last executing test programs:

5.407901541s ago: executing program 1 (id=1011):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[], 0x58}}, 0x0)
syz_io_uring_setup(0x2c0c, &(0x7f0000000400)={0x0, 0x0, 0x4002}, &(0x7f0000000480), &(0x7f00000004c0))

5.035815868s ago: executing program 1 (id=1018):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3fc, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000a00)={0x0, @in6={{0xa, 0x4e23, 0x0, @loopback}}, 0x0, 0x2, 0x0, 0x0, 0x54}, 0x9c)

4.869927378s ago: executing program 1 (id=1021):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, &(0x7f0000000200)=[{{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x1, 0x1}}, {{0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}}], 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000580)={'vcan0\x00', <r1=>0x0})
bind$can_raw(r0, &(0x7f0000000100)={0x1d, r1}, 0x10)
pipe(0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
syz_emit_ethernet(0x2a, &(0x7f00000002c0)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb0806000608000604"], 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000000), 0xfffffecc)
splice(0xffffffffffffffff, 0x0, r2, 0x0, 0x4ffe6, 0x0)
bind$can_raw(r0, &(0x7f0000000280), 0x10)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10)
write$vga_arbiter(0xffffffffffffffff, &(0x7f0000000240)=ANY=[@ANYBLOB='target '], 0x14)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x1f, 0x10, &(0x7f0000000080)=@framed={{}, [@snprintf={{}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r4}, {}, {0x85, 0x0, 0x0, 0x6a}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r5}, 0xc)
sendmsg$rds(r3, &(0x7f0000001e40)={&(0x7f0000000000)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f00000003c0)=[@mask_fadd={0x58, 0x114, 0x8, {{0x80}, &(0x7f00000007c0), 0x0, 0x0, 0x2}}, @mask_fadd={0x58, 0x114, 0x8, {{}, 0x0, 0x0, 0xfffffffffffffffe}}], 0xb0, 0x40}, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x3, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r6}, 0x38)

4.149848777s ago: executing program 1 (id=1031):
r0 = syz_usb_connect(0x2, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000010c0)={0x84, &(0x7f00000000c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

3.055361468s ago: executing program 2 (id=1047):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x1}}, 0x10)
r2 = socket$tipc(0x1e, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_LINK_SET(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x38, 0x0, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x5, 0x2}]}]}]}, 0x38}}, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x83f}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r4, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x3}}, 0x10)
bind$tipc(r4, 0x0, 0x0)

2.627980968s ago: executing program 2 (id=1053):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@empty, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x2, 0x20, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {}, 0xfffffffd, 0x0, 0x1, 0x1}}, 0xb8}}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@empty, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, 0x0, 0x0, 0x1}}, 0xb8}}, 0x0)

2.520502794s ago: executing program 2 (id=1054):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000040000730128"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

2.409548847s ago: executing program 2 (id=1056):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x35, 0x4, 0x0, 0x0, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x3, 0x5, 0x4]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1, 0x5}, {@remote}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x658}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100, 0x7}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@dev={0xac, 0x14, 0x14, 0x80}, 0x20000}, {@remote}, {@multicast2, 0x7}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x13, 0x0, [@remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
fsopen(&(0x7f0000000000)='sysfs\x00', 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

2.163856965s ago: executing program 3 (id=1058):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000004bc0)=[{{0x0, 0x0, &(0x7f0000000900)=[{0x0}, {&(0x7f0000000f00)="f5e022a4d2ed0cf5f8b2e9857cb9af98da7aa60f7a1582aadeaef336f9139f6768452f868624c7e6ce0948f33f1a63e0fcf0f2df28a3f1f4de26a8b575ccb465985e48f65b9a7fcc93c0a5be8b16774f7c7ca9848a182d6ee7c0f2b9c0e7030ed93ee34214c25cb51279b18c8e5bfbc52152be37f5e2b783e2149be25180430ac63ee1bbe01fbb6125e65839ae5b02d542a97d1bfb1ca420b5405baaaf5ec6ad96af2814dbbea5a064f2ab6fc0904c07f02cbfadfb96866d962e6e21d3a0a0276a36e01b6edafd6c8461", 0xca}], 0x2}}, {{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000700)="acc841985992b79554acfc02163bb0fb2bb293e68702bb40b6b870bde5700d368744361ae9fce3a4ff6b", 0x2a}, {&(0x7f0000000740)="b1f56ee29c433328d3b2a83bd97e37007087acae7568edff43ed556d7677", 0x1e}], 0x2}}, {{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000b80)="1ee88f78de7d57006d8ffa3f1d92c228a43f6c86558705d98691e6344fa3745cc92c1f80fc01a77c28bb77872fc4f9be9660bb62708d0f52f4958fb4cc5144775062cc7225ea", 0x46}, {&(0x7f0000001bc0)="5c89eeb1aa86c6f680f09cc1c1d4bc5fc6a067d295afd3aa97af3d777b81db48f9ceb270e506af840503c6fbf20760e4cd8df9c220cd0728585229123d5c61507d00561b8f1a15e64fa2779be424fdeff46058eaee7acfc80b2ae9840e9ac1e33ac8378c98695a08bdb8f2a756b1704c036e3b0ff2d1e9d397a82e24debd371e6855b7dc2dea47d57a9dfbf4fb2ccb3f975c3851c6b5399ab80c4ba95604f70a69674cfe820d82fb06b243625a8a9e4e", 0xb0}], 0x2}}], 0x3, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

2.087489577s ago: executing program 3 (id=1059):
capget(&(0x7f0000000280)={0x20071026}, &(0x7f00000003c0)={0xfff, 0x10000003, 0xfffff843, 0x2, 0x8, 0x5})

1.911982203s ago: executing program 3 (id=1061):
r0 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0xd)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000582000/0x2000)=nil, 0x800000})

1.886508384s ago: executing program 0 (id=1063):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x1}}, 0x10)
r2 = socket$tipc(0x1e, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x38, r3, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x5, 0x2}]}]}]}, 0x38}}, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x83f}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r4, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x3}}, 0x10)
bind$tipc(r4, 0x0, 0x0)

1.826962338s ago: executing program 4 (id=1064):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
gettid()
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff})
openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
sendmsg$unix(r0, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@rights={{0x14, 0x1, 0x1, [r1]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x30}, 0x0)

1.805199518s ago: executing program 3 (id=1065):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r0, 0x84, 0x13, &(0x7f0000000080)=0x8001, 0x4)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x1, 0x20}, 0xc)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

1.757076873s ago: executing program 0 (id=1066):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000040000730128"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

1.683988171s ago: executing program 2 (id=1067):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = fanotify_init(0x200, 0x0)
r2 = dup(r0)
fanotify_mark(r1, 0x1, 0x8001028, r2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
writev(r3, 0x0, 0x0)

1.683825096s ago: executing program 4 (id=1068):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000080)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYRES32=r3, @ANYBLOB="00000002000000002800"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000500)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000003240)=@delchain={0x24, 0x65, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0x1, 0xffff}}}, 0x24}}, 0x0)

1.588006756s ago: executing program 0 (id=1069):
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
eventfd(0x0)
r2 = eventfd(0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000040)={r2, 0x0, 0x2})

1.55677782s ago: executing program 4 (id=1070):
r0 = socket$tipc(0x1e, 0x2, 0x0)
unshare(0x20000400)
bind$tipc(r0, &(0x7f0000000200)=@id={0x1e, 0x3, 0x0, {0x4e22, 0x1}}, 0x10)

1.439940212s ago: executing program 4 (id=1071):
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
socket(0x10, 0x803, 0x0)
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)=ANY=[@ANYRES32, @ANYRES32, @ANYRES64=r0, @ANYRESHEX=r0], 0x20)

1.390663483s ago: executing program 3 (id=1072):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
pipe(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc)
r4 = socket(0x28, 0x5, 0x0)
r5 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r5, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r5, 0x0)
connect$vsock_stream(r4, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
splice(r1, 0x0, r3, 0x0, 0x4ffe6, 0x0)

1.085512828s ago: executing program 0 (id=1073):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000006c0)={0x18, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x4}]}, 0x18}}, 0x0)

1.040854331s ago: executing program 0 (id=1074):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000001040)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{}, {}]}, [{}, {}, {}, {}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {}, {}, {}, {0x0, 0x0, 0x0, 0x7}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {}, {}, {0xfffffffc}, {}, {}, {0x0, 0xfffffffc}, {0x0, 0x4}, {}, {}, {}, {}, {0x0, 0xfffffffc}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xffff}, {}, {0xfffffffe}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x10}, {}, {0x0, 0x0, 0x0, 0x0, 0x8000000}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {0x0, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffb}, {}, {0xffffffff}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xe}, {}, {}, {0xd41}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2}, {}, {0x4}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x200}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8, 0x0, 0x5}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}, {0x3}], [{}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {0x4, 0x1}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x1}, {0x0, 0x1}, {0x0, 0x1}, {0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}, 0x1, 0x0, 0x0, 0x4008004}, 0x0)

956.010083ms ago: executing program 4 (id=1075):
r0 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x0, 0xd)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000080)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000582000/0x2000)=nil, 0x800000})

955.831723ms ago: executing program 1 (id=1076):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x42}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000140)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x1}}, 0x10)
r2 = socket$tipc(0x1e, 0x4, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)={0x38, r3, 0x601, 0x0, 0x0, {}, [@TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x5, 0x2}]}]}]}, 0x38}}, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x83f}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r4, &(0x7f0000000080)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x3}}, 0x10)
bind$tipc(r4, 0x0, 0x0)

877.875969ms ago: executing program 4 (id=1077):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_MAX_VCPU_ID(r1, 0x4068aea3, &(0x7f00000006c0)={0x80, 0x0, 0x6})

849.493076ms ago: executing program 0 (id=1078):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f0000001e00)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000a40)="0036d551863e1902129da79f5986e05288f50e5398660c1a29b0f45c0cc36902e0251c8d34197b357b32b161f9ad72d55a0eab976aae24ed805271b43f0ce2fea5e764494873e0d82a172b3bb54f59b458fd35039c7d81e9ab07f2fb4dad61bd500a119b54c74a12e4569e47b69a95f92c6380af2bd003fa56f06a23bbd1c76d", 0x80}, {&(0x7f0000000f00)="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", 0x145}, {&(0x7f0000000340)="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", 0x101}, {&(0x7f0000000480)="fff5c0293353dbff0f8392718c8095fbc29ac956aabc8929dc44daa822ea8a760660b1f14b887554", 0x28}], 0x4}}, {{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000001980)="e7e42d90069206dbefd94dbb36d09f1e951a1de3e84f91f5204627404a9fc3dfeb4b442422836dec5e3e6965bccda342eff129c1c6a8184c95a8e6fa3672a4a52f625e1cfbc31b33f3fa800d3d72310558de", 0x52}, {&(0x7f0000001a80)="14f8686284b12207398c63771e9f6285eed85d7fb3adba223d59e2e3870bc4fe69c7bdd1de04087d3ae4903decdb9680cdbf0092053f", 0x36}, {&(0x7f0000000180)="f949586433c2884fd43b968865f8267c0161674a48d84a6af4f714b6b0e65d0db59af203bb1aa1745313eac2cea8df3d1af1b9aa774fdbb8bf725f33be9f224a420b763770151dde099fbb77", 0x4c}, {&(0x7f0000000640)="9ce841fc9fa760c445962d49516784496b77cba4596dd40907006b7e7eaee18e4360258e1c82d8bf331e04dedcc1334c3756c0bd44298746421f2146d4d6b44bcc768d776a33f0fe026a5920316c0ee62f958813e3247981d6fa2c3a976918df4fcb", 0x62}], 0x4}}], 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r0, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

804.160805ms ago: executing program 2 (id=1079):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000040000730128"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

803.834787ms ago: executing program 1 (id=1080):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)={0x54, 0x1, 0x2, 0x101, 0x0, 0x0, {}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast2}}}]}, @CTA_FILTER={0x4}]}, 0x54}}, 0x0)

0s ago: executing program 3 (id=1081):
syz_io_uring_setup(0x24f9, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004400000010000300", @ANYRES32=r2, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x0)

kernel console output (not intermixed with test programs):

vice_unregister+0x20/0xc0
[ 1593.852324][T11244]  iommufd_fops_release+0x19d/0x2f0
[ 1593.857518][T11244]  ? __pfx___fsnotify_parent+0x10/0x10
[ 1593.862974][T11244]  ? __pfx_iommufd_fops_release+0x10/0x10
[ 1593.868689][T11244]  ? do_raw_spin_lock+0x14f/0x370
[ 1593.873713][T11244]  ? __pfx_lock_release+0x10/0x10
[ 1593.878742][T11244]  ? evm_file_release+0x13d/0x1c0
[ 1593.883763][T11244]  ? __pfx_iommufd_fops_release+0x10/0x10
[ 1593.889483][T11244]  __fput+0x23f/0x880
[ 1593.893472][T11244]  __x64_sys_close+0x7f/0x110
[ 1593.898144][T11244]  do_syscall_64+0xf3/0x230
[ 1593.902647][T11244]  ? clear_bhb_loop+0x35/0x90
[ 1593.907317][T11244]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1593.913206][T11244] RIP: 0033:0x7f519317dff9
[ 1593.917612][T11244] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1593.937212][T11244] RSP: 002b:00007f5193fcb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 1593.945622][T11244] RAX: ffffffffffffffda RBX: 00007f5193335f80 RCX: 00007f519317dff9
[ 1593.953585][T11244] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1593.961548][T11244] RBP: 00007f5193fcb090 R08: 0000000000000000 R09: 0000000000000000
[ 1593.969512][T11244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1593.977475][T11244] R13: 0000000000000000 R14: 00007f5193335f80 R15: 00007ffef1ee5d78
[ 1593.985454][T11244]  </TASK>
[ 1596.572324][ T9398] Bluetooth: hci3: command 0x0405 tx timeout
[ 1596.592559][ T9398] Bluetooth: hci6: command tx timeout
[ 1599.155577][ T9401] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0
[ 1599.164274][ T9401] Bluetooth: hci6: Injecting HCI hardware error event
[ 1599.173919][ T5229] Bluetooth: hci6: hardware error 0x00
[ 1599.562819][T11298] netlink: 152 bytes leftover after parsing attributes in process `syz.1.490'.
[ 1600.890619][T11309] netlink: 20 bytes leftover after parsing attributes in process `syz.3.496'.
[ 1601.029169][T11316] overlayfs: overlapping lowerdir path
[ 1601.434336][T11323] tap0: tun_chr_ioctl cmd 1074025677
[ 1601.446049][T11323] tap0: linktype set to 0
[ 1602.242997][ T5229] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[ 1602.825989][T11341] FAULT_INJECTION: forcing a failure.
[ 1602.825989][T11341] name failslab, interval 1, probability 0, space 0, times 0
[ 1602.850132][T11341] CPU: 0 UID: 0 PID: 11341 Comm: syz.1.507 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[ 1602.860476][T11341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1602.870520][T11341] Call Trace:
[ 1602.873785][T11341]  <TASK>
[ 1602.876701][T11341]  dump_stack_lvl+0x241/0x360
[ 1602.881392][T11341]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1602.886573][T11341]  ? __pfx__printk+0x10/0x10
[ 1602.891144][T11341]  ? __kmalloc_noprof+0xb0/0x400
[ 1602.896079][T11341]  ? __pfx___might_resched+0x10/0x10
[ 1602.901384][T11341]  should_fail_ex+0x3b0/0x4e0
[ 1602.906064][T11341]  ? smk_write_net6addr+0x197/0x18b0
[ 1602.911341][T11341]  should_failslab+0xac/0x100
[ 1602.916000][T11341]  ? smk_write_net6addr+0x197/0x18b0
[ 1602.921268][T11341]  __kmalloc_noprof+0xd8/0x400
[ 1602.926024][T11341]  smk_write_net6addr+0x197/0x18b0
[ 1602.931122][T11341]  ? __pfx_lock_acquire+0x10/0x10
[ 1602.936136][T11341]  ? __pfx_smk_write_net6addr+0x10/0x10
[ 1602.941674][T11341]  ? rcu_read_lock_any_held+0xb7/0x160
[ 1602.947136][T11341]  ? __pfx_smk_write_net6addr+0x10/0x10
[ 1602.952687][T11341]  vfs_write+0x29c/0xc90
[ 1602.956947][T11341]  ? kmem_cache_free+0x1a2/0x420
[ 1602.961907][T11341]  ? __pfx_vfs_write+0x10/0x10
[ 1602.966698][T11341]  ? __fget_files+0x3f3/0x470
[ 1602.971408][T11341]  ? fdget_pos+0x24e/0x320
[ 1602.975846][T11341]  ksys_write+0x183/0x2b0
[ 1602.980197][T11341]  ? __pfx_ksys_write+0x10/0x10
[ 1602.985075][T11341]  ? do_syscall_64+0x100/0x230
[ 1602.989858][T11341]  ? do_syscall_64+0xb6/0x230
[ 1602.994553][T11341]  do_syscall_64+0xf3/0x230
[ 1602.999076][T11341]  ? clear_bhb_loop+0x35/0x90
[ 1603.003777][T11341]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1603.009697][T11341] RIP: 0033:0x7f5a2537dff9
[ 1603.014121][T11341] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1603.034095][T11341] RSP: 002b:00007f5a260f4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1603.042725][T11341] RAX: ffffffffffffffda RBX: 00007f5a25535f80 RCX: 00007f5a2537dff9
[ 1603.050718][T11341] RDX: 000000000000009c RSI: 0000000020000100 RDI: 0000000000000003
[ 1603.058707][T11341] RBP: 00007f5a260f4090 R08: 0000000000000000 R09: 0000000000000000
[ 1603.066695][T11341] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1603.074688][T11341] R13: 0000000000000000 R14: 00007f5a25535f80 R15: 00007ffce3f3a3f8
[ 1603.082700][T11341]  </TASK>
[ 1603.143185][T11339] hsr0: entered promiscuous mode
[ 1603.256628][T11348] pim6reg1: entered promiscuous mode
[ 1603.262388][T11348] pim6reg1: entered allmulticast mode
[ 1603.673408][T11354] syzkaller0: entered promiscuous mode
[ 1603.678894][T11354] syzkaller0: entered allmulticast mode
[ 1603.930217][ T6503] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[ 1604.134181][ T6503] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1604.179859][ T6503] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1604.334134][ T6503] usb 4-1: config 0 descriptor??
[ 1604.341810][ T6503] cp210x 4-1:0.0: cp210x converter detected
[ 1604.554851][ T6503] cp210x 4-1:0.0: failed to get vendor val 0x370b size 1: -121
[ 1604.566828][ T6503] cp210x 4-1:0.0: querying part number failed
[ 1604.609814][ T6503] usb 4-1: cp210x converter now attached to ttyUSB0
[ 1606.169393][T11379] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[ 1606.778209][   T25] usb 4-1: USB disconnect, device number 5
[ 1606.790836][   T25] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1606.820549][   T25] cp210x 4-1:0.0: device disconnected
[ 1607.239779][ T6503] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[ 1607.299692][   T25] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[ 1607.411460][ T6503] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1607.437337][ T6503] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1607.460497][ T6503] usb 3-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1607.476587][ T6503] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[ 1607.481004][   T25] usb 4-1: Using ep0 maxpacket: 16
[ 1607.503099][ T6503] usb 3-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 1607.514759][ T6503] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1607.545569][ T6503] usb 3-1: Product: syz
[ 1607.577275][ T6503] usb 3-1: Manufacturer: syz
[ 1607.586896][   T25] usb 4-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1607.593286][ T6503] usb 3-1: SerialNumber: syz
[ 1607.597966][   T25] usb 4-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1607.608163][ T6503] usb 3-1: config 0 descriptor??
[ 1607.645105][   T25] usb 4-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1607.656217][ T6503] garmin_gps 3-1:0.0: Garmin GPS usb/tty converter detected
[ 1607.662223][   T25] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1607.668298][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[ 1607.678137][   T25] usb 4-1: New USB device found, idVendor=045e, idProduct=05da, bcdDevice= 0.00
[ 1607.687357][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[ 1607.687598][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1607.695746][ T6503] garmin_gps ttyUSB0: failed to submit interrupt urb: -22
[ 1607.712098][ T6503] garmin_gps ttyUSB0: probe with driver garmin_gps failed with error -22
[ 1607.778630][   T25] usb 4-1: config 0 descriptor??
[ 1607.960125][T11398] 9pnet_fd: Insufficient options for proto=fd
[ 1608.063656][T11398] xt_recent: Unsupported userspace flags (000000de)
[ 1609.836556][T11391] netlink: 52 bytes leftover after parsing attributes in process `syz.1.520'.
[ 1609.875991][T11391] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[ 1610.042674][   T25] usbhid 4-1:0.0: can't add hid device: -71
[ 1610.048642][   T25] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1610.059757][ T6503] usb 3-1: USB disconnect, device number 8
[ 1610.067258][ T6503] garmin_gps 3-1:0.0: device disconnected
[ 1610.089262][   T25] usb 4-1: USB disconnect, device number 6
[ 1610.448129][T11414] overlayfs: overlapping lowerdir path
[ 1612.464625][T11429] netlink: 48 bytes leftover after parsing attributes in process `syz.2.531'.
[ 1612.982902][ T5266] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[ 1614.019939][T11431] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[ 1614.039707][ T5266] usb 5-1: Using ep0 maxpacket: 32
[ 1614.071798][ T5266] usb 5-1: config 0 has an invalid interface number: 9 but max is 0
[ 1614.094074][ T5266] usb 5-1: config 0 has no interface number 0
[ 1614.129529][ T5266] usb 5-1: New USB device found, idVendor=06a2, idProduct=0003, bcdDevice=b4.8c
[ 1614.147428][ T5266] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1614.168861][ T5266] usb 5-1: Product: syz
[ 1614.196076][ T5266] usb 5-1: Manufacturer: syz
[ 1614.208622][ T5266] usb 5-1: SerialNumber: syz
[ 1614.225895][ T5266] usb 5-1: config 0 descriptor??
[ 1614.231157][ T6525] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[ 1614.272337][ T5266] gspca_main: gspca_topro-2.14.0 probing 06a2:0003
[ 1614.417819][T11447] netlink: 40 bytes leftover after parsing attributes in process `syz.3.535'.
[ 1614.427048][ T6525] usb 2-1: Using ep0 maxpacket: 16
[ 1614.443048][ T6525] usb 2-1: New USB device found, idVendor=110a, idProduct=1653, bcdDevice=5e.a7
[ 1614.462947][ T6525] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1614.495398][T11449] netlink: 52 bytes leftover after parsing attributes in process `syz.0.536'.
[ 1614.504344][ T6525] usb 2-1: Product: syz
[ 1614.504368][ T6525] usb 2-1: Manufacturer: syz
[ 1614.504383][ T6525] usb 2-1: SerialNumber: syz
[ 1614.509118][ T6525] usb 2-1: config 0 descriptor??
[ 1614.593309][T11449] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[ 1615.938320][ T6525] mxuport 2-1:0.0: mxuport_recv_ctrl_urb - short read (0 / 4)
[ 1615.999840][ T6525] mxuport 2-1:0.0: probe with driver mxuport failed with error -5
[ 1616.759172][T11471] overlayfs: overlapping lowerdir path
[ 1617.153667][ T5266] gspca_topro: reg_w err -71
[ 1617.287411][ T5266] gspca_topro: Sensor soi763a
[ 1617.323386][ T5266] usb 5-1: USB disconnect, device number 5
[ 1617.351332][ T6503] usb 2-1: USB disconnect, device number 11
[ 1617.765850][T11487] netlink: 8 bytes leftover after parsing attributes in process `syz.4.545'.
[ 1619.744513][T11499] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[ 1619.747630][T11506] netlink: 'syz.1.549': attribute type 29 has an invalid length.
[ 1619.762218][T11506] netlink: 'syz.1.549': attribute type 29 has an invalid length.
[ 1620.984491][T11523] netlink: 8 bytes leftover after parsing attributes in process `syz.2.554'.
[ 1621.250274][ T5266] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[ 1621.347414][T11530] overlayfs: overlapping lowerdir path
[ 1621.491448][ T5266] usb 2-1: Using ep0 maxpacket: 32
[ 1621.522951][ T5266] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1622.436928][ T5266] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1622.446794][ T5266] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1622.456389][ T5266] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1622.694192][ T5266] usb 2-1: config 0 descriptor??
[ 1622.821243][ T5266] hub 2-1:0.0: USB hub found
[ 1623.124703][T11543] netlink: 'syz.4.559': attribute type 29 has an invalid length.
[ 1623.213376][T11537] can: request_module (can-proto-0) failed.
[ 1623.240750][   T29] audit: type=1326 audit(1727596040.767:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11542 comm="syz.4.559" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efe7a57dff9 code=0x0
[ 1623.333667][ T5266] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[ 1623.674115][T11553] syz.1.551 uses obsolete (PF_INET,SOCK_PACKET)
[ 1624.270541][T11559] mac80211_hwsim hwsim112 wlan0: entered promiscuous mode
[ 1624.283861][T11559] macvlan2: entered allmulticast mode
[ 1624.289340][T11559] mac80211_hwsim hwsim112 wlan0: entered allmulticast mode
[ 1624.870626][T11559] mac80211_hwsim hwsim112 wlan0: left promiscuous mode
[ 1625.245277][ T5266] usbhid 2-1:0.0: can't add hid device: -71
[ 1625.278007][ T5266] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[ 1625.335357][T11571] FAULT_INJECTION: forcing a failure.
[ 1625.335357][T11571] name failslab, interval 1, probability 0, space 0, times 0
[ 1625.368109][ T5266] usb 2-1: USB disconnect, device number 12
[ 1625.419810][T11571] CPU: 0 UID: 0 PID: 11571 Comm: syz.0.565 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[ 1625.430284][T11571] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1625.440377][T11571] Call Trace:
[ 1625.443679][T11571]  <TASK>
[ 1625.446617][T11571]  dump_stack_lvl+0x241/0x360
[ 1625.451329][T11571]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1625.456548][T11571]  ? __pfx__printk+0x10/0x10
[ 1625.461169][T11571]  ? __kmalloc_noprof+0xb0/0x400
[ 1625.466124][T11571]  ? __pfx___might_resched+0x10/0x10
[ 1625.471454][T11571]  should_fail_ex+0x3b0/0x4e0
[ 1625.476158][T11571]  ? smk_write_net6addr+0x197/0x18b0
[ 1625.481463][T11571]  should_failslab+0xac/0x100
[ 1625.486153][T11571]  ? smk_write_net6addr+0x197/0x18b0
[ 1625.491453][T11571]  __kmalloc_noprof+0xd8/0x400
[ 1625.496240][T11571]  smk_write_net6addr+0x197/0x18b0
[ 1625.501373][T11571]  ? __pfx_lock_acquire+0x10/0x10
[ 1625.506437][T11571]  ? __pfx_smk_write_net6addr+0x10/0x10
[ 1625.511999][T11571]  ? rcu_read_lock_any_held+0xb7/0x160
[ 1625.517490][T11571]  ? __pfx_smk_write_net6addr+0x10/0x10
[ 1625.523055][T11571]  vfs_write+0x29c/0xc90
[ 1625.527326][T11571]  ? kmem_cache_free+0x1a2/0x420
[ 1625.532294][T11571]  ? __pfx_vfs_write+0x10/0x10
[ 1625.537096][T11571]  ? __fget_files+0x3f3/0x470
[ 1625.541814][T11571]  ? fdget_pos+0x24e/0x320
[ 1625.546263][T11571]  ksys_write+0x183/0x2b0
[ 1625.550623][T11571]  ? __pfx_ksys_write+0x10/0x10
[ 1625.555498][T11571]  ? do_syscall_64+0x100/0x230
[ 1625.560274][T11571]  ? do_syscall_64+0xb6/0x230
[ 1625.564937][T11571]  do_syscall_64+0xf3/0x230
[ 1625.569424][T11571]  ? clear_bhb_loop+0x35/0x90
[ 1625.574090][T11571]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1625.579973][T11571] RIP: 0033:0x7f519317dff9
[ 1625.584372][T11571] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1625.603959][T11571] RSP: 002b:00007f5193fcb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1625.612357][T11571] RAX: ffffffffffffffda RBX: 00007f5193335f80 RCX: 00007f519317dff9
[ 1625.620313][T11571] RDX: 00000000000000b2 RSI: 00000000200000c0 RDI: 0000000000000003
[ 1625.628279][T11571] RBP: 00007f5193fcb090 R08: 0000000000000000 R09: 0000000000000000
[ 1625.636255][T11571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1625.644212][T11571] R13: 0000000000000000 R14: 00007f5193335f80 R15: 00007ffef1ee5d78
[ 1625.652178][T11571]  </TASK>
[ 1626.351756][T11563] ubi0: attaching mtd0
[ 1626.414595][T11563] ubi0: scanning is finished
[ 1626.574045][T11563] ubi0: empty MTD device detected
[ 1626.697795][T11582] tipc: Started in network mode
[ 1626.724928][T11582] tipc: Node identity 1, cluster identity 4711
[ 1626.774296][T11582] tipc: Node number set to 1
[ 1626.812478][T11582] tipc: Cannot configure node identity twice
[ 1627.022957][T11563] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1627.068629][T11563] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1627.076943][T11563] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1627.198542][T11563] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[ 1627.240363][T11563] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1627.247133][T11563] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1627.389754][T11563] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 4139097527
[ 1627.400024][T11563] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1627.597715][T11592] ubi0: background thread "ubi_bgt0d" started, PID 11592
[ 1627.599490][T11602] FAULT_INJECTION: forcing a failure.
[ 1627.599490][T11602] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1627.685305][T11602] CPU: 1 UID: 0 PID: 11602 Comm: syz.0.572 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[ 1627.695667][T11602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1627.705719][T11602] Call Trace:
[ 1627.709017][T11602]  <TASK>
[ 1627.711939][T11602]  dump_stack_lvl+0x241/0x360
[ 1627.716613][T11602]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1627.721804][T11602]  ? __pfx__printk+0x10/0x10
[ 1627.726399][T11602]  should_fail_ex+0x3b0/0x4e0
[ 1627.731090][T11602]  _copy_from_user+0x2f/0xe0
[ 1627.735681][T11602]  memdup_user_nul+0x6c/0x100
[ 1627.740365][T11602]  smk_write_relabel_self+0x137/0x550
[ 1627.745746][T11602]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[ 1627.751672][T11602]  ? __pfx_smk_write_relabel_self+0x10/0x10
[ 1627.757566][T11602]  ? __pfx_smk_write_relabel_self+0x10/0x10
[ 1627.763473][T11602]  vfs_write+0x29c/0xc90
[ 1627.767732][T11602]  ? kmem_cache_free+0x1a2/0x420
[ 1627.772675][T11602]  ? __pfx_vfs_write+0x10/0x10
[ 1627.777448][T11602]  ? __fget_files+0x3f3/0x470
[ 1627.782133][T11602]  ? fdget_pos+0x24e/0x320
[ 1627.786559][T11602]  ksys_write+0x183/0x2b0
[ 1627.790891][T11602]  ? __pfx_ksys_write+0x10/0x10
[ 1627.795738][T11602]  ? do_syscall_64+0x100/0x230
[ 1627.800506][T11602]  ? do_syscall_64+0xb6/0x230
[ 1627.805278][T11602]  do_syscall_64+0xf3/0x230
[ 1627.809779][T11602]  ? clear_bhb_loop+0x35/0x90
[ 1627.814453][T11602]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1627.820603][T11602] RIP: 0033:0x7f519317dff9
[ 1627.825012][T11602] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1627.844699][T11602] RSP: 002b:00007f5193fcb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1627.853112][T11602] RAX: ffffffffffffffda RBX: 00007f5193335f80 RCX: 00007f519317dff9
[ 1627.861077][T11602] RDX: 0000000000000049 RSI: 0000000020000500 RDI: 0000000000000003
[ 1627.869047][T11602] RBP: 00007f5193fcb090 R08: 0000000000000000 R09: 0000000000000000
[ 1627.877016][T11602] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1627.884993][T11602] R13: 0000000000000000 R14: 00007f5193335f80 R15: 00007ffef1ee5d78
[ 1627.892983][T11602]  </TASK>
[ 1628.896186][T11619] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[ 1630.014424][T11616] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[ 1630.077106][T11625] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app
[ 1630.777788][T11625] block nbd4: NBD_DISCONNECT
[ 1630.791057][T11628] block nbd4: shutting down sockets
[ 1630.990015][T11625] block nbd4: Send disconnect failed -32
[ 1631.890552][T11647] sp0: Synchronizing with TNC
[ 1632.039748][   T25] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 1632.925688][T11644] [U] è``
[ 1633.049621][   T25] usb 4-1: Using ep0 maxpacket: 16
[ 1633.075782][   T25] usb 4-1: too many configurations: 36, using maximum allowed: 8
[ 1633.098924][   T25] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1633.107589][   T25] usb 4-1: can't read configurations, error -61
[ 1633.270020][   T25] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 1633.304918][T11666] bridge0: port 3(bond1) entered blocking state
[ 1633.329391][T11666] bridge0: port 3(bond1) entered disabled state
[ 1633.331186][T11669] FAULT_INJECTION: forcing a failure.
[ 1633.331186][T11669] name failslab, interval 1, probability 0, space 0, times 0
[ 1633.368876][T11666] bond1: entered allmulticast mode
[ 1633.379132][T11669] CPU: 0 UID: 0 PID: 11669 Comm: syz.0.589 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[ 1633.389581][T11669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1633.397887][T11666] bond1: entered promiscuous mode
[ 1633.399803][T11669] Call Trace:
[ 1633.399816][T11669]  <TASK>
[ 1633.399826][T11669]  dump_stack_lvl+0x241/0x360
[ 1633.399860][T11669]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1633.399880][T11669]  ? __pfx__printk+0x10/0x10
[ 1633.399900][T11669]  ? __kmalloc_noprof+0xb0/0x400
[ 1633.399920][T11669]  ? __pfx___might_resched+0x10/0x10
[ 1633.435831][T11669]  should_fail_ex+0x3b0/0x4e0
[ 1633.440510][T11669]  ? smk_write_net6addr+0x197/0x18b0
[ 1633.445857][T11669]  should_failslab+0xac/0x100
[ 1633.450577][T11669]  ? smk_write_net6addr+0x197/0x18b0
[ 1633.455871][T11669]  __kmalloc_noprof+0xd8/0x400
[ 1633.460632][T11669]  smk_write_net6addr+0x197/0x18b0
[ 1633.465731][T11669]  ? __pfx_lock_acquire+0x10/0x10
[ 1633.470773][T11669]  ? __pfx_smk_write_net6addr+0x10/0x10
[ 1633.476325][T11669]  ? rcu_read_lock_any_held+0xb7/0x160
[ 1633.481777][T11669]  ? __pfx_smk_write_net6addr+0x10/0x10
[ 1633.487308][T11669]  vfs_write+0x29c/0xc90
[ 1633.491537][T11669]  ? kmem_cache_free+0x1a2/0x420
[ 1633.496465][T11669]  ? __pfx_vfs_write+0x10/0x10
[ 1633.501219][T11669]  ? __fget_files+0x3f3/0x470
[ 1633.505884][T11669]  ? fdget_pos+0x24e/0x320
[ 1633.510286][T11669]  ksys_write+0x183/0x2b0
[ 1633.514655][T11669]  ? __pfx_ksys_write+0x10/0x10
[ 1633.519491][T11669]  ? do_syscall_64+0x100/0x230
[ 1633.524272][T11669]  ? do_syscall_64+0xb6/0x230
[ 1633.528954][T11669]  do_syscall_64+0xf3/0x230
[ 1633.533444][T11669]  ? clear_bhb_loop+0x35/0x90
[ 1633.538118][T11669]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1633.543999][T11669] RIP: 0033:0x7f519317dff9
[ 1633.548398][T11669] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1633.567991][T11669] RSP: 002b:00007f5193fcb038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 1633.576394][T11669] RAX: ffffffffffffffda RBX: 00007f5193335f80 RCX: 00007f519317dff9
[ 1633.584352][T11669] RDX: 00000000000000b1 RSI: 0000000020000000 RDI: 0000000000000003
[ 1633.592384][T11669] RBP: 00007f5193fcb090 R08: 0000000000000000 R09: 0000000000000000
[ 1633.600352][T11669] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1633.608331][T11669] R13: 0000000000000000 R14: 00007f5193335f80 R15: 00007ffef1ee5d78
[ 1633.616314][T11669]  </TASK>
[ 1633.622656][   T25] usb 4-1: Using ep0 maxpacket: 16
[ 1633.650266][   T25] usb 4-1: too many configurations: 36, using maximum allowed: 8
[ 1633.677207][   T25] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1633.696007][   T25] usb 4-1: can't read configurations, error -61
[ 1633.863821][   T25] usb usb4-port1: attempt power cycle
[ 1634.309816][   T25] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1634.342489][   T25] usb 4-1: Using ep0 maxpacket: 16
[ 1634.350469][   T25] usb 4-1: too many configurations: 36, using maximum allowed: 8
[ 1634.368803][   T25] usb 4-1: unable to read config index 0 descriptor/start: -61
[ 1634.381061][   T25] usb 4-1: can't read configurations, error -61
[ 1634.799966][   T25] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 1634.979958][   T25] usb 4-1: device descriptor read/8, error -71
[ 1635.098953][   T25] usb usb4-port1: unable to enumerate USB device
[ 1635.177116][T11695] warning: `syz.4.598' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 1635.299765][ T8794] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[ 1635.347612][T11697] pim6reg: entered allmulticast mode
[ 1635.364781][T11698] pim6reg: left allmulticast mode
[ 1635.427031][T11706] FAULT_INJECTION: forcing a failure.
[ 1635.427031][T11706] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1635.449792][ T8794] usb 2-1: Using ep0 maxpacket: 8
[ 1635.456122][ T8794] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[ 1635.466814][ T8794] usb 2-1: config 0 has no interface number 0
[ 1635.587581][T11706] CPU: 0 UID: 0 PID: 11706 Comm: syz.4.600 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[ 1635.598099][T11706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1635.608144][T11706] Call Trace:
[ 1635.611436][T11706]  <TASK>
[ 1635.614352][T11706]  dump_stack_lvl+0x241/0x360
[ 1635.619018][T11706]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1635.624217][T11706]  ? __pfx__printk+0x10/0x10
[ 1635.628877][T11706]  ? __pfx_lock_release+0x10/0x10
[ 1635.633886][T11706]  ? tomoyo_path_number_perm+0x71a/0x880
[ 1635.639508][T11706]  should_fail_ex+0x3b0/0x4e0
[ 1635.644193][T11706]  _copy_from_user+0x2f/0xe0
[ 1635.648794][T11706]  wext_handle_ioctl+0xf2/0x270
[ 1635.653634][T11706]  ? __pfx_wext_handle_ioctl+0x10/0x10
[ 1635.659077][T11706]  ? __asan_memset+0x23/0x50
[ 1635.663674][T11706]  ? smack_file_ioctl+0x29e/0x3a0
[ 1635.668718][T11706]  sock_ioctl+0x17c/0x8e0
[ 1635.673047][T11706]  ? __pfx_sock_ioctl+0x10/0x10
[ 1635.677883][T11706]  ? __fget_files+0x3f3/0x470
[ 1635.682588][T11706]  ? __pfx_sock_ioctl+0x10/0x10
[ 1635.687421][T11706]  __se_sys_ioctl+0xf9/0x170
[ 1635.692009][T11706]  do_syscall_64+0xf3/0x230
[ 1635.696512][T11706]  ? clear_bhb_loop+0x35/0x90
[ 1635.701181][T11706]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1635.707080][T11706] RIP: 0033:0x7efe7a57dff9
[ 1635.711492][T11706] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1635.731089][T11706] RSP: 002b:00007efe7b3ff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1635.739592][T11706] RAX: ffffffffffffffda RBX: 00007efe7a735f80 RCX: 00007efe7a57dff9
[ 1635.747560][T11706] RDX: 0000000020000000 RSI: 0000000000008b34 RDI: 0000000000000003
[ 1635.755521][T11706] RBP: 00007efe7b3ff090 R08: 0000000000000000 R09: 0000000000000000
[ 1635.763484][T11706] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1635.771452][T11706] R13: 0000000000000000 R14: 00007efe7a735f80 R15: 00007ffd66c037f8
[ 1635.779442][T11706]  </TASK>
[ 1635.785553][ T8794] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1635.797009][ T8794] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1635.814183][ T8794] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1635.844036][ T8794] usb 2-1: config 0 descriptor??
[ 1635.871242][ T8794] iowarrior 2-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1635.897312][T11710] EXT4-fs warning (device sda1): verify_group_input:159: Reserved blocks too high (10)
[ 1636.191461][ T5266] usb 2-1: USB disconnect, device number 13
[ 1636.191755][T11712] iowarrior 2-1:0.1: Error -19 while submitting URB
[ 1636.264653][ T5266] iowarrior 2-1:0.1: I/O-Warror #0 now disconnected
[ 1636.600411][T11721] FAULT_INJECTION: forcing a failure.
[ 1636.600411][T11721] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1636.622971][T11721] CPU: 1 UID: 0 PID: 11721 Comm: syz.2.606 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[ 1636.633344][T11721] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1636.643421][T11721] Call Trace:
[ 1636.646711][T11721]  <TASK>
[ 1636.649653][T11721]  dump_stack_lvl+0x241/0x360
[ 1636.654356][T11721]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1636.659565][T11721]  ? __pfx__printk+0x10/0x10
[ 1636.664171][T11721]  ? __pfx_lock_release+0x10/0x10
[ 1636.669222][T11721]  should_fail_ex+0x3b0/0x4e0
[ 1636.673930][T11721]  _copy_from_user+0x2f/0xe0
[ 1636.678541][T11721]  msr_io+0xb4/0x370
[ 1636.682453][T11721]  ? __pfx_do_get_msr+0x10/0x10
[ 1636.687304][T11721]  ? __pfx_msr_io+0x10/0x10
[ 1636.691815][T11721]  kvm_arch_vcpu_ioctl+0xec3/0x2b50
[ 1636.697040][T11721]  ? kvm_arch_vcpu_ioctl+0xe86/0x2b50
[ 1636.702409][T11721]  ? validate_chain+0x11e/0x5920
[ 1636.707345][T11721]  ? __pfx_kvm_arch_vcpu_ioctl+0x10/0x10
[ 1636.712974][T11721]  ? __pfx_lock_release+0x10/0x10
[ 1636.718001][T11721]  ? preempt_count_add+0x93/0x190
[ 1636.723025][T11721]  ? __pfx_validate_chain+0x10/0x10
[ 1636.728216][T11721]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1636.734457][T11721]  ? kernel_text_address+0xa7/0xe0
[ 1636.739567][T11721]  ? __kernel_text_address+0xd/0x40
[ 1636.744758][T11721]  ? unwind_get_return_address+0x4d/0x90
[ 1636.750382][T11721]  ? arch_stack_walk+0xfd/0x150
[ 1636.755232][T11721]  ? stack_trace_save+0x118/0x1d0
[ 1636.760258][T11721]  ? __pfx_stack_trace_save+0x10/0x10
[ 1636.765625][T11721]  ? mark_lock+0x9a/0x360
[ 1636.769949][T11721]  ? __lock_acquire+0x1384/0x2050
[ 1636.774991][T11721]  ? __mutex_trylock_common+0x183/0x2e0
[ 1636.780546][T11721]  ? __pfx___might_resched+0x10/0x10
[ 1636.785841][T11721]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1636.791764][T11721]  ? rcu_is_watching+0x15/0xb0
[ 1636.796541][T11721]  ? trace_contention_end+0x3c/0x120
[ 1636.801832][T11721]  ? __mutex_lock+0x2ef/0xd70
[ 1636.806510][T11721]  ? kfree+0x1a0/0x440
[ 1636.810699][T11721]  ? tomoyo_path_number_perm+0x68d/0x880
[ 1636.816351][T11721]  ? kvm_vcpu_ioctl+0x1da/0xea0
[ 1636.821198][T11721]  ? __pfx___mutex_lock+0x10/0x10
[ 1636.826216][T11721]  ? tomoyo_path_number_perm+0x208/0x880
[ 1636.831847][T11721]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[ 1636.837844][T11721]  kvm_vcpu_ioctl+0x73e/0xea0
[ 1636.842526][T11721]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1636.847736][T11721]  ? smack_file_ioctl+0x353/0x3a0
[ 1636.852756][T11721]  ? __pfx_smack_file_ioctl+0x10/0x10
[ 1636.858121][T11721]  ? __fget_files+0x29/0x470
[ 1636.862706][T11721]  ? __fget_files+0x3f3/0x470
[ 1636.867382][T11721]  ? __pfx_kvm_vcpu_ioctl+0x10/0x10
[ 1636.872575][T11721]  __se_sys_ioctl+0xf9/0x170
[ 1636.877161][T11721]  do_syscall_64+0xf3/0x230
[ 1636.881658][T11721]  ? clear_bhb_loop+0x35/0x90
[ 1636.886328][T11721]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1636.892223][T11721] RIP: 0033:0x7f6ed937dff9
[ 1636.896640][T11721] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1636.916249][T11721] RSP: 002b:00007f6eda0ca038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1636.924660][T11721] RAX: ffffffffffffffda RBX: 00007f6ed9535f80 RCX: 00007f6ed937dff9
[ 1636.932627][T11721] RDX: 00000000200005c0 RSI: 00000000c008ae88 RDI: 0000000000000006
[ 1636.940597][T11721] RBP: 00007f6eda0ca090 R08: 0000000000000000 R09: 0000000000000000
[ 1636.948564][T11721] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1636.956547][T11721] R13: 0000000000000000 R14: 00007f6ed9535f80 R15: 00007fffed3b0a08
[ 1636.964526][T11721]  </TASK>
[ 1637.814587][ T6503] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[ 1638.078822][T11736] FAULT_INJECTION: forcing a failure.
[ 1638.078822][T11736] name failslab, interval 1, probability 0, space 0, times 0
[ 1638.101768][T11736] CPU: 1 UID: 0 PID: 11736 Comm: syz.2.611 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[ 1638.112160][T11736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1638.122211][T11736] Call Trace:
[ 1638.125475][T11736]  <TASK>
[ 1638.128389][T11736]  dump_stack_lvl+0x241/0x360
[ 1638.133061][T11736]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1638.138249][T11736]  ? __pfx__printk+0x10/0x10
[ 1638.142831][T11736]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[ 1638.148796][T11736]  ? __pfx___might_resched+0x10/0x10
[ 1638.154093][T11736]  should_fail_ex+0x3b0/0x4e0
[ 1638.158758][T11736]  should_failslab+0xac/0x100
[ 1638.163429][T11736]  ? __alloc_skb+0x1c3/0x440
[ 1638.168013][T11736]  kmem_cache_alloc_node_noprof+0x71/0x320
[ 1638.173807][T11736]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1638.179779][T11736]  __alloc_skb+0x1c3/0x440
[ 1638.184201][T11736]  ? __pfx___alloc_skb+0x10/0x10
[ 1638.189156][T11736]  ? lockdep_hardirqs_on+0x99/0x150
[ 1638.194361][T11736]  ? addrconf_ifdown+0x1871/0x1bd0
[ 1638.199468][T11736]  inet6_netconf_notify_devconf+0xfc/0x1c0
[ 1638.205273][T11736]  addrconf_ifdown+0x1887/0x1bd0
[ 1638.210225][T11736]  ? __pfx_addrconf_ifdown+0x10/0x10
[ 1638.215607][T11736]  ? tls_dev_event+0x8f6/0x10c0
[ 1638.220458][T11736]  addrconf_notify+0x3cb/0x1020
[ 1638.225302][T11736]  notifier_call_chain+0x19f/0x3e0
[ 1638.230412][T11736]  unregister_netdevice_many_notify+0xedd/0x1da0
[ 1638.236736][T11736]  ? __mutex_trylock_common+0x183/0x2e0
[ 1638.242271][T11736]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 1638.249021][T11736]  ? __pfx___mutex_trylock_common+0x10/0x10
[ 1638.254903][T11736]  ? rcu_is_watching+0x15/0xb0
[ 1638.259663][T11736]  ? trace_contention_end+0x3c/0x120
[ 1638.264957][T11736]  unregister_netdevice_queue+0x303/0x370
[ 1638.270680][T11736]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 1638.276922][T11736]  ? do_raw_spin_lock+0x14f/0x370
[ 1638.281947][T11736]  ppp_release+0xed/0x1f0
[ 1638.286268][T11736]  ? __pfx_ppp_release+0x10/0x10
[ 1638.291191][T11736]  __fput+0x23f/0x880
[ 1638.295171][T11736]  __x64_sys_close+0x7f/0x110
[ 1638.299844][T11736]  do_syscall_64+0xf3/0x230
[ 1638.304334][T11736]  ? clear_bhb_loop+0x35/0x90
[ 1638.309012][T11736]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1638.314213][ T6503] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1638.314900][T11736] RIP: 0033:0x7f6ed937dff9
[ 1638.330142][T11736] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1638.349739][T11736] RSP: 002b:00007f6eda0a9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 1638.358144][T11736] RAX: ffffffffffffffda RBX: 00007f6ed9536058 RCX: 00007f6ed937dff9
[ 1638.366101][T11736] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[ 1638.374058][T11736] RBP: 00007f6eda0a9090 R08: 0000000000000000 R09: 0000000000000000
[ 1638.382014][T11736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1638.389971][T11736] R13: 0000000000000001 R14: 00007f6ed9536058 R15: 00007fffed3b0a08
[ 1638.398044][T11736]  </TASK>
[ 1638.435095][ T6503] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1638.452797][ T6503] usb 5-1: New USB device found, idVendor=056a, idProduct=032c, bcdDevice= 0.00
[ 1638.496411][ T6503] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1639.290443][ T6503] usb 5-1: config 0 descriptor??
[ 1639.499669][ T5266] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[ 1639.576273][T11751] overlayfs: failed to resolve './file1': -2
[ 1640.235154][ T6503] wacom 0003:056A:032C.0001: hidraw0: USB HID v0.00 Device [HID 056a:032c] on usb-dummy_hcd.4-1/input0
[ 1640.239737][ T5266] usb 1-1: device descriptor read/64, error -71
[ 1640.467355][ T8794] usb 5-1: USB disconnect, device number 6
[ 1640.500038][ T5266] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[ 1640.612441][ T9401] Bluetooth: hci2: command 0x0406 tx timeout
[ 1640.612466][ T5229] Bluetooth: hci8: command 0x0406 tx timeout
[ 1640.618466][ T9401] Bluetooth: hci3: command 0x0405 tx timeout
[ 1640.629658][ T9398] Bluetooth: hci9: command 0x0406 tx timeout
[ 1640.630631][ T5266] usb 1-1: device descriptor read/64, error -71
[ 1640.749933][ T5266] usb usb1-port1: attempt power cycle
[ 1640.830467][ T6503] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 1640.989824][ T6503] usb 4-1: Using ep0 maxpacket: 16
[ 1641.011122][ T6503] usb 4-1: config 40 has too many interfaces: 230, using maximum allowed: 32
[ 1641.021920][ T6503] usb 4-1: config 40 has 1 interface, different from the descriptor's value: 230
[ 1641.275100][ T6503] usb 4-1: config 40 has no interface number 0
[ 1641.440136][ T6503] usb 4-1: New USB device found, idVendor=0545, idProduct=800c, bcdDevice= 3.0a
[ 1641.635544][ T6503] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1641.677247][ T6503] usb 4-1: Product: syz
[ 1641.699453][ T6503] usb 4-1: Manufacturer: syz
[ 1641.735757][ T6503] usb 4-1: SerialNumber: syz
[ 1642.020903][T11779] overlay: Unknown parameter '/'
[ 1642.385940][T11757] binder: transaction release 13 bad handle 1, ret = -22
[ 1643.053553][T11786] FAULT_INJECTION: forcing a failure.
[ 1643.053553][T11786] name failslab, interval 1, probability 0, space 0, times 0
[ 1643.066442][T11786] CPU: 0 UID: 0 PID: 11786 Comm: syz.4.625 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[ 1643.076808][T11786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1643.086884][T11786] Call Trace:
[ 1643.090185][T11786]  <TASK>
[ 1643.091840][T11788] capability: warning: `syz.0.626' uses 32-bit capabilities (legacy support in use)
[ 1643.093118][T11786]  dump_stack_lvl+0x241/0x360
[ 1643.093151][T11786]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1643.112392][T11786]  ? __pfx__printk+0x10/0x10
[ 1643.112420][T11786]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[ 1643.112442][T11786]  ? __pfx___might_resched+0x10/0x10
[ 1643.112468][T11786]  should_fail_ex+0x3b0/0x4e0
[ 1643.112494][T11786]  ? alloc_empty_file+0x9e/0x1d0
[ 1643.112511][T11786]  should_failslab+0xac/0x100
[ 1643.112529][T11786]  ? alloc_empty_file+0x9e/0x1d0
[ 1643.112545][T11786]  kmem_cache_alloc_noprof+0x6c/0x2a0
[ 1643.112565][T11786]  alloc_empty_file+0x9e/0x1d0
[ 1643.112584][T11786]  path_openat+0x107/0x3590
[ 1643.112610][T11786]  ? preempt_count_add+0x93/0x190
[ 1643.112636][T11786]  ? __pfx_validate_chain+0x10/0x10
[ 1643.112654][T11786]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1643.112686][T11786]  ? kernel_text_address+0xa7/0xe0
[ 1643.112706][T11786]  ? __kernel_text_address+0xd/0x40
[ 1643.112725][T11786]  ? unwind_get_return_address+0x4d/0x90
[ 1643.112744][T11786]  ? __pfx_path_openat+0x10/0x10
[ 1643.112763][T11786]  ? arch_stack_walk+0xfd/0x150
[ 1643.112796][T11786]  do_filp_open+0x235/0x490
[ 1643.112819][T11786]  ? __pfx_do_filp_open+0x10/0x10
[ 1643.112858][T11786]  ? alloc_bprm+0xac/0xe20
[ 1643.112883][T11786]  alloc_bprm+0x178/0xe20
[ 1643.112907][T11786]  ? __pfx___might_resched+0x10/0x10
[ 1643.112930][T11786]  ? __might_fault+0xaa/0x120
[ 1643.112952][T11786]  ? __pfx_lock_release+0x10/0x10
[ 1643.112978][T11786]  ? __pfx_alloc_bprm+0x10/0x10
[ 1643.113005][T11786]  ? __might_fault+0xc6/0x120
[ 1643.113029][T11786]  do_execveat_common+0x18c/0x6f0
[ 1643.113059][T11786]  __x64_sys_execve+0x92/0xb0
[ 1643.113083][T11786]  do_syscall_64+0xf3/0x230
[ 1643.113101][T11786]  ? clear_bhb_loop+0x35/0x90
[ 1643.113121][T11786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1643.113143][T11786] RIP: 0033:0x7efe7a57dff9
[ 1643.113161][T11786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1643.113176][T11786] RSP: 002b:00007efe7b3ff038 EFLAGS: 00000246 ORIG_RAX: 000000000000003b
[ 1643.113199][T11786] RAX: ffffffffffffffda RBX: 00007efe7a735f80 RCX: 00007efe7a57dff9
[ 1643.113214][T11786] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000
[ 1643.113227][T11786] RBP: 00007efe7b3ff090 R08: 0000000000000000 R09: 0000000000000000
[ 1643.113239][T11786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1643.113252][T11786] R13: 0000000000000000 R14: 00007efe7a735f80 R15: 00007ffd66c037f8
[ 1643.113276][T11786]  </TASK>
[ 1645.309665][   T25] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[ 1646.187879][ T6503] usb 4-1: USB disconnect, device number 11
[ 1646.636546][T11821] overlay: Unknown parameter '/'
[ 1647.480929][T11815] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[ 1647.510288][   T25] usb 1-1: Using ep0 maxpacket: 8
[ 1647.549752][   T25] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[ 1647.558092][   T25] usb 1-1: config 179 has no interface number 0
[ 1647.565220][   T25] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1647.702475][   T25] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1648.399772][   T25] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1648.411198][   T25] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1648.422673][   T25] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1648.436084][   T25] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1648.445307][   T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1648.691150][   T25] usb 1-1: can't set config #179, error -71
[ 1648.779094][T11846] netlink: 40 bytes leftover after parsing attributes in process `syz.0.644'.
[ 1649.467546][   T25] usb 1-1: USB disconnect, device number 12
[ 1649.549206][T11849] netlink: 48 bytes leftover after parsing attributes in process `syz.3.646'.
[ 1649.708467][T11858] netlink: 36 bytes leftover after parsing attributes in process `syz.1.648'.
[ 1649.717619][T11858] nbd: illegal input index -1409286144
[ 1650.120487][ T6503] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[ 1650.351683][ T8794] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[ 1650.360647][T11861] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1650.519727][ T6503] usb 5-1: Using ep0 maxpacket: 16
[ 1650.526273][ T6503] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1650.588083][ T8794] usb 3-1: config 0 has an invalid interface number: 117 but max is 0
[ 1650.600095][ T8794] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1650.671785][ T6503] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1650.682495][ T8794] usb 3-1: config 0 has no interface number 0
[ 1650.688914][ T6503] usb 5-1: New USB device found, idVendor=1b96, idProduct=0008, bcdDevice= 0.00
[ 1650.699680][ T8794] usb 3-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[ 1650.715236][ T6503] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1651.209935][ T8794] usb 3-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1651.306186][ T6503] usb 5-1: config 0 descriptor??
[ 1651.352089][ T8794] usb 3-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[ 1651.376853][ T8794] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1651.389733][ T8794] usb 3-1: Product: syz
[ 1651.393993][ T8794] usb 3-1: Manufacturer: syz
[ 1651.406475][ T8794] usb 3-1: SerialNumber: syz
[ 1651.448476][ T8794] usb 3-1: config 0 descriptor??
[ 1652.395681][ T6503] usbhid 5-1:0.0: can't add hid device: -71
[ 1652.409008][ T6503] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1652.423375][ T6503] usb 5-1: USB disconnect, device number 7
[ 1652.494006][T11879] netlink: 48 bytes leftover after parsing attributes in process `syz.1.656'.
[ 1653.274705][ T8794] usbtouchscreen 3-1:0.117: probe with driver usbtouchscreen failed with error -71
[ 1653.312057][ T8794] usb 3-1: USB disconnect, device number 9
[ 1654.374508][T11894] netlink: 4 bytes leftover after parsing attributes in process `syz.0.658'.
[ 1654.386928][T11894] bridge_slave_1: left allmulticast mode
[ 1654.405324][T11894] bridge_slave_1: left promiscuous mode
[ 1654.416176][T11894] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1654.500780][T11894] bridge_slave_0: left allmulticast mode
[ 1654.507490][T11894] bridge_slave_0: left promiscuous mode
[ 1654.524627][T11894] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1654.681960][T11906] block device autoloading is deprecated and will be removed.
[ 1655.472177][T11902] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[ 1655.615379][ T6903] usb 2-1: new full-speed USB device number 14 using dummy_hcd
[ 1655.636172][T11915] vhci_hcd: invalid port number 0
[ 1655.771236][ T6903] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1655.788307][ T6903] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1655.811822][ T6903] usb 2-1: New USB device found, idVendor=046d, idProduct=c537, bcdDevice= 0.00
[ 1655.855524][ T6903] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1655.908042][T11918] netlink: 'syz.3.666': attribute type 1 has an invalid length.
[ 1655.924530][ T6903] usb 2-1: config 0 descriptor??
[ 1656.239096][T11926] overlayfs: missing 'lowerdir'
[ 1659.795736][T11958] fuse: Unknown parameter '0xffffffffffffffff'
[ 1660.168322][   T25] usb 2-1: USB disconnect, device number 14
[ 1664.529674][T11956] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[ 1670.753870][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[ 1670.760285][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[ 1722.676541][ T5222] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1722.685106][ T5229] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1722.694208][ T5229] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1722.707578][ T5229] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1722.709595][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1722.716623][ T5229] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1722.819816][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1722.830391][   T54] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1722.839465][   T54] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1722.848167][ T5222] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1722.873535][ T9583] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1722.890465][ T5222] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1722.899615][ T5222] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1722.937978][   T54] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1722.949963][T10494] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1722.951720][ T5222] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[ 1722.957213][T10494] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1722.977628][ T5222] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1722.985458][ T5222] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[ 1722.993112][ T5222] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1723.001782][ T5222] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1723.047873][ T5222] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1723.055391][ T5229] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1723.063575][ T5222] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1723.073777][ T5222] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[ 1723.121451][ T5222] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1723.136393][ T5222] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[ 1723.235603][ T9401] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[ 1723.248172][ T9401] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[ 1723.260543][ T9401] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[ 1723.382004][ T5400] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1723.546171][ T5400] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1723.702088][ T5400] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1723.815556][ T5400] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1724.289407][T11978] chnl_net:caif_netlink_parms(): no params data found
[ 1724.306004][T11980] chnl_net:caif_netlink_parms(): no params data found
[ 1724.317761][T11985] chnl_net:caif_netlink_parms(): no params data found
[ 1724.978167][ T5400] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1724.992900][ T5400] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1725.020156][ T5400] bond0 (unregistering): Released all slaves
[ 1725.089917][ T9398] Bluetooth: hci6: command tx timeout
[ 1725.089993][ T9401] Bluetooth: hci0: command tx timeout
[ 1725.131195][ T5400] tipc: Left network mode
[ 1725.169754][ T9401] Bluetooth: hci4: command tx timeout
[ 1725.316514][T11987] chnl_net:caif_netlink_parms(): no params data found
[ 1725.329701][ T9401] Bluetooth: hci1: command tx timeout
[ 1725.336135][ T9401] Bluetooth: hci7: command tx timeout
[ 1725.538121][T11981] chnl_net:caif_netlink_parms(): no params data found
[ 1725.619664][T11978] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1725.626831][T11978] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1725.645651][T11978] bridge_slave_0: entered allmulticast mode
[ 1725.667660][T11978] bridge_slave_0: entered promiscuous mode
[ 1725.684292][T11978] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1725.702344][T11978] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1725.709780][T11978] bridge_slave_1: entered allmulticast mode
[ 1725.716809][T11978] bridge_slave_1: entered promiscuous mode
[ 1725.881531][T11985] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1725.888612][T11985] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1725.963235][T11985] bridge_slave_0: entered allmulticast mode
[ 1725.997443][T11985] bridge_slave_0: entered promiscuous mode
[ 1726.024530][T11985] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1726.031940][T11985] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1726.041290][T11985] bridge_slave_1: entered allmulticast mode
[ 1726.048422][T11985] bridge_slave_1: entered promiscuous mode
[ 1726.219029][T11987] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1726.231055][T11987] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1726.240095][T11987] bridge_slave_0: entered allmulticast mode
[ 1726.247327][T11987] bridge_slave_0: entered promiscuous mode
[ 1726.317104][T11978] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1726.337991][T11978] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1726.389257][T11987] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1726.398215][T11987] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1726.406523][T11987] bridge_slave_1: entered allmulticast mode
[ 1726.420545][T11987] bridge_slave_1: entered promiscuous mode
[ 1726.507453][T11985] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1726.602557][ T5400] hsr_slave_0: left promiscuous mode
[ 1726.626004][ T5400] hsr_slave_1: left promiscuous mode
[ 1726.636079][ T5400] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1726.648308][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1726.666337][ T5400] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1726.674346][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1726.732622][ T5400] veth1_macvtap: left promiscuous mode
[ 1726.738270][ T5400] veth0_macvtap: left promiscuous mode
[ 1726.747161][ T5400] veth1_vlan: left promiscuous mode
[ 1726.752862][ T5400] veth0_vlan: left promiscuous mode
[ 1727.170849][ T9398] Bluetooth: hci0: command tx timeout
[ 1727.176360][ T9401] Bluetooth: hci6: command tx timeout
[ 1727.249631][ T9401] Bluetooth: hci4: command tx timeout
[ 1727.419792][ T9398] Bluetooth: hci1: command tx timeout
[ 1727.425309][ T9401] Bluetooth: hci7: command tx timeout
[ 1727.662245][ T5400] team0 (unregistering): Port device team_slave_1 removed
[ 1727.742336][ T5400] team0 (unregistering): Port device team_slave_0 removed
[ 1728.477412][T11980] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1728.492667][T11980] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1728.500295][T11980] bridge_slave_0: entered allmulticast mode
[ 1728.507441][T11980] bridge_slave_0: entered promiscuous mode
[ 1728.523337][T11980] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1728.539913][T11980] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1728.553548][T11980] bridge_slave_1: entered allmulticast mode
[ 1728.560680][T11980] bridge_slave_1: entered promiscuous mode
[ 1728.610721][T11985] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1728.625133][T11978] team0: Port device team_slave_0 added
[ 1728.792398][T11978] team0: Port device team_slave_1 added
[ 1728.825456][T11985] team0: Port device team_slave_0 added
[ 1728.911021][T11980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1729.018574][T11987] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1729.063375][T11985] team0: Port device team_slave_1 added
[ 1729.096856][T11980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1729.117335][T11981] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1729.129416][T11981] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1729.147411][T11981] bridge_slave_0: entered allmulticast mode
[ 1729.160008][T11981] bridge_slave_0: entered promiscuous mode
[ 1729.173455][T11987] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1729.225604][T11987] team0: Port device team_slave_0 added
[ 1729.259749][ T9401] Bluetooth: hci6: command tx timeout
[ 1729.266165][ T9401] Bluetooth: hci0: command tx timeout
[ 1729.276935][T11978] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1729.306165][T11978] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1729.332430][ T9401] Bluetooth: hci4: command tx timeout
[ 1729.339867][T11978] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1729.407512][T11981] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1729.415235][T11981] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1729.424308][T11981] bridge_slave_1: entered allmulticast mode
[ 1729.438565][T11981] bridge_slave_1: entered promiscuous mode
[ 1729.457583][T11987] team0: Port device team_slave_1 added
[ 1729.490724][ T9401] Bluetooth: hci7: command tx timeout
[ 1729.490732][ T9398] Bluetooth: hci1: command tx timeout
[ 1729.526298][T11985] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1729.535086][T11985] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1729.561877][T11985] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1729.588174][T11978] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1729.607944][T11978] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1729.646538][T11978] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1729.698740][T11980] team0: Port device team_slave_0 added
[ 1729.826491][T11985] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1729.840265][T11985] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1729.866916][T11985] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1729.945965][T11980] team0: Port device team_slave_1 added
[ 1729.979792][T11981] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1730.043656][T11987] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1730.054368][T11987] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1730.083370][T11987] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1730.106092][T11981] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1730.191515][T11980] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1730.198470][T11980] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1730.232192][T11980] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1730.306016][T11987] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1730.313246][T11987] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1730.339559][T11987] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1730.408667][T11981] team0: Port device team_slave_0 added
[ 1730.419447][T11980] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1730.426778][T11980] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1730.456838][T11980] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1730.531911][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[ 1730.538353][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[ 1730.550771][T11981] team0: Port device team_slave_1 added
[ 1730.600189][T11985] hsr_slave_0: entered promiscuous mode
[ 1730.613607][T11985] hsr_slave_1: entered promiscuous mode
[ 1730.637851][T11978] hsr_slave_0: entered promiscuous mode
[ 1730.660544][T11978] hsr_slave_1: entered promiscuous mode
[ 1730.671213][T11978] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1730.679191][T11978] Cannot create hsr debugfs directory
[ 1730.736243][T11987] hsr_slave_0: entered promiscuous mode
[ 1730.761814][T11987] hsr_slave_1: entered promiscuous mode
[ 1730.778619][T11987] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1730.800351][T11987] Cannot create hsr debugfs directory
[ 1730.876535][T11980] hsr_slave_0: entered promiscuous mode
[ 1730.901971][T11980] hsr_slave_1: entered promiscuous mode
[ 1730.923283][T11980] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1730.939786][T11980] Cannot create hsr debugfs directory
[ 1731.143923][T11981] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1731.152998][T11981] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1731.200635][T11981] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1731.334577][ T9401] Bluetooth: hci0: command tx timeout
[ 1731.334592][ T9398] Bluetooth: hci6: command tx timeout
[ 1731.366085][T11981] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1731.392453][T11981] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1731.420897][ T9398] Bluetooth: hci4: command tx timeout
[ 1731.427259][T11981] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1731.507683][ T5400] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1731.569705][ T9398] Bluetooth: hci7: command tx timeout
[ 1731.569730][ T9401] Bluetooth: hci1: command tx timeout
[ 1731.783833][ T5400] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1731.841564][T11981] hsr_slave_0: entered promiscuous mode
[ 1731.866719][T11981] hsr_slave_1: entered promiscuous mode
[ 1731.883467][T11981] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1731.893653][T11981] Cannot create hsr debugfs directory
[ 1731.986707][ T5400] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1732.143963][ T5400] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1732.286097][T11978] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1732.459340][T11978] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1732.629342][T11978] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1732.813127][T11978] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1732.945767][ T5400] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.087498][ T5400] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.212598][ T5400] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.288744][ T5400] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.338017][T11978] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1733.385988][T11978] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1733.438044][T11985] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.461572][T11978] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1733.479342][T11978] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1733.528641][T11985] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.675988][T11985] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.797490][T11985] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1733.973368][T11978] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1734.013611][ T5400] bridge_slave_1: left allmulticast mode
[ 1734.019291][ T5400] bridge_slave_1: left promiscuous mode
[ 1734.039777][ T5400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1734.081797][ T5400] bridge_slave_0: left allmulticast mode
[ 1734.087458][ T5400] bridge_slave_0: left promiscuous mode
[ 1734.119080][ T5400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1734.151225][ T5400] bond1: left allmulticast mode
[ 1734.156095][ T5400] bond1: left promiscuous mode
[ 1734.169914][ T5400] bridge0: port 3(bond1) entered disabled state
[ 1734.208847][ T5400] bridge_slave_1: left allmulticast mode
[ 1734.217024][ T5400] bridge_slave_1: left promiscuous mode
[ 1734.233911][ T5400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1734.263911][ T5400] bridge_slave_0: left allmulticast mode
[ 1734.279831][ T5400] bridge_slave_0: left promiscuous mode
[ 1734.305531][ T5400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1734.330732][ T5400] bridge_slave_1: left allmulticast mode
[ 1734.336383][ T5400] bridge_slave_1: left promiscuous mode
[ 1734.350315][ T5400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1734.368051][ T5400] bridge_slave_0: left allmulticast mode
[ 1734.383450][ T5400] bridge_slave_0: left promiscuous mode
[ 1734.389149][ T5400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1734.416629][ T5400] bridge_slave_1: left allmulticast mode
[ 1734.429772][ T5400] bridge_slave_1: left promiscuous mode
[ 1734.435438][ T5400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1734.482065][ T5400] bridge_slave_0: left allmulticast mode
[ 1734.487719][ T5400] bridge_slave_0: left promiscuous mode
[ 1734.519110][ T5400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1736.330799][ T5400] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1736.366680][ T5400] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1736.378232][ T5400] bond0 (unregistering): Released all slaves
[ 1736.549973][ T5400] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1736.580148][ T5400] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1736.595621][ T5400] bond0 (unregistering): Released all slaves
[ 1736.606794][ T5400] bond1 (unregistering): Released all slaves
[ 1736.777269][ T5400] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1736.792355][ T5400] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1736.806036][ T5400] bond0 (unregistering): Released all slaves
[ 1736.818613][ T5400] bond1 (unregistering): Released all slaves
[ 1737.088545][ T5400] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1737.103065][ T5400] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1737.115144][ T5400] bond0 (unregistering): Released all slaves
[ 1737.159376][T11978] 8021q: adding VLAN 0 to HW filter on device team0
[ 1737.205045][ T8906] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1737.212200][ T8906] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1737.317724][ T7635] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1737.324938][ T7635] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1737.550785][T11985] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1737.736614][T11985] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1737.956299][T11985] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1738.342709][T11985] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1738.412719][ T9398] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 1738.426336][ T9398] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 1738.434837][ T9398] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 1738.444289][ T9398] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 1738.460476][ T9398] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 1738.470947][ T9398] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 1739.289131][T11980] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1739.330754][T11980] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1739.365444][T11980] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1739.458845][T11985] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1739.565125][T11980] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1739.753839][T11985] 8021q: adding VLAN 0 to HW filter on device team0
[ 1739.965523][ T5400] hsr_slave_0: left promiscuous mode
[ 1739.974388][ T5400] hsr_slave_1: left promiscuous mode
[ 1739.987094][ T5400] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1739.996640][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1740.005807][ T5400] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1740.013763][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1740.031162][ T5400] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1740.038597][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1740.066872][ T5400] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1740.096218][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1740.112569][ T5400] hsr_slave_0: left promiscuous mode
[ 1740.118501][ T5400] hsr_slave_1: left promiscuous mode
[ 1740.126203][ T5400] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1740.134210][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1740.143334][ T5400] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1740.152329][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1740.168369][ T5400] hsr_slave_0: left promiscuous mode
[ 1740.176566][ T5400] hsr_slave_1: left promiscuous mode
[ 1740.183626][ T5400] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1740.191616][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1740.203520][ T5400] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1740.211237][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1740.287119][ T5400] veth1_macvtap: left promiscuous mode
[ 1740.292873][ T5400] veth0_macvtap: left promiscuous mode
[ 1740.298608][ T5400] veth1_vlan: left promiscuous mode
[ 1740.304151][ T5400] veth0_vlan: left promiscuous mode
[ 1740.312118][ T5400] veth1_macvtap: left promiscuous mode
[ 1740.317796][ T5400] veth0_macvtap: left promiscuous mode
[ 1740.325601][ T5400] veth1_vlan: left promiscuous mode
[ 1740.331173][ T5400] veth0_vlan: left promiscuous mode
[ 1740.340164][ T5400] veth1_macvtap: left promiscuous mode
[ 1740.345923][ T5400] veth0_macvtap: left promiscuous mode
[ 1740.355523][ T5400] veth1_vlan: left promiscuous mode
[ 1740.367367][ T5400] veth0_vlan: left promiscuous mode
[ 1740.376742][ T5400] veth1_macvtap: left promiscuous mode
[ 1740.382678][ T5400] veth0_macvtap: left promiscuous mode
[ 1740.388270][ T5400] veth1_vlan: left promiscuous mode
[ 1740.393867][ T5400] veth0_vlan: left promiscuous mode
[ 1740.539928][ T9401] Bluetooth: hci2: command tx timeout
[ 1741.670685][ T5400] team0 (unregistering): Port device team_slave_1 removed
[ 1741.731919][ T5400] team0 (unregistering): Port device team_slave_0 removed
[ 1742.627052][ T9401] Bluetooth: hci2: command tx timeout
[ 1743.009562][ T5400] team0 (unregistering): Port device team_slave_1 removed
[ 1743.068816][ T5400] team0 (unregistering): Port device team_slave_0 removed
[ 1744.185856][ T5400] team0 (unregistering): Port device team_slave_1 removed
[ 1744.248079][ T5400] team0 (unregistering): Port device team_slave_0 removed
[ 1744.689735][ T9401] Bluetooth: hci2: command tx timeout
[ 1745.503800][ T5400] team0 (unregistering): Port device team_slave_1 removed
[ 1745.581253][ T5400] team0 (unregistering): Port device team_slave_0 removed
[ 1746.300719][ T8906] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1746.307936][ T8906] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1746.366994][ T8906] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1746.374109][ T8906] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1746.399939][T12124] chnl_net:caif_netlink_parms(): no params data found
[ 1746.635925][T11985] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1746.659412][T11985] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1746.772067][ T9401] Bluetooth: hci2: command tx timeout
[ 1747.157701][T11980] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1747.197299][T11987] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1747.298066][T12124] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1747.310106][T12124] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1747.317502][T12124] bridge_slave_0: entered allmulticast mode
[ 1747.337543][T12124] bridge_slave_0: entered promiscuous mode
[ 1747.354695][T12124] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1747.389813][T12124] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1747.412801][T12124] bridge_slave_1: entered allmulticast mode
[ 1747.420344][T12124] bridge_slave_1: entered promiscuous mode
[ 1747.430304][T11987] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1747.576110][T11987] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1747.642471][T12124] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1747.659003][T12124] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1747.686946][T11987] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1747.895524][T12124] team0: Port device team_slave_0 added
[ 1747.934919][T12124] team0: Port device team_slave_1 added
[ 1748.011726][T11980] 8021q: adding VLAN 0 to HW filter on device team0
[ 1748.093889][T11985] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1748.137109][T12124] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1748.146334][T12124] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1748.207072][T12124] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1748.233538][ T8906] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1748.240665][ T8906] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1748.251656][ T8906] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1748.258779][ T8906] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1748.287618][T12124] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1748.295279][T12124] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1748.324374][T12124] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1748.474919][T11980] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1748.489801][T11981] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1748.514640][T11981] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1748.562941][T11985] veth0_vlan: entered promiscuous mode
[ 1748.572016][T11981] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1748.661172][T12124] hsr_slave_0: entered promiscuous mode
[ 1748.674930][T12124] hsr_slave_1: entered promiscuous mode
[ 1748.690891][T12124] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1748.698654][T12124] Cannot create hsr debugfs directory
[ 1748.720896][T11985] veth1_vlan: entered promiscuous mode
[ 1748.751666][T11981] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1748.827119][T11987] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1748.985703][T11985] veth0_macvtap: entered promiscuous mode
[ 1748.995971][T11985] veth1_macvtap: entered promiscuous mode
[ 1749.041768][T11985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1749.079294][T11985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1749.095394][T11985] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1749.161466][T11987] 8021q: adding VLAN 0 to HW filter on device team0
[ 1749.182627][T11985] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1749.194719][T11985] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1749.213647][T11985] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1749.292419][  T134] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1749.299568][  T134] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1749.319181][T11985] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1749.336614][T11985] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1749.347110][T11985] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1749.362497][T11985] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1749.439135][T11980] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1749.467328][ T6520] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1749.474875][ T6520] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1749.654212][T11981] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1749.816778][T11980] veth0_vlan: entered promiscuous mode
[ 1749.862224][T11981] 8021q: adding VLAN 0 to HW filter on device team0
[ 1749.873550][ T5400] bridge_slave_1: left allmulticast mode
[ 1749.879229][ T5400] bridge_slave_1: left promiscuous mode
[ 1749.880934][ T6520] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1749.896460][ T6520] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1749.929186][ T5400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1749.950852][ T5400] bridge_slave_0: left allmulticast mode
[ 1749.956543][ T5400] bridge_slave_0: left promiscuous mode
[ 1749.974716][ T5400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1750.919175][ T5400] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1750.944651][ T5400] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1750.970701][ T5400] bond0 (unregistering): Released all slaves
[ 1751.173540][  T134] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1751.180728][  T134] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1751.211377][ T5400] hsr_slave_0: left promiscuous mode
[ 1751.249611][ T5400] hsr_slave_1: left promiscuous mode
[ 1751.260141][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1751.279894][ T5400] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1751.713017][ T5400] team0 (unregistering): Port device team_slave_1 removed
[ 1751.774437][ T5400] team0 (unregistering): Port device team_slave_0 removed
[ 1752.282312][T11980] veth1_vlan: entered promiscuous mode
[ 1752.294988][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1752.315572][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1752.328057][ T7635] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1752.335167][ T7635] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1752.391681][T12124] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1752.446184][T12124] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1752.590946][T12124] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1752.601482][T12124] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1753.375544][T11987] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1753.502848][T11980] veth0_macvtap: entered promiscuous mode
[ 1753.613324][T11980] veth1_macvtap: entered promiscuous mode
[ 1753.857603][T11980] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1754.658670][T11980] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1754.709290][T11980] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1754.766771][T11980] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1754.869093][T11980] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1754.938981][T11980] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1754.964725][T11980] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1754.994988][T11980] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1755.020646][T11980] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1755.050405][T11980] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1755.082645][T11981] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1755.145680][T11980] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1755.164819][T11980] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1755.173807][ T5266] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[ 1755.182816][T11980] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1755.193639][T11980] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1755.253575][T12124] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1755.359897][ T5266] usb 4-1: Using ep0 maxpacket: 16
[ 1755.373836][T12124] 8021q: adding VLAN 0 to HW filter on device team0
[ 1755.394346][ T5266] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1755.433739][ T5266] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1755.446593][ T5266] usb 4-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[ 1755.458469][ T5266] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1755.527702][ T5266] usb 4-1: config 0 descriptor??
[ 1755.528457][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1755.539925][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1755.585582][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1755.592765][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1755.614370][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1755.638545][T11987] veth0_vlan: entered promiscuous mode
[ 1755.667570][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1755.687518][T11981] veth0_vlan: entered promiscuous mode
[ 1755.786239][T11987] veth1_vlan: entered promiscuous mode
[ 1755.852831][  T134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1755.869954][T12124] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1755.887411][  T134] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1755.908405][T12124] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1755.944292][T11981] veth1_vlan: entered promiscuous mode
[ 1755.971818][ T5266] corsair 0003:1B1C:1B02.0002: unknown main item tag 0x0
[ 1756.020208][ T5266] corsair 0003:1B1C:1B02.0002: hidraw0: USB HID v0.00 Device [HID 1b1c:1b02] on usb-dummy_hcd.3-1/input0
[ 1756.051122][T11987] veth0_macvtap: entered promiscuous mode
[ 1756.111135][T11987] veth1_macvtap: entered promiscuous mode
[ 1756.160918][T11981] veth0_macvtap: entered promiscuous mode
[ 1756.170716][T12261] netlink: 20 bytes leftover after parsing attributes in process `syz.3.682'.
[ 1756.224166][T12261] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1756.237594][T11981] veth1_macvtap: entered promiscuous mode
[ 1756.265369][T11987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1756.277000][T11987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1756.287101][T12283] netlink: 256 bytes leftover after parsing attributes in process `syz.0.677'.
[ 1756.298320][T12261] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1756.312975][T11987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1756.345573][T11987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1756.358157][T11987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1756.369656][T11987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1756.381733][T11987] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1756.398298][T11981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1756.428501][T11981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1756.439045][T11981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1756.453209][T11981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1756.466905][ T5266] corsair 0003:1B1C:1B02.0002: Failed to get K90 initial state (error -71).
[ 1756.497192][ T5266] usb 4-1: USB disconnect, device number 12
[ 1756.517393][T11981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1756.569368][T11981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1756.585517][T11981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1756.596505][T11981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1756.629446][T11981] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1756.723125][T11987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1756.779594][T11987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1756.822624][T11987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1756.867866][T11987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1756.883415][T11987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1756.897334][T11987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1756.913835][T11987] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1756.936742][T11981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1757.133592][T11981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1757.144198][T11981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1757.388346][T11981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1757.404286][T11981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1757.417889][T11981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1757.428555][T11981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1757.439710][T11981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1757.468870][T11981] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1757.493227][T11987] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1757.549767][T11987] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1757.559031][T11987] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1757.569539][T11987] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1757.615799][T11981] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1757.651318][T11981] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1757.669655][T11981] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1757.676393][T12310] netlink: 'syz.0.685': attribute type 3 has an invalid length.
[ 1757.684990][T11981] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1757.832948][T12124] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1757.865807][T12124] veth0_vlan: entered promiscuous mode
[ 1757.877138][T12124] veth1_vlan: entered promiscuous mode
[ 1757.922854][T12124] veth0_macvtap: entered promiscuous mode
[ 1757.932906][T12124] veth1_macvtap: entered promiscuous mode
[ 1757.948902][T12124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1757.959421][T12124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1757.969417][T12124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1757.980299][T12124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1757.990482][T12124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1758.001355][T12124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1758.011285][T12124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1758.021897][T12124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1758.032106][T12124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1758.043082][T12124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1758.055418][T12124] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1758.900987][T12124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1758.918372][T12124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1758.989822][T12124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1759.002885][T12124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1759.016893][T12124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1759.027892][T12124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1759.068878][T12124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1759.091808][T12124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1759.106974][T12124] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1759.107064][T12124] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1759.178446][T12124] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1759.277287][T12124] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1759.277333][T12124] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1759.277361][T12124] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1759.277389][T12124] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1759.609417][ T5290] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1759.609603][ T5290] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1759.898129][ T6520] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1759.898202][ T6520] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1760.351029][ T6520] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1760.435857][ T6520] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1760.513722][ T8906] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1760.553343][ T8906] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1760.857200][  T134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1760.929839][  T134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1761.139657][T12336] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[ 1761.241276][ T8906] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1761.333191][ T8906] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1761.398479][T12357] overlayfs: missing 'lowerdir'
[ 1762.238201][T12336] usb 3-1: Using ep0 maxpacket: 16
[ 1762.317943][T12336] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1762.329326][T12336] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1762.344423][T12336] usb 3-1: New USB device found, idVendor=1e7d, idProduct=3232, bcdDevice= 0.00
[ 1762.354123][T12336] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1762.373932][T12336] usb 3-1: config 0 descriptor??
[ 1762.522631][   T29] audit: type=1800 audit(1727596179.997:15): pid=12370 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.1.676" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1762.529865][T12374] netlink: 52 bytes leftover after parsing attributes in process `syz.1.697'.
[ 1762.754385][T12374] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[ 1762.913853][T12383] netlink: 12 bytes leftover after parsing attributes in process `syz.2.678'.
[ 1763.047319][T12387] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1763.203809][T12387] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1763.380997][T12383] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[ 1763.489217][T12336] ryos 0003:1E7D:3232.0003: unknown main item tag 0x0
[ 1763.506150][T12336] ryos 0003:1E7D:3232.0003: hidraw0: USB HID v0.00 Device [HID 1e7d:3232] on usb-dummy_hcd.2-1/input0
[ 1763.860130][T12383] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1766.268290][T12383] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1766.419707][ T6525] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[ 1766.582577][ T5266] usb 3-1: USB disconnect, device number 10
[ 1766.590983][ T6525] usb 2-1: Using ep0 maxpacket: 32
[ 1766.598923][ T6525] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1766.869679][ T6525] usb 2-1: unable to read config index 0 descriptor/start: -71
[ 1766.934939][ T6525] usb 2-1: can't read configurations, error -71
[ 1767.175043][T12422] fuse: Bad value for 'fd'
[ 1768.108077][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1769.322922][T12449] overlayfs: missing 'lowerdir'
[ 1770.343012][ T6525] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[ 1770.352277][T12463] digital: digital_start_poll: Unknown protocol
[ 1770.445124][T12462] overlay: Unknown parameter '/'
[ 1770.498834][T12469] FAULT_INJECTION: forcing a failure.
[ 1770.498834][T12469] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1770.714621][T12469] CPU: 0 UID: 0 PID: 12469 Comm: syz.2.706 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[ 1770.725143][T12469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1770.735192][T12469] Call Trace:
[ 1770.738455][T12469]  <TASK>
[ 1770.741378][T12469]  dump_stack_lvl+0x241/0x360
[ 1770.746075][T12469]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1770.751253][T12469]  ? __pfx__printk+0x10/0x10
[ 1770.755825][T12469]  ? snprintf+0xda/0x120
[ 1770.760208][T12469]  should_fail_ex+0x3b0/0x4e0
[ 1770.764923][T12469]  _copy_to_user+0x2f/0xb0
[ 1770.769326][T12469]  simple_read_from_buffer+0xca/0x150
[ 1770.774694][T12469]  proc_fail_nth_read+0x1e9/0x250
[ 1770.779710][T12469]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1770.785331][T12469]  ? rw_verify_area+0x55e/0x6f0
[ 1770.790436][T12469]  ? __pfx_proc_fail_nth_read+0x10/0x10
[ 1770.795979][T12469]  vfs_read+0x201/0xbc0
[ 1770.800121][T12469]  ? __pfx_lock_release+0x10/0x10
[ 1770.805137][T12469]  ? __pfx_vfs_read+0x10/0x10
[ 1770.809805][T12469]  ? __fget_files+0x3f3/0x470
[ 1770.814473][T12469]  ? fdget_pos+0x24e/0x320
[ 1770.818882][T12469]  ksys_read+0x183/0x2b0
[ 1770.823110][T12469]  ? __pfx_ksys_read+0x10/0x10
[ 1770.827856][T12469]  ? do_syscall_64+0x100/0x230
[ 1770.832612][T12469]  ? do_syscall_64+0xb6/0x230
[ 1770.837278][T12469]  do_syscall_64+0xf3/0x230
[ 1770.841770][T12469]  ? clear_bhb_loop+0x35/0x90
[ 1770.846458][T12469]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1770.852347][T12469] RIP: 0033:0x7f6650f7ca3c
[ 1770.856755][T12469] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 69 8e 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 bf 8e 02 00 48
[ 1770.876356][T12469] RSP: 002b:00007f6651cdd030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1770.884781][T12469] RAX: ffffffffffffffda RBX: 00007f6651135f80 RCX: 00007f6650f7ca3c
[ 1770.892744][T12469] RDX: 000000000000000f RSI: 00007f6651cdd0a0 RDI: 0000000000000005
[ 1770.900701][T12469] RBP: 00007f6651cdd090 R08: 0000000000000000 R09: 0000000000000000
[ 1770.908656][T12469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1770.916617][T12469] R13: 0000000000000000 R14: 00007f6651135f80 R15: 00007ffc501be648
[ 1770.924585][T12469]  </TASK>
[ 1771.163012][   T29] audit: type=1800 audit(1727596188.547:16): pid=12480 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.4.708" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1772.798443][ T6525] usb 2-1: Using ep0 maxpacket: 32
[ 1772.856885][ T6525] usb 2-1: device descriptor read/all, error -71
[ 1772.970533][ T9398] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1772.981389][ T9398] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1772.990420][ T6525] usb usb2-port1: attempt power cycle
[ 1772.991964][ T9398] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1773.003998][ T9398] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1773.012479][ T9398] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1773.020150][ T9398] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1773.208782][T12516] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.715'.
[ 1773.360915][T12516] openvswitch: netlink: IP tunnel attribute has 3060 unknown bytes.
[ 1773.370143][T12516] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.715'.
[ 1773.379759][T12516] openvswitch: netlink: IP tunnel attribute has 3060 unknown bytes.
[ 1773.602186][T12510] chnl_net:caif_netlink_parms(): no params data found
[ 1774.250817][T12531] bridge0: entered allmulticast mode
[ 1774.318854][T12531] bridge_slave_1: left allmulticast mode
[ 1774.340403][T12531] bridge_slave_1: left promiscuous mode
[ 1774.346193][T12531] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1774.365196][T12531] bridge_slave_0: left allmulticast mode
[ 1774.398860][T12531] bridge_slave_0: left promiscuous mode
[ 1774.422648][T12531] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1774.894634][T12531] bridge0 (unregistering): left allmulticast mode
[ 1775.021593][T12510] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1775.089989][ T9401] Bluetooth: hci1: command tx timeout
[ 1775.130209][T12510] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1775.174150][T12510] bridge_slave_0: entered allmulticast mode
[ 1775.183483][T12510] bridge_slave_0: entered promiscuous mode
[ 1775.193861][T12510] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1775.203792][T12510] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1775.213006][T12510] bridge_slave_1: entered allmulticast mode
[ 1775.220112][T12510] bridge_slave_1: entered promiscuous mode
[ 1775.267140][T12510] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1775.310834][T12543] netlink: 8 bytes leftover after parsing attributes in process `syz.2.720'.
[ 1775.406756][T12543] netlink: 'syz.2.720': attribute type 1 has an invalid length.
[ 1775.443363][T12510] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1775.695615][T12551] overlay: Unknown parameter '/'
[ 1776.053153][T12510] team0: Port device team_slave_0 added
[ 1776.607425][T12510] team0: Port device team_slave_1 added
[ 1776.989279][T12510] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1777.029674][T12510] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1777.103292][T12564] binder: BINDER_SET_CONTEXT_MGR already set
[ 1777.115422][T12564] binder: 12560:12564 ioctl 4018620d 20000040 returned -16
[ 1777.125867][T12510] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1777.648713][ T9401] Bluetooth: hci1: command tx timeout
[ 1778.579817][T12569] netlink: 32 bytes leftover after parsing attributes in process `syz.1.727'.
[ 1778.589354][T12510] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1778.596981][T12510] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1778.744875][T12510] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1780.319977][T12591] overlay: Unknown parameter '/'
[ 1780.350010][T12510] hsr_slave_0: entered promiscuous mode
[ 1780.358731][T12510] hsr_slave_1: entered promiscuous mode
[ 1780.386938][T12510] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1780.394693][T12510] Cannot create hsr debugfs directory
[ 1780.468257][ T9401] Bluetooth: hci1: command tx timeout
[ 1782.105767][   T29] audit: type=1804 audit(1727596199.627:17): pid=12602 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.1.737" name="/newroot/15/bus/bus" dev="overlay" ino=106 res=1 errno=0
[ 1782.130347][T12602] evm: overlay not supported
[ 1782.178876][T12602] Invalid ELF header magic: != ELF
[ 1782.212353][T12602] xt_bpf: check failed: parse error
[ 1782.465158][T12608] dvmrp1: entered allmulticast mode
[ 1782.525352][   T35] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1782.530016][ T9401] Bluetooth: hci1: command tx timeout
[ 1782.599749][T12336] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[ 1782.629853][ T8794] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[ 1782.638482][   T35] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1782.744664][T12610] Bluetooth: MGMT ver 1.23
[ 1782.772126][T12336] usb 5-1: Using ep0 maxpacket: 8
[ 1782.786369][ T8794] usb 2-1: Using ep0 maxpacket: 8
[ 1782.796083][T12336] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1782.823162][T12336] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1782.842351][T12336] usb 5-1: New USB device found, idVendor=056a, idProduct=0303, bcdDevice= 0.00
[ 1782.859807][ T8794] usb 2-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[ 1782.870004][ T8794] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1782.887124][T12336] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1782.895926][ T8794] usb 2-1: Product: syz
[ 1782.905677][ T8794] usb 2-1: Manufacturer: syz
[ 1782.936982][T12336] usb 5-1: config 0 descriptor??
[ 1782.942173][ T8794] usb 2-1: SerialNumber: syz
[ 1783.027297][T12614] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1783.036378][T12614] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1783.560285][ T8794] usb 2-1: config 0 descriptor??
[ 1783.575865][ T8794] gspca_main: sonixj-2.14.0 probing 0c45:613a
[ 1783.643899][   T35] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1783.832040][   T35] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1784.734614][T12336] usbhid 5-1:0.0: can't add hid device: -71
[ 1784.784416][T12336] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1784.838637][T12336] usb 5-1: USB disconnect, device number 8
[ 1784.980106][   T35] bridge_slave_1: left allmulticast mode
[ 1784.985870][   T35] bridge_slave_1: left promiscuous mode
[ 1785.059865][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1785.104838][   T35] bridge_slave_0: left allmulticast mode
[ 1785.117587][   T35] bridge_slave_0: left promiscuous mode
[ 1785.127058][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1786.930073][ T8794] gspca_sonixj: reg_w1 err -110
[ 1786.969999][ T8794] sonixj 2-1:0.0: probe with driver sonixj failed with error -110
[ 1787.335627][T12644] netlink: 8 bytes leftover after parsing attributes in process `syz.3.750'.
[ 1787.425566][ T8794] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[ 1787.586339][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1787.603089][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1787.617778][   T35] bond0 (unregistering): Released all slaves
[ 1787.624333][ T8794] usb 5-1: Using ep0 maxpacket: 16
[ 1787.638350][ T8794] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1787.661587][ T8794] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1787.699583][ T8794] usb 5-1: New USB device found, idVendor=1294, idProduct=1320, bcdDevice= 0.00
[ 1787.719864][ T8794] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1787.733484][ T8794] usb 5-1: config 0 descriptor??
[ 1787.790787][T12336] usb 2-1: USB disconnect, device number 18
[ 1789.354681][T12661] netlink: 160 bytes leftover after parsing attributes in process `syz.4.749'.
[ 1789.364031][T12661] netlink: 8 bytes leftover after parsing attributes in process `syz.4.749'.
[ 1789.619614][   T29] audit: type=1800 audit(1727596207.120:18): pid=12660 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.751" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1790.103818][T12673] netlink: 8 bytes leftover after parsing attributes in process `syz.1.754'.
[ 1790.516197][ T8794] usbhid 5-1:0.0: can't add hid device: -71
[ 1790.525348][ T8794] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1790.540184][ T8794] usb 5-1: USB disconnect, device number 9
[ 1790.578899][T12673] macvtap0: entered promiscuous mode
[ 1790.670718][T12673] macvtap0: left promiscuous mode
[ 1790.842460][   T35] hsr_slave_0: left promiscuous mode
[ 1790.886093][   T35] hsr_slave_1: left promiscuous mode
[ 1790.892539][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1790.908861][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1790.932529][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1790.954869][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1791.002225][   T35] veth1_macvtap: left promiscuous mode
[ 1791.013543][   T35] veth0_macvtap: left promiscuous mode
[ 1791.020417][   T35] veth1_vlan: left promiscuous mode
[ 1791.025843][   T35] veth0_vlan: left promiscuous mode
[ 1791.883526][T12695] netlink: 36 bytes leftover after parsing attributes in process `syz.1.761'.
[ 1791.894801][T12695] netlink: 16 bytes leftover after parsing attributes in process `syz.1.761'.
[ 1791.912709][T12695] netlink: 36 bytes leftover after parsing attributes in process `syz.1.761'.
[ 1791.947799][T12695] netlink: 36 bytes leftover after parsing attributes in process `syz.1.761'.
[ 1791.997609][ T1268] ieee802154 phy0 wpan0: encryption failed: -22
[ 1792.004174][ T1268] ieee802154 phy1 wpan1: encryption failed: -22
[ 1792.754009][   T35] team0 (unregistering): Port device team_slave_1 removed
[ 1792.848235][   T35] team0 (unregistering): Port device team_slave_0 removed
[ 1793.762650][T12699] netlink: 'syz.4.762': attribute type 24 has an invalid length.
[ 1793.851804][T12510] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1793.937167][T12510] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1794.109330][T12510] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1794.260433][T12510] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1794.334773][T12727] vlan3: entered allmulticast mode
[ 1794.358236][T12727] macvlan1: entered allmulticast mode
[ 1794.380842][T12727] veth1_vlan: entered allmulticast mode
[ 1794.452550][T12727] macvlan1: left allmulticast mode
[ 1794.484551][T12727] veth1_vlan: left allmulticast mode
[ 1794.746649][T12510] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1794.766439][T12510] 8021q: adding VLAN 0 to HW filter on device team0
[ 1794.802438][T12510] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1794.813970][T12510] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1794.884649][ T5400] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1794.891799][ T5400] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1794.933156][ T5400] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1794.940395][ T5400] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1795.318047][T12510] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1795.462854][T12510] veth0_vlan: entered promiscuous mode
[ 1795.475933][T12510] veth1_vlan: entered promiscuous mode
[ 1795.494920][T12510] veth0_macvtap: entered promiscuous mode
[ 1795.502912][T12510] veth1_macvtap: entered promiscuous mode
[ 1795.515374][T12510] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1795.526028][T12510] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1795.535974][T12510] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1795.546733][T12510] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1795.556896][T12510] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1795.568928][T12510] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1795.578997][T12510] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1795.589637][T12510] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1795.599643][T12510] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1795.610172][T12510] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1795.621958][T12510] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1795.657108][T12510] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1795.669792][T12510] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1795.709216][T12510] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1795.721188][T12510] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1795.732140][T12510] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1795.745747][T12510] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1795.756190][T12510] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1795.767344][T12510] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1795.778054][T12510] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1795.792545][T12510] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1795.808757][T12510] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1795.839186][T12775] syzkaller1: entered promiscuous mode
[ 1795.845340][T12775] syzkaller1: entered allmulticast mode
[ 1795.927316][T12510] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1795.947618][T12510] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1795.958545][T12510] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1795.997133][T12510] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1796.237552][T12787] netlink: 8 bytes leftover after parsing attributes in process `syz.2.786'.
[ 1796.254185][T12787] netlink: 8 bytes leftover after parsing attributes in process `syz.2.786'.
[ 1796.264588][T12787] netlink: 13 bytes leftover after parsing attributes in process `syz.2.786'.
[ 1796.526201][T12798] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1796.540421][T12779] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1796.546801][T12779] Bluetooth: hci5: Error when powering off device on rfkill (-4)
[ 1796.566750][T12779] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1796.572919][T12779] Bluetooth: hci4: Error when powering off device on rfkill (-4)
[ 1796.590921][T12779] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1796.596969][T12779] Bluetooth: hci6: Error when powering off device on rfkill (-4)
[ 1796.612780][T12779] Bluetooth: hci7: Opcode 0x0c1a failed: -4
[ 1796.618824][T12779] Bluetooth: hci7: Error when powering off device on rfkill (-4)
[ 1796.634054][T12779] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1796.640629][T12779] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[ 1796.651410][T12779] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1796.657354][T12779] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[ 1796.731654][T12798] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1796.738862][T12798] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1796.883995][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1796.908531][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1796.929188][ T5400] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1796.952270][ T5400] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1798.387509][T12826] capability: warning: `syz.0.798' uses deprecated v2 capabilities in a way that may be insecure
[ 1798.402882][T12826] program syz.0.798 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1799.750870][   T25] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[ 1799.859813][T12882] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1799.932196][T12882] vhci_hcd: invalid port number 16
[ 1799.986589][T12882] vhci_hcd: invalid port number 16
[ 1800.034456][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1800.080028][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1800.124286][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 0, changing to 10
[ 1800.178705][   T25] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1800.209202][   T25] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5
[ 1800.270170][   T25] usb 3-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[ 1800.317534][   T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1800.376775][   T25] usb 3-1: config 0 descriptor??
[ 1800.880051][   T25] ntrig 0003:1B96:000A.0004: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.2-1/input0
[ 1801.176224][   T25] usb 3-1: USB disconnect, device number 11
[ 1801.649560][ T6525] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[ 1802.423329][   T29] audit: type=1326 audit(1727596219.950:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12939 comm="syz.4.836" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0db9b7dff9 code=0x0
[ 1802.444242][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1802.500771][ T6525] usb 2-1: Using ep0 maxpacket: 8
[ 1802.531479][ T6525] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[ 1802.580756][ T6525] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[ 1802.642832][ T6525] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1802.674648][ T6525] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1802.746333][ T6525] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[ 1802.771379][ T6525] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1803.023193][ T6525] usb 2-1: usb_control_msg returned -32
[ 1803.043843][ T6525] usbtmc 2-1:16.0: can't read capabilities
[ 1803.183720][ T6525] libceph: connect (1)[c::]:6789 error -101
[ 1803.210677][ T6525] libceph: mon0 (1)[c::]:6789 connect error
[ 1803.255033][T12963] input: syz0 as /devices/virtual/input/input12
[ 1803.315703][T12954] ceph: No mds server is up or the cluster is laggy
[ 1803.375918][    C0] usbtmc 2-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71
[ 1803.407839][T12967] usbtmc 2-1:16.0: Unable to send data, error -71
[ 1803.472067][ T5266] libceph: connect (1)[c::]:6789 error -101
[ 1803.485329][ T5266] libceph: mon0 (1)[c::]:6789 connect error
[ 1804.597002][ T8794] usb 2-1: USB disconnect, device number 19
[ 1805.419632][ T8794] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[ 1805.509685][T13046] =======================================================
[ 1805.509685][T13046] WARNING: The mand mount option has been deprecated and
[ 1805.509685][T13046]          and is ignored by this kernel. Remove the mand
[ 1805.509685][T13046]          option from the mount to silence this warning.
[ 1805.509685][T13046] =======================================================
[ 1805.569622][ T8794] usb 1-1: Using ep0 maxpacket: 16
[ 1805.601423][ T8794] usb 1-1: config 0 has no interfaces?
[ 1805.623653][ T8794] usb 1-1: New USB device found, idVendor=09da, idProduct=026b, bcdDevice= 0.00
[ 1805.669265][ T8794] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1805.702275][ T8794] usb 1-1: config 0 descriptor??
[ 1805.825931][T13052] netlink: 'syz.4.879': attribute type 9 has an invalid length.
[ 1806.739600][ T8794] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[ 1806.902409][ T8794] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1806.925373][ T8794] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1806.954874][ T8794] usb 4-1: New USB device found, idVendor=056a, idProduct=032c, bcdDevice= 0.00
[ 1806.999805][ T8794] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1807.045563][ T8794] usb 4-1: config 0 descriptor??
[ 1807.140899][T13072] bridge0: port 3(team0) entered blocking state
[ 1807.148205][T13072] bridge0: port 3(team0) entered disabled state
[ 1807.160351][T13072] team0: entered allmulticast mode
[ 1807.165572][T13072] team_slave_0: entered allmulticast mode
[ 1807.173465][T13072] team_slave_1: entered allmulticast mode
[ 1807.184569][T13072] team0: entered promiscuous mode
[ 1807.189914][T13072] team_slave_0: entered promiscuous mode
[ 1807.196427][T13072] team_slave_1: entered promiscuous mode
[ 1807.210083][T13072] bridge0: port 3(team0) entered blocking state
[ 1807.216837][T13072] bridge0: port 3(team0) entered forwarding state
[ 1807.733266][T13060] netlink: 'syz.3.883': attribute type 10 has an invalid length.
[ 1807.786301][T13060] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1807.793741][T13060] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1807.887692][T13060] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1807.894838][T13060] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1807.903415][T13060] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1807.910538][T13060] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1807.992222][T13060] bond0: (slave bridge0): Enslaving as an active interface with an up link
[ 1808.137712][ T8794] usbhid 4-1:0.0: can't add hid device: -71
[ 1808.144924][ T8794] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[ 1808.149844][T13029] block device autoloading is deprecated and will be removed.
[ 1808.218194][ T8794] usb 4-1: USB disconnect, device number 13
[ 1808.285416][ T9805] usb 1-1: USB disconnect, device number 13
[ 1808.488001][T13091] program syz.4.894 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1809.330320][T13117] ebt_among: dst integrity fail: 1a0
[ 1809.740197][T13128] program syz.2.911 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1810.227178][T13158] netlink: 830 bytes leftover after parsing attributes in process `syz.3.919'.
[ 1810.709349][T13179] dccp_invalid_packet: P.CsCov 4 exceeds packet length 28
[ 1810.749722][ T6503] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[ 1810.785385][T13183] netlink: 8 bytes leftover after parsing attributes in process `syz.1.934'.
[ 1810.819253][    C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[ 1810.863255][T13186] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1810.932165][ T6503] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[ 1810.969590][ T6503] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[ 1811.010304][ T6503] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1811.053895][ T6503] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1811.083902][ T6503] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1811.108603][ T6503] usb 1-1: config 0 descriptor??
[ 1811.131216][T13146] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1811.365240][T13196] netlink: 'syz.1.941': attribute type 10 has an invalid length.
[ 1811.405213][T13196] bridge0: port 3(team0) entered disabled state
[ 1811.452744][T13196] team0: left allmulticast mode
[ 1811.501039][T13196] team_slave_0: left allmulticast mode
[ 1811.521517][T13196] team_slave_1: left allmulticast mode
[ 1811.548375][ T6503] plantronics 0003:047F:FFFF.0005: unknown main item tag 0x0
[ 1811.556155][T13196] team0: left promiscuous mode
[ 1811.576536][ T6503] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[ 1811.588861][T13196] team_slave_0: left promiscuous mode
[ 1811.613708][T13196] team_slave_1: left promiscuous mode
[ 1811.644017][ T6503] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[ 1811.681507][T13196] bridge0: port 3(team0) entered disabled state
[ 1811.781052][T13196] batman_adv: batadv0: Adding interface: team0
[ 1811.803948][T13196] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1811.832140][T13196] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[ 1811.902558][T13198] netlink: 'syz.1.941': attribute type 10 has an invalid length.
[ 1811.923392][T13198] netlink: 2 bytes leftover after parsing attributes in process `syz.1.941'.
[ 1811.934131][T13198] team0: entered promiscuous mode
[ 1811.944472][T13198] team_slave_0: entered promiscuous mode
[ 1811.973114][T13198] team_slave_1: entered promiscuous mode
[ 1811.979683][ T5268] usb 1-1: USB disconnect, device number 14
[ 1812.011222][T13198] 8021q: adding VLAN 0 to HW filter on device team0
[ 1812.072705][T13198] batman_adv: batadv0: Interface activated: team0
[ 1812.079226][T13198] batman_adv: batadv0: Interface deactivated: team0
[ 1812.146360][T13198] batman_adv: batadv0: Removing interface: team0
[ 1812.157414][T13198] bridge0: port 3(team0) entered blocking state
[ 1812.165337][T13198] bridge0: port 3(team0) entered disabled state
[ 1812.173466][T13198] team0: entered allmulticast mode
[ 1812.178715][T13198] team_slave_0: entered allmulticast mode
[ 1812.185222][T13198] team_slave_1: entered allmulticast mode
[ 1812.207375][T13198] bridge0: port 3(team0) entered blocking state
[ 1812.213730][T13198] bridge0: port 3(team0) entered forwarding state
[ 1812.250014][T13211] netlink: 28 bytes leftover after parsing attributes in process `syz.4.945'.
[ 1812.378008][T13213] loop0: detected capacity change from 0 to 16384
[ 1812.404722][T13213] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1814.058340][T13281] netlink: 'syz.0.972': attribute type 2 has an invalid length.
[ 1814.570001][ T6503] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[ 1814.727136][ T6503] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1855, setting to 1024
[ 1814.746166][ T6503] usb 3-1: New USB device found, idVendor=056a, idProduct=0059, bcdDevice= 0.00
[ 1814.801352][ T6503] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1814.849888][ T8794] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[ 1814.889120][ T6503] usb 3-1: config 0 descriptor??
[ 1816.080128][T13282] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1816.825771][T13327] i2c i2c-0: Invalid block write size 254
[ 1816.861387][T13327] netlink: 184 bytes leftover after parsing attributes in process `syz.3.992'.
[ 1817.804811][ T6503] usb 3-1: can't set config #0, error -71
[ 1817.826888][ T6503] usb 3-1: USB disconnect, device number 12
[ 1820.429348][T13426] syz.3.1037[13426] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1820.430366][T13426] syz.3.1037[13426] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1820.467271][T13426] syz.3.1037[13426] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1820.489690][ T6525] usb 2-1: new full-speed USB device number 20 using dummy_hcd
[ 1820.672183][ T6525] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1820.681481][ T6525] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1820.698856][T13431] program syz.0.1040 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1820.877485][T13437] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 64993
[ 1820.899333][ T6525] usb 2-1: config 0 descriptor??
[ 1820.917033][ T6525] cp210x 2-1:0.0: cp210x converter detected
[ 1821.129360][ T6525] cp210x 2-1:0.0: failed to get vendor val 0x370b size 1: -121
[ 1821.138152][ T6525] cp210x 2-1:0.0: querying part number failed
[ 1821.144486][T13443] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1045'.
[ 1821.163090][ T6525] usb 2-1: cp210x converter now attached to ttyUSB0
[ 1821.327969][   T29] audit: type=1326 audit(1727596238.850:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13450 comm="syz.0.1049" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1be237dff9 code=0x0
[ 1822.132418][T13452] block device autoloading is deprecated and will be removed.
[ 1823.128885][T12336] usb 2-1: USB disconnect, device number 20
[ 1823.138301][T12336] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1823.155959][T12336] cp210x 2-1:0.0: device disconnected
[ 1931.729416][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1931.736427][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P13519/1:b..l P13518/1:b..l
[ 1931.746424][    C1] rcu: 	(detected by 1, t=10503 jiffies, g=134945, q=1638900 ncpus=2)
[ 1931.754615][    C1] task:syz.0.1078      state:R  running task     stack:24504 pid:13518 tgid:13516 ppid:12510  flags:0x00004004
[ 1931.767925][    C1] Call Trace:
[ 1931.771242][    C1]  <TASK>
[ 1931.774192][    C1]  __schedule+0x1843/0x4ae0
[ 1931.778752][    C1]  ? __pfx___schedule+0x10/0x10
[ 1931.783632][    C1]  ? mark_lock+0x9a/0x360
[ 1931.787999][    C1]  ? preempt_schedule+0xe1/0xf0
[ 1931.792877][    C1]  preempt_schedule_common+0x84/0xd0
[ 1931.798189][    C1]  preempt_schedule+0xe1/0xf0
[ 1931.802912][    C1]  ? __pfx_preempt_schedule+0x10/0x10
[ 1931.808313][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1931.814246][    C1]  preempt_schedule_thunk+0x1a/0x30
[ 1931.819480][    C1]  _raw_spin_unlock+0x3e/0x50
[ 1931.824185][    C1]  unmap_page_range+0x36b1/0x40e0
[ 1931.829260][    C1]  ? __pfx_unmap_page_range+0x10/0x10
[ 1931.834676][    C1]  ? mas_next_slot+0xdc6/0xea0
[ 1931.839478][    C1]  ? uprobe_munmap+0x183/0x460
[ 1931.844270][    C1]  ? unmap_single_vma+0x1bd/0x2b0
[ 1931.849324][    C1]  unmap_vmas+0x3cc/0x5f0
[ 1931.853683][    C1]  ? __pfx_unmap_vmas+0x10/0x10
[ 1931.859007][    C1]  ? tlb_gather_mmu_fullmm+0x160/0x210
[ 1931.864493][    C1]  exit_mmap+0x275/0xc40
[ 1931.868767][    C1]  ? __mutex_lock+0x2ef/0xd70
[ 1931.873463][    C1]  ? __pfx_exit_mmap+0x10/0x10
[ 1931.878350][    C1]  ? __pfx_exit_aio+0x10/0x10
[ 1931.883056][    C1]  ? uprobe_clear_state+0x271/0x290
[ 1931.888271][    C1]  ? mm_update_next_owner+0xa2/0x8a0
[ 1931.893573][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1931.898804][    C1]  __mmput+0x115/0x380
[ 1931.902899][    C1]  exit_mm+0x220/0x310
[ 1931.906989][    C1]  ? __pfx_exit_mm+0x10/0x10
[ 1931.911593][    C1]  ? taskstats_exit+0x326/0xa60
[ 1931.916471][    C1]  do_exit+0x9b2/0x28e0
[ 1931.920652][    C1]  ? __pfx_do_exit+0x10/0x10
[ 1931.925275][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1931.930688][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1931.936700][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1931.943049][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[ 1931.948196][    C1]  do_group_exit+0x207/0x2c0
[ 1931.952812][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1931.958037][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 1931.963270][    C1]  get_signal+0x16a3/0x1740
[ 1931.967804][    C1]  ? fput+0x1a8/0x230
[ 1931.971821][    C1]  ? __pfx___sys_sendto+0x10/0x10
[ 1931.976870][    C1]  ? __pfx_get_signal+0x10/0x10
[ 1931.981760][    C1]  arch_do_signal_or_restart+0x96/0x860
[ 1931.987339][    C1]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 1931.993707][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1931.999736][    C1]  ? syscall_exit_to_user_mode+0xa3/0x370
[ 1932.005581][    C1]  syscall_exit_to_user_mode+0xc9/0x370
[ 1932.011157][    C1]  do_syscall_64+0x100/0x230
[ 1932.015863][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1932.020564][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1932.026490][    C1] RIP: 0033:0x7f1be237dff9
[ 1932.030933][    C1] RSP: 002b:00007f1be3232038 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[ 1932.039370][    C1] RAX: ffffffffffffff8d RBX: 00007f1be2535f80 RCX: 00007f1be237dff9
[ 1932.047356][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 1932.055349][    C1] RBP: 00007f1be23f0296 R08: 0000000020e68000 R09: 0000000000000010
[ 1932.063345][    C1] R10: 00000000200007fd R11: 0000000000000246 R12: 0000000000000000
[ 1932.071348][    C1] R13: 0000000000000000 R14: 00007f1be2535f80 R15: 00007ffc2f363e88
[ 1932.079536][    C1]  </TASK>
[ 1932.082573][    C1] task:syz.4.1077      state:R  running task     stack:24944 pid:13519 tgid:13517 ppid:11987  flags:0x00004002
[ 1932.094355][    C1] Call Trace:
[ 1932.097651][    C1]  <TASK>
[ 1932.100611][    C1]  __schedule+0x1843/0x4ae0
[ 1932.105160][    C1]  ? __pfx___schedule+0x10/0x10
[ 1932.110044][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1932.116064][    C1]  ? preempt_schedule_irq+0xf0/0x1c0
[ 1932.121376][    C1]  preempt_schedule_irq+0xfb/0x1c0
[ 1932.126515][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[ 1932.132290][    C1]  irqentry_exit+0x5e/0x90
[ 1932.136729][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1932.142736][    C1] RIP: 0010:__kernel_text_address+0x1f/0x40
[ 1932.148655][    C1] Code: 90 90 90 90 90 90 90 90 90 90 90 66 0f 1f 00 53 48 89 fb e8 43 00 00 00 85 c0 0f 95 c0 48 c7 c1 00 a0 79 91 48 39 cb 0f 93 c1 <48> c7 c2 4f 5e 94 91 48 39 d3 0f 92 c2 20 ca 08 c2 0f b6 c2 5b c3
[ 1932.168293][    C1] RSP: 0018:ffffc9000ad3f2b0 EFLAGS: 00000283
[ 1932.174388][    C1] RAX: 0000000000000001 RBX: ffffffff81fb40e3 RCX: ffffffff9179a000
[ 1932.182387][    C1] RDX: dffffc0000000000 RSI: ffffc9000ad38000 RDI: ffffffff81fb40e3
[ 1932.190383][    C1] RBP: ffffc9000ad3f370 R08: ffffc9000ad3f830 R09: 0000000000000000
[ 1932.198436][    C1] R10: ffffc9000ad3f330 R11: fffff520015a7e68 R12: ffff88806a948000
[ 1932.206447][    C1] R13: ffffffff81809970 R14: dffffc0000000000 R15: 1ffff920015a7e65
[ 1932.214454][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 1932.220642][    C1]  ? __kasan_slab_alloc+0x23/0x80
[ 1932.225710][    C1]  ? __init_begin+0x41000/0x41000
[ 1932.230767][    C1]  ? __kasan_slab_alloc+0x23/0x80
[ 1932.235824][    C1]  unwind_get_return_address+0x4d/0x90
[ 1932.241309][    C1]  arch_stack_walk+0xfd/0x150
[ 1932.246020][    C1]  ? __kasan_slab_alloc+0x23/0x80
[ 1932.251076][    C1]  stack_trace_save+0x118/0x1d0
[ 1932.255952][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[ 1932.261456][    C1]  save_stack+0xfb/0x1f0
[ 1932.265737][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 1932.270789][    C1]  ? __pfx_save_stack+0x10/0x10
[ 1932.275664][    C1]  ? free_unref_page+0xcd0/0xf00
[ 1932.280643][    C1]  ? __put_partials+0xeb/0x130
[ 1932.285432][    C1]  ? put_cpu_partial+0x17c/0x250
[ 1932.290393][    C1]  ? __slab_free+0x2ea/0x3d0
[ 1932.295001][    C1]  ? qlist_free_all+0x9a/0x140
[ 1932.299790][    C1]  ? kasan_quarantine_reduce+0x14f/0x170
[ 1932.305470][    C1]  ? page_ext_get+0x20/0x2a0
[ 1932.310111][    C1]  __reset_page_owner+0x76/0x430
[ 1932.315084][    C1]  free_unref_page+0xcd0/0xf00
[ 1932.319878][    C1]  __put_partials+0xeb/0x130
[ 1932.324496][    C1]  put_cpu_partial+0x17c/0x250
[ 1932.329281][    C1]  ? put_cpu_partial+0x70/0x250
[ 1932.334158][    C1]  __slab_free+0x2ea/0x3d0
[ 1932.338605][    C1]  ? __phys_addr+0xba/0x170
[ 1932.343129][    C1]  qlist_free_all+0x9a/0x140
[ 1932.347746][    C1]  kasan_quarantine_reduce+0x14f/0x170
[ 1932.353240][    C1]  __kasan_slab_alloc+0x23/0x80
[ 1932.358117][    C1]  ? __d_alloc+0x31/0x700
[ 1932.362485][    C1]  kmem_cache_alloc_lru_noprof+0x139/0x2b0
[ 1932.368316][    C1]  __d_alloc+0x31/0x700
[ 1932.372493][    C1]  d_alloc_parallel+0xdf/0x1600
[ 1932.377370][    C1]  ? __asan_memset+0x23/0x50
[ 1932.381993][    C1]  ? __asan_memset+0x23/0x50
[ 1932.386991][    C1]  ? lockdep_init_map_type+0xa1/0x910
[ 1932.392394][    C1]  ? __pfx_lockdep_init_map_type+0x10/0x10
[ 1932.398244][    C1]  ? __pfx_d_alloc_parallel+0x10/0x10
[ 1932.403657][    C1]  ? __init_waitqueue_head+0xae/0x150
[ 1932.409163][    C1]  __lookup_slow+0x117/0x3f0
[ 1932.413789][    C1]  ? __pfx___lookup_slow+0x10/0x10
[ 1932.418925][    C1]  ? __d_lookup+0x64/0x7b0
[ 1932.423383][    C1]  lookup_one_len+0x18b/0x2d0
[ 1932.428087][    C1]  ? __pfx_lookup_one_len+0x10/0x10
[ 1932.433313][    C1]  ? mntput+0x65/0xc0
[ 1932.437330][    C1]  start_creating+0x187/0x310
[ 1932.442080][    C1]  __debugfs_create_file+0x73/0x4b0
[ 1932.447408][    C1]  kvm_dev_ioctl+0x1ed3/0x2240
[ 1932.452219][    C1]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[ 1932.457359][    C1]  ? security_file_ioctl+0x247/0x2a0
[ 1932.462678][    C1]  ? __pfx_kvm_dev_ioctl+0x10/0x10
[ 1932.467818][    C1]  __se_sys_ioctl+0xf9/0x170
[ 1932.472451][    C1]  do_syscall_64+0xf3/0x230
[ 1932.476982][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1932.481679][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1932.487601][    C1] RIP: 0033:0x7f0db9b7dff9
[ 1932.492029][    C1] RSP: 002b:00007f0db99f9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1932.500464][    C1] RAX: ffffffffffffffda RBX: 00007f0db9d35f80 RCX: 00007f0db9b7dff9
[ 1932.508461][    C1] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003
[ 1932.516475][    C1] RBP: 00007f0db9bf0296 R08: 0000000000000000 R09: 0000000000000000
[ 1932.524474][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1932.532469][    C1] R13: 0000000000000000 R14: 00007f0db9d35f80 R15: 00007fff86601318
[ 1932.540481][    C1]  </TASK>
[ 1932.543520][    C1] rcu: rcu_preempt kthread starved for 9819 jiffies! g134945 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 1932.554731][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1932.564983][    C1] rcu: RCU grace-period kthread stack dump:
[ 1932.571063][    C1] task:rcu_preempt     state:R  running task     stack:25816 pid:17    tgid:17    ppid:2      flags:0x00004000
[ 1932.582847][    C1] Call Trace:
[ 1932.586144][    C1]  <TASK>
[ 1932.589094][    C1]  __schedule+0x1843/0x4ae0
[ 1932.593643][    C1]  ? __pfx___schedule+0x10/0x10
[ 1932.598515][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1932.603564][    C1]  ? __asan_memset+0x23/0x50
[ 1932.608188][    C1]  ? __pfx_lockdep_init_map_type+0x10/0x10
[ 1932.614023][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1932.620469][    C1]  ? schedule+0x90/0x320
[ 1932.624740][    C1]  schedule+0x14b/0x320
[ 1932.628924][    C1]  schedule_timeout+0x1be/0x310
[ 1932.633805][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 1932.639199][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 1932.644514][    C1]  ? prepare_to_swait_event+0x330/0x350
[ 1932.650091][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[ 1932.654960][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[ 1932.660194][    C1]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[ 1932.666376][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1932.671772][    C1]  ? finish_swait+0xd4/0x1e0
[ 1932.676389][    C1]  rcu_gp_kthread+0xa7/0x3b0
[ 1932.681003][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1932.686222][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1932.692144][    C1]  ? __kthread_parkme+0x169/0x1d0
[ 1932.697198][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1932.702421][    C1]  kthread+0x2f0/0x390
[ 1932.706515][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1932.711824][    C1]  ? __pfx_kthread+0x10/0x10
[ 1932.716435][    C1]  ret_from_fork+0x4b/0x80
[ 1932.720873][    C1]  ? __pfx_kthread+0x10/0x10
[ 1932.725484][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1932.730290][    C1]  </TASK>
[ 1932.733330][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1932.739661][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 1932.744896][    C0] NMI backtrace for cpu 0
[ 1932.744909][    C0] CPU: 0 UID: 0 PID: 8794 Comm: kworker/0:1 Not tainted 6.11.0-syzkaller-11993-g3efc57369a0c #0
[ 1932.744928][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1932.744939][    C0] Workqueue: events_long defense_work_handler
[ 1932.744965][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp8+0x8/0x90
[ 1932.744988][    C0] Code: 44 0a 20 c3 cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 4c 8b 04 24 <65> 48 8b 0c 25 80 d7 03 00 65 8b 05 c0 ec 6e 7e 25 00 01 ff 00 74
[ 1932.745001][    C0] RSP: 0018:ffffc90000006e38 EFLAGS: 00000246
[ 1932.745015][    C0] RAX: ffffffff89ddfeec RBX: ffff88805899aa83 RCX: ffff88802cff1e00
[ 1932.745027][    C0] RDX: 0000000000000100 RSI: ffff88805899aa80 RDI: 0000000000000000
[ 1932.745039][    C0] RBP: ffffc90000006f40 R08: ffffffff89ddff18 R09: ffffffff89d16ff7
[ 1932.745051][    C0] R10: 0000000000000004 R11: ffffffff89ddfec0 R12: ffffc90000006f40
[ 1932.745062][    C0] R13: 1ffff11041746325 R14: ffff88820ba318c0 R15: ffff88820ba31928
[ 1932.745074][    C0] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1932.745088][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1932.745099][    C0] CR2: 00000000200001c0 CR3: 000000000e734000 CR4: 00000000003526f0
[ 1932.745113][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1932.745123][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1932.745134][    C0] Call Trace:
[ 1932.745140][    C0]  <NMI>
[ 1932.745147][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 1932.745166][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1932.745189][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1932.745206][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1932.745227][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1932.745247][    C0]  ? nmi_handle+0x14f/0x5a0
[ 1932.745262][    C0]  ? nmi_handle+0x2a/0x5a0
[ 1932.745278][    C0]  ? __sanitizer_cov_trace_const_cmp8+0x8/0x90
[ 1932.745296][    C0]  ? default_do_nmi+0x63/0x160
[ 1932.745316][    C0]  ? exc_nmi+0x123/0x1f0
[ 1932.745333][    C0]  ? end_repeat_nmi+0xf/0x53
[ 1932.745349][    C0]  ? __pfx_nf_nat_ipv4_out+0x10/0x10
[ 1932.745366][    C0]  ? nf_hook_slow+0xd7/0x220
[ 1932.745384][    C0]  ? nf_nat_ipv4_out+0x58/0x4f0
[ 1932.745399][    C0]  ? nf_nat_ipv4_out+0x2c/0x4f0
[ 1932.745416][    C0]  ? __sanitizer_cov_trace_const_cmp8+0x8/0x90
[ 1932.745435][    C0]  ? __sanitizer_cov_trace_const_cmp8+0x8/0x90
[ 1932.745455][    C0]  ? __sanitizer_cov_trace_const_cmp8+0x8/0x90
[ 1932.745474][    C0]  </NMI>
[ 1932.745479][    C0]  <IRQ>
[ 1932.745484][    C0]  nf_nat_ipv4_out+0x58/0x4f0
[ 1932.745503][    C0]  ? __pfx_nf_nat_ipv4_out+0x10/0x10
[ 1932.745519][    C0]  nf_hook_slow+0xc3/0x220
[ 1932.745543][    C0]  ? __pfx_ip_finish_output+0x10/0x10
[ 1932.745564][    C0]  nf_hook+0x2c4/0x450
[ 1932.745583][    C0]  ? nf_hook+0x9e/0x450
[ 1932.745601][    C0]  ? __pfx_nf_hook+0x10/0x10
[ 1932.745621][    C0]  ? __pfx_ip_finish_output+0x10/0x10
[ 1932.745640][    C0]  ? ip_fast_csum+0x1f0/0x2b0
[ 1932.745661][    C0]  ip_output+0x185/0x230
[ 1932.745679][    C0]  ? __pfx_ip_finish_output+0x10/0x10
[ 1932.745700][    C0]  synproxy_send_client_synack+0x8b8/0xf30
[ 1932.745732][    C0]  ? __pfx_synproxy_send_client_synack+0x10/0x10
[ 1932.745754][    C0]  ? synproxy_pernet+0x45/0x270
[ 1932.745776][    C0]  nft_synproxy_eval_v4+0x3ca/0x610
[ 1932.745799][    C0]  ? __pfx_nft_synproxy_eval_v4+0x10/0x10
[ 1932.745820][    C0]  ? nf_ip_checksum+0x13a/0x500
[ 1932.745837][    C0]  nft_synproxy_do_eval+0x362/0xa60
[ 1932.745859][    C0]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[ 1932.745879][    C0]  ? validate_chain+0x11e/0x5920
[ 1932.745898][    C0]  ? __pfx_validate_chain+0x10/0x10
[ 1932.745918][    C0]  nft_do_chain+0x4ad/0x1da0
[ 1932.745938][    C0]  ? __pfx_nft_do_chain+0x10/0x10
[ 1932.745952][    C0]  ? __local_bh_enable_ip+0x168/0x200
[ 1932.745981][    C0]  ? __pfx_nf_nat_inet_fn+0x10/0x10
[ 1932.746000][    C0]  nft_do_chain_inet+0x418/0x6b0
[ 1932.746021][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[ 1932.746041][    C0]  ? ipt_do_table+0x312/0x1860
[ 1932.746069][    C0]  ? __pfx_nft_do_chain_inet+0x10/0x10
[ 1932.746088][    C0]  nf_hook_slow+0xc3/0x220
[ 1932.746107][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1932.746124][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1932.746141][    C0]  NF_HOOK+0x29e/0x450
[ 1932.746158][    C0]  ? NF_HOOK+0x9a/0x450
[ 1932.746173][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[ 1932.746190][    C0]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[ 1932.746210][    C0]  ? ip_rcv_finish+0x406/0x560
[ 1932.746227][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 1932.746244][    C0]  NF_HOOK+0x3a4/0x450
[ 1932.746259][    C0]  ? __lock_acquire+0x1384/0x2050
[ 1932.746280][    C0]  ? NF_HOOK+0x9a/0x450
[ 1932.746294][    C0]  ? __pfx_NF_HOOK+0x10/0x10
[ 1932.746308][    C0]  ? ip_rcv_core+0x801/0xd10
[ 1932.746325][    C0]  ? __pfx_ip_rcv_finish+0x10/0x10
[ 1932.746345][    C0]  ? __pfx_ip_rcv+0x10/0x10
[ 1932.746361][    C0]  __netif_receive_skb+0x2bf/0x650
[ 1932.746381][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1932.746401][    C0]  ? __pfx___netif_receive_skb+0x10/0x10
[ 1932.746418][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1932.746438][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1932.746458][    C0]  ? _raw_spin_lock_irq+0xdf/0x120
[ 1932.746483][    C0]  process_backlog+0x662/0x15b0
[ 1932.746504][    C0]  ? process_backlog+0x33b/0x15b0
[ 1932.746526][    C0]  ? __pfx_process_backlog+0x10/0x10
[ 1932.746549][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1932.746570][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1932.746592][    C0]  __napi_poll+0xcb/0x490
[ 1932.746611][    C0]  net_rx_action+0x89b/0x1240
[ 1932.746638][    C0]  ? __pfx_net_rx_action+0x10/0x10
[ 1932.746656][    C0]  ? __pfx_tmigr_handle_remote+0x10/0x10
[ 1932.746690][    C0]  handle_softirqs+0x2c5/0x980
[ 1932.746710][    C0]  ? do_softirq+0x11b/0x1e0
[ 1932.746729][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[ 1932.746751][    C0]  do_softirq+0x11b/0x1e0
[ 1932.746768][    C0]  </IRQ>
[ 1932.746773][    C0]  <TASK>
[ 1932.746780][    C0]  ? __pfx_do_softirq+0x10/0x10
[ 1932.746798][    C0]  ? __pfx_lockdep_softirqs_on+0x10/0x10
[ 1932.746817][    C0]  ? __pfx_lock_acquire+0x10/0x10
[ 1932.746838][    C0]  ? rcu_is_watching+0x15/0xb0
[ 1932.746855][    C0]  __local_bh_enable_ip+0x1bb/0x200
[ 1932.746873][    C0]  ? update_defense_level+0x122/0xcf0
[ 1932.746893][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 1932.746911][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1932.746930][    C0]  ? update_defense_level+0x122/0xcf0
[ 1932.746949][    C0]  ? update_defense_level+0x122/0xcf0
[ 1932.746968][    C0]  update_defense_level+0x8ec/0xcf0
[ 1932.746988][    C0]  ? update_defense_level+0x122/0xcf0
[ 1932.747007][    C0]  ? __pfx_update_defense_level+0x10/0x10
[ 1932.747030][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1932.747053][    C0]  ? process_scheduled_works+0x976/0x1850
[ 1932.747073][    C0]  defense_work_handler+0x22/0xd0
[ 1932.747092][    C0]  process_scheduled_works+0xa63/0x1850
[ 1932.747122][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1932.747144][    C0]  ? assign_work+0x364/0x3d0
[ 1932.747164][    C0]  worker_thread+0x870/0xd30
[ 1932.747186][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1932.747207][    C0]  ? __kthread_parkme+0x169/0x1d0
[ 1932.747228][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1932.747247][    C0]  kthread+0x2f0/0x390
[ 1932.747262][    C0]  ? __pfx_worker_thread+0x10/0x10
[ 1932.747280][    C0]  ? __pfx_kthread+0x10/0x10
[ 1932.747295][    C0]  ret_from_fork+0x4b/0x80
[ 1932.747314][    C0]  ? __pfx_kthread+0x10/0x10
[ 1932.747328][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1932.747353][    C0]  </TASK>