_unregister_hw+0x55/0x2c0
[ 1465.955442][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1465.960533][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1465.986084][   T30]  ? rcu_is_watching+0x15/0xb0
[ 1465.991014][   T30]  ieee80211_unregister_hw+0x55/0x2c0
[ 1466.015469][   T30]  mac80211_hwsim_del_radio+0x2c4/0x4c0
[ 1466.021090][   T30]  ? __pfx_mac80211_hwsim_del_radio+0x10/0x10
[ 1466.052664][   T30]  hwsim_exit_net+0x5c1/0x670
[ 1466.073674][   T30]  ? __pfx_hwsim_exit_net+0x10/0x10
[ 1466.083311][   T30]  ? __ip_vs_dev_cleanup_batch+0x239/0x260
[ 1466.102856][   T30]  cleanup_net+0x802/0xcc0
[ 1466.125560][   T30]  ? __pfx_cleanup_net+0x10/0x10
[ 1466.130588][   T30]  ? process_scheduled_works+0x976/0x1850
[ 1466.175886][   T30]  process_scheduled_works+0xa63/0x1850
[ 1466.181527][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1466.205618][   T30]  ? assign_work+0x364/0x3d0
[ 1466.210279][   T30]  worker_thread+0x870/0xd30
[ 1466.214919][   T30]  ? __kthread_parkme+0x169/0x1d0
[ 1466.252160][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1466.265411][   T30]  kthread+0x2f0/0x390
[ 1466.269530][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1466.274674][   T30]  ? __pfx_kthread+0x10/0x10
[ 1466.305915][   T30]  ret_from_fork+0x4b/0x80
[ 1466.310404][   T30]  ? __pfx_kthread+0x10/0x10
[ 1466.315020][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1466.341197][   T30]  </TASK>
[ 1466.353005][   T30] INFO: task kworker/u8:1:15019 blocked for more than 144 seconds.
[ 1466.375485][   T30]       Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1466.383164][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1466.425524][   T30] task:kworker/u8:1    state:D stack:21264 pid:15019 tgid:15019 ppid:2      flags:0x00004000
[ 1466.456880][   T30] Workqueue: events_unbound linkwatch_event
[ 1466.462855][   T30] Call Trace:
[ 1466.485564][   T30]  <TASK>
[ 1466.488554][   T30]  __schedule+0x1895/0x4b30
[ 1466.493975][   T30]  ? __pfx___schedule+0x10/0x10
[ 1466.551645][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1466.557902][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1466.563413][   T30]  ? kthread_data+0x52/0xd0
[ 1466.595260][   T30]  ? schedule+0x90/0x320
[ 1466.606760][   T30]  ? wq_worker_sleeping+0x66/0x240
[ 1466.621015][   T30]  ? schedule+0x90/0x320
[ 1466.625327][   T30]  schedule+0x14b/0x320
[ 1466.641485][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1466.661288][   T30]  __mutex_lock+0x6a7/0xd70
[ 1466.682756][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1466.687702][   T30]  ? linkwatch_event+0xe/0x60
[ 1466.692435][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1466.723494][   T30]  ? process_scheduled_works+0x976/0x1850
[ 1466.742468][   T30]  linkwatch_event+0xe/0x60
[ 1466.755977][   T30]  process_scheduled_works+0xa63/0x1850
[ 1466.761637][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1466.793917][   T30]  ? assign_work+0x364/0x3d0
[ 1466.805555][   T30]  worker_thread+0x870/0xd30
[ 1466.810225][   T30]  ? __kthread_parkme+0x169/0x1d0
[ 1466.815284][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1466.845421][   T30]  kthread+0x2f0/0x390
[ 1466.849562][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1466.854708][   T30]  ? __pfx_kthread+0x10/0x10
[ 1466.892991][   T30]  ret_from_fork+0x4b/0x80
[ 1466.902755][   T30]  ? __pfx_kthread+0x10/0x10
[ 1466.921740][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1466.935563][   T30]  </TASK>
[ 1466.944255][   T30] INFO: task syz-executor:17908 blocked for more than 144 seconds.
[ 1466.972484][   T30]       Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1467.014089][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1467.041845][   T30] task:syz-executor    state:D stack:20992 pid:17908 tgid:17908 ppid:1      flags:0x00004002
[ 1467.072137][   T30] Call Trace:
[ 1467.075834][   T30]  <TASK>
[ 1467.078807][   T30]  __schedule+0x1895/0x4b30
[ 1467.083360][   T30]  ? __pfx___schedule+0x10/0x10
[ 1467.105422][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1467.127686][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1467.133219][   T30]  ? schedule+0x90/0x320
[ 1467.155440][   T30]  schedule+0x14b/0x320
[ 1467.159669][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1467.165158][   T30]  __mutex_lock+0x6a7/0xd70
[ 1467.222658][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1467.229052][   T30]  ? tun_chr_close+0x3b/0x1b0
[ 1467.233777][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1467.261466][   T30]  ? __pfx_call_rcu+0x10/0x10
[ 1467.285466][   T30]  tun_chr_close+0x3b/0x1b0
[ 1467.290034][   T30]  ? __pfx_tun_chr_close+0x10/0x10
[ 1467.295173][   T30]  __fput+0x23f/0x880
[ 1467.315541][   T30]  task_work_run+0x24f/0x310
[ 1467.320200][   T30]  ? kasan_quarantine_put+0xdc/0x230
[ 1467.352965][   T30]  ? __pfx_task_work_run+0x10/0x10
[ 1467.372075][   T30]  ? do_exit+0xa2a/0x28e0
[ 1467.385548][   T30]  ? kmem_cache_free+0x1a2/0x420
[ 1467.390546][   T30]  ? do_exit+0xa2a/0x28e0
[ 1467.394902][   T30]  do_exit+0xa2f/0x28e0
[ 1467.421247][   T30]  ? __pfx_do_exit+0x10/0x10
[ 1467.446796][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1467.452852][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1467.475467][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1467.480732][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[ 1467.502383][   T30]  do_group_exit+0x207/0x2c0
[ 1467.525467][   T30]  __x64_sys_exit_group+0x3f/0x40
[ 1467.530565][   T30]  x64_sys_call+0x2634/0x2640
[ 1467.551748][   T30]  do_syscall_64+0xf3/0x230
[ 1467.558202][   T30]  ? clear_bhb_loop+0x35/0x90
[ 1467.562930][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1467.602399][   T30] RIP: 0033:0x7fd4b3b7dff9
[ 1467.607253][   T30] RSP: 002b:00007fd4b3e5ebb8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 1467.642547][   T30] RAX: ffffffffffffffda RBX: 00007fd4b3bf01a6 RCX: 00007fd4b3b7dff9
[ 1467.662182][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[ 1467.692634][   T30] RBP: 0000000000000001 R08: 00007fd4b3e5c957 R09: 00007fd4b3e5fe00
[ 1467.712004][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fd4b3e5fe00
[ 1467.735463][   T30] R13: 00007fd4b3bf0134 R14: 00005555755684a8 R15: 00007fd4b3e5fe40
[ 1467.755538][   T30]  </TASK>
[ 1467.767071][   T30] INFO: task syz.3.3891:18190 blocked for more than 145 seconds.
[ 1467.774833][   T30]       Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1467.815465][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1467.872141][   T30] task:syz.3.3891      state:D stack:24992 pid:18190 tgid:18187 ppid:17615  flags:0x00000004
[ 1467.902205][   T30] Call Trace:
[ 1467.906297][   T30]  <TASK>
[ 1467.909270][   T30]  __schedule+0x1895/0x4b30
[ 1467.913829][   T30]  ? __pfx___schedule+0x10/0x10
[ 1467.940901][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1467.962779][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1467.982107][   T30]  ? schedule+0x90/0x320
[ 1467.986693][   T30]  schedule+0x14b/0x320
[ 1467.990894][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1468.015463][   T30]  __mutex_lock+0x6a7/0xd70
[ 1468.020035][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1468.024745][   T30]  ? __tun_chr_ioctl+0x48c/0x2400
[ 1468.053268][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1468.070620][   T30]  ? __might_fault+0xc6/0x120
[ 1468.091919][   T30]  __tun_chr_ioctl+0x48c/0x2400
[ 1468.097234][   T30]  ? __pfx___tun_chr_ioctl+0x10/0x10
[ 1468.102575][   T30]  ? __fget_files+0x3f3/0x470
[ 1468.125440][   T30]  ? __pfx_tun_chr_ioctl+0x10/0x10
[ 1468.146622][   T30]  __se_sys_ioctl+0xf9/0x170
[ 1468.162796][   T30]  do_syscall_64+0xf3/0x230
[ 1468.182129][   T30]  ? clear_bhb_loop+0x35/0x90
[ 1468.187397][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1468.193346][   T30] RIP: 0033:0x7fac2bf7dff9
[ 1468.216835][   T30] RSP: 002b:00007fac2cd24038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1468.225319][   T30] RAX: ffffffffffffffda RBX: 00007fac2c135f80 RCX: 00007fac2bf7dff9
[ 1468.282403][   T30] RDX: 0000000020000040 RSI: 00000000400454ca RDI: 0000000000000004
[ 1468.302061][   T30] RBP: 00007fac2bff0296 R08: 0000000000000000 R09: 0000000000000000
[ 1468.337051][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1468.345086][   T30] R13: 0000000000000000 R14: 00007fac2c135f80 R15: 00007fac2c25fa28
[ 1468.382689][   T30]  </TASK>
[ 1468.386049][   T30] INFO: task syz.3.3891:18192 blocked for more than 146 seconds.
[ 1468.393792][   T30]       Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1468.431000][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1468.463148][   T30] task:syz.3.3891      state:D stack:26736 pid:18192 tgid:18187 ppid:17615  flags:0x00000004
[ 1468.491914][   T30] Call Trace:
[ 1468.495253][   T30]  <TASK>
[ 1468.511011][   T30]  __schedule+0x1895/0x4b30
[ 1468.525599][   T30]  ? __pfx___schedule+0x10/0x10
[ 1468.530521][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1468.549293][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1468.554834][   T30]  ? schedule+0x90/0x320
[ 1468.603618][   T30]  schedule+0x14b/0x320
[ 1468.622226][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1468.628513][   T30]  __mutex_lock+0x6a7/0xd70
[ 1468.633068][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1468.663793][   T30]  ? __tun_chr_ioctl+0x48c/0x2400
[ 1468.675874][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1468.680983][   T30]  __tun_chr_ioctl+0x48c/0x2400
[ 1468.710990][   T30]  ? __pfx___tun_chr_ioctl+0x10/0x10
[ 1468.727730][   T30]  ? __fget_files+0x3f3/0x470
[ 1468.732485][   T30]  ? __pfx_tun_chr_ioctl+0x10/0x10
[ 1468.752980][   T30]  __se_sys_ioctl+0xf9/0x170
[ 1468.772504][   T30]  do_syscall_64+0xf3/0x230
[ 1468.785414][   T30]  ? clear_bhb_loop+0x35/0x90
[ 1468.790155][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1468.813311][   T30] RIP: 0033:0x7fac2bf7dff9
[ 1468.825413][   T30] RSP: 002b:00007fac2cd03038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1468.833887][   T30] RAX: ffffffffffffffda RBX: 00007fac2c136058 RCX: 00007fac2bf7dff9
[ 1468.863387][   T30] RDX: 0000000020000340 RSI: 00000000400454d4 RDI: 0000000000000004
[ 1468.885433][   T30] RBP: 00007fac2bff0296 R08: 0000000000000000 R09: 0000000000000000
[ 1468.893467][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1468.942248][   T30] R13: 0000000000000000 R14: 00007fac2c136058 R15: 00007fac2c25fa28
[ 1468.952361][   T30]  </TASK>
[ 1468.965609][   T30] INFO: task syz.2.3897:18200 blocked for more than 146 seconds.
[ 1468.973371][   T30]       Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1469.015420][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1469.036802][   T30] task:syz.2.3897      state:D stack:25104 pid:18200 tgid:18199 ppid:17603  flags:0x00004006
[ 1469.065478][   T30] Call Trace:
[ 1469.068821][   T30]  <TASK>
[ 1469.071773][   T30]  __schedule+0x1895/0x4b30
[ 1469.102139][   T30]  ? __pfx___schedule+0x10/0x10
[ 1469.117927][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1469.154624][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1469.167958][T15144] usb 1-1: USB disconnect, device number 26
[ 1469.167952][   T30]  ? schedule+0x90/0x320
[ 1469.167987][   T30]  schedule+0x14b/0x320
[ 1469.203091][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1469.222158][   T30]  __mutex_lock+0x6a7/0xd70
[ 1469.235600][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1469.240345][   T30]  ? nl80211_pre_doit+0x5f/0x8b0
[ 1469.245318][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1469.281682][   T30]  ? genl_family_rcv_msg_attrs_parse+0xa3/0x290
[ 1469.306556][   T30]  ? __nla_parse+0x40/0x60
[ 1469.311040][   T30]  nl80211_pre_doit+0x5f/0x8b0
[ 1469.331483][   T30]  genl_rcv_msg+0xaaa/0xec0
[ 1469.352512][   T30]  ? mark_lock+0x9a/0x360
[ 1469.360009][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1469.365135][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1469.395548][   T30]  ? __pfx_nl80211_pre_doit+0x10/0x10
[ 1469.400992][   T30]  ? __pfx_nl80211_join_mesh+0x10/0x10
[ 1469.432582][   T30]  ? __pfx_nl80211_post_doit+0x10/0x10
[ 1469.452476][   T30]  ? __pfx___might_resched+0x10/0x10
[ 1469.458326][   T30]  netlink_rcv_skb+0x1e3/0x430
[ 1469.481679][   T30]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1469.495896][   T30]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1469.501287][   T30]  ? __netlink_deliver_tap+0x77e/0x7c0
[ 1469.535575][   T30]  genl_rcv+0x28/0x40
[ 1469.539620][   T30]  netlink_unicast+0x7f6/0x990
[ 1469.544423][   T30]  ? __pfx_netlink_unicast+0x10/0x10
[ 1469.571905][   T30]  ? __virt_addr_valid+0x183/0x530
[ 1469.585633][   T30]  ? __check_object_size+0x48e/0x900
[ 1469.590985][   T30]  netlink_sendmsg+0x8e4/0xcb0
[ 1469.622782][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1469.635589][   T30]  ? aa_sock_msg_perm+0x91/0x160
[ 1469.640594][   T30]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1469.665698][   T30]  __sock_sendmsg+0x221/0x270
[ 1469.671332][   T30]  ____sys_sendmsg+0x52a/0x7e0
[ 1469.702429][   T30]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1469.708485][   T30]  __sys_sendmsg+0x292/0x380
[ 1469.713136][   T30]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1469.736814][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1469.743223][   T30]  ? do_syscall_64+0x100/0x230
[ 1469.769105][   T30]  ? do_syscall_64+0xb6/0x230
[ 1469.773873][   T30]  do_syscall_64+0xf3/0x230
[ 1469.802765][   T30]  ? clear_bhb_loop+0x35/0x90
[ 1469.815610][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1469.821582][   T30] RIP: 0033:0x7f4f7857dff9
[ 1469.846815][   T30] RSP: 002b:00007f4f7943b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1469.855296][   T30] RAX: ffffffffffffffda RBX: 00007f4f78735f80 RCX: 00007f4f7857dff9
[ 1469.891337][   T30] RDX: 0000000000040840 RSI: 0000000020000180 RDI: 0000000000000003
[ 1469.911377][   T30] RBP: 00007f4f785f0296 R08: 0000000000000000 R09: 0000000000000000
[ 1469.942173][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1469.957092][   T30] R13: 0000000000000000 R14: 00007f4f78735f80 R15: 00007f4f7885fa28
[ 1469.965188][   T30]  </TASK>
[ 1469.993458][   T30] INFO: task kworker/u8:4:18212 blocked for more than 147 seconds.
[ 1470.025503][   T30]       Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1470.033194][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1470.071960][   T30] task:kworker/u8:4    state:D stack:25776 pid:18212 tgid:18212 ppid:2      flags:0x00004000
[ 1470.100039][   T30] Workqueue: ipv6_addrconf addrconf_dad_work
[ 1470.114595][   T30] Call Trace:
[ 1470.171347][   T30]  <TASK>
[ 1470.174436][   T30]  __schedule+0x1895/0x4b30
[ 1470.192088][   T30]  ? __pfx___schedule+0x10/0x10
[ 1470.205542][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1470.210638][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1470.242161][   T30]  ? kthread_data+0x52/0xd0
[ 1470.262872][   T30]  ? schedule+0x90/0x320
[ 1470.267676][   T30]  ? wq_worker_sleeping+0x66/0x240
[ 1470.272838][   T30]  ? schedule+0x90/0x320
[ 1470.299359][   T30]  schedule+0x14b/0x320
[ 1470.303590][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1470.336591][   T30]  __mutex_lock+0x6a7/0xd70
[ 1470.341163][   T30]  ? mark_lock+0x9a/0x360
[ 1470.362312][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1470.375421][   T30]  ? addrconf_dad_work+0xd0/0x16f0
[ 1470.380598][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1470.405676][   T30]  addrconf_dad_work+0xd0/0x16f0
[ 1470.410698][   T30]  ? __pfx_addrconf_dad_work+0x10/0x10
[ 1470.435480][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1470.441894][   T30]  ? process_scheduled_works+0x976/0x1850
[ 1470.472788][   T30]  process_scheduled_works+0xa63/0x1850
[ 1470.485994][   T30]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1470.492053][   T30]  ? assign_work+0x364/0x3d0
[ 1470.522155][   T30]  worker_thread+0x870/0xd30
[ 1470.535432][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1470.541396][   T30]  ? __kthread_parkme+0x169/0x1d0
[ 1470.563822][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1470.575530][   T30]  kthread+0x2f0/0x390
[ 1470.579668][   T30]  ? __pfx_worker_thread+0x10/0x10
[ 1470.584817][   T30]  ? __pfx_kthread+0x10/0x10
[ 1470.634679][   T30]  ret_from_fork+0x4b/0x80
[ 1470.640938][   T30]  ? __pfx_kthread+0x10/0x10
[ 1470.652615][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1470.665630][   T30]  </TASK>
[ 1470.685565][   T30] INFO: task syz.0.3901:18214 blocked for more than 148 seconds.
[ 1470.694199][   T30]       Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1470.725486][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1470.734217][   T30] task:syz.0.3901      state:D stack:27392 pid:18214 tgid:18213 ppid:17781  flags:0x00000004
[ 1470.804732][   T30] Call Trace:
[ 1470.817416][   T30]  <TASK>
[ 1470.820398][   T30]  __schedule+0x1895/0x4b30
[ 1470.824954][   T30]  ? __pfx___schedule+0x10/0x10
[ 1470.849969][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1470.855066][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1470.885603][   T30]  ? schedule+0x90/0x320
[ 1470.889920][   T30]  schedule+0x14b/0x320
[ 1470.894106][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1470.921681][   T30]  __mutex_lock+0x6a7/0xd70
[ 1470.942846][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1470.947937][   T30]  ? ip_mroute_setsockopt+0x15b/0x1190
[ 1470.953446][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1470.986944][   T30]  ip_mroute_setsockopt+0x15b/0x1190
[ 1470.992306][   T30]  ? schedule+0x90/0x320
[ 1471.022194][   T30]  ? schedule+0x90/0x320
[ 1471.027179][   T30]  ? __pfx_ip_mroute_setsockopt+0x10/0x10
[ 1471.032945][   T30]  ? __futex_wait+0x287/0x320
[ 1471.062654][   T30]  do_ip_setsockopt+0x129f/0x3cd0
[ 1471.082182][   T30]  ? __pfx_do_ip_setsockopt+0x10/0x10
[ 1471.096841][   T30]  ? aa_sk_perm+0x96d/0xab0
[ 1471.102308][   T30]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1471.127580][   T30]  ? __pfx_lock_acquire+0x10/0x10
[ 1471.132684][   T30]  ip_setsockopt+0x63/0x100
[ 1471.155590][   T30]  ? __pfx_sock_common_setsockopt+0x10/0x10
[ 1471.161549][   T30]  do_sock_setsockopt+0x3af/0x720
[ 1471.192233][   T30]  ? __pfx_do_sock_setsockopt+0x10/0x10
[ 1471.200011][   T30]  ? __fget_files+0x29/0x470
[ 1471.223205][   T30]  ? __fget_files+0x3f3/0x470
[ 1471.235154][   T30]  ? __fget_files+0x29/0x470
[ 1471.255541][   T30]  __sys_setsockopt+0x1a2/0x250
[ 1471.260461][   T30]  __x64_sys_setsockopt+0xb5/0xd0
[ 1471.284515][   T30]  do_syscall_64+0xf3/0x230
[ 1471.302117][   T30]  ? clear_bhb_loop+0x35/0x90
[ 1471.323972][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1471.342088][   T30] RIP: 0033:0x7fac6e57dff9
[ 1471.365433][   T30] RSP: 002b:00007fac6f3e8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1471.374055][   T30] RAX: ffffffffffffffda RBX: 00007fac6e735f80 RCX: 00007fac6e57dff9
[ 1471.413471][   T30] RDX: 00000000000000d1 RSI: 0000000000000000 RDI: 0000000000000004
[ 1471.446783][   T30] RBP: 00007fac6e5f0296 R08: 0000000000000000 R09: 0000000000000000
[ 1471.454820][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1471.485463][   T30] R13: 0000000000000000 R14: 00007fac6e735f80 R15: 00007fac6e85fa28
[ 1471.493519][   T30]  </TASK>
[ 1471.515916][   T30] INFO: task syz-executor:18220 blocked for more than 149 seconds.
[ 1471.523873][   T30]       Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1471.572307][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1471.591188][   T30] task:syz-executor    state:D stack:26816 pid:18220 tgid:18220 ppid:1      flags:0x00004004
[ 1471.631545][   T30] Call Trace:
[ 1471.634885][   T30]  <TASK>
[ 1471.645525][   T30]  __schedule+0x1895/0x4b30
[ 1471.650111][   T30]  ? __pfx___schedule+0x10/0x10
[ 1471.655010][   T30]  ? __pfx_lock_release+0x10/0x10
[ 1471.683887][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[ 1471.705472][   T30]  ? schedule+0x90/0x320
[ 1471.709877][   T30]  schedule+0x14b/0x320
[ 1471.755579][   T30]  schedule_preempt_disabled+0x13/0x30
[ 1471.761553][   T30]  __mutex_lock+0x6a7/0xd70
[ 1471.792501][   T30]  ? __mutex_lock+0x52a/0xd70
[ 1471.805828][   T30]  ? register_nexthop_notifier+0x84/0x290
[ 1471.811615][   T30]  ? __pfx___mutex_lock+0x10/0x10
[ 1471.842351][   T30]  ? __asan_memset+0x23/0x50
[ 1471.855605][   T30]  register_nexthop_notifier+0x84/0x290
[ 1471.861220][   T30]  ? __pfx_lockdep_init_map_type+0x10/0x10
[ 1471.886872][   T30]  ? __pfx_debug_check_no_locks_freed+0x10/0x10
[ 1471.893190][   T30]  ? __pfx_register_nexthop_notifier+0x10/0x10
[ 1471.924582][   T30]  ? __asan_memset+0x23/0x50
[ 1471.935580][   T30]  ops_init+0x31e/0x590
[ 1471.939822][   T30]  ? lockdep_init_map_type+0xa1/0x910
[ 1471.945235][   T30]  setup_net+0x287/0x9e0
[ 1471.971582][   T30]  ? __pfx_down_read_killable+0x10/0x10
[ 1471.985547][   T30]  ? __pfx_setup_net+0x10/0x10
[ 1471.990384][   T30]  copy_net_ns+0x33f/0x570
[ 1471.994840][   T30]  create_new_namespaces+0x425/0x7b0
[ 1472.035602][   T30]  unshare_nsproxy_namespaces+0x124/0x180
[ 1472.041395][   T30]  ksys_unshare+0x57d/0xa70
[ 1472.055492][   T30]  ? __pfx_ksys_unshare+0x10/0x10
[ 1472.060574][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1472.095952][   T30]  ? do_syscall_64+0x100/0x230
[ 1472.100789][   T30]  __x64_sys_unshare+0x38/0x40
[ 1472.125115][   T30]  do_syscall_64+0xf3/0x230
[ 1472.140698][   T30]  ? clear_bhb_loop+0x35/0x90
[ 1472.155490][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1472.161463][   T30] RIP: 0033:0x7f805557f7f7
[ 1472.185416][   T30] RSP: 002b:00007f805585ffa8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[ 1472.193901][   T30] RAX: ffffffffffffffda RBX: 00007f80555f1a85 RCX: 00007f805557f7f7
[ 1472.242895][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000
[ 1472.262413][   T30] RBP: 0000000000000000 R08: 00007f8056267d60 R09: 0000000000000000
[ 1472.285603][   T30] R10: 0000000000000000 R11: 0000000000000206 R12: 000000000000000c
[ 1472.293629][   T30] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000000
[ 1472.329682][   T30]  </TASK>
[ 1472.345500][   T30] 
[ 1472.345500][   T30] Showing all locks held in the system:
[ 1472.353260][   T30] 3 locks held by kworker/0:0/8:
[ 1472.425539][   T30] 1 lock held by khungtaskd/30:
[ 1472.430439][   T30]  #0: ffffffff8e937de0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[ 1472.475423][   T30] 4 locks held by kworker/u8:2/35:
[ 1472.480589][   T30]  #0: ffff88801baed948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1472.515536][   T30]  #1: ffffc90000ab7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1472.541705][   T30]  #2: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[ 1472.575801][   T30]  #3: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: ieee80211_unregister_hw+0x55/0x2c0
[ 1472.605723][   T30] 2 locks held by udevd/4685:
[ 1472.610454][   T30] 2 locks held by getty/4993:
[ 1472.615151][   T30]  #0: ffff88802e7ee0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1472.672262][   T30]  #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00
[ 1472.702248][   T30] 3 locks held by kworker/0:4/5282:
[ 1472.708405][   T30]  #0: ffff88801ac81948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1472.745434][   T30]  #1: ffffc9000441fd00 ((reg_check_chans).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1472.794768][   T30]  #2: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: reg_check_chans_work+0x99/0xfd0
[ 1472.822009][   T30] 2 locks held by kworker/0:6/5289:
[ 1472.827310][   T30] 3 locks held by kworker/u8:1/15019:
[ 1472.832704][   T30]  #0: ffff88801ac89148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1472.884021][   T30]  #1: ffffc90003937d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1472.912285][   T30]  #2: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[ 1472.941919][   T30] 6 locks held by kworker/0:7/15144:
[ 1472.948661][   T30] 1 lock held by syz-executor/17908:
[ 1472.953982][   T30]  #0: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0
[ 1472.994127][   T30] 7 locks held by syz-executor/18177:
[ 1473.012137][   T30]  #0: ffff88802cbd6420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x224/0xc90
[ 1473.041987][   T30]  #1: ffff888030407888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1ea/0x500
[ 1473.075778][   T30]  #2: ffff888143fc8878 (kn->active#49){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20e/0x500
[ 1473.097113][   T30]  #3: ffffffff8f570588 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480
[ 1473.132623][   T30]  #4: ffff88807bc990e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0
[ 1473.163218][   T30]  #5: ffff88805f8bc250 (&devlink->lock_key#86){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160
[ 1473.202172][   T30]  #6: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0
[ 1473.225430][   T30] 1 lock held by syz.3.3891/18190:
[ 1473.230598][   T30]  #0: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x48c/0x2400
[ 1473.265515][   T30] 1 lock held by syz.3.3891/18192:
[ 1473.270723][   T30]  #0: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: __tun_chr_ioctl+0x48c/0x2400
[ 1473.302825][   T30] 2 locks held by syz.2.3897/18200:
[ 1473.316813][   T30]  #0: ffffffff8fd381f0 (cb_lock){++++}-{3:3}, at: genl_rcv+0x19/0x40
[ 1473.325093][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: nl80211_pre_doit+0x5f/0x8b0
[ 1473.372013][   T30] 3 locks held by kworker/u8:4/18212:
[ 1473.392140][   T30]  #0: ffff88814b872148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[ 1473.415629][   T30]  #1: ffffc90003c87d00 ((work_completion)(&(&ifa->dad_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[ 1473.453080][   T30]  #2: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_dad_work+0xd0/0x16f0
[ 1473.482799][   T30] 1 lock held by syz.0.3901/18214:
[ 1473.502150][   T30]  #0: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: ip_mroute_setsockopt+0x15b/0x1190
[ 1473.543847][   T30] 2 locks held by syz-executor/18220:
[ 1473.549621][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1473.578647][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1473.622294][   T30] 2 locks held by syz-executor/18223:
[ 1473.628516][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1473.652263][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1473.685947][   T30] 2 locks held by syz-executor/18226:
[ 1473.691364][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1473.732131][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1473.766746][   T30] 2 locks held by syz-executor/18230:
[ 1473.772175][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1473.805424][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1473.833346][   T30] 2 locks held by syz-executor/18235:
[ 1473.852039][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1473.876800][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1473.905592][   T30] 2 locks held by syz-executor/18241:
[ 1473.911011][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1473.955625][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1473.986946][   T30] 2 locks held by syz-executor/18244:
[ 1473.992375][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1474.016592][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1474.045544][   T30] 2 locks held by syz-executor/18247:
[ 1474.050970][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1474.085797][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1474.122876][   T30] 2 locks held by syz-executor/18250:
[ 1474.142201][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1474.165424][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1474.202153][   T30] 2 locks held by syz-executor/18253:
[ 1474.227206][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1474.262817][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1474.293157][   T30] 2 locks held by syz-executor/18256:
[ 1474.305412][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1474.314905][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1474.362943][   T30] 2 locks held by syz-executor/18259:
[ 1474.383781][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1474.423875][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1474.446814][   T30] 2 locks held by syz-executor/18264:
[ 1474.452242][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1474.493353][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1474.522298][   T30] 2 locks held by syz-executor/18267:
[ 1474.542238][   T30]  #0: ffffffff8fcc5990 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[ 1474.586813][   T30]  #1: ffffffff8fcd2488 (rtnl_mutex){+.+.}-{3:3}, at: register_nexthop_notifier+0x84/0x290
[ 1474.609781][   T30] 
[ 1474.612166][   T30] =============================================
[ 1474.612166][   T30] 
[ 1474.645651][   T30] NMI backtrace for cpu 1
[ 1474.650039][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1474.660564][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1474.670643][   T30] Call Trace:
[ 1474.673945][   T30]  <TASK>
[ 1474.676906][   T30]  dump_stack_lvl+0x241/0x360
[ 1474.681645][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1474.686873][   T30]  ? __pfx__printk+0x10/0x10
[ 1474.691508][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[ 1474.696479][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1474.701960][   T30]  ? _printk+0xd5/0x120
[ 1474.706144][   T30]  ? __pfx__printk+0x10/0x10
[ 1474.710764][   T30]  ? __wake_up_klogd+0xcc/0x110
[ 1474.715644][   T30]  ? __pfx__printk+0x10/0x10
[ 1474.720260][   T30]  ? __rcu_read_unlock+0xa1/0x110
[ 1474.725308][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1474.731311][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[ 1474.737318][   T30]  watchdog+0xff4/0x1040
[ 1474.741586][   T30]  ? watchdog+0x1ea/0x1040
[ 1474.746033][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1474.750732][   T30]  kthread+0x2f0/0x390
[ 1474.754821][   T30]  ? __pfx_watchdog+0x10/0x10
[ 1474.759527][   T30]  ? __pfx_kthread+0x10/0x10
[ 1474.764135][   T30]  ret_from_fork+0x4b/0x80
[ 1474.768573][   T30]  ? __pfx_kthread+0x10/0x10
[ 1474.773181][   T30]  ret_from_fork_asm+0x1a/0x30
[ 1474.777989][   T30]  </TASK>
[ 1474.781898][   T30] Sending NMI from CPU 1 to CPUs 0:
[ 1474.788232][    C0] NMI backtrace for cpu 0
[ 1474.788246][    C0] CPU: 0 UID: 0 PID: 5289 Comm: kworker/0:6 Not tainted 6.12.0-rc3-syzkaller-00007-g6485cf5ea253 #0
[ 1474.788266][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1474.788277][    C0] Workqueue: events nsim_dev_trap_report_work
[ 1474.788300][    C0] RIP: 0010:lockdep_hardirqs_on_prepare+0x46f/0x780
[ 1474.788324][    C0] Code: ff df b8 ff ff ff ff 65 0f c1 05 3c 6c 92 7e 83 f8 01 4c 8b 7c 24 18 75 38 48 c7 44 24 20 0e 36 e0 45 4a c7 04 3a 00 00 00 00 <65> 48 8b 04 25 28 00 00 00 48 3b 44 24 60 0f 85 ab 02 00 00 48 8d
[ 1474.788339][    C0] RSP: 0018:ffffc900000073a0 EFLAGS: 00000046
[ 1474.788353][    C0] RAX: 0000000000000001 RBX: ffff888025bf46c0 RCX: ffffffff8170ce6a
[ 1474.788366][    C0] RDX: dffffc0000000000 RSI: ffffffff8c0adc40 RDI: ffffffff8c60fca0
[ 1474.788379][    C0] RBP: ffffc90000007448 R08: ffffffff942c88ef R09: 1ffffffff285911d
[ 1474.788392][    C0] R10: dffffc0000000000 R11: fffffbfff285911e R12: ffff888025bf47f0
[ 1474.788404][    C0] R13: 0000000000000006 R14: ffff888025bf46d8 R15: 1ffff92000000e78
[ 1474.788416][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1474.788430][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1474.788442][    C0] CR2: 0000001b3250fff8 CR3: 000000000e734000 CR4: 00000000003526f0
[ 1474.788464][    C0] Call Trace:
[ 1474.788471][    C0]  <NMI>
[ 1474.788478][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 1474.788498][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1474.788520][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1474.788538][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1474.788561][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1474.788580][    C0]  ? nmi_handle+0x14f/0x5a0
[ 1474.788596][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1474.788613][    C0]  ? lockdep_hardirqs_on_prepare+0x46f/0x780
[ 1474.788633][    C0]  ? default_do_nmi+0x63/0x160
[ 1474.788651][    C0]  ? exc_nmi+0x123/0x1f0
[ 1474.788669][    C0]  ? end_repeat_nmi+0xf/0x53
[ 1474.788694][    C0]  ? mark_lock+0x9a/0x360
[ 1474.788710][    C0]  ? lockdep_hardirqs_on_prepare+0x46f/0x780
[ 1474.788731][    C0]  ? lockdep_hardirqs_on_prepare+0x46f/0x780
[ 1474.788752][    C0]  ? lockdep_hardirqs_on_prepare+0x46f/0x780
[ 1474.788772][    C0]  </NMI>
[ 1474.788778][    C0]  <IRQ>
[ 1474.788786][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1474.788809][    C0]  ? rcu_is_watching+0x15/0xb0
[ 1474.788826][    C0]  trace_hardirqs_on+0x28/0x40
[ 1474.788844][    C0]  __local_bh_enable_ip+0x168/0x200
[ 1474.788863][    C0]  ? __pfx___local_bh_disable_ip+0x10/0x10
[ 1474.788882][    C0]  ? ipt_do_table+0x312/0x1860
[ 1474.788902][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1474.788926][    C0]  ipt_do_table+0x1552/0x1860
[ 1474.788957][    C0]  ? ipt_do_table+0x312/0x1860
[ 1474.788978][    C0]  ? __pfx_ipt_do_table+0x10/0x10
[ 1474.789000][    C0]  ? __pfx_nf_nat_inet_fn+0x10/0x10
[ 1474.789017][    C0]  ? __pfx_ipt_do_table+0x10/0x10
[ 1474.789035][    C0]  nf_hook_slow+0xc3/0x220
[ 1474.789054][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1474.789072][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1474.789090][    C0]  NF_HOOK+0x29e/0x450
[ 1474.789107][    C0]  ? NF_HOOK+0x9a/0x450
[ 1474.789123][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[ 1474.789141][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1474.789160][    C0]  ? ip_rcv_finish+0x406/0x560
[ 1474.789178][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 1474.789194][    C0]  NF_HOOK+0x3a4/0x450
[ 1474.789210][    C0]  ? __lock_acquire+0x1384/0x2050
[ 1474.789230][    C0]  ? NF_HOOK+0x9a/0x450
[ 1474.789246][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[ 1474.789262][    C0]  ? ip_rcv_core+0x801/0xd10
[ 1474.789279][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 1474.789299][    C0]  ? __pfx_ip_rcv+0x10/0x10
[ 1474.789315][    C0]  __netif_receive_skb+0x2bf/0x650
[ 1474.789335][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1474.789355][    C0]  ? __pfx___netif_receive_skb+0x10/0x10
[ 1474.789371][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1474.789392][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1474.789411][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[ 1474.789437][    C0]  process_backlog+0x662/0x15b0
[ 1474.789457][    C0]  ? process_backlog+0x33b/0x15b0
[ 1474.789479][    C0]  ? __pfx_process_backlog+0x10/0x10
[ 1474.789496][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1474.789517][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1474.789538][    C0]  __napi_poll+0xcb/0x490
[ 1474.789557][    C0]  net_rx_action+0x89b/0x1240
[ 1474.789584][    C0]  ? __pfx_net_rx_action+0x10/0x10
[ 1474.789604][    C0]  ? sched_clock+0x4a/0x70
[ 1474.789629][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1474.789654][    C0]  handle_softirqs+0x2c5/0x980
[ 1474.789680][    C0]  ? do_softirq+0x11b/0x1e0
[ 1474.789700][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[ 1474.789722][    C0]  do_softirq+0x11b/0x1e0
[ 1474.789739][    C0]  </IRQ>
[ 1474.789745][    C0]  <TASK>
[ 1474.789751][    C0]  ? __pfx_do_softirq+0x10/0x10
[ 1474.789769][    C0]  ? __pfx_lockdep_softirqs_on+0x10/0x10
[ 1474.789791][    C0]  ? rcu_is_watching+0x15/0xb0
[ 1474.789808][    C0]  __local_bh_enable_ip+0x1bb/0x200
[ 1474.789827][    C0]  ? nsim_dev_trap_report_work+0x75d/0xaa0
[ 1474.789845][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1474.789863][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1474.789883][    C0]  ? nsim_dev_trap_report_work+0x6a7/0xaa0
[ 1474.789903][    C0]  nsim_dev_trap_report_work+0x75d/0xaa0
[ 1474.789926][    C0]  ? process_scheduled_works+0x976/0x1850
[ 1474.789946][    C0]  process_scheduled_works+0xa63/0x1850
[ 1474.789977][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1474.790000][    C0]  ? assign_work+0x364/0x3d0
[ 1474.790021][    C0]  worker_thread+0x870/0xd30
[ 1474.790046][    C0]  ? __kthread_parkme+0x169/0x1d0
[ 1474.790067][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1474.790086][    C0]  kthread+0x2f0/0x390
[ 1474.790101][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1474.790119][    C0]  ? __pfx_kthread+0x10/0x10
[ 1474.790134][    C0]  ret_from_fork+0x4b/0x80
[ 1474.790153][    C0]  ? __pfx_kthread+0x10/0x10
[ 1474.790168][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1474.790193][    C0]  </TASK>