last executing test programs:

26.720580461s ago: executing program 2 (id=663):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001fc0)={0x0, 0x0, 0x0}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r1, 0xc01864b0, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0xc})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000880)=@newtaction={0x84, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x70, 0x1, [@m_tunnel_key={0x6c, 0x1, 0x0, 0x0, {{0xf}, {0x3c, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0xb, @loopback={0x400000000000000}}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6}, @TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x84}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
chdir(&(0x7f0000002340)='./bus\x00')
ftruncate(0xffffffffffffffff, 0x2007ffb)
getsockopt(0xffffffffffffffff, 0x0, 0x2721, 0x0, &(0x7f0000000000))
r3 = openat$cgroup_ro(r2, &(0x7f0000000180)='blkio.bfq.empty_time\x00', 0x275a, 0x0)
write$binfmt_aout(r3, &(0x7f00000002c0)=ANY=[], 0xc1)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)

25.433640325s ago: executing program 2 (id=664):
r0 = syz_open_dev$vim2m(&(0x7f0000000140), 0x0, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000240)={0x0, @raw_data="a425e2f1a54d24f15852313560608d70566e425a6c36af37b33fac9d31c8a9c7044410d324b03e044e454d2092a62fea8f13441431ce248bfc73a6726ee61ba491d15d8f392ff66fe0b17f0e11f5d2367d5593205ab1efa97d40619a553e7da2518125b850a186ef691daa55c9e50ffaf6ddc25220ded32aeba4524cec1afbd17abba1d15ea05e97ed3dcad452db6e08a991e2c78b057f55de7fdeba7411ce65700c0a1ad7946ff7c355db87566e3e5abb7a37a06731ed19ddfa970bb58a27fd9fa194c092730319"})
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f00000010c0)={0x84, &(0x7f0000000080)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(0xffffffffffffffff, 0x0, 0x0)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYRES8=r0], 0x24)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000380)={'team0\x00', <r2=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000340)={@rand_addr=' \x01\x00', 0x6f, r2})
sendto$inet6(r1, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_open_dev$loop(0x0, 0x75f, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r3 = socket$inet6(0xa, 0x802, 0x88)
sendto$inet6(r3, 0x0, 0x0, 0x4008840, &(0x7f0000000180)={0xa, 0x4e23, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)
sendto$inet6(r3, &(0x7f0000000000)="17", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f00000000c0)=[@window={0x3, 0xf0b7, 0xe}], 0x1)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r4, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r5 = syz_io_uring_setup(0xd2, &(0x7f0000000480), 0x0, &(0x7f0000000080)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r6, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r5, 0x0, 0xdfd2, 0x1, 0x0, 0x0)
ioctl$SIOCGSTAMPNS(r1, 0x8907, 0x0)
shutdown(r1, 0x1)
recvmmsg(r1, &(0x7f0000000840)=[{{0x0, 0x0, 0x0}}], 0x414, 0x0, 0x0)
add_key$keyring(0x0, &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0x0)
add_key(&(0x7f0000000100)='asymmetric\x00', 0x0, &(0x7f0000000180)='0', 0x1, 0x0)
r7 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r7, 0x890c, &(0x7f0000000000))

23.752260578s ago: executing program 2 (id=669):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r0, &(0x7f0000003580)={0x2, 0x0, @dev}, 0x10)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x2c, 0x17, 0xa, 0x3, 0x0, 0x0, {0x3}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}]}, 0x2c}}, 0x4880)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xff, 0x86, 0x76, 0x8, 0x424, 0x7800, 0xe941, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x7a, 0xcd, 0x37}}]}}]}}, 0x0)
madvise(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x11)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x0, 0x0, 0x0, 0x20000004, 0x0, 0x0, 0x41000}, 0x90)
add_key(&(0x7f0000000000)='asymmetric\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff)
request_key(&(0x7f0000000c40)='encrypted\x00', &(0x7f0000000c80)={'syz', 0x0}, &(0x7f0000000cc0)='[,\v]@+\x00', 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6", 0x10)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmmsg$alg(r5, &(0x7f0000000e00)=[{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000440)="d4e666e247641d8d52a3ef9c12c8178a747bbd0977ea55bea644a3797cd4bd60faef2cacc01e4d7e7b27f8b0f4dbc1fde22bed4446377541a15dc8a2d0f1146c6c2ad4868908c8982f6ab02197684785fa68", 0x52}], 0x1, &(0x7f0000000740)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)
recvmsg(r5, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000180)=""/74, 0xf}, {&(0x7f0000000580)=""/66, 0x42}], 0x2}, 0x0)
add_key(&(0x7f0000000f80)='encrypted\x00', &(0x7f0000000fc0)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000140)={0x40, 0xc, 0xfffffffb})

20.084570473s ago: executing program 2 (id=674):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000040)={0x0, [[], [0x4], [0xfe]], '\x00', [{0x8001}, {}, {}, {0x10, 0x1, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x2}]})

19.735897666s ago: executing program 2 (id=676):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=ANY=[@ANYBLOB="fe08675d180002"], 0x1c}}, 0x0)
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, &(0x7f0000000080)={0x0, 0x0, 0x10002})
r0 = syz_open_dev$usbfs(&(0x7f0000003f00), 0x1ff, 0xa401)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000000)={0x0, 0x0, "ec9fe44d4dbe56a60274fcffffffffffffff14e315eeb406bfdd73835e57efa94b1a0275781c647aa7e3470c6028643b17832b10b386a6f73791011c26a9aa141f406e312295ee620a9a46577b9249b738fe7750bec83bf7ed5b67213f9742c3f0357d70eee802901d7645c3f87e4b21482b76f2ad8eaac090272081f98fd2e3e5a63e006204df635e731a5bfcf142f4529517454618de595cd179445b4bdbf698b9986356f0ebf7d25a57774ef474f86a3ad24ae9f0bf94b99e6b87de5f79d383d05bb32701daed408caecc9e0c48a3740bbe6e1c1fd400cfdfe756ca9ad08e36650400"})
clock_gettime(0xb, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$packet(0x11, 0x3, 0x300)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
socket$netlink(0x10, 0x3, 0x8000000004)
writev(0xffffffffffffffff, &(0x7f0000001200)=[{&(0x7f0000000080)="580000001400add427323b472545b45602117fffffff81000e220e227f000001925aa80020007b00090080007f000001e809000000ff0000f03ac710020000", 0x3f}], 0x1)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1b, 0x7, 0x7, 0x8, 0x1900, 0xffffffffffffffff, 0xcc8, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x2, 0x4}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='rxrpc_receive\x00', r6}, 0x10)
get_robust_list(0x0, 0x0, 0x0)
creat(&(0x7f0000000400)='./bus\x00', 0x0)

18.475096841s ago: executing program 2 (id=680):
syz_io_uring_setup(0x7dca, &(0x7f0000000340), &(0x7f0000000240), &(0x7f0000000100))
io_uring_setup(0x47f0, &(0x7f0000000440))
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt(r0, 0x84, 0x7f, &(0x7f0000000040)="000000000980ffff", 0x8)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r1 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$EBT_SO_GET_INFO(r1, 0x0, 0x80, &(0x7f0000000280)={'nat\x00', 0x0, 0x0, 0x0, [0x664f, 0x8, 0x0, 0x2, 0xa5b, 0x7]}, &(0x7f0000000400)=0x78)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_open_dev$ttys(0xc, 0x2, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000300)={0xa, 0x0, 0x0, @private1}, 0x1c)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0xc, &(0x7f0000000000)=@assoc_value, &(0x7f0000000100)=0x8)

12.996678048s ago: executing program 3 (id=692):
socket$nl_netfilter(0x10, 0x3, 0xc)
getpid()
socket$inet(0x2, 0x0, 0x0)
landlock_create_ruleset(0x0, 0x0, 0x0)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x0, @any, 0xfffa}, 0xe)
connect$bt_l2cap(r3, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
writev(r3, &(0x7f0000000240)=[{&(0x7f0000000000)="1e", 0x1}], 0x1)

11.04062506s ago: executing program 1 (id=696):
socket$nl_netfilter(0x10, 0x3, 0xc)
getpid()
landlock_create_ruleset(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r3, &(0x7f0000000040)={0x1f, 0x0, @any, 0xfffa}, 0xe)
connect$bt_l2cap(r3, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
writev(r3, &(0x7f0000000240)=[{&(0x7f0000000000)="1e", 0x1}], 0x1)

10.727467872s ago: executing program 0 (id=697):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000140)="fa791027e01b4d51411c754af98e6e4427d85564937fa989c20892b2cac8664dd5bc099f9664a31e", 0x28}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100006573bb08ac051992da610200000109021b000100000000090400000103b800000905"], 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="200000001300290a000000000000000007000000", @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00'], 0x20}}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000004c0)={0x77475647}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x1, &(0x7f0000000500)=ANY=[@ANYBLOB="0000fcff08000000"], &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x28, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000680)={0x2, 0x5, 0x10, 0x1951}, 0x10, 0x0, 0x0, 0x9, &(0x7f00000006c0)=[0x1, 0x1, 0x1], &(0x7f0000000700)=[{0x2, 0x1, 0xc}, {0x3, 0x5, 0xd, 0x8}, {0x0, 0x3, 0xf, 0x1}, {0x2, 0x2, 0xa, 0x9}, {0x3, 0x3, 0xa, 0xb}, {0x3, 0x4, 0x2, 0xc}, {0x1, 0x2, 0x8, 0x8}, {0x0, 0x5, 0xd, 0x6}, {0x3, 0x1, 0x5, 0x8}], 0x10, 0x1}, 0x90)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r6 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
r7 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
r8 = dup2(r6, r7)
ioctl$IOC_PR_PREEMPT(r8, 0xc05c6104, &(0x7f0000000080))
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
fgetxattr(r9, &(0x7f0000000000)=@known='trusted.overlay.upper\x00', 0x0, 0x0)

9.894296664s ago: executing program 4 (id=698):
syz_io_uring_setup(0x3b, &(0x7f0000000300)={0x0, 0x0, 0x2}, &(0x7f0000000380), &(0x7f0000000100))
socket$inet_smc(0x2b, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000140)={0x0, <r1=>0x0})
r2 = syz_open_procfs(r1, &(0x7f0000000600)='fd/4\x00')
open_by_handle_at(r2, &(0x7f0000000180)=ANY=[@ANYBLOB="0c00000001000000002a"], 0x0)

9.368709689s ago: executing program 4 (id=699):
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_disconnect(r0)
r1 = syz_usb_connect(0x0, 0x24, &(0x7f00000007c0)=ANY=[], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

7.651559302s ago: executing program 3 (id=700):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x5, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff7ffc}, {0x2, 0x7, 0x0, 0x80000001}, {0x3, 0x1, 0x96, 0xbc}, {0x0, 0x4, 0x2, 0x2}, {}]})
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x147c40, 0x0)
preadv2(r0, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0xffe00}], 0x5, 0x0, 0x0, 0x0)

7.500933363s ago: executing program 0 (id=701):
r0 = syz_io_uring_setup(0x7dca, &(0x7f0000000340), &(0x7f0000000240), &(0x7f0000000100))
pwrite64(r0, 0x0, 0x0, 0x0)

7.268524286s ago: executing program 3 (id=702):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r0, &(0x7f0000003580)={0x2, 0x0, @dev}, 0x10)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r2, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x2c, 0x17, 0xa, 0x3, 0x0, 0x0, {0x3}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz1\x00'}]}, 0x2c}}, 0x4880)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000002000000140001800500020001"], 0x28}}, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xff, 0x86, 0x76, 0x8, 0x424, 0x7800, 0xe941, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x7a, 0xcd, 0x37}}]}}]}}, 0x0)
madvise(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x11)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x0, 0x0, 0x0, 0x20000004, 0x0, 0x0, 0x41000}, 0x90)
add_key(&(0x7f0000000000)='asymmetric\x00', 0x0, 0x0, 0x0, 0xffffffffffffffff)
request_key(&(0x7f0000000c40)='encrypted\x00', &(0x7f0000000c80)={'syz', 0x0}, &(0x7f0000000cc0)='[,\v]@+\x00', 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(twofish)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5910fae9d6dcd3292ea54c7b6", 0x10)
r5 = accept4(r4, 0x0, 0x0, 0x0)
sendmmsg$alg(r5, &(0x7f0000000e00)=[{0x0, 0x0, &(0x7f0000000680)=[{&(0x7f0000000440)="d4e666e247641d8d52a3ef9c12c8178a747bbd0977ea55bea644a3797cd4bd60faef2cacc01e4d7e7b27f8b0f4dbc1fde22bed4446377541a15dc8a2d0f1146c6c2ad4868908c8982f6ab02197684785fa68", 0x52}], 0x1, &(0x7f0000000740)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)
recvmsg(r5, &(0x7f0000001400)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000180)=""/74, 0xf}, {&(0x7f0000000580)=""/66, 0x42}], 0x2}, 0x0)
add_key(&(0x7f0000000f80)='encrypted\x00', &(0x7f0000000fc0)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, &(0x7f0000000140)={0x40, 0xc, 0xfffffffb})

7.160629898s ago: executing program 0 (id=703):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = syz_open_dev$video(&(0x7f0000000000), 0x7ff, 0x0)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000000040)={0x0, 0x32315559, 0x143})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f0000000340))
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
syz_emit_vhci(&(0x7f00000005c0)=ANY=[@ANYBLOB="04040a00000000000054679202ce9eaa48b326b038d97544c8b681bab247412afab3663029531077c8c4fa2f7501610d4eae6214096ae92430cd63486f07b04d9c519ab15a6e842e1352398f95ff35f5115a2c6c50f63336179b5e6b1f774a71a2bcf7dd5691833ac53a02f3614eae3afb9549"], 0xd)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r4, 0xaf01, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r4, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r5, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

6.771814824s ago: executing program 1 (id=704):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
mount_setattr(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f0000000080)={0x0, 0x0, 0x20000}, 0x20)
r1 = open_tree(0xffffffffffffff9c, 0x0, 0x89901)
move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000100)='./file0/../file0/../file0/../file0\x00', &(0x7f00000000c0)='./file0/../file0/../file0/../file0\x00')

6.035804811s ago: executing program 1 (id=705):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000040)={0x0, [[0x9ef9], [0x4], [0xfe]], '\x00', [{0x8001}, {}, {}, {0x10, 0x1, 0x0, 0x1}]})

6.015965785s ago: executing program 0 (id=706):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket(0x0, 0x0, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x0)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)=@newlink={0x4c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_GRE_OFLAGS={0x6, 0x3, 0x80}, @IFLA_GRE_IKEY={0x8, 0x4, 0x3}, @IFLA_GRE_ENCAP_TYPE={0x6, 0xe, 0x2}]}}}]}, 0x4c}}, 0x0)
r3 = syz_open_dev$vcsn(&(0x7f0000000040), 0xfffffffffffffffd, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000340)=ANY=[@ANYRESDEC=r2, @ANYRESDEC=r2, @ANYBLOB="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"], 0xfdef)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mlock(&(0x7f0000ffb000/0x2000)=nil, 0x2000)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000140)=0x15)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f00000002c0)=0x7e)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)

5.691925024s ago: executing program 4 (id=707):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x8, 0xb}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002300000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0022220000009623139287a6770c00002e0a9000070900be0083000200000709007a150b5d8c3dda"], 0x0}, 0x0)

5.552974837s ago: executing program 1 (id=708):
syz_io_uring_setup(0x3b, &(0x7f0000000300)={0x0, 0x0, 0x2}, &(0x7f0000000380), &(0x7f0000000100))
socket$inet_smc(0x2b, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r0 = inotify_init1(0x0)
fcntl$setown(r0, 0x8, 0xffffffffffffffff)
fcntl$getownex(r0, 0x10, &(0x7f0000000140)={0x0, <r1=>0x0})
r2 = syz_open_procfs(r1, &(0x7f0000000600)='fd/4\x00')
open_by_handle_at(r2, &(0x7f0000000180)=ANY=[@ANYBLOB="0c00000001000000002a"], 0x0)

5.299313459s ago: executing program 3 (id=709):
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r3 = syz_io_uring_setup(0x3b, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000100)=<r5=>0x0)
r6 = socket$inet_smc(0x2b, 0x1, 0x0)
io_uring_enter(0xffffffffffffffff, 0x0, 0xfffffffd, 0x0, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000001c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r6, 0x0})
listen(r6, 0x0)
io_uring_enter(r3, 0x92, 0x0, 0x0, 0x0, 0x0)

5.080856394s ago: executing program 1 (id=710):
socket$inet6(0xa, 0x3, 0x87)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000280)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x90)
add_key$fscrypt_v1(0x0, &(0x7f0000000080)={'fscrypt:', @desc2}, 0x0, 0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x1000089}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000100), 0xfecc)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
listen(r3, 0x0)

5.079730762s ago: executing program 0 (id=711):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
writev(r0, &(0x7f00000003c0)=[{&(0x7f0000000140)="fa791027e01b4d51411c754af98e6e4427d85564937fa989c20892b2cac8664dd5bc099f9664a31e", 0x28}], 0x1)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100006573bb08ac051992da610200000109021b000100000000090400000103b800000905"], 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="200000001300290a000000000000000007000000", @ANYRES32=r2, @ANYBLOB='\x00\x00\x00\x00'], 0x20}}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000004c0)={0x77475647}, 0x8)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x1, &(0x7f0000000500)=ANY=[@ANYBLOB="0000fcff08000000"], &(0x7f0000000540)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x28, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000680)={0x2, 0x5, 0x10, 0x1951}, 0x10, 0x0, 0x0, 0x9, &(0x7f00000006c0)=[0x1, 0x1, 0x1], &(0x7f0000000700)=[{0x2, 0x1, 0xc}, {0x3, 0x5, 0xd, 0x8}, {0x0, 0x3, 0xf, 0x1}, {0x2, 0x2, 0xa, 0x9}, {0x3, 0x3, 0xa, 0xb}, {0x3, 0x4, 0x2, 0xc}, {0x1, 0x2, 0x8, 0x8}, {0x0, 0x5, 0xd, 0x6}, {0x3, 0x1, 0x5, 0x8}], 0x10, 0x1}, 0x90)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r6 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
r7 = syz_open_dev$cec(&(0x7f0000000000), 0xffffffffffffffff, 0x0)
r8 = dup2(r6, r7)
ioctl$IOC_PR_PREEMPT(r8, 0xc05c6104, &(0x7f0000000080))
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
fgetxattr(r9, &(0x7f0000000000)=@known='trusted.overlay.upper\x00', 0x0, 0x0)

3.852787212s ago: executing program 1 (id=712):
syz_open_dev$hidraw(&(0x7f0000000080), 0x0, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, &(0x7f0000000140)={{0x1, 0x1, 0x18, <r2=>0xffffffffffffffff}, './file0\x00'})
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x3c1, 0x3, 0x480, 0x2a8, 0x5802, 0x294, 0x2a8, 0x294, 0x3b0, 0x378, 0x378, 0x3b0, 0x378, 0x7fffffe, 0x0, {[{{@ipv6={@private0, @remote, [], [], 'wg2\x00', 'macsec0\x00'}, 0x0, 0x240, 0x2a8, 0x52020000, {}, [@common=@inet=@hashlimit2={{0x150}, {'veth1_to_batadv\x00', {0xfffff7fffffffffd, 0x0, 0x60, 0x0, 0x0, 0x1, 0x7fffffff}}}, @common=@dst={{0x48}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x3, {0x0, 0x0, 0x0, 0x0, 'syz1\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@mcast1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4e0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x3c1, 0x3, 0x468, 0x298, 0x168, 0x0, 0x0, 0xa, 0x398, 0x250, 0x250, 0x398, 0x250, 0x3, 0x0, {[{{@uncond, 0x0, 0x258, 0x298, 0x0, {0x0, 0x28e}, [@common=@inet=@hashlimit3={{0x158}, {'caif0\x00', {0x0, 0x7ff, 0x0, 0x0, 0x0, 0x6, 0x1000}}}, @common=@inet=@hashlimit1={{0x58}, {'sit0\x00'}}]}, @common=@inet=@LOG={0x40, 'LOG\x00', 0x0, {0x0, 0x0, "48c01c5140d722edd3fb24545886bbd1be494201b400"}}}, {{@uncond, 0x0, 0xd0, 0x100, 0x0, {}, [@common=@inet=@set2={{0x28}}]}, @common=@inet=@SET2={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x4c8)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0xfffffffffffffffe)
setsockopt$inet_tcp_int(r2, 0x6, 0x30e3d44371160c13, &(0x7f0000000180)=0x7, 0x4)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$SIOCPNGETOBJECT(0xffffffffffffffff, 0x89e0, &(0x7f0000000480))
socket(0x0, 0x0, 0x0)
setsockopt$MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r6, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r6, &(0x7f0000000200)=ANY=[@ANYBLOB='4\x00\x00\x00\a'], 0xd)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000e3a000/0x2000)=nil, 0x2000, 0x17)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x4e, &(0x7f0000002280)=ANY=[@ANYBLOB="0180c2000000aaaaaaaaaabb86dd0b00400000183afffc000000000000000000000000000000fe8000000000000000000000000000aa88009078fc000000fe800000000000000000000000000000732bc09ecfe223e13db39f0f0c2a7dc059f3b4dd440255dee41ce4ad208c75907cf018cec3cf49f76ab1104a30f5bf3482fbc2f20f914e72db4187dd7c79056a8adfc7c8b6742482550ab5805c3ab4a51ed2aacb04fbc41fc7fc73ab483c86c7967f1a6676"], 0x0)
ioctl$KVM_CAP_EXCEPTION_PAYLOAD(r1, 0x4068aea3, &(0x7f0000000080)={0xa4, 0x0, 0x7fffffffffffffff})
syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000090000082502000000000000000109025c00020100f92a0904000001020900000524060001053408fa6e0d240f0100000000000d000a0006471a0100001905"], 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

3.735635464s ago: executing program 3 (id=713):
mknod(0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$rds(0x15, 0x5, 0x0)
openat$vimc2(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_emit_vhci(0x0, 0x15)
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000280)={0x0, 0x4}, 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x4e24, 0x0, @rand_addr=' \x01\x00', 0x3}]}, &(0x7f0000000240)=0x10)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$sock_SIOCBRDELBR(r0, 0x89a1, &(0x7f0000000340)='veth1_to_bridge\x00')
ioctl$KVM_SET_CPUID2(r3, 0x4008ae90, &(0x7f0000000140)={0x1, 0x0, [{0x7, 0x1, 0x1, 0x0, 0x0, 0xffff61ce}]})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'lo\x00'})
ioctl$KVM_RUN(r6, 0xae80, 0x0)

2.696500716s ago: executing program 3 (id=714):
r0 = socket$inet6(0xa, 0x3, 0x87)
openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
socket$packet(0x11, 0x0, 0x300)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r5 = dup(r4)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendfile(r5, r5, 0x0, 0x20003)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cgroup.controllers\x00', 0x275a, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, 0x0, 0x0)

1.439397254s ago: executing program 4 (id=715):
socket$nl_route(0x10, 0x3, 0x0)
mlock2(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r2 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f00000000c0)=0x3)
r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000100)={0xffffffffffffffff, 0x5, 0x18}, 0xc)
r4 = syz_open_dev$vcsn(&(0x7f00000002c0), 0x200, 0x80000)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_tracing={0x1a, 0xc, &(0x7f0000000140)=@raw=[@generic={0x7, 0x3, 0x0, 0x1, 0x1}, @map_fd={0x18, 0xb, 0x1, 0x0, r3}, @initr0={0x18, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0xb043}, @tail_call={{0x18, 0x2, 0x1, 0x0, r2}}, @cb_func={0x18, 0x5, 0x4, 0x0, 0xfffffffffffffffb}], &(0x7f00000001c0)='GPL\x00', 0x8, 0x87, &(0x7f0000000200)=""/135, 0x41000, 0x14, '\x00', 0x0, 0x19, r4, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000300)={0x0, 0xe, 0x67f3, 0xa}, 0x10, 0x2f190, 0xffffffffffffffff, 0x3, &(0x7f0000000380)=[0xffffffffffffffff], &(0x7f00000003c0)=[{0x3, 0x5, 0xd, 0xa}, {0x4, 0x2, 0xa, 0x5}, {0x2, 0x4, 0xf, 0x1}], 0x10, 0x2}, 0x90)
sendmsg$NFNL_MSG_COMPAT_GET(r0, &(0x7f00000005c0)={&(0x7f00000004c0)={0x10, 0x0, 0x0, 0x420106}, 0xc, &(0x7f0000000580)={&(0x7f0000000500)={0x5c, 0x0, 0xb, 0x0, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFTA_COMPAT_NAME={0xe, 0x1, '/dev/vcs#\x00'}, @NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_COMPAT_NAME={0x7, 0x1, ',\xc8\x00'}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_COMPAT_REV={0x8, 0x2, 0x1, 0x0, 0x5}, @NFTA_COMPAT_NAME={0x5, 0x1, '\x00'}, @NFTA_COMPAT_NAME={0x6, 0x1, '^\x00'}, @NFTA_COMPAT_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}]}, 0x5c}, 0x1, 0x0, 0x0, 0x5}, 0x404c000)
r5 = syz_open_dev$vivid(&(0x7f0000000600), 0x2, 0x2)
r6 = dup3(r4, r5, 0x0)
setsockopt$packet_int(r6, 0x107, 0x7, &(0x7f0000000640)=0x6, 0x4)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r4, 0xc100565c, &(0x7f0000000680)={0x603, 0xffff19e9, 0x1, {0x1, @raw_data="0a8a41f1c2b5080833cb839587d3a5112fa91b7321de420d34c1e2f61d76e19f15fdcc204e8e0316b0e674421167fc244ce3c06b38b544284d8e582814842c695cd42e3d6f765c189f9c364aa797141a809061ee08697be681d62a18594f43fecbe923c471060bc11d08de361c5629cf3a50d504f0123bcf7dada08de7400e00c20eca261e2312edd8f6aa3cf5a40b273283395715fd23c8941b9d6472f1dac45eeef8ca33b5c777ecba14933eacbeffecb01f7e3c0f03c9bdb1d8f64107023bf26c0faac0f78676"}, 0xe1})
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r6, 0xc0189379, &(0x7f0000000780)={{0x1, 0x1, 0x18, <r7=>r1}, './file0\x00'})
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000800), r4)
sendmsg$DEVLINK_CMD_RATE_GET(r7, &(0x7f00000008c0)={&(0x7f00000007c0)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000880)={&(0x7f0000000840)={0x24, r8, 0x20, 0x70bd27, 0x25dfdbfc, {}, [@DEVLINK_ATTR_RATE_NODE_NAME={0xe}]}, 0x24}, 0x1, 0x0, 0x0, 0x40800}, 0x48000)
ioctl$LOOP_CLR_FD(r1, 0x4c01)
ioctl$FBIOGET_CON2FBMAP(r4, 0x460f, &(0x7f0000000900)={0x10, 0x1})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000a00), r7)
ioctl$TIOCL_SETSEL(r6, 0x541c, &(0x7f0000000b40)={0x2, {0x2, 0x400, 0x0, 0x40, 0xfff, 0x10}})
syz_genetlink_get_family_id$SEG6(&(0x7f0000000b80), r6)
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r7, 0x89f8, &(0x7f0000000e80)={'syztnl2\x00', &(0x7f0000000e00)={'syztnl0\x00', <r9=>0x0, 0x8, 0x8, 0x6, 0x400, {{0x13, 0x4, 0x3, 0x20, 0x4c, 0x68, 0x0, 0xc, 0x29, 0x0, @remote, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@end, @noop, @timestamp_addr={0x44, 0x34, 0x98, 0x1, 0x5, [{@broadcast, 0x200}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x7}, {@broadcast, 0x8c}, {@multicast2, 0xc1}, {@private=0xa010101, 0x7}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0xfffffff8}]}]}}}}})
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000f40)={0x2, <r10=>0x0}, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000001000)={0xc, 0x1d, &(0x7f0000000bc0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x8001}, {{0x18, 0x1, 0x1, 0x0, r6}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @btf_id={0x18, 0x7, 0x3, 0x0, 0x4}, @cb_func={0x18, 0x1, 0x4, 0x0, 0xfffffffffffffffa}, @map_idx={0x18, 0x8, 0x5, 0x0, 0x3}, @map_idx_val={0x18, 0x7, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0xebf}, @alu={0x7, 0x1, 0x1, 0xa, 0x0, 0x10, 0x4}, @generic={0x9, 0x8, 0x1, 0x93, 0x7}, @call={0x85, 0x0, 0x0, 0x24}, @cb_func={0x18, 0x4, 0x4, 0x0, 0x5}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000cc0)='GPL\x00', 0xfffffff1, 0xe1, &(0x7f0000000d00)=""/225, 0x41100, 0x0, '\x00', r9, 0x32, r6, 0x8, &(0x7f0000000ec0)={0x1, 0x2}, 0x8, 0x10, &(0x7f0000000f00)={0x4, 0x6, 0x0, 0xfffffff8}, 0x10, r10, r4, 0x4, &(0x7f0000000f80)=[r3, r7], &(0x7f0000000fc0)=[{0x1, 0x3, 0x6, 0x7}, {0x1, 0x1, 0x3, 0x5}, {0x4, 0x2, 0x8, 0xe}, {0x1, 0x3, 0x10, 0xb}], 0x10, 0x7fffffff}, 0x90)
mmap$binder(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x1, 0x11, r4, 0x6)

1.208499229s ago: executing program 0 (id=716):
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, 0x0, 0x2a8)
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$kcm(0x10, 0x0, 0x10)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="240000001800090400000000000000000a000000000000000000000008001e00"], 0x24}}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000380)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010d00000000000000850a000000000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32], 0x4c}}, 0x0)

211.119873ms ago: executing program 4 (id=717):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000000780), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001ec0)=ANY=[@ANYBLOB='h\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000010000000000004416431de8a0"], 0x68}}, 0xc800)

0s ago: executing program 4 (id=718):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000040)={0x0, [[0x9ef9], [0x4], [0xfe]], '\x00', [{0x8001}, {}, {}, {0x0, 0x1, 0x0, 0x1}]})

kernel console output (not intermixed with test programs):

xpected len 13 expected 8
[  177.090416][ T6617] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.092627][ T6695] netlink: 'syz.2.368': attribute type 1 has an invalid length.
[  177.110686][ T6691] netlink: 'syz.0.367': attribute type 3 has an invalid length.
[  177.134296][ T6691] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.367'.
[  177.153760][ T6695] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.368'.
[  177.245769][   T47] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  177.356743][ T6617] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.454786][   T47] usb 4-1: Using ep0 maxpacket: 16
[  177.502917][   T47] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  177.525062][   T47] usb 4-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[  177.572379][   T47] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.599249][   T47] usb 4-1: config 0 descriptor??
[  177.643325][ T6617] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.724996][ T6699] input: syz0 as /devices/virtual/input/input14
[  177.909624][ T6617] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.227289][ T6617] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  178.326651][ T6617] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  178.360074][ T6617] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  178.435291][ T6617] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  178.811361][ T5264] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  179.007675][ T6617] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.038806][ T5264] usb 5-1: Using ep0 maxpacket: 16
[  179.061853][ T5264] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  179.107737][ T6617] 8021q: adding VLAN 0 to HW filter on device team0
[  179.128300][ T5264] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  179.160342][ T5267] bridge0: port 1(bridge_slave_0) entered blocking state
[  179.167436][ T5267] bridge0: port 1(bridge_slave_0) entered forwarding state
[  179.247040][ T5264] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  179.248461][ T5266] bridge0: port 2(bridge_slave_1) entered blocking state
[  179.267257][ T5266] bridge0: port 2(bridge_slave_1) entered forwarding state
[  179.276893][ T5264] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  179.322797][ T5264] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.382576][ T5264] usb 5-1: config 0 descriptor??
[  180.295309][    T8] usb 4-1: USB disconnect, device number 18
[  180.301693][ T6719] netlink: 12 bytes leftover after parsing attributes in process `syz.0.376'.
[  180.659119][ T6714] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.374'.
[  186.666655][ T5264] usbhid 5-1:0.0: can't add hid device: -32
[  186.728233][ T5264] usbhid 5-1:0.0: probe with driver usbhid failed with error -32
[  186.837304][ T6714] sysfs: cannot create duplicate filename '/class/ieee80211/ü!'
[  186.902042][ T6714] CPU: 0 UID: 0 PID: 6714 Comm: syz.4.374 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0
[  186.913592][ T6714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  186.924261][ T6714] Call Trace:
[  186.927536][ T6714]  <TASK>
[  186.930717][ T6714]  dump_stack_lvl+0x241/0x360
[  186.935913][ T6714]  ? __pfx_dump_stack_lvl+0x10/0x10
[  186.942094][ T6714]  ? __pfx__printk+0x10/0x10
[  186.947238][ T6714]  ? sysfs_warn_dup+0x51/0xa0
[  186.951948][ T6714]  ? __kmalloc_cache_noprof+0x19c/0x2c0
[  186.957540][ T6714]  sysfs_warn_dup+0x8e/0xa0
[  186.962315][ T6714]  sysfs_do_create_link_sd+0xbe/0x110
[  186.967884][ T6714]  device_add_class_symlinks+0x1c5/0x250
[  186.973523][ T6714]  device_add+0x553/0xbf0
[  186.978039][ T6714]  wiphy_register+0x1d3f/0x2b30
[  186.983026][ T6714]  ? __pfx_wiphy_register+0x10/0x10
[  186.988317][ T6714]  ? minstrel_ht_alloc+0x72b/0x860
[  186.993432][ T6714]  ? ieee80211_init_rate_ctrl_alg+0x5a2/0x620
[  186.999528][ T6714]  ieee80211_register_hw+0x30fb/0x3e10
[  187.005823][ T6714]  ? ieee80211_register_hw+0x14b1/0x3e10
[  187.011490][ T6714]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  187.017344][ T6714]  ? __asan_memset+0x23/0x50
[  187.021960][ T6714]  ? __hrtimer_init+0x170/0x250
[  187.027778][ T6714]  mac80211_hwsim_new_radio+0x2a9f/0x4a90
[  187.033557][ T6714]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  187.039653][ T6714]  ? __kmalloc_node_track_caller_noprof+0x242/0x440
[  187.046250][ T6714]  ? kstrndup+0x5c/0xb0
[  187.050442][ T6714]  ? __asan_memcpy+0x40/0x70
[  187.055070][ T6714]  hwsim_new_radio_nl+0xece/0x2290
[  187.060240][ T6714]  ? __pfx___nla_validate_parse+0x10/0x10
[  187.065999][ T6714]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  187.071626][ T6714]  ? genl_family_rcv_msg_attrs_parse+0x1d1/0x290
[  187.078096][ T6714]  genl_rcv_msg+0xb14/0xec0
[  187.082641][ T6714]  ? mark_lock+0x9a/0x350
[  187.087017][ T6714]  ? __pfx_genl_rcv_msg+0x10/0x10
[  187.092116][ T6714]  ? __pfx_lock_acquire+0x10/0x10
[  187.097180][ T6714]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  187.102766][ T6714]  ? __pfx___might_resched+0x10/0x10
[  187.108878][ T6714]  netlink_rcv_skb+0x1e3/0x430
[  187.114509][ T6714]  ? __pfx_genl_rcv_msg+0x10/0x10
[  187.119668][ T6714]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  187.125088][ T6714]  ? __netlink_deliver_tap+0x77e/0x7c0
[  187.131113][ T6714]  genl_rcv+0x28/0x40
[  187.135132][ T6714]  netlink_unicast+0x7f0/0x990
[  187.140272][ T6714]  ? __pfx_netlink_unicast+0x10/0x10
[  187.145573][ T6714]  ? __virt_addr_valid+0x183/0x530
[  187.150722][ T6714]  ? __check_object_size+0x49c/0x900
[  187.156158][ T6714]  ? bpf_lsm_netlink_send+0x9/0x10
[  187.161387][ T6714]  netlink_sendmsg+0x8e4/0xcb0
[  187.166207][ T6714]  ? __pfx_netlink_sendmsg+0x10/0x10
[  187.171487][ T6714]  ? tomoyo_socket_sendmsg+0x7/0x30
[  187.176698][ T6714]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  187.181970][ T6714]  ? security_socket_sendmsg+0x87/0xb0
[  187.187433][ T6714]  ? __pfx_netlink_sendmsg+0x10/0x10
[  187.192738][ T6714]  __sock_sendmsg+0x221/0x270
[  187.197450][ T6714]  ____sys_sendmsg+0x525/0x7d0
[  187.202334][ T6714]  ? __pfx_____sys_sendmsg+0x10/0x10
[  187.207637][ T6714]  __sys_sendmsg+0x2b0/0x3a0
[  187.212778][ T6714]  ? __pfx___sys_sendmsg+0x10/0x10
[  187.218107][ T6714]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  187.224443][ T6714]  ? do_syscall_64+0x100/0x230
[  187.229203][ T6714]  ? do_syscall_64+0xb6/0x230
[  187.233870][ T6714]  do_syscall_64+0xf3/0x230
[  187.238364][ T6714]  ? clear_bhb_loop+0x35/0x90
[  187.243049][ T6714]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  187.248983][ T6714] RIP: 0033:0x7f3e771773b9
[  187.253440][ T6714] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  187.273774][ T6714] RSP: 002b:00007f3e77f4f048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  187.282191][ T6714] RAX: ffffffffffffffda RBX: 00007f3e77305f80 RCX: 00007f3e771773b9
[  187.290190][ T6714] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006
[  187.298182][ T6714] RBP: 00007f3e771e48e6 R08: 0000000000000000 R09: 0000000000000000
[  187.306179][ T6714] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  187.314160][ T6714] R13: 000000000000000b R14: 00007f3e77305f80 R15: 00007ffc7a44e4f8
[  187.322155][ T6714]  </TASK>
[  187.756298][ T6737] netlink: 12 bytes leftover after parsing attributes in process `syz.0.379'.
[  188.466114][ T6617] 8021q: adding VLAN 0 to HW filter on device batadv0
[  188.588461][ T5266] usb 5-1: USB disconnect, device number 8
[  188.745108][ T5214] Bluetooth: hci2: command 0x0406 tx timeout
[  188.756059][ T5214] Bluetooth: hci0: command 0x0406 tx timeout
[  188.911252][ T6617] veth0_vlan: entered promiscuous mode
[  188.926442][ T6733] netlink: 'syz.3.381': attribute type 3 has an invalid length.
[  188.978611][ T6617] veth1_vlan: entered promiscuous mode
[  188.989998][ T6733] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.381'.
[  189.182243][ T6617] veth0_macvtap: entered promiscuous mode
[  189.305604][ T6617] veth1_macvtap: entered promiscuous mode
[  190.177810][ T6617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  190.321683][ T6617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  190.387217][ T5231] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  190.399685][ T5231] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  190.408806][ T5231] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  190.418053][ T6617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  190.418092][ T5231] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  190.457992][ T5231] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  190.465796][ T5231] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  190.469756][ T6617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  190.546688][ T6617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  190.579460][ T5218] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  190.591909][ T6617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  190.601995][ T6617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  190.613141][ T5218] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  190.624667][ T6617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  190.634672][ T5218] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  190.641996][ T6617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  190.652820][ T5264] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  190.666057][ T5218] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  190.688390][ T5218] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  190.697824][ T5218] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  190.726557][ T6617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  190.747855][ T6617] batman_adv: batadv0: Interface activated: batadv_slave_0
[  190.812736][ T6617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  190.835805][ T5264] usb 4-1: Using ep0 maxpacket: 16
[  190.854103][ T6617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  190.865387][ T5264] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  190.875683][ T5264] usb 4-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[  190.885768][ T5264] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.905696][ T5264] usb 4-1: config 0 descriptor??
[  190.911507][ T6617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  190.933856][ T6617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  190.964038][ T6617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  190.974757][ T6617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  190.987428][ T6617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  191.004595][ T6617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  191.024939][ T6617] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  191.061691][ T6617] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  191.082397][ T6617] batman_adv: batadv0: Interface activated: batadv_slave_1
[  191.178060][ T6617] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  191.198830][ T6617] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  191.213564][ T6617] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  191.305268][ T6617] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  191.407707][ T5226] syz-executor (5226) used greatest stack depth: 19568 bytes left
[  191.957791][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.099562][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.210054][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.356244][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  192.454644][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.489589][ T5218] Bluetooth: hci6: command tx timeout
[  192.490522][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  192.707743][ T1073] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  192.728483][ T5218] Bluetooth: hci7: command tx timeout
[  192.782140][ T1073] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  192.949324][ T6752] chnl_net:caif_netlink_parms(): no params data found
[  193.052827][ T6748] chnl_net:caif_netlink_parms(): no params data found
[  193.127079][   T12] bridge_slave_1: left allmulticast mode
[  193.148249][   T12] bridge_slave_1: left promiscuous mode
[  193.162729][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  193.192461][   T12] bridge_slave_0: left allmulticast mode
[  193.206187][   T12] bridge_slave_0: left promiscuous mode
[  193.214018][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  193.417113][ T5264] usb 4-1: USB disconnect, device number 19
[  194.185894][ T1270] ieee802154 phy0 wpan0: encryption failed: -22
[  194.197841][ T1270] ieee802154 phy1 wpan1: encryption failed: -22
[  194.565117][ T5218] Bluetooth: hci6: command tx timeout
[  194.801408][ T5218] Bluetooth: hci7: command tx timeout
[  194.973153][    T8] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  195.270978][    T8] usb 4-1: Using ep0 maxpacket: 16
[  195.340515][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  195.351595][    T8] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  195.364811][    T8] usb 4-1: New USB device found, idVendor=1b1c, idProduct=1c1e, bcdDevice= 0.00
[  195.374126][    T8] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  195.386411][    T8] usb 4-1: config 0 descriptor??
[  195.488403][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  195.506815][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  195.518828][   T12] bond0 (unregistering): Released all slaves
[  195.525826][ T5218] Bluetooth: hci5: command tx timeout
[  195.718289][ T6789] netlink: 12 bytes leftover after parsing attributes in process `syz.1.388'.
[  195.889251][    T8] corsair-psu 0003:1B1C:1C1E.000A: hidraw0: USB HID v0.00 Device [HID 1b1c:1c1e] on usb-dummy_hcd.3-1/input0
[  196.007824][    T8] corsair-psu 0003:1B1C:1C1E.000A: unable to initialize device (-38)
[  196.040196][    T8] corsair-psu 0003:1B1C:1C1E.000A: probe with driver corsair-psu failed with error -38
[  196.061896][    T8] usb 4-1: USB disconnect, device number 20
[  196.112167][ T6798] netlink: 184 bytes leftover after parsing attributes in process `syz.1.390'.
[  196.287858][ T6748] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.295101][ T6748] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.337981][ T6748] bridge_slave_0: entered allmulticast mode
[  196.345345][ T6748] bridge_slave_0: entered promiscuous mode
[  196.600412][ T6812] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.391'.
[  196.655837][ T5218] Bluetooth: hci6: command tx timeout
[  196.706219][ T6748] bridge0: port 2(bridge_slave_1) entered blocking state
[  196.714356][ T6748] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.723643][ T6748] bridge_slave_1: entered allmulticast mode
[  196.736884][ T6748] bridge_slave_1: entered promiscuous mode
[  196.764838][ T6812] openvswitch: netlink: Tunnel attr 0 has unexpected len 13 expected 8
[  196.857387][ T6752] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.864733][ T6752] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.875171][ T5218] Bluetooth: hci7: command tx timeout
[  196.972983][ T6752] bridge_slave_0: entered allmulticast mode
[  196.996235][ T6752] bridge_slave_0: entered promiscuous mode
[  197.139872][   T12] hsr_slave_0: left promiscuous mode
[  197.173476][   T12] hsr_slave_1: left promiscuous mode
[  197.192200][ T6820] netlink: 'syz.3.393': attribute type 3 has an invalid length.
[  197.204243][ T6820] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.393'.
[  197.213696][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  197.244253][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  197.265981][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  197.273585][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  197.357277][   T12] veth1_macvtap: left promiscuous mode
[  197.362883][   T12] veth0_macvtap: left promiscuous mode
[  197.399051][   T12] veth1_vlan: left promiscuous mode
[  197.409268][   T12] veth0_vlan: left promiscuous mode
[  197.453803][    T8] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  197.653140][    T8] usb 2-1: Using ep0 maxpacket: 16
[  197.691729][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  197.765404][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  197.782744][    T8] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  197.820842][    T8] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  197.835710][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.871243][    T8] usb 2-1: config 0 descriptor??
[  198.375056][ T6826] Zero length message leads to an empty skb
[  198.641350][   T12] team0 (unregistering): Port device team_slave_1 removed
[  198.704177][   T12] team0 (unregistering): Port device team_slave_0 removed
[  198.720796][ T5218] Bluetooth: hci6: command tx timeout
[  198.949814][ T5218] Bluetooth: hci7: command tx timeout
[  199.489080][ T6752] bridge0: port 2(bridge_slave_1) entered blocking state
[  199.496317][ T6752] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.535423][ T6752] bridge_slave_1: entered allmulticast mode
[  199.559950][ T6752] bridge_slave_1: entered promiscuous mode
[  199.691499][ T6748] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  199.713431][ T6752] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  199.728117][    T8] usbhid 2-1:0.0: can't add hid device: -71
[  199.734220][    T8] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  199.765130][ T6752] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  199.786994][    T8] usb 2-1: USB disconnect, device number 15
[  199.835973][ T6748] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.148421][ T6748] team0: Port device team_slave_0 added
[  201.188100][ T6752] team0: Port device team_slave_0 added
[  201.305281][ T6748] team0: Port device team_slave_1 added
[  201.347943][ T6752] team0: Port device team_slave_1 added
[  201.474332][ T5231] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  201.484464][ T5231] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  201.495696][ T5231] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  201.515464][ T5231] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  201.524364][ T5231] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  201.533045][ T5231] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  201.685252][ T6748] batman_adv: batadv0: Adding interface: batadv_slave_0
[  201.692584][ T6748] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.782301][ T6748] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  201.980397][ T6748] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.006892][ T6748] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.102246][ T6748] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.125781][ T6752] batman_adv: batadv0: Adding interface: batadv_slave_0
[  202.138386][ T6752] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.172451][ T6752] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  202.235520][ T6752] batman_adv: batadv0: Adding interface: batadv_slave_1
[  202.242912][ T6752] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.274041][ T6752] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.501586][ T6748] hsr_slave_0: entered promiscuous mode
[  202.592334][ T6748] hsr_slave_1: entered promiscuous mode
[  202.615922][ T6748] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  202.644246][ T6748] Cannot create hsr debugfs directory
[  202.831625][ T5297] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  202.898347][ T6752] hsr_slave_0: entered promiscuous mode
[  202.923147][ T6752] hsr_slave_1: entered promiscuous mode
[  202.950159][ T6752] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  202.981102][ T6752] Cannot create hsr debugfs directory
[  203.071076][ T5297] usb 2-1: Using ep0 maxpacket: 8
[  203.087330][ T5297] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA3, changing to 0x83
[  203.099534][ T6865] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  203.112550][ T5297] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  203.112807][ T6865] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  203.126659][ T5297] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 0
[  203.141728][ T5297] usb 2-1: New USB device found, idVendor=05ac, idProduct=9219, bcdDevice=61.da
[  203.161969][ T5297] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  203.170057][ T5297] usb 2-1: Manufacturer: syz
[  203.193300][ T5297] usb 2-1: config 0 descriptor??
[  203.226605][ T5297] appledisplay 2-1:0.0: Could not find int-in endpoint
[  203.247353][ T5297] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  203.332032][   T47] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  203.597561][ T5218] Bluetooth: hci1: command tx timeout
[  203.644906][   T47] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  204.427119][ T6748] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  204.824686][ T6748] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.235302][ T6748] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.595173][   T47] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  205.641511][   T47] usb 4-1: New USB device found, idVendor=27b8, idProduct=01ed, bcdDevice= 0.00
[  205.657213][ T5218] Bluetooth: hci1: command tx timeout
[  205.688745][ T6748] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.705570][   T47] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.754675][   T47] usb 4-1: config 0 descriptor??
[  206.019884][ T6866] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  206.071030][ T6866] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  206.161887][ T6837] chnl_net:caif_netlink_parms(): no params data found
[  206.170843][   T47] usbhid 4-1:0.0: can't add hid device: -32
[  206.211709][   T47] usbhid 4-1:0.0: probe with driver usbhid failed with error -32
[  206.316211][   T47] usb 4-1: USB disconnect, device number 21
[  206.638895][    T8] usb 2-1: USB disconnect, device number 16
[  206.906990][ T6890] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.402'.
[  206.949561][ T6890] openvswitch: netlink: Tunnel attr 0 has unexpected len 13 expected 8
[  207.534669][ T6837] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.567955][ T6837] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.740183][ T5218] Bluetooth: hci1: command tx timeout
[  207.803684][ T6837] bridge_slave_0: entered allmulticast mode
[  207.811737][ T6837] bridge_slave_0: entered promiscuous mode
[  207.832696][ T6837] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.528176][ T6837] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.548949][ T6837] bridge_slave_1: entered allmulticast mode
[  208.556489][ T6837] bridge_slave_1: entered promiscuous mode
[  208.728421][ T6837] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  208.780804][ T6837] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  208.954348][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  209.077443][ T6837] team0: Port device team_slave_0 added
[  209.125232][ T6837] team0: Port device team_slave_1 added
[  209.332493][ T6837] batman_adv: batadv0: Adding interface: batadv_slave_0
[  209.339491][ T6837] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  209.422504][ T6837] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  209.472007][ T6837] batman_adv: batadv0: Adding interface: batadv_slave_1
[  209.551223][ T6837] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  209.615153][ T6837] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  209.665115][ T6748] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  209.718372][ T6748] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  209.808960][ T6748] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  209.815982][ T5218] Bluetooth: hci1: command tx timeout
[  209.910192][ T6748] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  210.048673][ T6837] hsr_slave_0: entered promiscuous mode
[  210.109685][ T6837] hsr_slave_1: entered promiscuous mode
[  210.142926][ T6837] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  210.161060][ T6837] Cannot create hsr debugfs directory
[  210.644509][ T6752] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  210.762124][ T6752] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  210.947409][ T6752] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  211.017554][ T6752] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  211.458951][ T6837] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  211.562713][ T6748] 8021q: adding VLAN 0 to HW filter on device bond0
[  212.221967][ T6837] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.444658][ T6748] 8021q: adding VLAN 0 to HW filter on device team0
[  212.661448][ T6837] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.756746][ T6752] 8021q: adding VLAN 0 to HW filter on device bond0
[  212.961499][ T6837] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.998820][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  213.006023][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  213.051794][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  213.058944][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  213.091683][ T6752] 8021q: adding VLAN 0 to HW filter on device team0
[  213.157388][ T5264] bridge0: port 1(bridge_slave_0) entered blocking state
[  213.164569][ T5264] bridge0: port 1(bridge_slave_0) entered forwarding state
[  213.218718][ T5264] bridge0: port 2(bridge_slave_1) entered blocking state
[  213.225819][ T5264] bridge0: port 2(bridge_slave_1) entered forwarding state
[  213.629196][ T6837] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  213.687804][ T6837] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  213.743450][ T6837] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  213.811496][ T6837] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  213.941405][ T6748] 8021q: adding VLAN 0 to HW filter on device batadv0
[  214.075831][ T6748] veth0_vlan: entered promiscuous mode
[  214.147883][ T6837] 8021q: adding VLAN 0 to HW filter on device bond0
[  214.185223][ T6748] veth1_vlan: entered promiscuous mode
[  214.222550][ T6837] 8021q: adding VLAN 0 to HW filter on device team0
[  214.271341][ T6752] 8021q: adding VLAN 0 to HW filter on device batadv0
[  214.295191][ T5264] bridge0: port 1(bridge_slave_0) entered blocking state
[  214.302450][ T5264] bridge0: port 1(bridge_slave_0) entered forwarding state
[  214.327637][ T6748] veth0_macvtap: entered promiscuous mode
[  214.347167][ T5264] bridge0: port 2(bridge_slave_1) entered blocking state
[  214.354271][ T5264] bridge0: port 2(bridge_slave_1) entered forwarding state
[  214.377811][ T6748] veth1_macvtap: entered promiscuous mode
[  214.413968][ T6748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.434369][ T6748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.456046][ T6748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.481305][ T6748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.492197][ T6748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.520479][ T6748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.541299][ T6748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.573082][ T6748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.593184][ T6748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.619234][ T6748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.671744][ T6748] batman_adv: batadv0: Interface activated: batadv_slave_0
[  214.770939][ T6748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.814401][ T6748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.844885][ T6748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.913165][ T6748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.948918][ T6748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.991668][ T6748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.062795][ T6748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  215.122915][ T6748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.176202][ T6748] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  215.225215][ T6748] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.279975][ T6748] batman_adv: batadv0: Interface activated: batadv_slave_1
[  215.377835][ T6748] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  215.479274][ T6748] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  215.554964][ T6748] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  215.564359][ T6748] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  215.796226][ T7004] 9pnet_fd: p9_fd_create_tcp (7004): problem connecting socket to 127.0.0.1
[  219.232663][ T1065] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  219.316938][ T1065] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  219.503005][ T5447] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  219.542001][ T5447] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  219.578741][ T6837] 8021q: adding VLAN 0 to HW filter on device batadv0
[  219.725824][ T6752] veth0_vlan: entered promiscuous mode
[  219.773504][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  219.800973][ T6752] veth1_vlan: entered promiscuous mode
[  219.860993][ T6837] veth0_vlan: entered promiscuous mode
[  219.972776][ T6837] veth1_vlan: entered promiscuous mode
[  220.091353][ T6752] veth0_macvtap: entered promiscuous mode
[  220.113835][ T6837] veth0_macvtap: entered promiscuous mode
[  220.181417][ T6837] veth1_macvtap: entered promiscuous mode
[  220.226729][ T6752] veth1_macvtap: entered promiscuous mode
[  220.270929][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.324990][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.371637][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.400147][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.438630][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.487788][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.522553][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.561471][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.607301][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.651519][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.698348][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  220.719237][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.741635][ T5266] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  220.743659][ T6837] batman_adv: batadv0: Interface activated: batadv_slave_0
[  220.761793][ T7039] input: syz0 as /devices/virtual/input/input15
[  220.860303][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  220.897735][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.908376][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  220.949834][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  220.971122][ T5266] usb 4-1: Using ep0 maxpacket: 8
[  220.971134][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  220.971153][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.011356][ T5266] usb 4-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[  221.040883][ T5266] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.071056][ T5266] usb 4-1: Product: syz
[  221.075406][ T5266] usb 4-1: Manufacturer: syz
[  221.080018][ T5266] usb 4-1: SerialNumber: syz
[  221.081448][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.123824][ T5266] usb 4-1: config 0 descriptor??
[  221.144972][ T5266] gspca_main: sq930x-2.14.0 probing 2770:930c
[  221.154568][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.179973][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.200170][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.230208][ T6837] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  221.296599][ T6837] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.335034][ T7034] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  221.335048][ T6837] batman_adv: batadv0: Interface activated: batadv_slave_1
[  221.361435][ T7034] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  221.419734][ T6837] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  221.455619][ T6837] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  221.495656][ T6837] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  221.523031][ T6837] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  221.583022][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.619239][ T5266] gspca_sq930x: reg_r 001f failed -71
[  221.632533][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.644521][ T5266] sq930x 4-1:0.0: probe with driver sq930x failed with error -71
[  221.666657][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.683623][ T5266] usb 4-1: USB disconnect, device number 22
[  221.741802][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.805572][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.850753][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.880678][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  221.917690][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  221.940693][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  222.000616][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.037795][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  222.079876][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.085969][ T7055] overlay: ./file0 is not a directory
[  222.105460][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  222.150445][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.232395][ T6752] batman_adv: batadv0: Interface activated: batadv_slave_0
[  222.299837][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  222.356493][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.408409][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  222.466737][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.525026][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  222.568079][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.628305][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  222.646058][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.666112][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  222.731567][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.772073][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  222.794376][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.809902][ T6752] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  222.825213][ T6752] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  222.854816][ T6752] batman_adv: batadv0: Interface activated: batadv_slave_1
[  222.912024][ T6752] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  222.937004][ T6752] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  222.953452][ T6752] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  222.967059][ T6752] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  223.300452][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  223.352392][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  223.529184][   T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  223.558235][   T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  223.660799][ T5268] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  223.696157][   T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  223.759099][   T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  223.767317][ T1065] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  223.786936][ T1065] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  223.919659][ T5268] usb 3-1: Using ep0 maxpacket: 8
[  223.935901][ T5268] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA3, changing to 0x83
[  224.039126][ T5268] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  224.098886][ T5268] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 0
[  224.154344][ T5268] usb 3-1: New USB device found, idVendor=05ac, idProduct=9219, bcdDevice=61.da
[  224.183344][ T5268] usb 3-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  224.201259][ T5268] usb 3-1: Manufacturer: syz
[  224.271307][ T5268] usb 3-1: config 0 descriptor??
[  224.300799][ T5268] appledisplay 3-1:0.0: Could not find int-in endpoint
[  224.336040][ T5268] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  226.113906][ T7086] FAULT_INJECTION: forcing a failure.
[  226.113906][ T7086] name failslab, interval 1, probability 0, space 0, times 1
[  226.302104][ T7086] CPU: 0 UID: 0 PID: 7086 Comm: syz.0.426 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0
[  226.312770][ T7086] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  226.322844][ T7086] Call Trace:
[  226.326130][ T7086]  <TASK>
[  226.329069][ T7086]  dump_stack_lvl+0x241/0x360
[  226.333765][ T7086]  ? __pfx_dump_stack_lvl+0x10/0x10
[  226.338985][ T7086]  ? __pfx__printk+0x10/0x10
[  226.343593][ T7086]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[  226.349160][ T7086]  ? __pfx___might_resched+0x10/0x10
[  226.354462][ T7086]  should_fail_ex+0x3b0/0x4e0
[  226.359157][ T7086]  ? alloc_empty_file+0x9e/0x1d0
[  226.364105][ T7086]  should_failslab+0xac/0x100
[  226.368799][ T7086]  ? alloc_empty_file+0x9e/0x1d0
[  226.373762][ T7086]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  226.379163][ T7086]  alloc_empty_file+0x9e/0x1d0
[  226.383949][ T7086]  path_openat+0x105/0x3470
[  226.388472][ T7086]  ? __pfx_validate_chain+0x10/0x10
[  226.393690][ T7086]  ? __pfx_validate_chain+0x10/0x10
[  226.398901][ T7086]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  226.405079][ T7086]  ? __kernel_text_address+0xd/0x40
[  226.408470][   T47] usb 3-1: USB disconnect, device number 13
[  226.410276][ T7086]  ? unwind_get_return_address+0x91/0xc0
[  226.421806][ T7086]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.427893][ T7086]  ? arch_stack_walk+0x16d/0x1b0
[  226.432846][ T7086]  ? __pfx_path_openat+0x10/0x10
[  226.437906][ T7086]  do_filp_open+0x235/0x490
[  226.442418][ T7086]  ? __pfx_do_filp_open+0x10/0x10
[  226.447442][ T7086]  ? alloc_bprm+0xa0/0xda0
[  226.451847][ T7086]  alloc_bprm+0x171/0xda0
[  226.456165][ T7086]  ? __pfx_lock_release+0x10/0x10
[  226.461194][ T7086]  ? __pfx_alloc_bprm+0x10/0x10
[  226.466058][ T7086]  ? __virt_addr_valid+0x183/0x530
[  226.471190][ T7086]  ? __phys_addr_symbol+0x2f/0x70
[  226.476228][ T7086]  ? __might_fault+0xc6/0x120
[  226.480916][ T7086]  do_execveat_common+0x18c/0x6f0
[  226.485957][ T7086]  __x64_sys_execve+0x92/0xb0
[  226.490621][ T7086]  do_syscall_64+0xf3/0x230
[  226.495110][ T7086]  ? clear_bhb_loop+0x35/0x90
[  226.499781][ T7086]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  226.505746][ T7086] RIP: 0033:0x7f1725b773b9
[  226.510162][ T7086] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  226.529781][ T7086] RSP: 002b:00007f1726947048 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[  226.538181][ T7086] RAX: ffffffffffffffda RBX: 00007f1725d05f80 RCX: 00007f1725b773b9
[  226.546135][ T7086] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000020000400
[  226.554089][ T7086] RBP: 00007f17269470a0 R08: 0000000000000000 R09: 0000000000000000
[  226.562061][ T7086] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  226.570058][ T7086] R13: 000000000000000b R14: 00007f1725d05f80 R15: 00007ffcc08655c8
[  226.578159][ T7086]  </TASK>
[  227.388330][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  228.360277][ T5231] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  228.546095][ T5231] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  228.555177][ T5231] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  228.563972][ T5231] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  228.611616][ T5231] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  228.628120][ T5231] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  228.968732][ T7120] 9pnet_fd: p9_fd_create_tcp (7120): problem connecting socket to 127.0.0.1
[  229.194666][ T7096] input: syz0 as /devices/virtual/input/input16
[  229.316440][ T7109] chnl_net:caif_netlink_parms(): no params data found
[  229.668721][ T5267] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  229.885845][ T7109] bridge0: port 1(bridge_slave_0) entered blocking state
[  229.907426][ T5267] usb 5-1: Using ep0 maxpacket: 8
[  229.931365][ T7109] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.938932][ T5267] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA3, changing to 0x83
[  229.984282][ T7109] bridge_slave_0: entered allmulticast mode
[  230.005466][ T5267] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  230.015760][ T7109] bridge_slave_0: entered promiscuous mode
[  230.054282][ T5267] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 0
[  230.066206][ T7109] bridge0: port 2(bridge_slave_1) entered blocking state
[  230.107712][ T7109] bridge0: port 2(bridge_slave_1) entered disabled state
[  230.139514][ T5267] usb 5-1: New USB device found, idVendor=05ac, idProduct=9219, bcdDevice=61.da
[  230.160387][ T7109] bridge_slave_1: entered allmulticast mode
[  230.183144][ T7109] bridge_slave_1: entered promiscuous mode
[  230.189480][ T5267] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  230.220531][ T5267] usb 5-1: Manufacturer: syz
[  230.267041][ T5267] usb 5-1: config 0 descriptor??
[  230.279778][ T5267] appledisplay 5-1:0.0: Could not find int-in endpoint
[  230.319247][ T5267] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  230.367703][  T940] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  230.663298][ T7109] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  230.668564][  T940] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  231.117944][ T5231] Bluetooth: hci4: command tx timeout
[  233.156467][ T5231] Bluetooth: hci4: command tx timeout
[  233.459894][  T940] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  233.516129][ T5270] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  233.769874][   T47] usb 5-1: USB disconnect, device number 9
[  233.818698][ T7109] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  233.837596][  T940] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.907602][  T940] usb 3-1: config 0 descriptor??
[  233.943962][  T940] usb 3-1: can't set config #0, error -71
[  233.995246][  T940] usb 3-1: USB disconnect, device number 14
[  234.269774][ T7109] team0: Port device team_slave_0 added
[  234.388632][ T7109] team0: Port device team_slave_1 added
[  234.603473][ T7109] batman_adv: batadv0: Adding interface: batadv_slave_0
[  234.729776][ T7109] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  234.928256][ T7109] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  235.051405][ T7109] batman_adv: batadv0: Adding interface: batadv_slave_1
[  235.088839][ T7109] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.191350][ T7109] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  235.245715][ T5218] Bluetooth: hci4: command tx timeout
[  235.470118][ T7109] hsr_slave_0: entered promiscuous mode
[  235.502000][ T7109] hsr_slave_1: entered promiscuous mode
[  235.536508][ T7109] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  235.584087][ T7109] Cannot create hsr debugfs directory
[  235.612794][ T7176] FAULT_INJECTION: forcing a failure.
[  235.612794][ T7176] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  235.698072][ T7176] CPU: 0 UID: 0 PID: 7176 Comm: syz.3.449 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0
[  235.708834][ T7176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  235.718913][ T7176] Call Trace:
[  235.722206][ T7176]  <TASK>
[  235.725144][ T7176]  dump_stack_lvl+0x241/0x360
[  235.730031][ T7176]  ? __pfx_dump_stack_lvl+0x10/0x10
[  235.735222][ T7176]  ? __pfx__printk+0x10/0x10
[  235.739835][ T7176]  ? __pfx_lock_release+0x10/0x10
[  235.744850][ T7176]  ? __lock_acquire+0x137a/0x2040
[  235.749889][ T7176]  should_fail_ex+0x3b0/0x4e0
[  235.754557][ T7176]  _copy_from_user+0x2f/0xe0
[  235.759142][ T7176]  kstrtouint_from_user+0xc6/0x190
[  235.764240][ T7176]  ? __pfx_kstrtouint_from_user+0x10/0x10
[  235.769943][ T7176]  ? __pfx_lock_acquire+0x10/0x10
[  235.774960][ T7176]  proc_fail_nth_write+0xaa/0x2d0
[  235.779973][ T7176]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  235.785862][ T7176]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  235.791490][ T7176]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  235.797114][ T7176]  vfs_write+0x2a2/0xc90
[  235.801350][ T7176]  ? __pfx_vfs_write+0x10/0x10
[  235.806122][ T7176]  ? __fget_files+0x29/0x470
[  235.810700][ T7176]  ? __fget_files+0x3f6/0x470
[  235.815378][ T7176]  ksys_write+0x1a0/0x2c0
[  235.819698][ T7176]  ? __pfx_ksys_write+0x10/0x10
[  235.824530][ T7176]  ? do_syscall_64+0x100/0x230
[  235.829369][ T7176]  ? do_syscall_64+0xb6/0x230
[  235.834032][ T7176]  do_syscall_64+0xf3/0x230
[  235.838555][ T7176]  ? clear_bhb_loop+0x35/0x90
[  235.843223][ T7176]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  235.849109][ T7176] RIP: 0033:0x7fc612375e9f
[  235.853518][ T7176] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 1c 8d 02 00 48
[  235.873114][ T7176] RSP: 002b:00007fc61318b040 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  235.881518][ T7176] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc612375e9f
[  235.889480][ T7176] RDX: 0000000000000001 RSI: 00007fc61318b0b0 RDI: 0000000000000005
[  235.897441][ T7176] RBP: 00007fc61318b0a0 R08: 0000000000000000 R09: 0000000000000000
[  235.905410][ T7176] R10: ffffffffffffffff R11: 0000000000000293 R12: 0000000000000001
[  235.913389][ T7176] R13: 000000000000006e R14: 00007fc612506058 R15: 00007ffff85edd48
[  235.921485][ T7176]  </TASK>
[  236.767457][ T7109] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.895384][ T5270] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  237.077828][ T7109] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  237.115875][ T5270] usb 4-1: Using ep0 maxpacket: 16
[  237.137415][ T5270] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  237.172747][ T5270] usb 4-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[  237.200414][ T5270] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  237.235539][ T5270] usb 4-1: config 0 descriptor??
[  237.385327][ T5218] Bluetooth: hci4: command tx timeout
[  238.041890][ T7109] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.147178][ T7196] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  238.347299][ T7109] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.687604][ T7109] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  238.703013][ T7109] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  238.740940][ T7109] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  238.792627][ T7109] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  239.358096][ T7109] 8021q: adding VLAN 0 to HW filter on device bond0
[  239.513498][ T7109] 8021q: adding VLAN 0 to HW filter on device team0
[  239.573731][ T5218] Bluetooth: hci6: command tx timeout
[  239.637551][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.644833][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  239.730549][  T940] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.737776][  T940] bridge0: port 2(bridge_slave_1) entered forwarding state
[  239.793014][ T5297] usb 4-1: USB disconnect, device number 24
[  240.979165][ T7109] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  241.034749][ T7109] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  241.783399][ T7109] 8021q: adding VLAN 0 to HW filter on device batadv0
[  242.044046][ T7109] veth0_vlan: entered promiscuous mode
[  242.106660][ T7109] veth1_vlan: entered promiscuous mode
[  242.199447][ T7243] netlink: 12 bytes leftover after parsing attributes in process `syz.2.467'.
[  242.214852][ T5314] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  242.319653][ T7109] veth0_macvtap: entered promiscuous mode
[  242.436924][ T5314] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  242.459776][ T7109] veth1_macvtap: entered promiscuous mode
[  242.533079][ T5314] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  242.610674][ T5314] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  242.623891][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  242.687838][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  242.713024][ T5314] usb 5-1: config 0 descriptor??
[  242.721075][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  242.770648][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  242.803523][ T5314] pwc: Askey VC010 type 2 USB webcam detected.
[  242.831765][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  242.871372][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  242.911914][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  242.968872][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.008780][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  243.040914][ T5314] pwc: send_video_command error -71
[  243.051384][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.092509][ T5314] pwc: Failed to set video mode CIF@30 fps; return code = -71
[  243.112816][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  243.144527][ T5314] Philips webcam 5-1:0.0: probe with driver Philips webcam failed with error -71
[  243.186982][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.234749][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  243.235343][ T5314] usb 5-1: USB disconnect, device number 10
[  243.284295][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.343568][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  243.396023][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.446379][ T7109] batman_adv: batadv0: Interface activated: batadv_slave_0
[  243.498556][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  243.541767][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.591326][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  243.612294][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.642928][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  243.686646][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.713121][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  243.739437][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.753954][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  243.772074][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.793376][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  243.837406][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.877418][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  243.912279][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  243.943244][ T7109] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  243.944180][ T5314] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  243.983929][ T7109] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  244.050102][ T7109] batman_adv: batadv0: Interface activated: batadv_slave_1
[  244.194928][ T7109] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  244.328138][ T7252] 9pnet_fd: p9_fd_create_tcp (7252): problem connecting socket to 127.0.0.1
[  244.362394][ T5314] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  244.385445][ T7109] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  244.433468][ T5314] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  244.449907][ T7109] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  244.458588][ T5314] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.514870][ T5314] usb 5-1: config 0 descriptor??
[  244.522393][ T7109] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  244.560195][ T5314] pwc: Askey VC010 type 2 USB webcam detected.
[  244.980136][ T5314] pwc: recv_control_msg error -32 req 02 val 2b00
[  245.030066][ T5314] pwc: recv_control_msg error -32 req 02 val 2700
[  245.069902][ T5314] pwc: recv_control_msg error -32 req 02 val 2c00
[  245.128373][ T1055] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.181999][ T1055] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.293389][ T5314] pwc: recv_control_msg error -32 req 04 val 1300
[  245.323679][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  245.348640][ T5314] pwc: recv_control_msg error -32 req 04 val 1400
[  245.352439][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  245.383600][ T5314] pwc: recv_control_msg error -71 req 02 val 2000
[  245.416789][ T5314] pwc: recv_control_msg error -71 req 02 val 2100
[  245.458557][ T5314] pwc: recv_control_msg error -71 req 04 val 1500
[  245.468775][ T7268] netlink: 'syz.2.474': attribute type 2 has an invalid length.
[  245.516345][ T5314] pwc: recv_control_msg error -71 req 02 val 2500
[  245.544764][ T7268] fuse: Bad value for 'user_id'
[  245.553360][ T5314] pwc: recv_control_msg error -71 req 02 val 2400
[  245.561576][ T7268] fuse: Bad value for 'user_id'
[  245.600866][ T5314] pwc: recv_control_msg error -71 req 02 val 2600
[  245.650509][ T5314] pwc: recv_control_msg error -71 req 02 val 2900
[  245.694056][ T7268] syz.2.474 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  245.701421][ T5314] pwc: recv_control_msg error -71 req 02 val 2800
[  245.763228][ T5314] pwc: recv_control_msg error -71 req 04 val 1100
[  245.800844][ T5314] pwc: recv_control_msg error -71 req 04 val 1200
[  245.847375][    C1] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  245.871015][ T5314] pwc: Registered as video71.
[  245.907103][ T5314] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input17
[  245.981704][    C1] eth0: bad gso: type: 1, size: 1408
[  246.045127][ T5314] usb 5-1: USB disconnect, device number 11
[  246.423932][ T5264] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  246.643847][ T5264] usb 2-1: Using ep0 maxpacket: 16
[  246.672306][ T5264] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  246.741271][ T5264] usb 2-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[  246.807834][ T5264] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  246.850401][ T5264] usb 2-1: config 0 descriptor??
[  248.103119][ T7297] overlay: ./file0 is not a directory
[  248.103873][ T7300] netlink: 8 bytes leftover after parsing attributes in process `syz.3.482'.
[  248.153849][ T7300] netlink: 8 bytes leftover after parsing attributes in process `syz.3.482'.
[  248.463679][  T940] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  248.694026][  T940] usb 4-1: Using ep0 maxpacket: 8
[  248.724318][  T940] usb 4-1: New USB device found, idVendor=0424, idProduct=7800, bcdDevice=e9.41
[  248.762209][  T940] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.824873][  T940] usb 4-1: config 0 descriptor??
[  249.063166][  T940] usb 4-1: USB disconnect, device number 25
[  251.425119][ T5264] usb 2-1: USB disconnect, device number 17
[  252.958331][ T7348] netlink: 'syz.0.496': attribute type 1 has an invalid length.
[  253.010692][ T7348] netlink: 'syz.0.496': attribute type 1 has an invalid length.
[  253.329963][ T7352] fuse: Bad value for 'group_id'
[  253.381773][ T7352] fuse: Bad value for 'group_id'
[  253.403752][ T7362] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.499'.
[  253.427316][ T7362] openvswitch: netlink: Tunnel attr 0 has unexpected len 13 expected 8
[  255.156793][ T7385] netlink: 'syz.4.509': attribute type 1 has an invalid length.
[  255.408554][ T7385] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.509'.
[  255.418404][ T5218] Bluetooth: hci1: command tx timeout
[  256.656557][ T1270] ieee802154 phy0 wpan0: encryption failed: -22
[  256.666965][ T1270] ieee802154 phy1 wpan1: encryption failed: -22
[  257.456799][ T7403] netlink: 'syz.2.514': attribute type 1 has an invalid length.
[  257.503161][ T7403] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.514'.
[  258.063174][ T5264] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  258.374037][ T5264] usb 5-1: Using ep0 maxpacket: 16
[  258.474042][ T5264] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  258.526587][ T5264] usb 5-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[  258.587782][ T5264] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.684113][ T5264] usb 5-1: config 0 descriptor??
[  260.820670][ T7434] overlayfs: failed to resolve './file1': -2
[  261.095601][ T5268] usb 5-1: USB disconnect, device number 12
[  261.192051][ T5264] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  261.214808][ T7437] fuse: Bad value for 'group_id'
[  261.276579][ T7437] fuse: Bad value for 'group_id'
[  261.442780][ T5264] usb 2-1: Using ep0 maxpacket: 16
[  261.676239][ T5264] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  261.719435][ T5264] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  261.808684][ T5264] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  261.872787][ T5264] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  261.923296][ T5264] usb 2-1: config 0 descriptor??
[  262.135057][ T5270] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  262.220534][ T7457] netlink: 8 bytes leftover after parsing attributes in process `syz.3.532'.
[  262.344696][ T5270] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  262.379267][ T5270] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  262.440601][ T5270] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  262.481686][ T5270] usb 3-1: config 0 descriptor??
[  262.500567][ T5270] pwc: Askey VC010 type 2 USB webcam detected.
[  262.702280][ T5270] pwc: send_video_command error -71
[  262.716574][ T5270] pwc: Failed to set video mode CIF@30 fps; return code = -71
[  262.736264][ T5270] Philips webcam 3-1:0.0: probe with driver Philips webcam failed with error -71
[  262.784296][ T5270] usb 3-1: USB disconnect, device number 15
[  263.282742][ T5270] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  263.505149][ T5270] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  263.558601][ T5270] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  263.635228][ T5270] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.707534][ T5270] usb 3-1: config 0 descriptor??
[  264.563552][ T5270] pwc: Askey VC010 type 2 USB webcam detected.
[  264.689769][    T8] usb 2-1: USB disconnect, device number 18
[  264.969626][ T5270] pwc: recv_control_msg error -32 req 02 val 2b00
[  264.984282][ T5270] pwc: recv_control_msg error -32 req 02 val 2700
[  265.021578][ T5270] pwc: recv_control_msg error -32 req 02 val 2c00
[  265.072865][ T5268] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  265.236028][ T5270] pwc: recv_control_msg error -32 req 04 val 1300
[  265.277371][ T5270] pwc: recv_control_msg error -32 req 04 val 1400
[  265.284292][ T5268] usb 1-1: Using ep0 maxpacket: 16
[  265.305346][ T5268] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  265.320056][ T5270] pwc: recv_control_msg error -32 req 02 val 2000
[  265.326842][ T5268] usb 1-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[  265.338981][ T5270] pwc: recv_control_msg error -32 req 02 val 2100
[  265.354164][ T5270] pwc: recv_control_msg error -32 req 04 val 1500
[  265.370741][ T5268] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  265.380426][ T7481] netlink: 'syz.4.539': attribute type 1 has an invalid length.
[  265.410329][ T7481] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.539'.
[  265.443653][ T5268] usb 1-1: config 0 descriptor??
[  265.603590][ T5270] pwc: recv_control_msg error -71 req 02 val 2400
[  265.629967][ T5270] pwc: recv_control_msg error -71 req 02 val 2600
[  265.647666][ T5270] pwc: recv_control_msg error -71 req 02 val 2900
[  265.668157][ T5270] pwc: recv_control_msg error -71 req 02 val 2800
[  265.698145][ T5270] pwc: recv_control_msg error -71 req 04 val 1100
[  265.718910][ T5270] pwc: recv_control_msg error -71 req 04 val 1200
[  265.753025][ T5270] pwc: Registered as video71.
[  265.770472][ T5270] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input18
[  265.820206][ T5270] usb 3-1: USB disconnect, device number 16
[  266.364568][ T7494] netlink: 8 bytes leftover after parsing attributes in process `syz.3.543'.
[  266.471823][ T7490] overlay: ./file0 is not a directory
[  267.666591][    T8] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  267.861279][   T47] usb 1-1: USB disconnect, device number 24
[  267.882600][    T8] usb 5-1: device descriptor read/64, error -71
[  268.182642][    T8] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  268.266370][ T7516] FAULT_INJECTION: forcing a failure.
[  268.266370][ T7516] name failslab, interval 1, probability 0, space 0, times 0
[  268.379690][ T7516] CPU: 1 UID: 0 PID: 7516 Comm: syz.1.547 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0
[  268.390375][ T7516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  268.400534][ T7516] Call Trace:
[  268.403808][ T7516]  <TASK>
[  268.406732][ T7516]  dump_stack_lvl+0x241/0x360
[  268.411403][ T7516]  ? __pfx_dump_stack_lvl+0x10/0x10
[  268.416600][ T7516]  ? __pfx__printk+0x10/0x10
[  268.421284][ T7516]  ? kmem_cache_alloc_lru_noprof+0x49/0x2b0
[  268.427174][ T7516]  ? __pfx___might_resched+0x10/0x10
[  268.432465][ T7516]  should_fail_ex+0x3b0/0x4e0
[  268.437137][ T7516]  ? sock_alloc_inode+0x28/0xc0
[  268.441976][ T7516]  should_failslab+0xac/0x100
[  268.442597][    T8] usb 5-1: device descriptor read/64, error -71
[  268.446640][ T7516]  ? sock_alloc_inode+0x28/0xc0
[  268.446701][ T7516]  kmem_cache_alloc_lru_noprof+0x71/0x2b0
[  268.446730][ T7516]  sock_alloc_inode+0x28/0xc0
[  268.446748][ T7516]  ? __pfx_sock_alloc_inode+0x10/0x10
[  268.446769][ T7516]  new_inode_pseudo+0x69/0x1a0
[  268.446792][ T7516]  do_accept+0x16e/0x6c0
[  268.446830][ T7516]  ? __pfx_do_accept+0x10/0x10
[  268.446877][ T7516]  io_accept+0x315/0x920
[  268.446920][ T7516]  ? __pfx_io_accept+0x10/0x10
[  268.446946][ T7516]  ? io_file_get_normal+0xfc/0x320
[  268.446968][ T7516]  io_issue_sqe+0x3cf/0x1570
[  268.446998][ T7516]  ? __pfx_io_issue_sqe+0x10/0x10
[  268.447028][ T7516]  io_submit_sqes+0xaff/0x1bf0
[  268.447082][ T7516]  __se_sys_io_uring_enter+0x2ce/0x2670
[  268.447108][ T7516]  ? vfs_write+0x7c4/0xc90
[  268.447136][ T7516]  ? __pfx_vfs_write+0x10/0x10
[  268.447162][ T7516]  ? __pfx___se_sys_io_uring_enter+0x10/0x10
[  268.447182][ T7516]  ? __fget_files+0x3f6/0x470
[  268.447219][ T7516]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  268.447247][ T7516]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  268.447273][ T7516]  ? do_syscall_64+0x100/0x230
[  268.447299][ T7516]  ? __x64_sys_io_uring_enter+0x21/0xf0
[  268.447325][ T7516]  do_syscall_64+0xf3/0x230
[  268.447347][ T7516]  ? clear_bhb_loop+0x35/0x90
[  268.447375][ T7516]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  268.447410][ T7516] RIP: 0033:0x7f2444f773b9
[  268.447430][ T7516] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  268.447447][ T7516] RSP: 002b:00007f2445def048 EFLAGS: 00000246 ORIG_RAX: 00000000000001aa
[  268.447469][ T7516] RAX: ffffffffffffffda RBX: 00007f2445105f80 RCX: 00007f2444f773b9
[  268.447484][ T7516] RDX: 0000000000000000 RSI: 0000000000000092 RDI: 0000000000000004
[  268.447496][ T7516] RBP: 00007f2445def0a0 R08: 0000000000000000 R09: 0000000000000000
[  268.447509][ T7516] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  268.447522][ T7516] R13: 000000000000000b R14: 00007f2445105f80 R15: 00007ffec92e6a68
[  268.447552][ T7516]  </TASK>
[  268.492871][   T47] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  268.841838][    T8] usb usb5-port1: attempt power cycle
[  269.118936][   T47] usb 1-1: Using ep0 maxpacket: 16
[  269.205059][ T7531] netlink: 12 bytes leftover after parsing attributes in process `syz.1.553'.
[  269.288690][   T47] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  269.304675][    T8] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  269.375767][    T8] usb 5-1: device descriptor read/8, error -71
[  269.559433][   T47] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  269.864677][    T8] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  269.952395][   T47] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  270.000165][    T8] usb 5-1: device descriptor read/8, error -71
[  270.004921][   T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  270.074175][   T47] usb 1-1: config 0 descriptor??
[  270.152803][    T8] usb usb5-port1: unable to enumerate USB device
[  270.339629][ T7535] netlink: 'syz.4.554': attribute type 1 has an invalid length.
[  270.383874][ T7535] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.554'.
[  271.778967][ T7545] fuse: Unknown parameter 'grou00000000000000000000'
[  272.095494][   T47] usb 1-1: USB disconnect, device number 25
[  272.574097][ T7560] netlink: 8 bytes leftover after parsing attributes in process `syz.4.563'.
[  272.818546][ T7568] overlayfs: failed to resolve './file1': -2
[  273.497765][ T7576] netlink: 12 bytes leftover after parsing attributes in process `syz.2.565'.
[  273.511898][ T7576] overlayfs: failed to resolve './file0': -2
[  274.221053][ T7580] netlink: 4 bytes leftover after parsing attributes in process `syz.4.567'.
[  274.546740][ T7582] fuse: Unknown parameter 'grou00000000000000000000'
[  278.388986][ T7618] overlay: ./file0 is not a directory
[  278.969560][ T7626] netlink: 44 bytes leftover after parsing attributes in process `syz.3.583'.
[  281.180603][ T5231] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  281.191264][ T5231] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  281.199832][ T5231] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  281.207896][ T5231] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  281.222137][ T5231] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  281.229686][ T5231] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  282.864463][ T7680] netlink: 4 bytes leftover after parsing attributes in process `syz.0.598'.
[  283.003545][ T7680] netlink: 4 bytes leftover after parsing attributes in process `syz.0.598'.
[  283.259800][ T7656] chnl_net:caif_netlink_parms(): no params data found
[  283.312337][ T5231] Bluetooth: hci8: command tx timeout
[  283.717935][ T7686] overlay: ./file0 is not a directory
[  283.834988][ T7656] bridge0: port 1(bridge_slave_0) entered blocking state
[  283.872419][ T7656] bridge0: port 1(bridge_slave_0) entered disabled state
[  283.892450][ T7656] bridge_slave_0: entered allmulticast mode
[  283.921446][ T7656] bridge_slave_0: entered promiscuous mode
[  283.993893][ T7656] bridge0: port 2(bridge_slave_1) entered blocking state
[  284.001138][ T7656] bridge0: port 2(bridge_slave_1) entered disabled state
[  284.052525][ T7656] bridge_slave_1: entered allmulticast mode
[  284.084900][ T7656] bridge_slave_1: entered promiscuous mode
[  284.407308][ T7656] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  284.517003][ T7656] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  284.972291][   T47] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  284.996959][ T7656] team0: Port device team_slave_0 added
[  285.046103][ T7656] team0: Port device team_slave_1 added
[  285.203163][   T47] usb 1-1: Using ep0 maxpacket: 16
[  285.220706][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  285.243287][   T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  285.402300][ T5231] Bluetooth: hci8: command tx timeout
[  285.440975][   T47] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  286.204934][   T47] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  286.245949][   T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.301690][   T47] usb 1-1: config 0 descriptor??
[  286.384927][ T7656] batman_adv: batadv0: Adding interface: batadv_slave_0
[  286.461002][ T5214] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  286.481716][ T5214] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  286.511443][ T7656] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.540043][ T5214] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  286.559874][ T5214] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  286.602495][ T5214] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  286.612595][ T5214] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  286.639192][ T7656] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  286.731798][ T7656] batman_adv: batadv0: Adding interface: batadv_slave_1
[  286.739003][ T7656] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.789848][ T7656] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  286.836002][ T7711] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.607'.
[  286.945289][   T29] audit: type=1326 audit(1722516012.087:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7710 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1725b773b9 code=0x7ffc0000
[  286.987922][ T7711] debugfs: Directory 'ü!' with parent 'ieee80211' already present!
[  287.062196][   T29] audit: type=1326 audit(1722516012.097:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7710 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1725b773b9 code=0x7ffc0000
[  287.172372][   T29] audit: type=1326 audit(1722516012.097:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7710 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=154 compat=0 ip=0x7f1725b773b9 code=0x7ffc0000
[  287.195450][ T5270] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  287.290998][ T7656] hsr_slave_0: entered promiscuous mode
[  287.332719][ T7656] hsr_slave_1: entered promiscuous mode
[  287.337671][   T29] audit: type=1326 audit(1722516012.097:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7710 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1725b773b9 code=0x7ffc0000
[  287.386268][   T47] microsoft 0003:045E:07DA.000B: invalid report_size 771751948
[  287.412757][ T7656] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  287.422413][   T47] microsoft 0003:045E:07DA.000B: item 0 4 1 7 parsing failed
[  287.422778][ T7656] Cannot create hsr debugfs directory
[  287.436324][   T29] audit: type=1326 audit(1722516012.097:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7710 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1725b773b9 code=0x7ffc0000
[  287.462506][ T5270] usb 3-1: Using ep0 maxpacket: 8
[  287.472002][   T47] microsoft 0003:045E:07DA.000B: parse failed
[  287.489558][ T5270] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  287.505226][ T5214] Bluetooth: hci8: command tx timeout
[  287.530095][ T5270] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  287.539131][ T5270] usb 3-1: config 1 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  287.549950][ T5270] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  287.561674][ T5270] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.564977][   T47] microsoft 0003:045E:07DA.000B: probe with driver microsoft failed with error -22
[  287.570916][   T29] audit: type=1326 audit(1722516012.097:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7710 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1725b773b9 code=0x7ffc0000
[  287.606938][ T5270] hub 3-1:1.0: bad descriptor, ignoring hub
[  287.619724][ T5270] hub 3-1:1.0: probe with driver hub failed with error -5
[  287.627375][ T5270] cdc_wdm 3-1:1.0: skipping garbage
[  287.642198][   T29] audit: type=1326 audit(1722516012.097:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7710 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1725b773b9 code=0x7ffc0000
[  287.664065][ T5270] cdc_wdm 3-1:1.0: skipping garbage
[  287.669785][ T5270] cdc_wdm 3-1:1.0: probe with driver cdc_wdm failed with error -22
[  287.720398][   T29] audit: type=1326 audit(1722516012.117:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7710 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1725b773b9 code=0x7ffc0000
[  287.846067][   T29] audit: type=1326 audit(1722516012.117:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7710 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1725b773b9 code=0x7ffc0000
[  287.912668][   T29] audit: type=1326 audit(1722516012.117:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=7710 comm="syz.0.607" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1725b773b9 code=0x7ffc0000
[  287.942672][ T5270] usb 3-1: USB disconnect, device number 17
[  287.993543][ T5314] usb 1-1: USB disconnect, device number 26
[  288.359161][ T5214] Bluetooth: hci5: command 0x0406 tx timeout
[  288.686846][ T7656] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  288.692201][ T5231] Bluetooth: hci9: command tx timeout
[  289.096840][ T7656] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.592310][ T5231] Bluetooth: hci8: command tx timeout
[  290.501126][ T7656] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.772480][ T5214] Bluetooth: hci9: command tx timeout
[  291.023844][ T7656] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  291.522695][ T7725] chnl_net:caif_netlink_parms(): no params data found
[  292.253187][ T7796] xt_bpf: check failed: parse error
[  292.527193][ T7725] bridge0: port 1(bridge_slave_0) entered blocking state
[  292.585653][ T7725] bridge0: port 1(bridge_slave_0) entered disabled state
[  292.677931][ T7795] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(8)
[  292.684757][ T7795] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  292.833664][ T5231] Bluetooth: hci9: command tx timeout
[  293.240563][ T7725] bridge_slave_0: entered allmulticast mode
[  293.283809][ T7725] bridge_slave_0: entered promiscuous mode
[  293.352301][ T7725] bridge0: port 2(bridge_slave_1) entered blocking state
[  293.413093][ T7725] bridge0: port 2(bridge_slave_1) entered disabled state
[  293.421075][ T7795] vhci_hcd vhci_hcd.0: Device attached
[  293.467196][ T7725] bridge_slave_1: entered allmulticast mode
[  293.493491][ T7725] bridge_slave_1: entered promiscuous mode
[  293.655419][ T7801] vhci_hcd: connection closed
[  293.660922][   T11] vhci_hcd: stop threads
[  293.907854][   T11] vhci_hcd: release socket
[  293.972539][ T5314] usb 10-1: SetAddress Request (2) to port 0
[  293.979191][ T5314] usb 10-1: new SuperSpeed USB device number 2 using vhci_hcd
[  294.045425][   T11] vhci_hcd: disconnect device
[  294.619301][ T7725] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  294.628593][ T5314] usb 10-1: enqueue for inactive port 0
[  294.672938][ T7795] netlink: 'syz.0.627': attribute type 9 has an invalid length.
[  294.703214][ T7656] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  294.724914][ T7795] netlink: 8 bytes leftover after parsing attributes in process `syz.0.627'.
[  294.809446][ T7656] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  294.875829][ T7656] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  294.912701][ T5231] Bluetooth: hci9: command tx timeout
[  294.928754][ T7725] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  295.002284][ T7656] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  295.042395][  T940] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  295.074010][ T5314] usb usb10-port1: attempt power cycle
[  295.092230][   T47] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  295.293773][  T940] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.321718][   T47] usb 3-1: Using ep0 maxpacket: 32
[  295.325344][ T7725] team0: Port device team_slave_0 added
[  295.342187][  T940] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  295.353547][   T47] usb 3-1: config 0 has an invalid interface number: 84 but max is 1
[  295.372192][   T47] usb 3-1: config 0 has an invalid interface number: 84 but max is 1
[  295.373488][ T7725] team0: Port device team_slave_1 added
[  295.396799][  T940] usb 1-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  295.431057][  T940] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.442231][ T5268] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  295.442386][   T47] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 2
[  295.478907][  T940] usb 1-1: config 0 descriptor??
[  295.511064][   T47] usb 3-1: config 0 has no interface number 0
[  295.515098][  T940] gspca_main: spca561-2.14.0 probing abcd:cdee
[  295.551629][   T47] usb 3-1: config 0 interface 84 has no altsetting 1
[  295.568057][ T7725] batman_adv: batadv0: Adding interface: batadv_slave_0
[  295.590601][ T7725] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  295.622629][ T7725] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  295.653280][ T5268] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  295.654983][   T47] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0033, bcdDevice=6c.3e
[  295.664553][ T5268] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  295.704659][ T7725] batman_adv: batadv0: Adding interface: batadv_slave_1
[  295.711640][ T7725] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  295.761790][ T5268] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.765558][ T5314] usb usb10-port1: unable to enumerate USB device
[  295.793625][   T47] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  295.794919][ T5268] usb 4-1: config 0 descriptor??
[  295.828775][ T5268] pwc: Askey VC010 type 2 USB webcam detected.
[  295.839963][ T7725] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  295.871309][   T47] usb 3-1: Product: syz
[  295.876984][   T47] usb 3-1: Manufacturer: syz
[  295.881611][   T47] usb 3-1: SerialNumber: syz
[  295.901525][  T940] spca561 1-1:0.0: probe with driver spca561 failed with error -22
[  295.922968][  T940] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[  295.980042][   T47] usb 3-1: config 0 descriptor??
[  295.985532][  T940] usb 1-1: MIDIStreaming interface descriptor not found
[  296.031595][ T5268] pwc: send_video_command error -71
[  296.052170][ T5268] pwc: Failed to set video mode CIF@30 fps; return code = -71
[  296.080739][ T5268] Philips webcam 4-1:0.0: probe with driver Philips webcam failed with error -71
[  296.188113][ T5268] usb 4-1: USB disconnect, device number 26
[  296.239187][  T940] usb 1-1: USB disconnect, device number 27
[  296.246042][ T7817] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  296.318404][ T7817] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  296.352810][ T7813] overlayfs: failed to resolve './file1': -2
[  296.370476][ T7725] hsr_slave_0: entered promiscuous mode
[  296.597269][ T7725] hsr_slave_1: entered promiscuous mode
[  296.654966][ T7725] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  296.903562][ T5264] usb 3-1: USB disconnect, device number 18
[  296.932237][ T7725] Cannot create hsr debugfs directory
[  297.052322][ T5268] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  297.063408][ T7665] udevd[7665]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  297.308847][ T5268] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  297.339497][ T5268] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  297.370404][ T5268] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.421156][ T5268] usb 4-1: config 0 descriptor??
[  297.473472][ T5268] pwc: Askey VC010 type 2 USB webcam detected.
[  297.863265][ T5268] pwc: recv_control_msg error -32 req 02 val 2b00
[  297.874454][ T7656] 8021q: adding VLAN 0 to HW filter on device bond0
[  297.922862][ T5268] pwc: recv_control_msg error -32 req 02 val 2700
[  297.946891][ T5268] pwc: recv_control_msg error -32 req 02 val 2c00
[  297.992314][ T7833] netlink: 8 bytes leftover after parsing attributes in process `syz.0.635'.
[  298.082673][ T7656] 8021q: adding VLAN 0 to HW filter on device team0
[  298.341893][ T7837] overlayfs: failed to resolve './file0': -2
[  298.394686][ T5268] pwc: recv_control_msg error -32 req 04 val 1300
[  298.433172][ T5268] pwc: recv_control_msg error -32 req 04 val 1400
[  298.624677][ T5268] pwc: recv_control_msg error -71 req 02 val 2000
[  298.662126][ T5268] pwc: recv_control_msg error -71 req 02 val 2100
[  298.682381][ T5268] pwc: recv_control_msg error -71 req 04 val 1500
[  298.703714][ T5268] pwc: recv_control_msg error -71 req 02 val 2500
[  298.727147][ T5268] pwc: recv_control_msg error -71 req 02 val 2400
[  298.789249][ T5268] pwc: recv_control_msg error -71 req 02 val 2600
[  298.803040][ T5268] pwc: recv_control_msg error -71 req 02 val 2900
[  298.830950][ T5268] pwc: recv_control_msg error -71 req 02 val 2800
[  298.929548][ T5268] pwc: recv_control_msg error -71 req 04 val 1100
[  298.951886][ T5270] bridge0: port 1(bridge_slave_0) entered blocking state
[  298.959130][ T5270] bridge0: port 1(bridge_slave_0) entered forwarding state
[  298.970653][ T5268] pwc: recv_control_msg error -71 req 04 val 1200
[  299.013956][ T5268] pwc: Registered as video71.
[  299.019885][ T5268] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input19
[  299.039694][ T5270] bridge0: port 2(bridge_slave_1) entered blocking state
[  299.046902][ T5270] bridge0: port 2(bridge_slave_1) entered forwarding state
[  299.313798][ T5268] usb 4-1: USB disconnect, device number 27
[  299.852295][ T7836] netlink: 12 bytes leftover after parsing attributes in process `syz.2.636'.
[  300.299014][ T7725] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.722645][ T7725] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.859727][ T7656] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  300.990570][ T7854] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  301.051903][ T7859] fuse: Unknown parameter '[d'
[  301.134801][ T7725] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.531616][ T7725] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.691021][ T7870] netlink: 8 bytes leftover after parsing attributes in process `syz.2.645'.
[  302.247276][ T7886] overlayfs: failed to resolve './file0': -2
[  302.385821][ T7885] netlink: 12 bytes leftover after parsing attributes in process `syz.2.647'.
[  302.857699][ T7656] 8021q: adding VLAN 0 to HW filter on device batadv0
[  303.766925][ T7725] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  303.881160][ T7725] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  303.894675][ T7892] netlink: 209852 bytes leftover after parsing attributes in process `syz.2.650'.
[  303.909070][ T5231] Bluetooth: hci3: SCO packet for unknown connection handle 0
[  303.917960][ T7892] openvswitch: netlink: Tunnel attr 0 has unexpected len 13 expected 8
[  304.063732][ T7725] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  304.105607][ T7725] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  304.222565][ T7902] netlink: 4 bytes leftover after parsing attributes in process `syz.0.652'.
[  304.340946][ T7903] FAULT_INJECTION: forcing a failure.
[  304.340946][ T7903] name failslab, interval 1, probability 0, space 0, times 0
[  304.378095][ T7656] veth0_vlan: entered promiscuous mode
[  304.415313][ T7896] netlink: 4 bytes leftover after parsing attributes in process `syz.0.652'.
[  304.462425][ T7903] CPU: 0 UID: 0 PID: 7903 Comm: syz.2.653 Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0
[  304.473090][ T7903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  304.483140][ T7903] Call Trace:
[  304.486408][ T7903]  <TASK>
[  304.489329][ T7903]  dump_stack_lvl+0x241/0x360
[  304.494009][ T7903]  ? __pfx_dump_stack_lvl+0x10/0x10
[  304.499294][ T7903]  ? __pfx__printk+0x10/0x10
[  304.503876][ T7903]  ? fs_reclaim_acquire+0x93/0x140
[  304.508982][ T7903]  ? __pfx___might_resched+0x10/0x10
[  304.514259][ T7903]  ? dynamic_dname+0x141/0x1b0
[  304.519047][ T7903]  should_fail_ex+0x3b0/0x4e0
[  304.523802][ T7903]  ? tomoyo_encode+0x26f/0x540
[  304.528669][ T7903]  should_failslab+0xac/0x100
[  304.533353][ T7903]  ? tomoyo_encode+0x26f/0x540
[  304.538104][ T7903]  __kmalloc_noprof+0xd8/0x400
[  304.542876][ T7903]  tomoyo_encode+0x26f/0x540
[  304.547509][ T7903]  ? __pfx_sockfs_dname+0x10/0x10
[  304.552636][ T7903]  tomoyo_realpath_from_path+0x59e/0x5e0
[  304.558307][ T7903]  tomoyo_path_number_perm+0x23a/0x880
[  304.563770][ T7903]  ? tomoyo_path_number_perm+0x208/0x880
[  304.569394][ T7903]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  304.575409][ T7903]  ? __fget_files+0x29/0x470
[  304.580012][ T7903]  ? __fget_files+0x3f6/0x470
[  304.584683][ T7903]  ? __fget_files+0x29/0x470
[  304.589263][ T7903]  security_file_ioctl+0x75/0xb0
[  304.594209][ T7903]  __se_sys_ioctl+0x47/0x170
[  304.598809][ T7903]  do_syscall_64+0xf3/0x230
[  304.603418][ T7903]  ? clear_bhb_loop+0x35/0x90
[  304.608086][ T7903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  304.613965][ T7903] RIP: 0033:0x7f36085773b9
[  304.618364][ T7903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  304.638075][ T7903] RSP: 002b:00007f36093eb048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  304.646487][ T7903] RAX: ffffffffffffffda RBX: 00007f3608705f80 RCX: 00007f36085773b9
[  304.654457][ T7903] RDX: 0000000020000000 RSI: 000000000000890c RDI: 0000000000000003
[  304.662425][ T7903] RBP: 00007f36093eb0a0 R08: 0000000000000000 R09: 0000000000000000
[  304.670391][ T7903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  304.678352][ T7903] R13: 000000000000000b R14: 00007f3608705f80 R15: 00007ffd212e2de8
[  304.686326][ T7903]  </TASK>
[  304.790980][ T7903] ERROR: Out of memory at tomoyo_realpath_from_path.
[  305.057945][ T7656] veth1_vlan: entered promiscuous mode
[  305.304627][ T7656] veth0_macvtap: entered promiscuous mode
[  305.575119][ T7656] veth1_macvtap: entered promiscuous mode
[  306.329416][ T7725] 8021q: adding VLAN 0 to HW filter on device bond0
[  306.451790][ T7919] netlink: 'syz.0.657': attribute type 1 has an invalid length.
[  306.483627][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  306.513381][ T7919] netlink: 168864 bytes leftover after parsing attributes in process `syz.0.657'.
[  306.540330][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  306.586314][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  306.632445][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  306.672109][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  306.707628][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  306.741224][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  306.794436][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  306.832205][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  306.873720][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  306.899507][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  306.941161][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  306.975558][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  307.008902][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.059883][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  307.094399][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.130643][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  307.178003][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.221292][ T7656] batman_adv: batadv0: Interface activated: batadv_slave_0
[  307.270162][ T7928] netlink: 12 bytes leftover after parsing attributes in process `syz.3.660'.
[  307.316279][ T7725] 8021q: adding VLAN 0 to HW filter on device team0
[  307.380918][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  307.472218][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.491863][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  307.532054][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.552310][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  307.572059][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.606001][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  307.637072][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.682197][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  307.732188][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.793405][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  307.842083][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.882990][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  307.922162][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  307.962104][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  308.008952][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  308.033893][ T7656] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  308.102120][ T7656] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  308.143920][ T7656] batman_adv: batadv0: Interface activated: batadv_slave_1
[  308.245889][ T5314] bridge0: port 1(bridge_slave_0) entered blocking state
[  308.253115][ T5314] bridge0: port 1(bridge_slave_0) entered forwarding state
[  308.314568][ T5314] bridge0: port 2(bridge_slave_1) entered blocking state
[  308.321916][ T5314] bridge0: port 2(bridge_slave_1) entered forwarding state
[  308.456630][ T7656] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  308.531269][ T7656] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  308.622621][ T7656] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  308.631439][ T7656] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  310.029054][ T5231] Bluetooth: hci6: SCO packet for unknown connection handle 0
[  310.140146][ T7725] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  310.310580][ T5447] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  310.402091][ T5447] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.719548][   T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  310.773235][   T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  311.112764][    C1] eth0: bad gso: type: 1, size: 1408
[  311.552885][   T47] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  311.792201][   T47] usb 4-1: Using ep0 maxpacket: 8
[  311.806353][   T47] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA3, changing to 0x83
[  312.451005][ T7977] overlayfs: failed to resolve './file1': -2
[  312.464414][ T7973] netlink: 8 bytes leftover after parsing attributes in process `syz.2.669'.
[  312.476777][ T7725] 8021q: adding VLAN 0 to HW filter on device batadv0
[  312.482146][   T47] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  312.518188][   T47] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 0
[  312.543909][   T47] usb 4-1: New USB device found, idVendor=05ac, idProduct=9219, bcdDevice=61.da
[  312.554680][   T47] usb 4-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  312.572836][   T47] usb 4-1: Manufacturer: syz
[  312.585604][   T47] usb 4-1: config 0 descriptor??
[  312.602984][ T7973] netlink: 8 bytes leftover after parsing attributes in process `syz.2.669'.
[  312.614342][   T47] appledisplay 4-1:0.0: Could not find int-in endpoint
[  312.623223][   T47] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[  313.387985][ T5265] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  313.633585][ T5265] usb 3-1: Using ep0 maxpacket: 8
[  313.662649][ T5265] usb 3-1: New USB device found, idVendor=0424, idProduct=7800, bcdDevice=e9.41
[  313.748545][ T5265] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.037839][ T5265] usb 3-1: config 0 descriptor??
[  314.192168][ T5231] Bluetooth: hci7: command 0x0406 tx timeout
[  314.198673][ T5214] Bluetooth: hci6: command 0x0406 tx timeout
[  314.564621][ T5265] usb 3-1: USB disconnect, device number 19
[  314.898177][ T5212] usb 4-1: USB disconnect, device number 28
[  315.600282][ T7725] veth0_vlan: entered promiscuous mode
[  315.696118][ T7725] veth1_vlan: entered promiscuous mode
[  315.821664][ T7725] veth0_macvtap: entered promiscuous mode
[  315.829478][ T5268] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  316.785779][ T7725] veth1_macvtap: entered promiscuous mode
[  316.802666][ T5268] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  316.862467][ T5268] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  316.910437][ T5268] usb 2-1: New USB device found, idVendor=28bd, idProduct=0935, bcdDevice= 0.00
[  316.959075][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  317.026186][ T1270] ieee802154 phy0 wpan0: encryption failed: -22
[  317.037999][ T5268] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.052206][ T1270] ieee802154 phy1 wpan1: encryption failed: -22
[  317.082739][ T8020] overlayfs: failed to resolve './file1': -2
[  317.111077][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.156358][ T5268] usb 2-1: config 0 descriptor??
[  317.160674][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  317.210932][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.355354][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  317.878404][ T5268] input: HID 28bd:0935 Mouse as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:28BD:0935.000C/input/input20
[  317.890516][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  317.890530][   T29] audit: type=1326 audit(1722516043.007:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8001 comm="syz.1.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888a1773b9 code=0x7ffc0000
[  317.951158][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  317.979637][   T29] audit: type=1326 audit(1722516043.007:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8001 comm="syz.1.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888a1773b9 code=0x7ffc0000
[  318.006596][ T5214] Bluetooth: hci3: SCO packet for unknown connection handle 0
[  318.037555][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.069890][   T29] audit: type=1326 audit(1722516043.007:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8001 comm="syz.1.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f888a1773b9 code=0x7ffc0000
[  318.103417][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.106952][   T29] audit: type=1326 audit(1722516043.207:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8001 comm="syz.1.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888a1773b9 code=0x7ffc0000
[  318.159153][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.167632][ T5268] uclogic 0003:28BD:0935.000C: input,hidraw0: USB HID v0.00 Mouse [HID 28bd:0935] on usb-dummy_hcd.1-1/input0
[  318.222062][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.256750][   T29] audit: type=1326 audit(1722516043.207:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8001 comm="syz.1.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f888a1773b9 code=0x7ffc0000
[  318.301219][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.360496][   T29] audit: type=1326 audit(1722516043.207:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8033 comm="syz.1.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f888a1a93a5 code=0x7ffc0000
[  318.362659][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.441254][ T5268] usb 2-1: USB disconnect, device number 19
[  318.498560][   T29] audit: type=1326 audit(1722516043.417:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=8033 comm="syz.1.673" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f888a1773b9 code=0x7ffc0000
[  318.529142][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.559229][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.589176][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.616873][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.670848][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.705510][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.744328][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  318.778043][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  318.850536][ T7725] batman_adv: batadv0: Interface activated: batadv_slave_0
[  318.913174][ T8037] overlayfs: failed to resolve './file1': -2
[  319.286021][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  319.338013][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  319.562189][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  319.648835][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  319.702071][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  319.761055][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  319.797117][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  319.842062][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  319.888361][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  319.929745][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  319.996616][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.035756][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.071617][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.105278][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.126349][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.172882][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.223147][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.264312][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.295008][ T7725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  320.322322][ T7725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  320.379784][ T7725] batman_adv: batadv0: Interface activated: batadv_slave_1
[  320.474893][ T7725] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  320.553119][ T7725] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  320.561875][ T7725] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  320.652133][ T7725] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  320.699386][ T5231] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  320.716907][ T5231] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  320.731873][ T5231] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  320.762468][ T5231] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  320.771663][ T5231] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  320.782090][ T5231] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  321.331351][ T1120] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  321.366830][ T1120] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  321.724023][ T5447] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  321.748795][ T5447] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  322.067242][ T1078] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.755698][ T8070] overlayfs: failed to resolve './file1': -2
[  322.776862][ T1078] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.835796][ T5231] Bluetooth: hci10: command tx timeout
[  324.098196][ T1078] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  324.195166][ T5231] Bluetooth: hci1: command 0x0406 tx timeout
[  324.315019][ T8052] chnl_net:caif_netlink_parms(): no params data found
[  324.857794][ T1078] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  324.916637][ T5214] Bluetooth: hci10: command tx timeout
[  325.574184][ T8052] bridge0: port 1(bridge_slave_0) entered blocking state
[  325.612241][ T8052] bridge0: port 1(bridge_slave_0) entered disabled state
[  325.652387][ T8052] bridge_slave_0: entered allmulticast mode
[  325.682529][ T8052] bridge_slave_0: entered promiscuous mode
[  325.725312][ T8052] bridge0: port 2(bridge_slave_1) entered blocking state
[  325.750755][ T8052] bridge0: port 2(bridge_slave_1) entered disabled state
[  325.762300][ T8052] bridge_slave_1: entered allmulticast mode
[  325.782244][ T8052] bridge_slave_1: entered promiscuous mode
[  326.060073][ T8052] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  326.126179][ T8052] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  326.304432][ T5212] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  326.387365][ T8052] team0: Port device team_slave_0 added
[  326.429637][ T8052] team0: Port device team_slave_1 added
[  326.472825][ T1078] bridge_slave_1: left allmulticast mode
[  326.492068][ T1078] bridge_slave_1: left promiscuous mode
[  326.523215][ T1078] bridge0: port 2(bridge_slave_1) entered disabled state
[  326.541809][ T5212] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  326.572424][ T5212] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  326.593019][ T5212] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.615924][ T1078] bridge_slave_0: left allmulticast mode
[  326.621709][ T1078] bridge_slave_0: left promiscuous mode
[  326.640448][ T5212] usb 5-1: config 0 descriptor??
[  326.668296][ T1078] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.684547][ T5212] pwc: Askey VC010 type 2 USB webcam detected.
[  326.908605][ T5212] pwc: send_video_command error -71
[  326.944923][ T5212] pwc: Failed to set video mode CIF@30 fps; return code = -71
[  326.965790][ T5212] Philips webcam 5-1:0.0: probe with driver Philips webcam failed with error -71
[  326.992540][ T5214] Bluetooth: hci10: command tx timeout
[  327.010930][ T5212] usb 5-1: USB disconnect, device number 17
[  327.550234][ T5212] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  327.764895][ T5212] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  327.809491][ T5212] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  327.852163][ T5212] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  327.899997][ T5212] usb 5-1: config 0 descriptor??
[  327.980673][ T5212] pwc: Askey VC010 type 2 USB webcam detected.
[  328.183178][ T8109] netlink: 8 bytes leftover after parsing attributes in process `syz.3.702'.
[  328.212393][ T8109] netlink: 8 bytes leftover after parsing attributes in process `syz.3.702'.
[  328.344189][ T5212] pwc: recv_control_msg error -32 req 02 val 2b00
[  328.443108][ T5212] pwc: recv_control_msg error -32 req 02 val 2700
[  328.496630][ T5212] pwc: recv_control_msg error -32 req 02 val 2c00
[  328.525473][ T5212] pwc: recv_control_msg error -32 req 04 val 1000
[  328.552190][ T5212] pwc: recv_control_msg error -32 req 04 val 1300
[  328.575587][ T5212] pwc: recv_control_msg error -71 req 04 val 1400
[  328.591327][ T5212] pwc: recv_control_msg error -71 req 02 val 2000
[  328.607135][ T5212] pwc: recv_control_msg error -71 req 02 val 2100
[  328.622737][ T5212] pwc: recv_control_msg error -71 req 04 val 1500
[  328.632109][ T5266] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  328.640890][ T5212] pwc: recv_control_msg error -71 req 02 val 2500
[  328.661515][ T5212] pwc: recv_control_msg error -71 req 02 val 2400
[  328.673154][ T5212] pwc: recv_control_msg error -71 req 02 val 2600
[  328.682758][ T5212] pwc: recv_control_msg error -71 req 02 val 2900
[  328.691874][ T5212] pwc: recv_control_msg error -71 req 02 val 2800
[  328.703354][ T5212] pwc: recv_control_msg error -71 req 04 val 1100
[  328.713548][ T5212] pwc: recv_control_msg error -71 req 04 val 1200
[  328.727033][ T5212] pwc: Registered as video71.
[  328.737129][ T5212] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input21
[  328.766642][ T5212] usb 5-1: USB disconnect, device number 18
[  328.822106][ T5266] usb 4-1: Using ep0 maxpacket: 8
[  328.829109][ T5266] usb 4-1: New USB device found, idVendor=0424, idProduct=7800, bcdDevice=e9.41
[  328.843650][ T5266] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.876907][ T5266] usb 4-1: config 0 descriptor??
[  329.082300][ T5214] Bluetooth: hci10: command tx timeout
[  329.331436][    T8] usb 4-1: USB disconnect, device number 29
[  329.588890][ T1078] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  329.660082][ T1078] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  329.715522][ T1078] bond0 (unregistering): Released all slaves
[  330.052289][ T5264] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  330.273298][ T5264] usb 5-1: Using ep0 maxpacket: 16
[  330.299033][ T5264] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  330.349877][ T5264] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[  330.384838][ T8052] batman_adv: batadv0: Adding interface: batadv_slave_0
[  330.410591][ T8052] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  330.440464][ T5264] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  330.482048][ T5264] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  330.522509][ T5214] Bluetooth: hci1: command 0x0406 tx timeout
[  330.663008][ T5264] usb 5-1: config 0 descriptor??
[  330.676372][ T8052] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  330.688702][ T5264] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  331.476401][ T8052] batman_adv: batadv0: Adding interface: batadv_slave_1
[  331.512856][ T8052] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  331.565919][ T8052] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  332.027159][ T8052] hsr_slave_0: entered promiscuous mode
[  332.086996][ T8052] hsr_slave_1: entered promiscuous mode
[  332.101138][ T8052] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  332.140197][ T8052] Cannot create hsr debugfs directory
[  332.350196][ T1078] hsr_slave_0: left promiscuous mode
[  332.433172][    T8] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  332.443437][ T1078] hsr_slave_1: left promiscuous mode
[  332.532264][ T1078] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  332.569977][ T1078] batman_adv: batadv0: Removing interface: batadv_slave_0
[  332.623428][ T1078] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  332.755740][    T8] usb 2-1: Using ep0 maxpacket: 8
[  332.775545][    T8] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  332.792057][    T8] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  332.820014][ T1078] batman_adv: batadv0: Removing interface: batadv_slave_1
[  332.982536][    T8] usb 2-1: config 1 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  332.993715][    T8] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  333.002904][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.031695][    T8] hub 2-1:1.0: bad descriptor, ignoring hub
[  333.038020][    T8] hub 2-1:1.0: probe with driver hub failed with error -5
[  333.046660][    T8] cdc_wdm 2-1:1.0: skipping garbage
[  333.052204][    T8] cdc_wdm 2-1:1.0: skipping garbage
[  333.057660][    T8] cdc_wdm 2-1:1.0: probe with driver cdc_wdm failed with error -22
[  333.764682][ T5270] usb 5-1: USB disconnect, device number 19
[  334.162815][    T8] usb 2-1: USB disconnect, device number 20
[  335.050119][ T8143] syz.1.712 (8143) used greatest stack depth: 18808 bytes left
[  335.164394][ T1078] veth1_macvtap: left promiscuous mode
[  335.183591][ T1078] veth0_macvtap: left promiscuous mode
[  335.207162][ T1078] veth1_vlan: left promiscuous mode
[  335.223803][ T1078] veth0_vlan: left promiscuous mode
[  336.095799][ T5265] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  336.103574][    T8] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  336.344472][ T5265] usb 5-1: Using ep0 maxpacket: 16
[  336.352711][    T8] usb 2-1: Using ep0 maxpacket: 8
[  336.364316][    T8] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA3, changing to 0x83
[  336.397402][ T5265] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  336.412121][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  336.430521][ T5265] usb 5-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[  336.462049][ T5265] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  336.470275][    T8] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 0
[  336.497286][ T5265] usb 5-1: config 0 descriptor??
[  336.513812][    T8] usb 2-1: New USB device found, idVendor=05ac, idProduct=9219, bcdDevice=61.da
[  336.540462][    T8] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  336.572076][    T8] usb 2-1: Manufacturer: syz
[  336.593140][    T8] usb 2-1: config 0 descriptor??
[  336.614729][    T8] appledisplay 2-1:0.0: Could not find int-in endpoint
[  336.635949][    T8] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  338.842692][ T5264] usb 2-1: USB disconnect, device number 21
[  339.542325][ T1078] team0 (unregistering): Port device team_slave_1 removed
[  339.689850][ T1078] team0 (unregistering): Port device team_slave_0 removed
[  341.319666][   T30] INFO: task syz.0.385:6746 blocked for more than 143 seconds.
[  341.333159][   T30]       Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0
[  341.361231][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  341.427015][   T30] task:syz.0.385       state:D stack:25296 pid:6746  tgid:6743  ppid:5210   flags:0x00004006
[  341.522065][   T30] Call Trace:
[  341.525411][   T30]  <TASK>
[  341.528364][   T30]  __schedule+0x17ae/0x4a10
[  341.567367][   T30]  ? __pfx___schedule+0x10/0x10
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=-1 (errno 104: Connection reset by peer)
[  341.592092][   T30]  ? __pfx_lock_release+0x10/0x10
[  341.597197][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  341.643364][   T30]  ? schedule+0x90/0x320
[  341.647684][   T30]  schedule+0x14b/0x320
[  341.651874][   T30]  io_schedule+0x8d/0x110
[  341.712406][   T30]  folio_wait_bit_common+0x882/0x12b0
[  341.717875][   T30]  ? __pfx_folio_wait_bit_common+0x10/0x10
[  341.752901][   T30]  ? __pfx_wake_page_function+0x10/0x10
[  341.758533][   T30]  ? folio_lock+0x97/0x1a0
[  341.792095][   T30]  ? __folio_lock+0xd/0x20
[  341.796601][   T30]  invalidate_inode_pages2_range+0x4e4/0x1030
[  341.832057][   T30]  ? filemap_get_folios_tag+0x5eb/0x890
[  341.842272][   T30]  ? __pfx_invalidate_inode_pages2_range+0x10/0x10
[  341.862631][   T30]  ? __pfx___filemap_fdatawait_range+0x10/0x10
[  341.902112][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  341.908512][   T30]  ? I_BDEV+0xd/0x20
[  341.932087][   T30]  ? filemap_check_errors+0xe1/0x140
[  341.971582][   T30]  kiocb_invalidate_pages+0x317/0x3b0
[  341.978376][   T30]  ? __pfx_seqcount_lockdep_reader_access+0x10/0x10
[  342.032455][   T30]  ? __pfx_kiocb_invalidate_pages+0x10/0x10
[  342.038459][   T30]  ? rcu_is_watching+0x15/0xb0
[  342.072989][   T30]  ? __mark_inode_dirty+0x41c/0xe20
[  342.078232][   T30]  ? preempt_count_add+0x93/0x190
[  342.113319][   T30]  ? mnt_put_write_access_file+0xbb/0x100
[  342.119131][   T30]  blkdev_direct_write+0x49/0x140
[  342.152067][   T30]  blkdev_write_iter+0x41a/0x5d0
[  342.162135][   T30]  iter_file_splice_write+0xbd7/0x14e0
[  342.167673][   T30]  ? __pfx_iter_file_splice_write+0x10/0x10
[  342.203144][   T30]  ? __pfx_copy_splice_read+0x10/0x10
[  342.208575][   T30]  ? __pfx_iter_file_splice_write+0x10/0x10
[  342.232088][   T30]  direct_splice_actor+0x11e/0x220
[  342.237235][   T30]  splice_direct_to_actor+0x58e/0xc90
[  342.262072][   T30]  ? __pfx_direct_splice_actor+0x10/0x10
[  342.279415][   T30]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  342.302122][   T30]  ? __fget_files+0x29/0x470
[  342.306743][   T30]  ? __pfx_lock_release+0x10/0x10
[  342.311755][   T30]  do_splice_direct+0x28c/0x3e0
[  342.352072][   T30]  ? __pfx_do_splice_direct+0x10/0x10
[  342.367555][   T30]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  342.392039][   T30]  ? security_file_permission+0x7f/0xa0
[  342.407760][   T30]  ? rw_verify_area+0x1d2/0x6b0
[  342.433723][   T30]  do_sendfile+0x56d/0xe20
[  342.438186][   T30]  ? __pfx_do_sendfile+0x10/0x10
[  342.462123][   T30]  __se_sys_sendfile64+0x17c/0x1e0
[  342.467270][   T30]  ? __pfx___se_sys_sendfile64+0x10/0x10
[  342.493330][   T30]  ? do_syscall_64+0x100/0x230
[  342.498162][   T30]  ? do_syscall_64+0xb6/0x230
[  342.522397][   T30]  do_syscall_64+0xf3/0x230
[  342.532302][   T30]  ? clear_bhb_loop+0x35/0x90
[  342.537008][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  342.572230][   T30] RIP: 0033:0x7f3baa1773b9
[  342.576706][   T30] RSP: 002b:00007f3ba9bde048 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  342.632229][   T30] RAX: ffffffffffffffda RBX: 00007f3baa306130 RCX: 00007f3baa1773b9
[  342.640263][   T30] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000008
[  342.692115][   T30] RBP: 00007f3baa1e48e6 R08: 0000000000000000 R09: 0000000000000000
[  342.700136][   T30] R10: 0000000000020003 R11: 0000000000000246 R12: 0000000000000000
[  342.722030][   T30] R13: 000000000000006e R14: 00007f3baa306130 R15: 00007ffc80fc4a78
[  342.740173][   T30]  </TASK>
[  342.785684][   T30] 
[  342.785684][   T30] Showing all locks held in the system:
[  342.813593][   T30] 1 lock held by khungtaskd/30:
[  342.818461][   T30]  #0: ffffffff8e7377a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  342.852064][   T30] 2 locks held by kswapd0/86:
[  342.882181][   T30] 5 locks held by kworker/u8:8/1078:
[  342.887515][   T30]  #0: ffff8880162e3148 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  342.924119][   T30]  #1: ffffc90003df7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  342.962085][   T30]  #2: ffffffff8fa60e10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  342.995682][   T30]  #3: ffffffff8fa6d988 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  343.032063][   T30]  #4: ffffffff8e73cb78 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830
[  343.072173][   T30] 1 lock held by dhcpcd/4882:
[  343.076900][   T30]  #0: ffffffff8fa6d988 (rtnl_mutex){+.+.}-{3:3}, at: devinet_ioctl+0x2ce/0x1bc0
[  343.102139][   T30] 2 locks held by getty/4971:
[  343.108037][   T30]  #0: ffff88802ab2d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  343.152051][   T30]  #1: ffffc900031232f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6ac/0x1e00
[  343.182439][   T30] 3 locks held by kworker/0:5/5268:
[  343.187680][   T30]  #0: ffff888015480948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  343.232965][   T30]  #1: ffffc90004057d00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  343.262371][   T30]  #2: ffffffff8fa6d988 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[  343.292406][   T30] 3 locks held by kworker/1:7/5314:
[  343.297648][   T30]  #0: ffff888015480948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  343.345216][   T30]  #1: ffffc90004227d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  343.372175][   T30]  #2: ffffffff8fa6d988 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  343.402151][   T30] 6 locks held by syz.1.316/6511:
[  343.409576][   T30] 1 lock held by syz-executor/8052:
[  343.422085][   T30]  #0: ffffffff8fa6d988 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  343.431550][   T30] 1 lock held by syz.3.714/8156:
[  343.472148][   T30]  #0: ffffffff8fa6d988 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  343.481187][   T30] 1 lock held by syz.0.716/8168:
[  343.512078][   T30]  #0: ffffffff8fa6d988 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  343.521510][   T30] 1 lock held by syz.4.721/8187:
[  343.542055][   T30]  #0: ffffffff8fa6d988 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  343.582186][   T30] 1 lock held by syz.1.722/8193:
[  343.587169][   T30]  #0: ffffffff8fa6d988 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  343.642574][   T30] 
[  343.644949][   T30] =============================================
[  343.644949][   T30] 
[  343.672013][   T30] NMI backtrace for cpu 0
[  343.676392][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0
[  343.686881][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  343.696924][   T30] Call Trace:
[  343.700191][   T30]  <TASK>
[  343.703117][   T30]  dump_stack_lvl+0x241/0x360
[  343.707794][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  343.712998][   T30]  ? __pfx__printk+0x10/0x10
[  343.717597][   T30]  ? vprintk_emit+0x631/0x770
[  343.722268][   T30]  ? __pfx_vprintk_emit+0x10/0x10
[  343.727286][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  343.732223][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  343.737679][   T30]  ? _printk+0xd5/0x120
[  343.741826][   T30]  ? __pfx__printk+0x10/0x10
[  343.746409][   T30]  ? __wake_up_klogd+0xcc/0x110
[  343.751251][   T30]  ? __pfx__printk+0x10/0x10
[  343.755832][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  343.760848][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  343.766820][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  343.772799][   T30]  watchdog+0xfee/0x1030
[  343.777037][   T30]  ? watchdog+0x1ea/0x1030
[  343.781451][   T30]  ? __pfx_watchdog+0x10/0x10
[  343.786122][   T30]  kthread+0x2f0/0x390
[  343.790178][   T30]  ? __pfx_watchdog+0x10/0x10
[  343.794847][   T30]  ? __pfx_kthread+0x10/0x10
[  343.799428][   T30]  ret_from_fork+0x4b/0x80
[  343.803838][   T30]  ? __pfx_kthread+0x10/0x10
[  343.808414][   T30]  ret_from_fork_asm+0x1a/0x30
[  343.813184][   T30]  </TASK>
[  343.818253][   T30] Sending NMI from CPU 0 to CPUs 1:
[  343.824168][    C1] NMI backtrace for cpu 1 skipped: idling at acpi_safe_halt+0x21/0x30
[  343.952319][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  343.959221][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc1-syzkaller-00063-g21b136cc63d2 #0
[  343.969738][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  343.979811][   T30] Call Trace:
[  343.983101][   T30]  <TASK>
[  343.986039][   T30]  dump_stack_lvl+0x241/0x360
[  343.990733][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  343.995946][   T30]  ? __pfx__printk+0x10/0x10
[  344.000548][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  344.006553][   T30]  ? vscnprintf+0x5d/0x90
[  344.010901][   T30]  panic+0x349/0x860
[  344.014812][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  344.021042][   T30]  ? __pfx_panic+0x10/0x10
[  344.025470][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  344.030849][   T30]  ? __irq_work_queue_local+0x137/0x410
[  344.036407][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  344.041785][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  344.047946][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  344.054114][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  344.060285][   T30]  watchdog+0x102d/0x1030
[  344.064633][   T30]  ? watchdog+0x1ea/0x1030
[  344.069059][   T30]  ? __pfx_watchdog+0x10/0x10
[  344.073729][   T30]  kthread+0x2f0/0x390
[  344.077788][   T30]  ? __pfx_watchdog+0x10/0x10
[  344.082469][   T30]  ? __pfx_kthread+0x10/0x10
[  344.087052][   T30]  ret_from_fork+0x4b/0x80
[  344.091458][   T30]  ? __pfx_kthread+0x10/0x10
[  344.096051][   T30]  ret_from_fork_asm+0x1a/0x30
[  344.100827][   T30]  </TASK>
[  344.104138][   T30] Kernel Offset: disabled
[  344.108460][   T30] Rebooting in 86400 seconds..