last executing test programs:

2m12.910527125s ago: executing program 2 (id=163):
r0 = socket(0xa, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f00000000c0)=0x1002, 0x4)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x2, 0x4e1c, @dev={0xac, 0x14, 0x14, 0x41}}, 0x10)
recvmsg(r0, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x2001)

2m12.026535535s ago: executing program 2 (id=166):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8c}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
getsockopt$bt_BT_CHANNEL_POLICY(r2, 0x112, 0x4, 0x0, &(0x7f00000000c0))

2m10.831205038s ago: executing program 2 (id=176):
syz_open_procfs(0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x12000, 0x0)
syz_usb_connect$uac1(0x3, 0xa2, &(0x7f0000000040)=ANY=[@ANYBLOB="12011001000000406b1d01014000010203010902900003010380000904000000010100000a24010f00030201020c2402060602040c0032a304090401000001020000090401010101020000072401200404000c2402010201400f0a3b4725090501090000f7090607250183020c0009040200000103000009040201"], 0x0)
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x2, 0x300)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

2m5.111803752s ago: executing program 2 (id=181):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, &(0x7f0000000000), &(0x7f0000000040)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

2m4.904849345s ago: executing program 2 (id=182):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1b5cb000)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
clock_gettime(0x0, &(0x7f0000000580)={<r3=>0x0, <r4=>0x0})
futex(&(0x7f00000000c0), 0x80, 0x0, &(0x7f00000005c0)={r3, r4+60000000}, 0x0, 0x2)

2m3.364119622s ago: executing program 2 (id=183):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10)
sendmmsg$inet(r0, 0x0, 0x0, 0x805)
socket(0x23, 0x80000, 0x3a)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x2)
bind$inet6(r1, 0x0, 0x0)
fcntl$setstatus(r1, 0x4, 0x2800)
connect$inet6(r1, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x4088080, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x0, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000032680)=""/102400, 0x19000)
faccessat(0xffffffffffffffff, 0x0, 0x108)
socket$inet6(0xa, 0x2, 0x3a)
setsockopt$inet6_int(r2, 0x29, 0x4e, &(0x7f0000000040)=0x1, 0xffffffc0)
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
r6 = syz_open_dev$sndpcmc(&(0x7f00000007c0), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HWSYNC(r6, 0x4122, 0x0)

1m57.484029128s ago: executing program 0 (id=193):
syz_mount_image$exfat(&(0x7f0000000240), &(0x7f00000005c0)='./file2\x00', 0x3000cd0, &(0x7f0000000440)=ANY=[], 0x1, 0x151a, &(0x7f0000003f40)="$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")
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000ac0)={0x0, 0x0, 0x0, 0x8, 0x200, 0x0, 0x0, 0x20, 0x11, "79820fde98abdd00b771eecbbba14da08fe8cfcf2d39005755e339df6e3474ee07e13a269fce2bb3dc5ed34394903821e81be586d9ee749d76a7285644943ebe", "ba646f857993f0c5787944d335671e614090022d722436df22213419a5999377aead1d59f9928abd899cc24fbe73d652739fc43c0e45ac5209ccdc91ae82cb81", "e461519b104962775f9527ad4d3ff4ad351f4bd845ffcfba9be710877453dd32", [0x1ce, 0x1]})
openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xa02200, 0x60)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000040)='./bus\x00', 0x4d0242, 0x145)

1m56.648001167s ago: executing program 0 (id=194):
r0 = syz_io_uring_setup(0xf02, &(0x7f0000000080)={0x0, 0xb49c, 0x1, 0x83, 0x3ae}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000440)=<r2=>0x0, &(0x7f0000000180))
syz_io_uring_modify_offsets$generic(r1, r2, 0x2c, 0x10000)
r3 = epoll_create(0x2)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000140)={0x10000000})
io_uring_enter(r0, 0x17f3, 0x4bb8, 0x6, 0x0, 0x0)

1m56.233930922s ago: executing program 0 (id=195):
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000014da2108ab1204000000000000010902240001b30000040904410c17ff5d810009050f1f05e13f000009058303", @ANYRESDEC], 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x72, 0x0)
ioctl$EVIOCSFF(r0, 0x40304580, &(0x7f0000000000)={0x51, 0xcd9b, 0x11d, {0x7ff, 0xcac}, {0x8004, 0x4}, @period={0x5a, 0x5360, 0xa0f, 0x3, 0x2, {0x3d, 0xff53, 0xcfd5, 0x6}, 0x0, 0x0}})

1m51.225130709s ago: executing program 0 (id=199):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f00000006c0)={[{@errors_remount}, {@sysvgroups}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000001000)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
open(&(0x7f0000000040)='./bus\x00', 0x400141042, 0x2a)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
chown(&(0x7f0000000080)='./file1\x00', 0x0, 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x14, 0xd, "ef359f413bb9386ff7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e7376b7a5ff537ed73ac58818d78c660e677df8dc905b90242b7c528a076d2f6a00400", "036c5bc6780820d1cbf7966d61fdcf335263bd9b0abdc2542ded71038259ca171ce1a311ef545032d71e14ef3dc177e9b48b001d00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x8]})
unlink(&(0x7f0000000100)='./file1\x00')

1m49.194428631s ago: executing program 0 (id=202):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x400000, 0x0, 0xfffffeb6, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})

1m48.682324857s ago: executing program 0 (id=203):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002a40)={[{@dmask={'dmask', 0x3d, 0x716}}, {@namecase}, {@dmask={'dmask', 0x3d, 0x6}}, {@gid={'gid', 0x3d, 0xee01}}, {@errors_remount}, {@gid}, {@keep_last_dots}, {@allow_utime={'allow_utime', 0x3d, 0xd}}, {@namecase}, {@uid={'uid', 0x3d, 0xee01}}], [{@obj_type={'obj_type', 0x3d, 'iocharset'}}, {@smackfsroot}, {@smackfsfloor={'smackfsfloor', 0x3d, 'm\x85\xbdHXI\xa6'}}]}, 0x1, 0x153b, &(0x7f0000000340)="$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")
getdents64(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=@newqdisc={0x434, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, 0x0, {0x3}, {}, {0x2, 0xfff1}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x408, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x16cc89b4, 0x200, 0x80, 0x10, 0x80000000, 0x4, 0x2, 0xffff6576, 0xd6a6, 0x9, 0x6, 0x9, 0x5, 0x1d, 0x3, 0x81, 0x7, 0x8, 0x8, 0x3f, 0x7, 0xfffffff7, 0x7fffffff, 0x1, 0x10001, 0xfffffff6, 0x5, 0x0, 0x80000001, 0x2, 0x1, 0x7, 0xb, 0x7, 0x0, 0x9bc100, 0x7, 0x999, 0x6, 0x4, 0xfe, 0x3, 0x8c1, 0xffff, 0x1, 0x9, 0x7fffffff, 0x2, 0x8, 0x4, 0x10000, 0x200, 0xe, 0x1, 0x0, 0x40, 0x7, 0xa5d8, 0x4, 0x6, 0x7000000, 0x3, 0x9, 0x4, 0x9, 0x0, 0x6, 0x9, 0x4, 0x80, 0x8, 0x10001, 0x6, 0x8, 0x200, 0x0, 0x7, 0x9, 0xffffffff, 0x100, 0x5, 0xff6, 0x35, 0x53, 0x7fffffff, 0x80000000, 0x200, 0x480000, 0x4, 0xfff, 0x6fd, 0x4, 0x3d4a3d97, 0xd4, 0x56, 0x7, 0x392a, 0x2, 0x2, 0x7, 0xe6, 0x7, 0x6, 0x8, 0xffff1362, 0x7, 0xe47a, 0x6, 0x6, 0x5, 0x9000000, 0x3, 0xc7, 0x708, 0x3, 0x0, 0x10, 0x9, 0x2, 0xd0, 0xffd, 0xf4, 0x432, 0x1ff, 0x401, 0x5, 0x97b2, 0x0, 0x1, 0x7, 0x6fa0, 0x1, 0xdc, 0x10001, 0x9, 0x6, 0x1cd7, 0x6, 0xfffffffd, 0x1, 0x1, 0x9, 0xc, 0x1, 0x10, 0x747, 0x2, 0xffffff25, 0x7, 0x2, 0x97, 0x3, 0x7de8, 0x2, 0x6, 0x5, 0x3, 0x10000, 0x0, 0xf, 0x101, 0x2, 0x200, 0x4, 0x1, 0x3, 0x3, 0x4, 0x1c000000, 0x9, 0x200, 0x3, 0xc, 0xb, 0x9, 0x8000, 0x101, 0x8, 0x0, 0x2, 0x7, 0x6ac, 0x5, 0x1, 0x8, 0x101, 0x1, 0x65, 0xfffffff6, 0x0, 0x9, 0x401, 0x0, 0x3, 0x3744, 0x28, 0x2, 0x7, 0xfff, 0x0, 0x563d, 0x7, 0x8, 0x6, 0xb6, 0x8, 0x6, 0x4d, 0x7fff, 0xff, 0x2, 0x4, 0x3, 0x7, 0x3, 0x8, 0x2, 0xff, 0x0, 0x1, 0x2, 0x3, 0x4, 0x5, 0x4, 0x0, 0x8, 0xd, 0xe, 0x2, 0x4, 0x6, 0x4, 0x0, 0x401, 0x2, 0x5, 0xfff, 0x96b4, 0x2, 0x92ed36b9, 0x8000, 0x40, 0x4, 0x9, 0x9, 0x0, 0x0, 0xf4, 0x5, 0x0, 0x7, 0x7, 0x2, 0x9f14, 0x2]}]}}]}, 0x434}, 0x1, 0x0, 0x0, 0x20008091}, 0x4000000)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
socket$inet6(0xa, 0x400000000001, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x2c, 0x0, [{0xeeee8000, 0x76, &(0x7f0000000180)=""/127}]})

1m48.034277464s ago: executing program 32 (id=203):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000002a40)={[{@dmask={'dmask', 0x3d, 0x716}}, {@namecase}, {@dmask={'dmask', 0x3d, 0x6}}, {@gid={'gid', 0x3d, 0xee01}}, {@errors_remount}, {@gid}, {@keep_last_dots}, {@allow_utime={'allow_utime', 0x3d, 0xd}}, {@namecase}, {@uid={'uid', 0x3d, 0xee01}}], [{@obj_type={'obj_type', 0x3d, 'iocharset'}}, {@smackfsroot}, {@smackfsfloor={'smackfsfloor', 0x3d, 'm\x85\xbdHXI\xa6'}}]}, 0x1, 0x153b, &(0x7f0000000340)="$eJzs3AucTlXXAPC19t5nDImnSS7D3nsdnuSyTZLkkiSXJEmSJLeEpEleSUgMIUlDEpLLkMQQksvEpHG/3y8JSdIkSUhuyf5+E37qrb73/b73/fL+vln/3+/87DXnrH3WedZznuecg/m269BaTWpXb0RE8C/BC38kAUAsAAwEgLwAEABA+bjycYAB5JSY9K/thP17PZh6pStgVxL3P3vj/mdv3P/sjfufvXH/szfuf/bG/c/euP+MZWebphW6hpfsu/x1z/+Bn///x+Hv//9HMsuM/XJNmeu6AcT8sync/+yN+///VvDPbMT9z964/9lV7JUugP0H4PM/O8jxp2u4/9kb95+x7OxKP3++0gtE/sNegyM5LzTmrzp+xhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGPsL3DaX6YA4NL4StfFGGOMMcYYY4yxfx+f40pXwBhjjDHGGGOMsf97CAIkKAggBnJALOSEXCAA4GrIA3khAtdAHFwL+eA6yA8FoCAUgngoDEVAgwELBCEUhWIQheuhONwAJaAklILS4KAMJMCNUBZugnJwM5SHW6AC3AoVoRJUhipwG1SF26Ea3AHV4U6oATWhFtSGu6AO3A114R6oB/dCfbgPGsD90BAegEbwIDSGh6AJPAxN4RFoBs2hBbSEVv+r/OehJ7wAvaA3JEEf6AsvQj/oDwPgJRgIL8MgeAUGw6uQDENgKLwGw+B1GA5vwAgYCaPgTRgNb8EYGAvjYDykwASYCG/DJHgHJsO7MAWmQipMg+nwHsyAmTAL3ofZ8AHMgbkwD+ZDGnwIC2AhpMNHsAg+hgxYDEtgKSyD5bACVsIqWA1rYC2sg/WwATbCJtgMW2ArbIPtsAM+gZ3wKeyC3bAHPoO98Pmv8gGSfunnf5d/6u/yuyEgoECBChXGYAzGYizmwlyYG3NjHsyDEYxgHMZhPsyH+TE/FsSCGI/xWASLoEGDhIRFsShGMYrFsTiWwBJYCkuhQ4cJmIBl8SYsh+WwPJbHClgBK2IlrIRVsApWxapYDathdayONbAG1sJaeBfehX2wLtbFelgP62P9S4+nsBE2wsbYGJtgE2yKTbEZNsMW2AJbYStsja2xDbbBdtgO22N77IAdMBETsSN2xE7YCTtjZ+yCXbArdsVu2B27Zz6fA/AFfAF7Yw3RB/tiX+yHyTkG4Ev4Er6Mg/AVfAVfxWQcgkPxNXwNX8fheBJH4EgchaOwqngLx+BYJDEeUzAFJ+JEnISTMKvQd3EqpuI0nI7TcQbOxJn4Ps7GD/ADnItzcT6mYRouwIWYjum4CE9hBi7GJbgUl+FyXIYrcRWuxDW4FtfgelyPG3EjbsbNuBW34nbcjp+gAsBPcTfuxmTci3txH+7D/bgfD+ABzMRMPIgH8RAewsN4GI/gETyKx/A4HsMTeAJP4ik8jafxLJ7Fc/hs/NeNPym5OhlEFiWUiBExIlbEilwil8gtcos8Io+IiIiIE3Ein8gn8ov8oqAoKOJFvCgiiggjjCARxgCAiIqoKC6KixKihCglSgknnEgQCaKsKCvKiXKivLhFVBC3ioqikmjrqogqoqpo56qJO0R1UV3UEDVFLVFb1BZ1RB1RV9QV9UQ9UV/UFw3E/aKh6IMD8EGR1ZkmYgg2FUOxmWgu5MVPsNZiOLYRbUU78bgYiSOwg2jtEsVToqMYg53E38RYfEZ0EeOxq3hOdBPdRQ/xvOgp2rheoreYjH1EXzEV+4n+YoB4SczAmuJ9nJ2zlnhVJIshYqh4TczH18Vw8YYYIUaKUeJNMVq8JcaIsWKcGC9SxAQxUbwtJol3xGTxrpgipopUMU1MF++JGWKmmCXeF7PFB2KOmCvmifkiTXwoFoiFIl18JBaJj0WGWCyWiKVimVguVoiVYpVYLdaItWKdWC82iI1ik9gstoitYpvYLnaIT8RO8anYJXaLPeIzsVd8LvaJL8R+8aU4IL4SmeJrcVB8Iw6Jb8Vh8Z04Ir4XR8UxcVz8IE6IH8VJcUqcFmfEWfGTOCd+FueFFyBRCimlkoGMkTlkrMwpc8mrZG4ZXHx1r5Fx8lqZT14n88sCsqAsJONlYVlEammklSRDWVQWk1F5vSwub5AlZElZSpaWTpaRCfJGWVbeJMvJm2V5eYusIG+VFWUlWVlWkbfJqvJ2CZEL+6gha8pasra8SybB3bKuvEfWk/fK+vI+2UDeLxvKB2Qj+aBsLB+STeTDsql8RDaTzWUL2VK2ko/K1vIx2Ua2le3k47K9fEJ2kE/KRPmU7Cj9xbfIM7KLfFZ2lc/JbrK77CF/luell71kbwl9QPaVL8p+sr8cEAsA8mU5SL4iB8tXZbIcIofK1+Qw+bocLt+QI+RIOUq+KUfLt+QYOVaOk+NlipwgJ8q35ST5jpws35VT5FSZKqfJAXLgLzPNkvIf5r/9B/mDf9n7RrlJbpZb5Fa5TW6XO+QncqfcKXfJXXKP3CP3yr1yn9wn98v98oA8IDNlpjwoD8pD8pA8LA/LI/KIPCqPyTPyB3lC/ihPylPylDwjz8qz8tzF1wAUKqGkUipQMSqHilU5VS51lcqtrlZ5VF4VUdeoOHWtyqeuU/lVAVVQFVLxqrAqorQyyipSoSqqiqmouh4vvmFUKVVaOVVGJagb/yf5qri6QZVQJX+Tf6m+pD+pr5VqpVqr1qqNaqPaqXaqvWqvOqgOKlElqo6qo+qkOqnOqrPqorqorqqr6qa6qR6qh+qpeqpeqpdKUkmqr3pR9VP91QD1khqoXlaD1CA1WA1WySpZDVVD1TA1TA1Xw9UINUKNUqPUaDVajVFj1Dg1TqWoFDVRTVST1CQ1WU1WU9QUlapS1XQ1Xc1QM9QsNUvNVrPVHDVHzVPzVJpKUwvUApWu0tUitUhlqMVqsVqqlqrlarlaqVaq1Wq1WqvWqvVqvcpQm9QmtUVtUdvUNrVD7VA71U61S+1Se9QetVftVfvUPrVf7VcH1AGVqTLVQXVQHVKH1GF1WB1RR9RRdVQdV8fVCXVCnVQn1Wl1Wp1VZ9U5dU6dV+ezLvsCEYhABSqICWKC2CA2yBXkCnIHuYM8QZ4gEkSCuCAuyBdcF+QPCgQFg0JBfFA4KBLowAQ2EBebHg2uD4oHNwQlgpJBqaB04IIyQUJwY1A2uCkoF9wclA9uCSoEtwYVg0pB5aBKcFtQNbg9qBbcEVQP7gxqBDWDWkHt4K6gTnB3UDe4J6gX3BvUD+4LGgT3Bw2DB4JGwYNB4+ChoEnwcNA0eCRoFjQPWgQtg1b/4vxZp/zl+b0/WeAx10v31km6j+6rX9T9dH89QL+kB+qX9SD9ih6sX9XJeogeql/Tw/Trerh+Q4/QI/Uo/aYerd/SY/RYPU6P1yl6gp6o39aT9Dt6sn5XT9FTdaqepqfr9/QMPVPP0u/r2foDPUfP1fP0fJ2mP9QL9EKdrj/Si/THOkMv1kv0Ur1ML9cr9Eq9Sq/Wa/RavU6v1xv0Rr1Jb9Zb9Fa9TW/XO/Qneqf+VO/Su/Ue/Zneqz/X+/QXer/+Uh/QX+lM/bU+qL/Rh/S3+rD+Th/R3+uj+pg+rn/QJ/SP+qQ+pU/rM/qs/kmf0z/r89pnXdxnfb0bZZSJMTEm1sSaXCaXyW1ymzwmj4mYiIkzcSafyWfym/ymoClo4k28KWKKmCxkyBQ1RU3URE1xU9yUMCVMKVPKOONMgkkwZU1ZU86UM+VNeVPBVDAVTUVT2VQ2t5nbzO3mdnOHucPcae40NU1NU9vUNnVMHVPX1DX1TD1T39Q3DUwD09A0NI1MI9PYNDZNTBPT1DQ1zUwz08K0MK1MK9PatDZtTBvTzrQz7U1708F0MIkm0XQ0HU0n08l0Np1NF9PFdDVdTTfTzfQwPUxP09P0Mr1MkkkyfU1f08/0MwPMADPQDDSDzCAz2Aw2ySbZDDVDzTAzzAw3w80IM9KMyrpQNW+ZMWasGWfGmxSTYiaaiWaSmWQmm8lmipliUk2qmW6mmxlmhpllZpnZZraZY+aYeWaeSTNpZoFZYNJNullkFpkMk2GWmCVmmVlmVpgVZpVZZdaYNWYdrDMbzAazyWwyW8wWs81sMzvMDrPT7DS7zC6zx+wxe81es8/sM/vNfnPAHDCZJtMcNAfNIXPIHDaHzRFzxBw1R81xc9ycMCfMSXPSnDanzVlT4OL3pTexNqfNZa+yue3VNo/Na/8+LmgL2Xhb2Bax2ua3BX4TG2ttCVvSlrKlrbNlbIK98XdxRVvJVrZV7G22qr3dVvtdXMfebevae2w9e6+tbe/6TVzf3mcb2IdtQ0QA29w2ti1tE/uwbWofsc1sc9vCtrTt7RO2g33SJtqnbEf79O/iBXahXWVX2zV2rd1ld9vT9ow9ZL+1Z+1PtpftbQfal+0g+4odbF+1yXbI7+JR9k072r5lx9ixdpwd/7t4ip1qU+00O92+Z2fYmb+L0+yHdrZNt3PsXDvPzv8lzqop3X5kF9mPbYYNYIldapfZ5XaFXXmpVp/Xrrcb7Ea7035qt9itdpvdbndcuhC2u+0e+5ndaz+3B+03dr/90h6wh22m/fqXOOv4Dtvv7BH7vT1qj9nj9gd7wv6oLmVnHfsP9md73noLhAQkSVFAMZSDYikn5aKrKDddTXkoL0XoGoqjaykfXUf5qQAVpEIUT4WpCGkyZIkopKJUjKJ0PV0qrxSVJkdlKIFupLJ0E5Wjm6k83UIV6FaqSJWoMlWh26gq3U7V6A6qTndSDapJtag23UV16G6qS/dQPbqX6tN91IDup4b0ADWiB6kxPURN6GFqSo9QM2pOLagltaJHqTU9Rm2oLbWjx6k9PUEd6ElKpKeoIz1Nnehv1JmeoS70LHWl56gbdace9Dz1pBeoF/WmJOpDfelF6kf9aQC9RAPpZRpEr9BgepWSaQgNpddoGL1Ow+kNGkEjaRS9SaPpLRpDY2kcjacUmkAT6W2aRO/QZHqXptBUSqVpNJ3eoxk0k2bR+zSbPqA5NJfm0XxKow9pAS2kdPqIFtHHlEGLaQktpWW0nFbQSlpFq2kNraV1tJ420EbaRJtpC22lbbSddtAntJM+pV20m/bQZ7SXPqd99AXtpy/pAH1FmfQ1HaRv6BB9S4fpO9+bvqejdIyO0w90gn6kk3SKTtMZOks/0Tn6mc6TJwgxFKEMVRiEMWGOMDbMGeYKrwpzh1eHecK8YSS8JowLrw3zhdeF+cMCYcGwUBgfFg6LhDo0oQ0pDMOiYbEwGl4fFg9vCEuEJcNSYenQhWXChPDGsGx4U1guvDksH94SVghvDSuGlcKH760S3hZWDW8Pq4V3hNXDO8MaYc2wVlg7vCusE94d1g3vCeuF94blwvvCBuH9YcPwgbBR+GDYOHwobBI+HDYNHwmbhc3DFmHLsFX4aNg6fCxsE7YN24WPh+3DJ8IO4ZNhYvhU2DF8+pf19y388/VJYZ+wb/hi+GLo/T1yXnR+NC36YXRBdGE0PfpRdFH042hGdHF0SXRpdFl0eXRFdGV0VXR1dE10bXRddH10Q3Rj1PvaOcChE0465QIX43K4WJfT5XJXudzuapfH5XURd42Lc9e6fO46l98VcAVdIRfvCrsiTjvjrCMXuqKumIu6611xd4Mr4Uq6Uq60c66MS3AtXSvXyrV2j7k2rq1r5x53j7sn3BPuSfeke8p1dE+7Tu5vrrN7xnVxz7pn3XOum+vuerjnXU83Ic+FczLJ9XV9XT/Xzw1wA9xAN9ANcoPcYDfYJbtkN9QNdcPcMDfcDXcj3Ag3yo1yo91oN8aNcePcOJfiUtxEN9FNcpPcZDfZTXFTXKpLddPddDfDzXBVZ17Yyxw3x81z81yaS3MLXNY1Y7pb5Ba5DJfhlrglbplb5la4FW6VW+XWuDVunVvnNrgNbpPb5La4LW6b2+Z2uB1up9vpdvm8FyZ1e90+t8/td/vdAfeVy3Rfu4PuG3fIfesOu+/cEfe9O+qOuePuB3fC/ehOulPutDvjzrqf3Dn3szvvvEuJTIhMjLwdmRR5JzI58m5kSmRqJDUyLTI98l5kRmRmZFbk/cjsyAeROZG5kXmR+ZG0yIeRBZGFkfTIR5FFkY8jGZHFkSWRpZFlkeUR7wtvCX1RX8xH/fW+uL/Bl/AlfSlf2jtfxif4G31Zf5Mv52/25f0tvoK/1Vf0lXxl/4hv5pv7Fr6lb+Uf9a39Y76Nb+vb+cd9e/+E7+Cf9In+Kd/RP+07+b/5zv4Z38U/67v653w339338M/7nv4F38v39km+j+/rX/T9fH8/wL/kB/qX/SD/ih/sX/XJfogf6l/zw/zrfrh/w4/wI/2omDf96Eu3yDDep/gJfqJ/20/y7/jJ/l0/xU/1qX6an+7f8zP8TD/Lv+9n+w/8HD/Xz/PzfZr/0C/wC326/8gv8h/7DL/40kNlv8Kv9Kv8ar/Gr/Xr/Hq/wW/0m/xmv8Vv9dv8dr/Df+J3+k/9Lr/b7/Gf+b3+c7/Pf+H3+y/9Af+Vz/Rf+4P+G3/If+sP++/8Ef+9P+qP+eP+B3/C/+hP+lP+tD/jz/qf/Dn/sz/P/2eNMcYYY+yfMuHyUPx2zYXH+X3+IEf8auO+AHD11kKZv16fdUW5Lv+FcX8R3z4CAE/17vrgpaVGjaSkpIvbZkgIis0FuPQ3QVli4HK8GNrBE5AIbaHsH9bfX3Q/S/9g/ugtALl+lRMLl+PL838BgEl/MP+jj49aUCE8HfffzD8XoESxyzk54XK8GNr98nylLZT7k/oLtP6T+vHi/Dm/TAFo86uc3HA5vlx/AjwGT0Pib7ZkjDHGGGOMMcYu6C8qd750/3npX3z+0f15vLqckwMux//o/pwxxhhjjDHGGGNX3jPdezz5aGJi287/80G1/1XWPz1oCv9XM/PgDwfeA1z6iQKAf3FCgKyB/CuPYvNfsq/ki6fO369adsYH8J/Ryn/H4Ap/MDHGGGOMMcb+7S5f9P/25+pKFcQYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjGVDf8WvE7vSx8gYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4xdaf8VAAD//3aq+3A=")
getdents64(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=@newqdisc={0x434, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, 0x0, {0x3}, {}, {0x2, 0xfff1}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x408, 0x2, [@TCA_TBF_PTAB={0x404, 0x3, [0x16cc89b4, 0x200, 0x80, 0x10, 0x80000000, 0x4, 0x2, 0xffff6576, 0xd6a6, 0x9, 0x6, 0x9, 0x5, 0x1d, 0x3, 0x81, 0x7, 0x8, 0x8, 0x3f, 0x7, 0xfffffff7, 0x7fffffff, 0x1, 0x10001, 0xfffffff6, 0x5, 0x0, 0x80000001, 0x2, 0x1, 0x7, 0xb, 0x7, 0x0, 0x9bc100, 0x7, 0x999, 0x6, 0x4, 0xfe, 0x3, 0x8c1, 0xffff, 0x1, 0x9, 0x7fffffff, 0x2, 0x8, 0x4, 0x10000, 0x200, 0xe, 0x1, 0x0, 0x40, 0x7, 0xa5d8, 0x4, 0x6, 0x7000000, 0x3, 0x9, 0x4, 0x9, 0x0, 0x6, 0x9, 0x4, 0x80, 0x8, 0x10001, 0x6, 0x8, 0x200, 0x0, 0x7, 0x9, 0xffffffff, 0x100, 0x5, 0xff6, 0x35, 0x53, 0x7fffffff, 0x80000000, 0x200, 0x480000, 0x4, 0xfff, 0x6fd, 0x4, 0x3d4a3d97, 0xd4, 0x56, 0x7, 0x392a, 0x2, 0x2, 0x7, 0xe6, 0x7, 0x6, 0x8, 0xffff1362, 0x7, 0xe47a, 0x6, 0x6, 0x5, 0x9000000, 0x3, 0xc7, 0x708, 0x3, 0x0, 0x10, 0x9, 0x2, 0xd0, 0xffd, 0xf4, 0x432, 0x1ff, 0x401, 0x5, 0x97b2, 0x0, 0x1, 0x7, 0x6fa0, 0x1, 0xdc, 0x10001, 0x9, 0x6, 0x1cd7, 0x6, 0xfffffffd, 0x1, 0x1, 0x9, 0xc, 0x1, 0x10, 0x747, 0x2, 0xffffff25, 0x7, 0x2, 0x97, 0x3, 0x7de8, 0x2, 0x6, 0x5, 0x3, 0x10000, 0x0, 0xf, 0x101, 0x2, 0x200, 0x4, 0x1, 0x3, 0x3, 0x4, 0x1c000000, 0x9, 0x200, 0x3, 0xc, 0xb, 0x9, 0x8000, 0x101, 0x8, 0x0, 0x2, 0x7, 0x6ac, 0x5, 0x1, 0x8, 0x101, 0x1, 0x65, 0xfffffff6, 0x0, 0x9, 0x401, 0x0, 0x3, 0x3744, 0x28, 0x2, 0x7, 0xfff, 0x0, 0x563d, 0x7, 0x8, 0x6, 0xb6, 0x8, 0x6, 0x4d, 0x7fff, 0xff, 0x2, 0x4, 0x3, 0x7, 0x3, 0x8, 0x2, 0xff, 0x0, 0x1, 0x2, 0x3, 0x4, 0x5, 0x4, 0x0, 0x8, 0xd, 0xe, 0x2, 0x4, 0x6, 0x4, 0x0, 0x401, 0x2, 0x5, 0xfff, 0x96b4, 0x2, 0x92ed36b9, 0x8000, 0x40, 0x4, 0x9, 0x9, 0x0, 0x0, 0xf4, 0x5, 0x0, 0x7, 0x7, 0x2, 0x9f14, 0x2]}]}}]}, 0x434}, 0x1, 0x0, 0x0, 0x20008091}, 0x4000000)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
socket$inet6(0xa, 0x400000000001, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x2c, 0x0, [{0xeeee8000, 0x76, &(0x7f0000000180)=""/127}]})

1m47.968554275s ago: executing program 33 (id=183):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x0, 0x0}, 0x10)
sendmmsg$inet(r0, 0x0, 0x0, 0x805)
socket(0x23, 0x80000, 0x3a)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x2)
bind$inet6(r1, 0x0, 0x0)
fcntl$setstatus(r1, 0x4, 0x2800)
connect$inet6(r1, 0x0, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x4088080, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x0, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x400000bce)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000032680)=""/102400, 0x19000)
faccessat(0xffffffffffffffff, 0x0, 0x108)
socket$inet6(0xa, 0x2, 0x3a)
setsockopt$inet6_int(r2, 0x29, 0x4e, &(0x7f0000000040)=0x1, 0xffffffc0)
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
r6 = syz_open_dev$sndpcmc(&(0x7f00000007c0), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HWSYNC(r6, 0x4122, 0x0)

1m45.659473561s ago: executing program 3 (id=210):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
close(r0)
syz_mount_image$fuse(0x0, 0x0, 0x800, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xa, 0x1, 0x2002, 0x6, 0x0, 0x1, 0xcaff}, 0x50)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x8c, &(0x7f0000000840)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

1m44.208034957s ago: executing program 3 (id=213):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x5)
r0 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0xd, @local, 0x9}, 0x1c)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000001cc0))
preadv2(r0, &(0x7f0000000440)=[{0x0}, {&(0x7f0000000340)=""/229, 0xe5}], 0x2, 0xdf49, 0x7fffffff, 0x6)
r2 = syz_open_procfs(0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0xc0686611, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1a, 0x4, 0x6, 0x1, 0x20}, 0x50)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x800)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000007700), 0x0, 0x40000fe0, 0x0)

1m43.374257517s ago: executing program 3 (id=214):
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file1\x00', 0x200000, &(0x7f0000000000)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x47, 0xc11, &(0x7f0000000d00)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, &(0x7f0000000400)={'\x00', 0x2, 0x178, 0x4, 0x6, 0x9a, <r0=>0x0})
prctl$PR_SCHED_CORE(0x3e, 0x2000000000000001, r0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r2, 0x29, 0x2, &(0x7f0000000280)=0x1b0, 0x4)
setsockopt$inet6_int(r2, 0x29, 0x42, &(0x7f0000000300)=0xf2b, 0x4)
getsockopt$inet6_buf(r2, 0x29, 0x6, 0xfffffffffffffffd, &(0x7f0000000080)=0xa4)

1m41.869947994s ago: executing program 3 (id=215):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000280)='./bus\x00', 0x1200840, &(0x7f0000000100)=ANY=[@ANYBLOB="757466383d312c636865636b3d7374726963742c73686f72746e616d653d6d697865642c6e6f6e756d7461696c3d302c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c696f636861727365743d73703836322c696f636861727365743d63703433372c73686f72746e616d653d77696e39352c756e695f786c6174653d312c756e695f786c6174653d302c757466383d302c756e695f786c6174653d302c003c24d06816418f4be78ed4fbfe47efc82f966a602a8db43ad053c978bbd3501706515140ef63c2a58653ced497550b22917b09702604bc162c57e05beec5bb0c11fc2f9238b25e4527e24bab534e9ba458d92a597c3fee89f57053a4a1535771c9877b3ab101fb26937779cff75a95a296fafddf11280fafeb9bd5f2da4a88b43f3e4d5b4fb9b81300b11a9aed1f659d88f914548fba990603b0d4f14adda86d459c62701d3d6f007c7e50da9608a03eff5843f6739a8ec5ff33791394a5c075018b5d92bbd7d9874589f3561fbdfc44653bb6"], 0x3, 0x394, &(0x7f0000000700)="$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")
creat(&(0x7f00000004c0)='./bus\x00', 0x14c)
mount(&(0x7f0000000480)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x801400, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x44c00, 0xe898d2275f586997)
preadv2(r0, &(0x7f0000000980)=[{&(0x7f0000001200)=""/4096, 0xffffffa4}], 0x1, 0x8000, 0x9, 0x1b)

1m39.287892523s ago: executing program 3 (id=217):
timer_create(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setparam(r0, &(0x7f00000006c0)=0x4)
r3 = msgget$private(0x0, 0x4)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001c00)=ANY=[@ANYRES16, @ANYBLOB="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"/1048], 0x428}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
msgctl$MSG_STAT(r3, 0xb, 0x0)

1m33.487725168s ago: executing program 3 (id=220):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x5)
r0 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0xd, @local, 0x9}, 0x1c)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000001cc0))
preadv2(r0, &(0x7f0000000440)=[{0x0}, {&(0x7f0000000340)=""/229, 0xe5}], 0x2, 0xdf49, 0x7fffffff, 0x6)
r2 = syz_open_procfs(0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0xc0686611, &(0x7f0000000300)={0x0, 0x0, 0x2, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x800)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000007700), 0x0, 0x40000fe0, 0x0)

1m33.086889202s ago: executing program 34 (id=220):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x5)
r0 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0xd, @local, 0x9}, 0x1c)
ioctl$sock_inet6_tcp_SIOCOUTQNSD(r1, 0x894b, &(0x7f0000001cc0))
preadv2(r0, &(0x7f0000000440)=[{0x0}, {&(0x7f0000000340)=""/229, 0xe5}], 0x2, 0xdf49, 0x7fffffff, 0x6)
r2 = syz_open_procfs(0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0xc0686611, &(0x7f0000000300)={0x0, 0x0, 0x2, 0x2000, &(0x7f0000ffd000/0x2000)=nil})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x800)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000007700), 0x0, 0x40000fe0, 0x0)

7.739849162s ago: executing program 1 (id=400):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

7.700633803s ago: executing program 4 (id=401):
r0 = getpid()
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
mremap(&(0x7f00003ef000/0x3000)=nil, 0x3000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)

6.769517343s ago: executing program 1 (id=404):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='children\x00')
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ppoll(&(0x7f0000000300)=[{0xffffffffffffffff, 0x4236}], 0x1, 0x0, 0x0, 0x0)
connect$llc(0xffffffffffffffff, 0x0, 0x0)
bind$llc(0xffffffffffffffff, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300), 0x2, 0x4}}, 0x20)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
ioctl$DRM_IOCTL_INFO_BUFS(0xffffffffffffffff, 0xc0106418, &(0x7f000001b700)={0xb364, 0x5, 0x4, 0x8, 0x4, 0x2})
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
pread64(0xffffffffffffffff, &(0x7f0000000080)=""/102356, 0x18fd4, 0xc2a)
socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
lseek(r0, 0x9, 0x1)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r2, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0xd2af, 0x18000000, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)
syz_usb_connect(0x2, 0x56, &(0x7f0000000100)=ANY=[@ANYBLOB="1201000084a48e08d112f74247aa000000010902"], 0x0)
r3 = socket$inet(0xa, 0x801, 0x84)
getsockopt$IPT_SO_GET_INFO(r3, 0x29, 0x40, &(0x7f0000000140)={'filter\x00', 0x0, [0x8, 0x4de, 0x7, 0x4, 0x4]}, &(0x7f0000000000)=0x54)

6.16049132s ago: executing program 4 (id=406):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_HOOK_DEV={0x14, 0x3, 'veth1_macvtap\x00'}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}]}], {0x14}}, 0x9c}}, 0x0)

4.598652128s ago: executing program 6 (id=409):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x101100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="48000000150081fb7059ae08060c04000aff0f11000000040011018701546fabca1b4e7d06a6bd7c493872f750375ed0", 0x30}], 0x1}, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000016000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, 0x0}], 0x1, 0x4e, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x0, 0xd000})
syz_emit_ethernet(0x3e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0f7f"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4.567893878s ago: executing program 4 (id=410):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_DROP_MASTER(r0, 0x641f)
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x3, 0x1, 0x2, 0x1200, {0x8, 0x5, 0x5, 0x4, 0x8000, 0x7, 0x0, 0x8, 0xb, 0xfffc, 0x9, 0x80060b, 0x5, 0xffff, "6f4f1b1330d057b30bd15586b7445443c528ffff00009c2cd5ae7297dceeb0be"}})

4.299910411s ago: executing program 4 (id=412):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000200)='/proc/bus/input/devices\x00', 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000540)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

4.085903264s ago: executing program 6 (id=414):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioprio_set$uid(0x3, 0x0, 0x0)
quotactl$Q_SYNC(0xffffffff80000100, 0x0, 0x0, 0x0)

3.967932195s ago: executing program 5 (id=415):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000240)='/proc/bus/input/handlers\x00', 0x1800, 0x0)
read$FUSE(r0, &(0x7f0000000680)={0x2020}, 0x2020)
pread64(r0, &(0x7f0000000580)=""/198, 0xc6, 0x10000)

3.829615466s ago: executing program 6 (id=416):
syz_open_dev$evdev(&(0x7f0000000000), 0x3, 0x100)
fsopen(&(0x7f0000000080)='qnx4\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
ioprio_get$pid(0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x28383, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000000)='/dev/comedi4\x00', 0x20080, 0x0)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
epoll_create1(0x0)
syz_io_uring_setup(0x2, &(0x7f0000000580)={0x0, 0x8b2, 0x13500, 0x0, 0x304}, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000240)={0x0, 0x0, 0x7, 0x20000000080, 0x0, 0x4, 0x4, 0x7}, 0x0, &(0x7f00000002c0)={0x3ff, 0x400, 0xffffffffffffffff, 0x6, 0x4, 0xf, 0x4000000007d5}, 0x0, 0x0)

3.818751206s ago: executing program 5 (id=417):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000003b40)=[{{0x0, 0x0, &(0x7f00000009c0)=[{&(0x7f00000002c0)="f973085a6ea39ea1b25a1c6b351e11245900557d1c8e9f86bae5e5c64e50ef25afb0295d0c303850b4bff4d088bf9df67e013836e2882dad3f7698b52997f7efa9", 0x41}, {0x0}, {&(0x7f0000000780)}, {&(0x7f0000000900)="a9be9b2ff3a19d5a1226e5243d37d1fd2894c1ae880dc2316aa2d5ad08944c7135eb837eff354282dd5863c051eb7b9b17be0e4fdd6560f3f2", 0x39}, {&(0x7f00000000c0)}], 0x5}}, {{&(0x7f0000000a40)=@alg={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha256\x00'}, 0x80, &(0x7f0000000600)=[{0x0}, {&(0x7f0000000580)}], 0x2, &(0x7f0000000cc0)=[@mark={{0x14, 0x1, 0x24, 0x9a9}}, @txtime={{0x18, 0x1, 0x3d, 0x2}}], 0x30}}, {{&(0x7f0000000d80)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e23, @local}, 0x2, 0x3, 0x1, 0x3}}, 0x80, 0x0}}], 0x3, 0x20000044)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vlan1\x00'})
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

2.68074245s ago: executing program 1 (id=418):
socket(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x800)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r1 = socket(0x10, 0x80002, 0x0)
r2 = userfaultfd(0x80001)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002005000000", @ANYRES32=r2], 0x44}}, 0x2200c810)

2.63603928s ago: executing program 5 (id=419):
timer_create(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setparam(r0, &(0x7f00000006c0)=0x4)
r3 = msgget$private(0x0, 0x4)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001c00)=ANY=[@ANYRES16, @ANYBLOB="05002abd7000fddbdf2501000000060006004e24000004040880bc00008024000100d1732899f611cd8994034d7f413dc957630e5493c285aca40065cb6311be696b240001000000000000000000000000000000000000000000000000000000000000000000200004000a004e2000000001ff01000000000000000000000000000102000000240002001171ee8da334a5099295af229a5d237a7f4102f01f28b34347d6cbbe135d83ec24000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c08000300070000004c02008024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff2402098058000080060001000200000041000200ac1e00010500030001000000060001000a00000014000200000000000000000000000000000000010500030000000000060001000200000008000200ffffffff050003000100000064000080060001000a00000014000200000000000000000000000000000000010500030002000000060001000200000008000200ac1414bb0500030002000000060001000a00000014000200000000000000000000000000000000010500030002000000dc000080060001000a0000001400020000000000000000000000ffffac1414aa05000300030000000600010002000000080002000a01010205000300020000000600010002000000080002007f00000105000300000000000600010002000000080002000a0101010500030003000000060001000200000008000200e00000010500030003000000060001000a00000014000200fc0100000000000000000000000000000500030001000000060001000200000008000200640101000500030000000000060001000200000008000200ac1e0101050003000200000088000080060001000a00000014000200fe8000000000000000000000000000aa0500030001000000060001000200000008000200ac1414aa0500030002000000060001000a00000014000200fe8800000000000000000000000001010500030002000000060001000a00000014000200ff020000000000000000000000000001050003000200000064000080080003000000000008000a000100000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b459b3922080003000300000024000200379aa288b2244a5b504ba04bea45625d328fb93b62e607a1b2e4da2f7f76a5499400008024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c080003000400000024000100f44da367a88ee6564f020211456727082f5cebee8b1bf5eb7337341b45", @ANYRES32], 0x428}, 0x1, 0x0, 0x0, 0x4000}, 0x40)
msgctl$MSG_STAT(r3, 0xb, 0x0)

2.630529s ago: executing program 6 (id=420):
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff}, 0x4800)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a64000000060a0b0400000000000000000200fffe38000480340001800b0001006e756d67656e00002400028008000440000010000800024000000007080003400000000008000140000000030900010073797a30000000000900020073797a320000000014000000110001"], 0x8c}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.452290322s ago: executing program 1 (id=421):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x0, 0x5, 0xfffffffc}, 0x28)
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, 0x0)
r1 = socket(0x2, 0x3, 0x6)
bind$inet(r1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
get_mempolicy(0x0, 0x0, 0xffffffff, &(0x7f0000961000/0x4000)=nil, 0x2)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x50)
prctl$PR_SET_SECCOMP(0x16, 0x1, &(0x7f0000000080)={0x0, &(0x7f0000000200)})
creat(0x0, 0x122)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000180)={0x1, 0x58, &(0x7f0000000100)}, 0x10)
openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r3, {0x2, 0x0, @multicast1}, 0x2}}, 0x2e)
syz_open_dev$radio(&(0x7f00000000c0), 0xffffffffffffffff, 0x2)
syz_open_dev$vbi(&(0x7f0000000040), 0x0, 0x2)

2.287866724s ago: executing program 6 (id=422):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x8080}, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x802}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c0000005e0001"], 0x1c}}, 0x4008074)

1.369745954s ago: executing program 5 (id=423):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000100000c02000000000000000000000d0000000000005f"], 0x0, 0x34}, 0x20)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000100)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xc, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f00000000c0)={0x7, 0x1}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)

1.322477905s ago: executing program 1 (id=424):
r0 = openat$random(0xffffffffffffff9c, &(0x7f0000000080), 0x482, 0x0)
ioctl$RNDADDENTROPY(r0, 0x40085203, &(0x7f00000000c0)={0x5, 0x6, "68494c2c4ecd"})

1.271000345s ago: executing program 4 (id=425):
r0 = syz_open_dev$sndpcmp(&(0x7f0000000340), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_PARAMS(r0, 0xc2604110, &(0x7f0000000600)={0x0, [[0x9, 0x5, 0x0, 0x9], [0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x2, 0x80000000]], '\x00', [{}, {}, {}, {}, {}, {}, {}, {0x40000, 0xfffffffc}, {0x0, 0xffffffff}], '\x00', 0x0, 0x0, 0x0, 0x2})

1.179777256s ago: executing program 6 (id=426):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x3, &(0x7f0000000000)=[{0x28, 0x2, 0xfd, 0x5ae8}, {0x20, 0x7f, 0x4, 0xffffe038}, {0x6, 0x0, 0x6, 0x7}]}, 0x10)
sendmmsg$inet(r0, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000340)="2ec9f3b3c83702fe77d7138889a9690ed58c0ce9ecebf408c615b3542d7c5c5b407e2f54bc26a89ae89dd2a8b7f15739414a9bf11330c0403c572187924c487c56dd79452535da58976c62c26d993340a58729770159bfcaf8fd224750ca2519ba66df802acea01482be94f7295dc77dd68da407753442ab92fea3e11414064fc1b4e49f888c23ac25d52b6d9d5a6dc92f7e4470f8ccd38aeb3e295ecfa6a1dcb4da42de73463feb60f7472fc10b4c26567fe46fd799787c6cf7330a64a8e93ca8e05e1986387f885d1ffb466365b19e06314adecd57455ec808f2686dc4a78bc3eeef", 0xe3}, {&(0x7f0000000440)="cb9cb421edbfd3a3549053a13a4ecaa732d72f3791ffb480dcc22c810ed58925904acbf3519d7bc00a30d7f3354f76c56be974c8d5b4236635a48f670d822421be8606454c4970873525965fb1360acfd560f28f52d2401ec8bd54085e7f344e67698b2f656090cb6bfd386139028502cdb942263c5e6ef02389f4507ff2cb41ae94ef58aac17a4e9f5ea3a57935ef019bb4a32dcbd8519f87e7b0b8e171936dd5952500b35b5e9885", 0xa9}], 0x2}}], 0x1, 0x805)
socket(0x23, 0x80000, 0x3a)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r2, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r2, 0x2)
bind$inet6(r1, 0x0, 0x0)
fcntl$setstatus(r1, 0x4, 0x2800)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0xfff}, 0x1c)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000032680)=""/102400, 0x19000)
faccessat(0xffffffffffffffff, 0x0, 0x108)
r5 = socket$inet6(0xa, 0x2, 0x3a)
setsockopt$inet6_int(r2, 0x29, 0x4e, &(0x7f0000000040)=0x1, 0xffffffc0)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e23, 0xfffffffc, @remote, 0x4}, 0xfffffd45)
open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
r6 = syz_open_dev$sndpcmc(&(0x7f00000007c0), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HWSYNC(r6, 0x4122, 0x0)

1.113650917s ago: executing program 5 (id=427):
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000000)={0xc, {"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", 0x1000}}, 0x1006)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
getsockopt$sock_int(r0, 0x1, 0x29, 0x0, &(0x7f00000002c0))

1.052377908s ago: executing program 4 (id=428):
sendmsg$MPTCP_PM_CMD_GET_LIMITS(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0xffffffffffffffb4, 0x0, 0x1, 0x0, 0x0, 0x41}, 0x809d)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000499000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000180)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473f61366b9800000c00f320f300f20e06635800000000f22e02b6aa6c8", 0x4a}], 0x1, 0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004840}, 0x14)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f00000004c0)=""/81, 0x51}, {&(0x7f0000000540)=""/22, 0x16}], 0x2}, 0x40)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x0, 0x0, &(0x7f0000000000)='GPL\x00', 0x2a7, 0x0, 0x0, 0x41100, 0x24, '\x00', 0x0, 0x0, r2, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

400.649195ms ago: executing program 1 (id=429):
write$dsp(0xffffffffffffffff, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f00000000c0))
r0 = signalfd4(0xffffffffffffffff, &(0x7f0000000000)={[0xfffffffffffffffb]}, 0x8, 0x0)
readv(r0, &(0x7f00000001c0)=[{0x0}, {&(0x7f0000001800)=""/4104, 0x1008}], 0x2)
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x4000000000001, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = mq_open(0x0, 0x6e93ebbbcc0884f2, 0x2, &(0x7f0000000300)={0x0, 0x1, 0x6})
mq_timedsend(r2, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r2, 0x0, 0x0, 0xff7f000000000000, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000500)={&(0x7f00000005c0)=ANY=[@ANYBLOB="9feb010018000000000000004c0000004c0000000200000000000000000000030000000002000000020000000000000000000000000000010500"], 0x0, 0x66, 0x0, 0x1}, 0x28)

0s ago: executing program 5 (id=430):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x40000002005, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000140)={0x7, 0x1, 0x2})
ioctl$vim2m_VIDIOC_PREPARE_BUF(r0, 0xc058565d, &(0x7f0000002dc0)=@userptr={0x2, 0x1, 0x4, 0x800, 0x3, {}, {0x1, 0xc, 0x9, 0xc, 0x6, 0x8, "bf240fef"}, 0x3, 0x2, {0x0}, 0x96000})

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.8' (ED25519) to the list of known hosts.
[   75.666851][ T5759] cgroup: Unknown subsys name 'net'
[   75.830474][ T5759] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   77.511971][ T5759] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   79.213161][   T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   79.222172][   T51] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   79.231904][   T51] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   79.241851][   T51] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   79.249831][ T5786] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   79.282688][ T5786] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   79.299561][ T5785] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   79.303442][ T5786] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   79.309574][ T5785] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   79.314995][ T5786] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   79.322482][ T5785] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   79.329084][ T5786] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   79.343087][ T5785] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   79.343468][ T5786] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   79.352142][ T5785] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   79.359885][ T5786] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   79.365928][ T5785] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   79.374283][ T5776] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   79.389527][ T5785] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   79.389646][ T5786] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   79.410129][ T5786] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   79.417652][ T5776] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   79.429028][ T5786] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   79.441889][ T5786] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   79.892599][ T5773] chnl_net:caif_netlink_parms(): no params data found
[   79.949095][ T5772] chnl_net:caif_netlink_parms(): no params data found
[   80.011116][ T5771] chnl_net:caif_netlink_parms(): no params data found
[   80.029819][ T5770] chnl_net:caif_netlink_parms(): no params data found
[   80.177996][ T5773] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.185740][ T5773] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.194424][ T5773] bridge_slave_0: entered allmulticast mode
[   80.203129][ T5773] bridge_slave_0: entered promiscuous mode
[   80.247933][ T5773] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.255636][ T5773] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.263320][ T5773] bridge_slave_1: entered allmulticast mode
[   80.270212][ T5773] bridge_slave_1: entered promiscuous mode
[   80.289469][ T5771] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.297411][ T5771] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.304945][ T5771] bridge_slave_0: entered allmulticast mode
[   80.314568][ T5771] bridge_slave_0: entered promiscuous mode
[   80.322662][ T5772] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.329913][ T5772] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.337280][ T5772] bridge_slave_0: entered allmulticast mode
[   80.345321][ T5772] bridge_slave_0: entered promiscuous mode
[   80.389377][ T5771] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.397253][ T5771] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.405447][ T5771] bridge_slave_1: entered allmulticast mode
[   80.413408][ T5771] bridge_slave_1: entered promiscuous mode
[   80.420365][ T5772] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.428074][ T5772] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.435993][ T5772] bridge_slave_1: entered allmulticast mode
[   80.443390][ T5772] bridge_slave_1: entered promiscuous mode
[   80.464085][ T5773] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.478838][ T5773] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.508745][ T5770] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.516240][ T5770] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.523860][ T5770] bridge_slave_0: entered allmulticast mode
[   80.531043][ T5770] bridge_slave_0: entered promiscuous mode
[   80.579006][ T5770] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.586902][ T5770] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.595090][ T5770] bridge_slave_1: entered allmulticast mode
[   80.603525][ T5770] bridge_slave_1: entered promiscuous mode
[   80.612835][ T5771] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.627410][ T5771] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.644524][ T5773] team0: Port device team_slave_0 added
[   80.653298][ T5772] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.666568][ T5772] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.696300][ T5773] team0: Port device team_slave_1 added
[   80.734280][ T5772] team0: Port device team_slave_0 added
[   80.764152][ T5770] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.792806][ T5772] team0: Port device team_slave_1 added
[   80.804547][ T5771] team0: Port device team_slave_0 added
[   80.812877][ T5770] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.823422][ T5773] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.830441][ T5773] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.857804][ T5773] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   80.881971][ T5771] team0: Port device team_slave_1 added
[   80.908263][ T5773] batman_adv: batadv0: Adding interface: batadv_slave_1
[   80.917436][ T5773] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   80.947882][ T5773] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.970463][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_0
[   80.978247][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.007399][ T5772] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.040231][ T5772] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.047543][ T5772] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.075688][ T5772] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.138207][ T5770] team0: Port device team_slave_0 added
[   81.147497][ T5770] team0: Port device team_slave_1 added
[   81.176269][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.183971][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.211326][ T5771] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.225335][ T5771] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.232806][ T5771] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.260210][ T5771] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.295438][ T5773] hsr_slave_0: entered promiscuous mode
[   81.302031][ T5773] hsr_slave_1: entered promiscuous mode
[   81.327699][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.335345][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.362454][ T5770] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.376381][ T5770] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.384289][ T5770] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.411149][ T5770] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.425367][ T5782] Bluetooth: hci0: command tx timeout
[   81.431860][ T5782] Bluetooth: hci2: command tx timeout
[   81.444604][ T5772] hsr_slave_0: entered promiscuous mode
[   81.450950][ T5772] hsr_slave_1: entered promiscuous mode
[   81.457518][ T5772] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   81.465820][ T5772] Cannot create hsr debugfs directory
[   81.501706][ T5782] Bluetooth: hci3: command tx timeout
[   81.507887][ T5782] Bluetooth: hci1: command tx timeout
[   81.606085][ T5771] hsr_slave_0: entered promiscuous mode
[   81.615680][ T5771] hsr_slave_1: entered promiscuous mode
[   81.623683][ T5771] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   81.632317][ T5771] Cannot create hsr debugfs directory
[   81.661935][ T5770] hsr_slave_0: entered promiscuous mode
[   81.669509][ T5770] hsr_slave_1: entered promiscuous mode
[   81.676723][ T5770] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   81.685177][ T5770] Cannot create hsr debugfs directory
[   82.090727][ T5772] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   82.111284][ T5772] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   82.123261][ T5772] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   82.151359][ T5772] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   82.176137][ T5773] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   82.193478][ T5773] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   82.205810][ T5773] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   82.226878][ T5773] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   82.308032][ T5771] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   82.319543][ T5771] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   82.332294][ T5771] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   82.344455][ T5771] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   82.439407][ T5770] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   82.463914][ T5770] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   82.478183][ T5770] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   82.502444][ T5770] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   82.595283][ T5772] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.653999][ T5773] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.701057][ T5773] 8021q: adding VLAN 0 to HW filter on device team0
[   82.717477][ T5771] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.729633][ T5772] 8021q: adding VLAN 0 to HW filter on device team0
[   82.763834][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.771569][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.784806][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.792297][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.802766][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.810831][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.855853][ T5771] 8021q: adding VLAN 0 to HW filter on device team0
[   82.877712][  T142] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.886118][  T142] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.936171][  T142] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.944168][  T142] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.978044][ T5770] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.002470][ T1136] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.015449][ T1136] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.086924][ T5770] 8021q: adding VLAN 0 to HW filter on device team0
[   83.131280][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.138546][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.185642][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.193606][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.502081][ T5782] Bluetooth: hci2: command tx timeout
[   83.511614][   T51] Bluetooth: hci0: command tx timeout
[   83.548750][ T5773] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.584760][ T5782] Bluetooth: hci1: command tx timeout
[   83.590512][ T5782] Bluetooth: hci3: command tx timeout
[   83.715595][ T5773] veth0_vlan: entered promiscuous mode
[   83.790400][ T5771] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.827040][ T5770] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.839699][ T5773] veth1_vlan: entered promiscuous mode
[   83.873894][ T5772] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.950756][ T5771] veth0_vlan: entered promiscuous mode
[   83.968094][ T5773] veth0_macvtap: entered promiscuous mode
[   83.996702][ T5773] veth1_macvtap: entered promiscuous mode
[   84.032723][ T5771] veth1_vlan: entered promiscuous mode
[   84.044729][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.060717][ T5770] veth0_vlan: entered promiscuous mode
[   84.080066][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_1
[   84.103922][ T5773] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.113947][ T5773] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.122864][ T5773] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.132412][ T5773] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.175235][ T5770] veth1_vlan: entered promiscuous mode
[   84.222620][ T5772] veth0_vlan: entered promiscuous mode
[   84.271265][ T5771] veth0_macvtap: entered promiscuous mode
[   84.304154][ T5772] veth1_vlan: entered promiscuous mode
[   84.330849][ T5771] veth1_macvtap: entered promiscuous mode
[   84.378514][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   84.391795][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.403785][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.417502][ T5770] veth0_macvtap: entered promiscuous mode
[   84.439507][ T5770] veth1_macvtap: entered promiscuous mode
[   84.446325][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.463553][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.468430][ T5771] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   84.484339][ T5771] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.495790][ T5771] batman_adv: batadv0: Interface activated: batadv_slave_1
[   84.524109][ T5772] veth0_macvtap: entered promiscuous mode
[   84.544561][ T5771] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.556853][ T5771] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.567085][ T5771] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.576775][ T5771] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.589750][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   84.602429][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.615066][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   84.630252][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.645309][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.667357][ T1136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.671993][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   84.688556][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.700948][ T5770] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   84.701542][ T1136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.715057][ T5770] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.733428][ T5770] batman_adv: batadv0: Interface activated: batadv_slave_1
[   84.783575][ T5772] veth1_macvtap: entered promiscuous mode
[   84.824681][ T5770] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.851897][ T5770] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.861092][ T5770] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.873427][ T5770] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.926951][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   84.966133][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   84.977475][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   84.989120][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.000161][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   85.011561][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.026992][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.067208][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.086405][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.098939][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.115105][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.131618][ T5772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   85.150205][ T5772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   85.173382][ T5772] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.211425][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.226482][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.251251][ T5772] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.266050][ T5772] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.267773][ T5838] syz.1.5[5838]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   85.283246][ T5772] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.297414][ T5838] loop1: detected capacity change from 0 to 512
[   85.307153][ T5772] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.347659][ T5838] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[   85.437364][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.453197][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.519406][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.582223][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   86.991593][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!!
[   87.276360][ T5782] Bluetooth: hci2: command tx timeout
[   87.276447][   T51] Bluetooth: hci0: command tx timeout
[   87.282498][ T5782] Bluetooth: hci3: command tx timeout
[   87.288021][ T5786] Bluetooth: hci1: command tx timeout
[   87.302085][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.858354][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.900614][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.055098][   T39] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.067000][ T3525] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.217485][ T3525] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.235121][   T39] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.141661][    T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!!
[   89.871826][ T5786] Bluetooth: hci3: command tx timeout
[   89.878379][ T5786] Bluetooth: hci2: command tx timeout
[   89.884398][   T51] Bluetooth: hci1: command tx timeout
[   89.890067][   T51] Bluetooth: hci0: command tx timeout
[   92.112173][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c0!!!
[   92.521738][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c0!!!
[   92.689403][   T27] cfg80211: failed to load regulatory.db
[   94.261619][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   95.431428][ T5874] loop3: detected capacity change from 0 to 128
[   95.493197][ T5874] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   95.731231][ T5876] loop1: detected capacity change from 0 to 2048
[   95.920380][ T5876] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   96.138534][   T28] audit: type=1800 audit(1778445258.465:2): pid=5876 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.8" name="file1" dev="loop1" ino=15 res=0 errno=0
[   96.595074][ T1000] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[   96.626638][ T5773] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   96.755746][ T5887] fuse: Bad value for 'fd'
[   98.728840][  T788] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   99.347220][ T5903] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[5904] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[5903]
[  100.379941][  T788] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  100.398684][ T5902] xt_policy: neither incoming nor outgoing policy selected
[  101.966985][ T5896] loop1: detected capacity change from 0 to 2048
[  102.393107][ T5908] fido_id[5908]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  104.373132][ T5916] loop1: detected capacity change from 0 to 128
[  104.483632][ T5916] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  105.415917][ T3525] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  106.952813][ T5926] loop0: detected capacity change from 0 to 2048
[  107.033310][ T5926] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  107.090360][   T28] audit: type=1800 audit(1778445269.415:3): pid=5926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.25" name="file1" dev="loop0" ino=15 res=0 errno=0
[  107.376525][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.542229][  T788] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  109.797462][  T788] usb 1-1: Using ep0 maxpacket: 16
[  109.824672][  T788] usb 1-1: unable to get BOS descriptor or descriptor too short
[  109.854298][  T788] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  109.887169][  T788] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  109.900851][  T788] usb 1-1: New USB device found, idVendor=041e, idProduct=3000, bcdDevice= 0.40
[  109.930998][  T788] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  109.951659][  T788] usb 1-1: Product: syz
[  109.957879][  T788] usb 1-1: Manufacturer: syz
[  109.960673][  T787] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  109.978328][  T788] usb 1-1: SerialNumber: syz
[  110.020802][  T787] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  110.021247][ T5945] loop3: detected capacity change from 0 to 512
[  110.038016][ T5944] loop2: detected capacity change from 0 to 2048
[  110.091081][ T5945] EXT4-fs: Ignoring removed nobh option
[  110.128473][ T5945] EXT4-fs: Ignoring removed nomblk_io_submit option
[  110.166497][ T5944] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  110.180250][ T5945] EXT4-fs: inline encryption not supported
[  110.358669][  T788] usb 1-1: USB disconnect, device number 2
[  110.525271][ T5784] udevd[5784]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  110.701356][ T5945] EXT4-fs (loop3): Test dummy encryption mode enabled
[  111.015013][ T5945] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  111.029745][ T5945] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.23: invalid indirect mapped block 2683928664 (level 1)
[  111.106589][ T5945] EXT4-fs (loop3): 1 truncate cleaned up
[  112.181591][    T0] NOHZ tick-stop error: local softirq work is pending, handler #1c2!!!
[  112.722364][ T5945] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  112.784422][ T5959] Bluetooth: MGMT ver 1.22
[  113.163238][ T5771] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.204313][ T5969] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[5970] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[5969]
[  114.741637][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  115.319181][ T5968] loop2: detected capacity change from 0 to 2048
[  115.443825][ T5968] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.462991][ T5972] loop1: detected capacity change from 0 to 1764
[  115.591640][   T28] audit: type=1800 audit(1778445277.915:4): pid=5968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.36" name="file1" dev="loop2" ino=15 res=0 errno=0
[  115.877674][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.890321][ T5983] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  117.301641][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  117.662354][ T2196] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  117.881357][ T2196] usb 1-1: Using ep0 maxpacket: 32
[  117.912099][ T2196] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  117.924841][ T2196] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  117.935874][ T2196] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  117.948625][ T2196] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.972724][ T2196] usb 1-1: config 0 descriptor??
[  117.993677][ T2196] hub 1-1:0.0: USB hub found
[  118.194569][ T5981] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  118.259360][ T2196] hub 1-1:0.0: 26 ports detected
[  118.270442][ T2196] hub 1-1:0.0: insufficient power available to use all downstream ports
[  118.444407][ T2196] hub 1-1:0.0: hub_hub_status failed (err = -71)
[  118.461996][ T2196] hub 1-1:0.0: config failed, can't get hub status (err -71)
[  118.486124][ T2196] usbhid 1-1:0.0: can't add hid device: -71
[  118.503394][ T2196] usbhid: probe of 1-1:0.0 failed with error -71
[  118.557820][ T2196] usb 1-1: USB disconnect, device number 3
[  118.815208][ T5996] loop2: detected capacity change from 0 to 512
[  118.861099][ T5996] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  118.874715][ T5996] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  119.141079][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  119.903796][ T6013] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[6014] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[6013]
[  125.071859][  T787] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  125.713350][  T787] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  125.741797][  T787] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  127.257400][  T787] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  127.348847][  T787] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  127.406833][  T787] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  127.462771][  T787] usb 4-1: config 0 descriptor??
[  127.549387][ T6051] loop0: detected capacity change from 0 to 8
[  127.618468][ T6051] SQUASHFS error: zlib decompression failed, data probably corrupt
[  127.630971][ T6051] SQUASHFS error: Failed to read block 0x9b: -5
[  127.638608][ T6051] SQUASHFS error: Unable to read metadata cache entry [99]
[  127.647839][ T6051] SQUASHFS error: Unable to read inode 0x127
[  127.836045][ T6051] loop0: detected capacity change from 0 to 1024
[  127.879168][ T6051] hfsplus: unable to parse mount options
[  127.925398][  T787] plantronics 0003:047F:FFFF.0003: unbalanced collection at end of report description
[  127.949627][  T787] plantronics 0003:047F:FFFF.0003: parse failed
[  127.958680][  T787] plantronics: probe of 0003:047F:FFFF.0003 failed with error -22
[  128.217275][  T787] usb 4-1: USB disconnect, device number 2
[  128.324978][ T6053] xt_cgroup: invalid path, errno=-2
[  128.808989][ T6057] warning: `syz.2.59' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  129.657556][ T6064] loop1: detected capacity change from 0 to 2048
[  129.670590][ T6064] EXT4-fs: Ignoring removed nobh option
[  129.706083][ T6069] input: syz0 as /devices/virtual/input/input5
[  129.726689][ T6064] EXT4-fs error (device loop1): ext4_ext_check_inode:530: inode #2: comm syz.1.58: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  129.845087][ T6064] EXT4-fs (loop1): Remounting filesystem read-only
[  129.892778][ T6064] EXT4-fs (loop1): get root inode failed
[  129.903300][  T787] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  129.921293][ T6064] EXT4-fs (loop1): mount failed
[  129.980014][ T6064] loop1: detected capacity change from 0 to 512
[  130.035307][ T6064] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.58: invalid indirect mapped block 10 (level 1)
[  130.058658][ T6064] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.58: invalid indirect mapped block 8 (level 1)
[  130.311515][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  132.191864][  T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  132.222408][ T6064] EXT4-fs (loop1): 1 truncate cleaned up
[  132.229549][ T6064] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  132.232071][  T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  132.290790][  T787] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  132.291058][ T6064] netlink: 8 bytes leftover after parsing attributes in process `syz.1.58'.
[  132.340883][  T787] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  132.391566][  T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.414704][  T787] usb 1-1: config 0 descriptor??
[  132.462906][ T5773] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.645331][  T787] usbhid 1-1:0.0: can't add hid device: -71
[  132.671864][  T787] usbhid: probe of 1-1:0.0 failed with error -71
[  132.687420][  T787] usb 1-1: USB disconnect, device number 4
[  134.213545][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  134.220182][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  134.390132][ T6089] loop0: detected capacity change from 0 to 8
[  134.400627][ T6089] SQUASHFS error: zlib decompression failed, data probably corrupt
[  134.411711][ T6089] SQUASHFS error: Failed to read block 0x9b: -5
[  134.419319][ T6089] SQUASHFS error: Unable to read metadata cache entry [99]
[  134.427665][ T6089] SQUASHFS error: Unable to read inode 0x127
[  134.863684][ T6091] xt_cgroup: invalid path, errno=-2
[  135.138012][ T6093] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[6094] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[6093]
[  135.314377][ T6097] loop2: detected capacity change from 0 to 512
[  135.332879][ T6097] EXT4-fs: Ignoring removed nobh option
[  135.470564][ T6097] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.480652][ T6102] loop3: detected capacity change from 0 to 8
[  135.539813][ T6102] SQUASHFS error: Failed to read block 0x4de: -5
[  135.548132][ T6102] SQUASHFS error: Failed to read block 0x4de: -5
[  135.555057][   T28] audit: type=1800 audit(1778445297.885:5): pid=6102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.71" name="file1" dev="loop3" ino=5 res=0 errno=0
[  135.571696][ T6097] ext4 filesystem being mounted at /15/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  135.881830][  T788] usb 1-1: new full-speed USB device number 5 using dummy_hcd
[  136.093210][  T788] usb 1-1: config 0 has an invalid interface number: 52 but max is 0
[  136.171728][  T788] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  136.196668][  T788] usb 1-1: config 0 has no interface number 0
[  136.213497][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.231713][  T788] usb 1-1: config 0 interface 52 has no altsetting 0
[  136.268958][  T788] usb 1-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[  136.331701][  T788] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[  136.339968][  T788] usb 1-1: SerialNumber: syz
[  136.368720][  T788] usb 1-1: config 0 descriptor??
[  138.354167][  T787] usb 1-1: USB disconnect, device number 5
[  139.446169][ T6115] loop3: detected capacity change from 0 to 512
[  139.632267][ T6115] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  139.721797][ T6115] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.608723][ T5771] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.294488][ T6138] loop2: detected capacity change from 0 to 512
[  144.321651][ T6138] EXT4-fs: Ignoring removed i_version option
[  144.335545][ T6138] EXT4-fs: Ignoring removed oldalloc option
[  144.369887][ T6138] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  144.852705][ T5770] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.530415][ T6147] 9pnet_fd: Insufficient options for proto=fd
[  147.030472][ T5814] kernel write not supported for file /input/event3 (pid: 5814 comm: kworker/1:4)
[  147.459015][ T6161] loop2: detected capacity change from 0 to 7
[  147.510667][ T6161] Dev loop2: unable to read RDB block 7
[  147.526776][ T6161]  loop2: unable to read partition table
[  147.791952][ T6161] loop2: partition table beyond EOD, truncated
[  147.824300][ T6161] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  150.175713][ T6177] 9pnet_fd: Insufficient options for proto=fd
[  152.013021][ T6183] lo: entered promiscuous mode
[  152.222582][ T6183] tunl0: entered promiscuous mode
[  153.441925][ T6183] gre0: entered promiscuous mode
[  153.721897][ T6183] gretap0: entered promiscuous mode
[  153.868339][ T6183] erspan0: entered promiscuous mode
[  153.979651][ T6189] xt_CT: You must specify a L4 protocol and not use inversions on it
[  153.988346][ T6183] ip_vti0: entered promiscuous mode
[  154.122027][ T6183] ip6_vti0: entered promiscuous mode
[  154.312442][ T6183] sit0: entered promiscuous mode
[  154.365287][ T6192] netlink: 8 bytes leftover after parsing attributes in process `syz.2.97'.
[  154.466636][ T6183] ip6tnl0: entered promiscuous mode
[  154.519978][ T6183] ip6gre0: entered promiscuous mode
[  154.556121][ T6183] syz_tun: entered promiscuous mode
[  154.738682][ T6183] ip6gretap0: entered promiscuous mode
[  154.871229][ T6183] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.880446][ T6183] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.950994][ T6183] bridge0: entered promiscuous mode
[  155.130694][ T6183] vcan0: entered promiscuous mode
[  155.165609][ T6183] bond0: entered promiscuous mode
[  155.171082][ T6183] bond_slave_0: entered promiscuous mode
[  155.182675][ T6183] bond_slave_1: entered promiscuous mode
[  155.206085][ T6183] team0: entered promiscuous mode
[  155.211760][ T6183] team_slave_0: entered promiscuous mode
[  155.217815][ T6183] team_slave_1: entered promiscuous mode
[  155.240566][ T6183] dummy0: entered promiscuous mode
[  155.260761][ T6183] nlmon0: entered promiscuous mode
[  155.271359][ T6183] caif0: entered promiscuous mode
[  155.280239][ T6183] batadv0: entered promiscuous mode
[  155.303780][ T6183] vxcan0: entered promiscuous mode
[  155.311318][ T6183] vxcan1: entered promiscuous mode
[  155.324091][ T6183] veth0: entered promiscuous mode
[  155.364532][ T6183] veth1: entered promiscuous mode
[  155.408796][ T6183] wg0: entered promiscuous mode
[  155.447952][ T6183] wg1: entered promiscuous mode
[  155.470791][ T6183] wg2: entered promiscuous mode
[  156.853982][ T6183] veth0_to_bridge: entered promiscuous mode
[  156.916238][ T6183] veth1_to_bridge: entered promiscuous mode
[  156.965979][ T6183] veth0_to_bond: entered promiscuous mode
[  157.015986][ T6183] veth1_to_bond: entered promiscuous mode
[  157.708214][ T6212] =======================================================
[  157.708214][ T6212] WARNING: The mand mount option has been deprecated and
[  157.708214][ T6212]          and is ignored by this kernel. Remove the mand
[  157.708214][ T6212]          option from the mount to silence this warning.
[  157.708214][ T6212] =======================================================
[  158.613638][ T6183] veth0_to_team: entered promiscuous mode
[  158.682905][ T6183] veth1_to_team: entered promiscuous mode
[  158.793895][ T6183] veth0_to_batadv: entered promiscuous mode
[  158.811245][ T6183] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  158.834186][ T6183] batadv_slave_0: entered promiscuous mode
[  158.892271][ T6183] veth1_to_batadv: entered promiscuous mode
[  158.914561][ T6183] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  158.956655][ T6183] batadv_slave_1: entered promiscuous mode
[  159.022529][ T6183] xfrm0: entered promiscuous mode
[  159.062439][ T6183] veth0_to_hsr: entered promiscuous mode
[  159.149169][ T6183] veth1_to_hsr: entered promiscuous mode
[  159.252533][ T6183] hsr0: entered promiscuous mode
[  159.312559][ T6183] veth1_virt_wifi: entered promiscuous mode
[  159.362518][ T6183] veth0_virt_wifi: entered promiscuous mode
[  159.402854][ T6183] virt_wifi0: entered promiscuous mode
[  159.510320][ T6183] vlan0: entered promiscuous mode
[  159.541992][ T6183] vlan1: entered promiscuous mode
[  159.579089][ T6183] macvlan0: entered promiscuous mode
[  159.632500][ T6183] macvlan1: entered promiscuous mode
[  159.645159][ T6183] ipvlan0: entered promiscuous mode
[  159.650767][ T6183] ipvlan1: entered promiscuous mode
[  159.853082][ T6183] macvtap0: entered promiscuous mode
[  160.006979][ T6183] macsec0: entered promiscuous mode
[  160.266349][ T6183] geneve0: entered promiscuous mode
[  160.382503][ T6183] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.394204][ T6183] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.403664][ T6183] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.413716][ T6183] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  160.425070][ T6183] geneve1: entered promiscuous mode
[  160.478096][ T6183] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  160.503645][ T6183] netdevsim netdevsim3 netdevsim1: entered promiscuous mode
[  160.530565][ T6183] netdevsim netdevsim3 netdevsim2: entered promiscuous mode
[  160.556974][ T6183] netdevsim netdevsim3 netdevsim3: entered promiscuous mode
[  160.621158][ T6183] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode
[  160.656754][ T6183] mac80211_hwsim hwsim5 wlan1: entered promiscuous mode
[  162.956366][ T6242] loop2: detected capacity change from 0 to 256
[  162.972323][ T6242] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  162.983715][ T6242] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  163.004291][ T6242] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  166.877685][ T5814] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[  167.084472][ T5814] usb 2-1: unable to get BOS descriptor or descriptor too short
[  167.093445][ T5814] usb 2-1: not running at top speed; connect to a high speed hub
[  167.106980][ T5814] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  168.481555][ T5814] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  168.527507][ T5814] usb 2-1: string descriptor 0 read error: -22
[  168.546573][ T5814] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  168.571529][ T5814] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.608564][ T5814] usb 2-1: 0:2 : does not exist
[  170.969908][ T5814] usb 2-1: 5:0: cannot get min/max values for control 2 (id 5)
[  170.986376][ T5814] usb 2-1: 5:0: cannot get min/max values for control 3 (id 5)
[  171.021235][ T5814] usb 2-1: 5:0: failed to get current value for ch 1 (-22)
[  171.075281][ T5814] usb 2-1: 5:0: cannot get min/max values for control 3 (id 5)
[  171.102311][ T5814] usb 2-1: USB disconnect, device number 2
[  172.186444][ T6277] netlink: 8 bytes leftover after parsing attributes in process `syz.3.116'.
[  172.431215][ T6281] loop0: detected capacity change from 0 to 2048
[  172.462530][ T6281] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=3932051, location=3932051
[  172.523679][ T6281] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  172.580313][ T6281] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  185.501642][    T9] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  185.714037][    T9] usb 4-1: config 0 has an invalid descriptor of length 50, skipping remainder of the config
[  185.737990][    T9] usb 4-1: config 0 has an invalid descriptor of length 50, skipping remainder of the config
[  185.770936][    T9] usb 4-1: config 0 has an invalid descriptor of length 50, skipping remainder of the config
[  185.782940][    T9] usb 4-1: config 0 has an invalid descriptor of length 50, skipping remainder of the config
[  185.797804][    T9] usb 4-1: config 0 has an invalid descriptor of length 50, skipping remainder of the config
[  185.812635][    T9] usb 4-1: New USB device found, idVendor=046d, idProduct=08c6, bcdDevice=33.c2
[  185.834027][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.856022][    T9] usb 4-1: config 0 descriptor??
[  185.881998][ T6350] loop0: detected capacity change from 0 to 256
[  185.882738][    T9] usb 4-1: Quirk or no altest; falling back to MIDI 1.0
[  185.912483][    T9] usb 4-1: MIDIStreaming interface descriptor not found
[  185.936997][ T6350] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x9059ffb0, utbl_chksum : 0xe619d30d)
[  187.702115][  T788] usb 4-1: USB disconnect, device number 3
[  188.547175][ T6372] loop1: detected capacity change from 0 to 256
[  188.623760][ T6372] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  188.635489][ T6372] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  188.652540][ T6372] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  192.234928][ T6402] loop0: detected capacity change from 0 to 8
[  192.528879][ T6402] SQUASHFS error: Failed to read block 0x71: -5
[  192.577330][   T28] audit: type=1800 audit(1778445354.895:6): pid=6402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.155" name="file1" dev="loop0" ino=1 res=0 errno=0
[  192.623746][ T6402] SQUASHFS error: Failed to read block 0xed0073: -5
[  192.641685][ T6402] SQUASHFS error: Failed to read block 0xed0573: -5
[  192.648456][ T6402] SQUASHFS error: Failed to read block 0x60: -5
[  192.819301][ T6402] SQUASHFS error: Failed to read block 0x60: -5
[  192.948734][ T6402] SQUASHFS error: Failed to read block 0x60: -5
[  194.735759][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  194.743168][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  196.996445][ T6450] loop3: detected capacity change from 0 to 8
[  197.124509][ T6450] SQUASHFS error: Failed to read block 0x71: -5
[  197.149077][   T28] audit: type=1800 audit(1778445359.475:7): pid=6450 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.168" name="file1" dev="loop3" ino=1 res=0 errno=0
[  197.183393][ T6450] SQUASHFS error: Failed to read block 0xed0073: -5
[  197.190293][ T6450] SQUASHFS error: Failed to read block 0xed0573: -5
[  197.251642][ T6450] SQUASHFS error: Failed to read block 0x60: -5
[  197.259077][ T6450] SQUASHFS error: Failed to read block 0x60: -5
[  197.266813][ T6450] SQUASHFS error: Failed to read block 0x60: -5
[  197.989903][ T6461] loop3: detected capacity change from 0 to 1024
[  198.076202][ T6461] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  198.151179][ T6461] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  198.354554][ T6461] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.172: bg 0: block 112: padding at end of block bitmap is not set
[  198.427825][ T6461] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 52 with error 28
[  198.451856][ T6461] EXT4-fs (loop3): This should not happen!! Data will be lost
[  198.451856][ T6461] 
[  198.467265][   T28] audit: type=1804 audit(1778445360.795:8): pid=6469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.172" name="/newroot/42/file1/file1" dev="loop3" ino=15 res=1 errno=0
[  198.489790][ T6461] EXT4-fs (loop3): Total free blocks count 0
[  198.496798][ T6461] EXT4-fs (loop3): Free/Dirty block details
[  198.503948][ T6461] EXT4-fs (loop3): free_blocks=0
[  198.509789][ T6461] EXT4-fs (loop3): dirty_blocks=64
[  198.517290][ T6461] EXT4-fs (loop3): Block reservation details
[  198.524946][ T6461] EXT4-fs (loop3): i_reserved_data_blocks=4
[  198.555448][ T6469] EXT4-fs error (device loop3): ext4_free_blocks:6694: comm syz.3.172: Freeing blocks not in datazone - block = 0, count = 16
[  198.661547][ T5815] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  198.694988][ T5771] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  198.892273][ T5815] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  198.901153][ T5815] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  198.930794][ T5815] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  198.951816][ T5815] usb 3-1: config 1 has no interface number 1
[  198.961545][ T5815] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  200.436030][ T5815] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  200.452733][ T5815] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.471525][ T5815] usb 3-1: Product: syz
[  200.475929][ T5815] usb 3-1: Manufacturer: syz
[  200.480557][ T5815] usb 3-1: SerialNumber: syz
[  200.742499][ T5815] usb 3-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0
[  200.770599][ T5815] usb 3-1: MIDIStreaming interface descriptor not found
[  200.864687][ T5815] usb 3-1: USB disconnect, device number 2
[  200.964721][ T5948] udevd[5948]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  202.469633][ T5083] Bluetooth: hci2: command 0x0406 tx timeout
[  202.477080][ T5778] Bluetooth: hci0: command 0x0406 tx timeout
[  202.490527][ T5785] Bluetooth: hci3: command 0x0406 tx timeout
[  202.511701][ T5778] Bluetooth: hci1: command 0x0406 tx timeout
[  202.538664][ T6488] loop3: detected capacity change from 0 to 512
[  202.638174][ T6491] Illegal XDP return value 4291366912 on prog  (id 16) dev N/A, expect packet loss!
[  202.646536][ T6488] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  202.778824][ T6488] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e002e028, mo2=0002]
[  202.806575][ T6488] System zones: 0-2, 18-18, 34-34
[  202.882973][ T6488] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=5
[  202.915189][ T6488] EXT4-fs warning (device loop3): ext4_enable_quotas:7188: Failed to enable quota tracking (type=0, err=-22, ino=3). Please run e2fsck to fix.
[  202.962361][ T6488] EXT4-fs (loop3): mount failed
[  205.417405][ T6510] loop0: detected capacity change from 0 to 8
[  205.482377][ T6510] SQUASHFS error: zlib decompression failed, data probably corrupt
[  205.517371][ T6510] SQUASHFS error: Failed to read block 0x9b: -5
[  205.541590][ T6510] SQUASHFS error: Unable to read metadata cache entry [99]
[  205.548866][ T6510] SQUASHFS error: Unable to read inode 0x127
[  206.222779][ T6510] loop0: detected capacity change from 0 to 1024
[  206.298763][ T6510] hfsplus: unable to parse mount options
[  210.401939][ T6531] loop0: detected capacity change from 0 to 256
[  210.445387][ T6531] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x5955b8de, utbl_chksum : 0xe619d30d)
[  210.642381][ T6531] loop0: detected capacity change from 256 to 1
[  210.706184][ T6534] syz.0.193: attempt to access beyond end of device
[  210.706184][ T6534] loop0: rw=2049, sector=160, nr_sectors = 1 limit=1
[  210.757373][ T6534] Buffer I/O error on dev loop0, logical block 160, lost sync page write
[  210.805740][ T6534] syz.0.193: attempt to access beyond end of device
[  210.805740][ T6534] loop0: rw=2049, sector=161, nr_sectors = 1 limit=1
[  210.860399][ T6534] Buffer I/O error on dev loop0, logical block 161, lost sync page write
[  210.902168][ T6534] syz.0.193: attempt to access beyond end of device
[  210.902168][ T6534] loop0: rw=0, sector=160, nr_sectors = 1 limit=1
[  211.421674][  T787] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  211.631582][  T787] usb 2-1: Using ep0 maxpacket: 16
[  211.638811][  T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  211.674904][  T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  211.715736][  T787] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  211.789639][  T787] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  213.291657][  T787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.322592][  T787] usb 2-1: config 0 descriptor??
[  213.362347][  T788] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  213.564537][  T787] usbhid 2-1:0.0: can't add hid device: -71
[  213.573889][  T788] usb 1-1: Using ep0 maxpacket: 8
[  213.585211][  T788] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[  213.601279][  T788] usb 1-1: config 179 has no interface number 0
[  213.617117][  T788] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  213.639492][  T787] usbhid: probe of 2-1:0.0 failed with error -71
[  213.655315][  T788] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  213.679168][  T787] usb 2-1: USB disconnect, device number 3
[  213.685208][  T788] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9
[  213.721881][  T788] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024
[  213.751864][  T788] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  213.789900][  T788] usb 1-1: config 179 interface 65 has no altsetting 0
[  213.809358][  T788] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  213.840000][  T788] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  213.909512][  T788] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input6
[  213.992199][ T5123] input input6: unable to receive magic message: -110
[  214.016232][ T5123] input input6: unable to receive magic message: -32
[  214.083287][ T5784] input input6: unable to receive magic message: -32
[  214.109461][    T9] usb 1-1: USB disconnect, device number 6
[  214.109515][    C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  214.168757][    T9] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  216.570144][ T6558] loop0: detected capacity change from 0 to 512
[  216.621336][ T6558] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.120684][ T6558] ext4 filesystem being mounted at /54/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  218.281579][ T6558] loop0: detected capacity change from 512 to 64
[  218.301972][ T6565] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5939: Out of memory
[  218.401817][ T6565] EXT4-fs (loop0): Remounting filesystem read-only
[  218.948403][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.115309][ T1000] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.398287][ T1000] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.664188][ T1000] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.159976][ T1000] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  220.212087][    T9] usb 2-1: new low-speed USB device number 4 using dummy_hcd
[  220.423656][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 8
[  220.451466][    T9] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  220.484906][    T9] usb 2-1: New USB device found, idVendor=056a, idProduct=4001, bcdDevice= 0.00
[  220.511967][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  220.543359][    T9] usb 2-1: config 0 descriptor??
[  220.549261][ T6571] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  220.998973][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.021803][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.028769][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.052160][ T5782] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  221.061141][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.068621][ T5782] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  221.080638][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.082214][ T5782] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  221.101588][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.109328][ T5782] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  221.115859][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.220643][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.221839][ T5782] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  221.227868][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.278887][ T5782] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  221.555735][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.733279][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.740344][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.765424][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.772587][ T5782] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  221.772672][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.787089][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.789016][ T5782] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  221.794045][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.794075][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.794099][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.794122][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.812794][ T5782] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  221.840962][ T5782] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  221.852903][ T5782] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  221.860458][ T5782] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  221.921240][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.948943][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  221.981913][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  222.011573][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  222.018952][    T9] wacom 0003:056A:4001.0004: unknown main item tag 0x0
[  222.042850][    T9] wacom 0003:056A:4001.0004: unbalanced collection at end of report description
[  222.088588][    T9] wacom 0003:056A:4001.0004: parse failed
[  222.141267][    T9] wacom: probe of 0003:056A:4001.0004 failed with error -22
[  222.198832][    T9] usb 2-1: USB disconnect, device number 4
[  223.501694][ T5776] Bluetooth: hci1: command tx timeout
[  223.995093][ T5776] Bluetooth: hci2: command tx timeout
[  224.634126][ T6614] loop3: detected capacity change from 0 to 2048
[  224.815163][ T6614] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  225.320595][ T6581] chnl_net:caif_netlink_parms(): no params data found
[  225.584744][ T5776] Bluetooth: hci1: command tx timeout
[  225.881773][ T6585] chnl_net:caif_netlink_parms(): no params data found
[  226.061641][ T5776] Bluetooth: hci2: command tx timeout
[  226.239716][ T6627] loop3: detected capacity change from 0 to 256
[  227.708649][ T5776] Bluetooth: hci1: command tx timeout
[  227.885425][ T6627] FAT-fs (loop3): Directory bread(block 64) failed
[  227.904940][ T6627] FAT-fs (loop3): Directory bread(block 65) failed
[  227.921655][ T6627] FAT-fs (loop3): Directory bread(block 66) failed
[  227.938611][ T6627] FAT-fs (loop3): Directory bread(block 67) failed
[  227.945887][ T6627] FAT-fs (loop3): Directory bread(block 68) failed
[  227.953387][ T6627] FAT-fs (loop3): Directory bread(block 69) failed
[  227.960402][ T6627] FAT-fs (loop3): Directory bread(block 70) failed
[  227.967717][ T6627] FAT-fs (loop3): Directory bread(block 71) failed
[  227.974866][ T6627] FAT-fs (loop3): Directory bread(block 72) failed
[  227.981809][ T6627] FAT-fs (loop3): Directory bread(block 73) failed
[  228.141583][ T5776] Bluetooth: hci2: command tx timeout
[  228.248387][ T1000] hsr_slave_0: left promiscuous mode
[  228.273164][ T1000] hsr_slave_1: left promiscuous mode
[  228.300724][ T1000] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  228.317369][ T1000] batman_adv: batadv0: Removing interface: batadv_slave_0
[  228.353382][ T1000] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  228.360973][ T1000] batman_adv: batadv0: Removing interface: batadv_slave_1
[  228.389865][ T1000] bridge_slave_1: left allmulticast mode
[  228.406008][ T1000] bridge_slave_1: left promiscuous mode
[  228.436219][ T5771] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  228.440805][ T1000] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.461579][ T5771] FAT-fs (loop3): Filesystem has been set read-only
[  228.484671][ T1000] bridge_slave_0: left allmulticast mode
[  228.490492][ T1000] bridge_slave_0: left promiscuous mode
[  228.511799][ T1000] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.624458][ T1000] veth1_macvtap: left promiscuous mode
[  228.630575][ T1000] veth0_macvtap: left promiscuous mode
[  228.651851][ T1000] veth1_vlan: left promiscuous mode
[  228.657715][ T1000] veth0_vlan: left promiscuous mode
[  229.742905][ T5776] Bluetooth: hci1: command tx timeout
[  231.071701][ T5776] Bluetooth: hci2: command tx timeout
[  231.708075][ T1000] team0 (unregistering): Port device team_slave_1 removed
[  231.812757][ T1000] team0 (unregistering): Port device team_slave_0 removed
[  231.927556][ T1000] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  232.106209][ T1000] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  232.996654][ T1000] bond0 (unregistering): Released all slaves
[  233.498961][ T6585] bridge0: port 1(bridge_slave_0) entered blocking state
[  233.569407][ T6585] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.607309][ T6585] bridge_slave_0: entered allmulticast mode
[  233.631946][ T6585] bridge_slave_0: entered promiscuous mode
[  233.682958][ T6581] bridge0: port 1(bridge_slave_0) entered blocking state
[  233.711133][ T6581] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.771946][ T6581] bridge_slave_0: entered allmulticast mode
[  233.782191][ T6581] bridge_slave_0: entered promiscuous mode
[  233.823412][ T6581] bridge0: port 2(bridge_slave_1) entered blocking state
[  233.833213][ T6581] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.840500][ T6581] bridge_slave_1: entered allmulticast mode
[  233.889140][ T6581] bridge_slave_1: entered promiscuous mode
[  233.909027][ T6585] bridge0: port 2(bridge_slave_1) entered blocking state
[  233.928305][ T6585] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.987393][ T6585] bridge_slave_1: entered allmulticast mode
[  234.053967][ T6585] bridge_slave_1: entered promiscuous mode
[  234.312631][ T6581] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  234.345214][ T6581] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  234.377813][ T6585] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  234.425573][ T6585] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  234.675428][ T6581] team0: Port device team_slave_0 added
[  234.763488][ T6585] team0: Port device team_slave_0 added
[  234.779171][ T6581] team0: Port device team_slave_1 added
[  234.858263][ T6585] team0: Port device team_slave_1 added
[  234.976292][ T6581] batman_adv: batadv0: Adding interface: batadv_slave_0
[  234.991789][ T6581] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.061812][ T6581] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  235.103630][ T6585] batman_adv: batadv0: Adding interface: batadv_slave_0
[  235.121734][ T6585] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.181497][ T6585] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  235.211036][ T6581] batman_adv: batadv0: Adding interface: batadv_slave_1
[  235.231870][ T6581] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.280137][ T5782] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  235.286750][ T6581] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  235.306706][ T6585] batman_adv: batadv0: Adding interface: batadv_slave_1
[  235.333836][ T5782] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  235.345232][ T6585] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  235.404427][ T5782] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  235.411601][ T6585] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  235.424128][ T5782] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  235.439454][ T5782] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  235.451811][ T5782] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  235.901711][ T6585] hsr_slave_0: entered promiscuous mode
[  235.915123][ T6585] hsr_slave_1: entered promiscuous mode
[  235.931879][ T6585] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  235.939582][ T6585] Cannot create hsr debugfs directory
[  235.975524][ T6581] hsr_slave_0: entered promiscuous mode
[  236.012608][ T6581] hsr_slave_1: entered promiscuous mode
[  236.026502][ T6581] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  236.034840][ T6581] Cannot create hsr debugfs directory
[  236.833495][ T1000] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.041564][ T5776] Bluetooth: hci3: command tx timeout
[  238.093107][ T1000] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.270816][ T1000] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.377699][ T1000] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.405401][ T6669] chnl_net:caif_netlink_parms(): no params data found
[  238.475790][ T6581] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  238.578754][ T6581] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  238.608959][ T6581] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  238.668723][ T6581] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  238.811773][ T6585] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  238.888812][ T6585] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  238.922556][ T6669] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.929930][ T6669] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.938089][ T6669] bridge_slave_0: entered allmulticast mode
[  238.946487][ T6669] bridge_slave_0: entered promiscuous mode
[  239.001772][ T6585] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  239.036037][ T6585] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  239.057711][ T6669] bridge0: port 2(bridge_slave_1) entered blocking state
[  239.195792][ T6669] bridge0: port 2(bridge_slave_1) entered disabled state
[  239.204148][ T6669] bridge_slave_1: entered allmulticast mode
[  239.222160][ T6669] bridge_slave_1: entered promiscuous mode
[  239.602792][ T6669] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  240.061687][ T5776] Bluetooth: hci3: command tx timeout
[  240.136909][ T6669] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  240.271702][ T6669] team0: Port device team_slave_0 added
[  241.284003][ T6669] team0: Port device team_slave_1 added
[  241.471834][ T6669] batman_adv: batadv0: Adding interface: batadv_slave_0
[  241.479015][ T6669] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  241.521679][ T6669] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  241.642056][ T6669] batman_adv: batadv0: Adding interface: batadv_slave_1
[  241.649344][ T6669] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  241.724888][ T6669] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  241.975420][ T6581] 8021q: adding VLAN 0 to HW filter on device bond0
[  242.069440][ T6669] hsr_slave_0: entered promiscuous mode
[  242.084190][ T6669] hsr_slave_1: entered promiscuous mode
[  242.093581][ T6669] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  242.141675][ T5776] Bluetooth: hci3: command tx timeout
[  242.158161][ T6669] Cannot create hsr debugfs directory
[  242.386754][ T6581] 8021q: adding VLAN 0 to HW filter on device team0
[  243.101109][ T3525] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.108547][ T3525] bridge0: port 1(bridge_slave_0) entered forwarding state
[  243.149235][ T3525] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.156634][ T3525] bridge0: port 2(bridge_slave_1) entered forwarding state
[  243.478404][ T6585] 8021q: adding VLAN 0 to HW filter on device bond0
[  243.919418][ T6585] 8021q: adding VLAN 0 to HW filter on device team0
[  244.224863][ T5776] Bluetooth: hci3: command tx timeout
[  244.257244][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.264509][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  244.296258][ T6669] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  244.357252][ T6669] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  244.370155][ T6669] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  244.473213][ T3525] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.480473][ T3525] bridge0: port 2(bridge_slave_1) entered forwarding state
[  244.529248][ T6669] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  244.555254][ T1000] batman_adv: batadv0: Removing interface: batadv_slave_0
[  244.583108][ T1000] batman_adv: batadv0: Removing interface: batadv_slave_1
[  244.600425][ T1000] bridge_slave_1: left allmulticast mode
[  244.620952][ T1000] bridge0: port 2(bridge_slave_1) entered disabled state
[  244.679069][ T1000] bridge_slave_0: left allmulticast mode
[  244.692545][ T1000] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.717874][ T1000] hsr_slave_0: left promiscuous mode
[  244.744457][ T1000] hsr_slave_1: left promiscuous mode
[  244.753618][ T1000] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  244.761907][ T1000] batman_adv: batadv0: Removing interface: batadv_slave_0
[  244.782572][ T1000] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  244.790147][ T1000] batman_adv: batadv0: Removing interface: batadv_slave_1
[  244.801300][ T1000] bridge_slave_1: left allmulticast mode
[  244.807565][ T1000] bridge_slave_1: left promiscuous mode
[  244.833130][ T1000] bridge0: port 2(bridge_slave_1) entered disabled state
[  244.848258][ T1000] bridge_slave_0: left allmulticast mode
[  244.854373][ T1000] bridge_slave_0: left promiscuous mode
[  244.860062][ T1000] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.962093][ T1000] veth1_macvtap: left promiscuous mode
[  244.967685][ T1000] veth0_macvtap: left promiscuous mode
[  244.989203][ T1000] veth1_vlan: left promiscuous mode
[  245.008736][ T1000] veth0_vlan: left promiscuous mode
[  245.707899][ T5774] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  245.901701][ T5774] usb 2-1: Using ep0 maxpacket: 32
[  245.913259][ T5774] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 127, changing to 7
[  245.927666][ T5774] usb 2-1: New USB device found, idVendor=2b73, idProduct=0029, bcdDevice= 0.40
[  245.936889][ T5774] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  245.938973][ T1000] team0 (unregistering): Port device team_slave_1 removed
[  245.945233][ T5774] usb 2-1: Product: syz
[  245.945254][ T5774] usb 2-1: Manufacturer: syz
[  245.945270][ T5774] usb 2-1: SerialNumber: syz
[  246.014058][ T1000] team0 (unregistering): Port device team_slave_0 removed
[  246.078431][ T1000] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  246.139057][ T1000] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  246.169477][ T5774] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  246.196516][ T5774] usb 2-1: unit 8 not found!
[  246.251948][ T5774] usb 2-1: USB disconnect, device number 5
[  246.636049][ T1000] bond0 (unregistering): Released all slaves
[  249.009079][ T1000] team0 (unregistering): Port device team_slave_1 removed
[  249.068492][ T1000] team0 (unregistering): Port device team_slave_0 removed
[  249.133357][ T1000] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  249.220772][ T1000] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  250.797041][ T1000] bond0 (unregistering): Released all slaves
[  251.345937][ T6581] 8021q: adding VLAN 0 to HW filter on device batadv0
[  251.817418][ T6669] 8021q: adding VLAN 0 to HW filter on device bond0
[  251.914462][ T6669] 8021q: adding VLAN 0 to HW filter on device team0
[  251.975511][ T3466] bridge0: port 1(bridge_slave_0) entered blocking state
[  251.982854][ T3466] bridge0: port 1(bridge_slave_0) entered forwarding state
[  252.038977][ T3466] bridge0: port 2(bridge_slave_1) entered blocking state
[  252.046334][ T3466] bridge0: port 2(bridge_slave_1) entered forwarding state
[  252.242559][ T6785] loop1: detected capacity change from 256 to 64
[  252.303164][ T6785]  loop1:
[  252.364629][ T6585] 8021q: adding VLAN 0 to HW filter on device batadv0
[  252.684706][ T6581] veth0_vlan: entered promiscuous mode
[  252.745432][ T6581] veth1_vlan: entered promiscuous mode
[  253.139172][ T6581] veth0_macvtap: entered promiscuous mode
[  253.516795][ T6581] veth1_macvtap: entered promiscuous mode
[  253.709756][ T6581] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  253.733062][ T6581] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.764032][ T6581] batman_adv: batadv0: Interface activated: batadv_slave_0
[  253.788734][ T6669] 8021q: adding VLAN 0 to HW filter on device batadv0
[  253.856690][ T6817] fuse: Bad value for 'fd'
[  254.011082][ T6581] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  254.155376][ T6581] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  254.378283][ T6581] batman_adv: batadv0: Interface activated: batadv_slave_1
[  254.764925][ T6581] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  254.784652][ T6581] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  254.813068][ T6581] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  254.831455][ T6581] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  255.114709][ T6585] veth0_vlan: entered promiscuous mode
[  255.676698][   T39] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  255.744511][   T39] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  255.839831][ T6585] veth1_vlan: entered promiscuous mode
[  255.928778][ T1000] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  255.939270][ T1000] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  256.085211][ T6585] veth0_macvtap: entered promiscuous mode
[  256.147347][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  256.153860][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  256.167903][ T6585] veth1_macvtap: entered promiscuous mode
[  257.857005][ T6585] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  257.885185][ T6585] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  257.929552][ T6585] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  257.943285][ T6839] loop4: detected capacity change from 0 to 16
[  257.966030][ T6585] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  257.991288][ T6839] erofs: (device loop4): mounted with root inode @ nid 36.
[  258.013427][ T6585] batman_adv: batadv0: Interface activated: batadv_slave_0
[  258.094336][ T6585] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  258.121447][ T6585] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  258.141680][ T6585] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  258.152738][ T6585] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  258.179039][ T6839] syz.4.204: attempt to access beyond end of device
[  258.179039][ T6839] loop4: rw=0, sector=296, nr_sectors = 8 limit=16
[  258.195622][ T6585] batman_adv: batadv0: Interface activated: batadv_slave_1
[  258.222932][ T6839] erofs: (device loop4): erofs_readdir: fail to readdir of logical block 0 of nid 36
[  258.237871][ T6585] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  258.264651][ T6585] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  258.277110][ T6585] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  258.291574][ T6585] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  258.531856][ T6669] veth0_vlan: entered promiscuous mode
[  258.569435][ T6669] veth1_vlan: entered promiscuous mode
[  258.577514][ T5776] Bluetooth: hci1: unexpected event 0x06 length: 13 > 3
[  258.767263][ T6669] veth0_macvtap: entered promiscuous mode
[  258.836485][ T6669] veth1_macvtap: entered promiscuous mode
[  258.902689][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  258.910647][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  259.024818][ T6669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  259.061531][ T6669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.101687][ T6669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  259.121491][ T6669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.175837][ T6669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  259.196953][ T6669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  259.226799][ T6669] batman_adv: batadv0: Interface activated: batadv_slave_0
[  259.275472][ T6669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  259.301579][ T6669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  260.709613][ T6669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  260.731484][ T6669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  260.741943][ T6669] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  260.793646][ T6669] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  260.823211][ T6669] batman_adv: batadv0: Interface activated: batadv_slave_1
[  260.937401][ T6669] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  260.947584][ T3466] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  260.965826][ T3466] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  260.974970][ T6669] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  260.991781][ T6669] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  261.001245][ T6669] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  261.453151][ T3466] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  261.461148][ T3466] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  262.869426][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  262.947768][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  263.091780][ T6873] netlink: 8 bytes leftover after parsing attributes in process `syz.5.243'.
[  264.946318][ T5782] Bluetooth: hci1: command 0x0406 tx timeout
[  265.037846][ T6877] loop6: detected capacity change from 0 to 2048
[  265.109345][ T6877] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  266.224159][ T6893] sg_write: data in/out 451548/226 bytes for SCSI command 0x0-- guessing data in;
[  266.224159][ T6893]    program syz.6.246 not setting count and/or reply_len properly
[  266.847005][ T6903] process 'syz.5.245' launched './file2' with NULL argv: empty string added
[  268.443527][ T5776] Bluetooth: hci0: unexpected event for opcode 0x1009
[  269.122238][ T6945] netlink: 8 bytes leftover after parsing attributes in process `syz.6.258'.
[  269.397234][ T6957] capability: warning: `syz.1.261' uses deprecated v2 capabilities in a way that may be insecure
[  275.311768][ T7022] netlink: 'syz.1.280': attribute type 4 has an invalid length.
[  276.291547][ T5833] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  276.391865][ T7033] ceph: Path missing in source
[  276.529750][ T5833] usb 6-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  276.571873][ T5833] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  276.579949][ T5833] usb 6-1: Product: syz
[  276.634957][ T5833] usb 6-1: Manufacturer: syz
[  276.652446][ T5833] usb 6-1: SerialNumber: syz
[  277.879333][ T5833] rtl8150 6-1:1.0: couldn't reset the device
[  277.912392][ T5833] rtl8150: probe of 6-1:1.0 failed with error -5
[  278.534507][ T7056] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  278.583479][ T7056] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  278.670671][ T7056] syz.5.287: vmalloc error: size 70368744185856, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=syz5,mems_allowed=0-1
[  278.810795][ T7056] CPU: 1 PID: 7056 Comm: syz.5.287 Not tainted syzkaller #0
[  278.818178][ T7056] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  278.828392][ T7056] Call Trace:
[  278.831749][ T7056]  <TASK>
[  278.834742][ T7056]  dump_stack_lvl+0x18c/0x250
[  278.839493][ T7056]  ? show_regs_print_info+0x20/0x20
[  278.844923][ T7056]  ? load_image+0x420/0x420
[  278.849548][ T7056]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  278.856032][ T7056]  ? cpuset_print_current_mems_allowed+0x2e7/0x360
[  278.862998][ T7056]  warn_alloc+0x246/0x340
[  278.867375][ T7056]  ? zone_watermark_ok_safe+0x230/0x230
[  278.873313][ T7056]  __vmalloc_node_range+0x126/0x1330
[  278.878636][ T7056]  ? __mutex_trylock_common+0x159/0x260
[  278.884460][ T7056]  ? trace_raw_output_contention_end+0xd0/0xd0
[  278.890725][ T7056]  ? trace_contention_end+0x39/0xe0
[  278.895951][ T7056]  ? __mutex_lock+0x315/0xcc0
[  278.900853][ T7056]  ? free_vm_area+0x50/0x50
[  278.905379][ T7056]  ? dvb_demux_do_ioctl+0x317/0x530
[  278.910685][ T7056]  ? tomoyo_check_path_acl+0x1c0/0x1c0
[  278.916346][ T7056]  ? mutex_lock_nested+0x20/0x20
[  278.921305][ T7056]  ? dvb_dmxdev_set_buffer_size+0xbe/0x1f0
[  278.927141][ T7056]  vmalloc+0x79/0x90
[  278.931142][ T7056]  ? dvb_dmxdev_set_buffer_size+0xbe/0x1f0
[  278.937056][ T7056]  dvb_dmxdev_set_buffer_size+0xbe/0x1f0
[  278.942815][ T7056]  dvb_demux_do_ioctl+0x454/0x530
[  278.947968][ T7056]  dvb_usercopy+0x195/0x2b0
[  278.952502][ T7056]  ? dvb_dmxdev_buffer_read+0x4c0/0x4c0
[  278.958155][ T7056]  ? dvb_generic_ioctl+0xb0/0xb0
[  278.963136][ T7056]  ? dvb_demux_poll+0x220/0x220
[  278.968003][ T7056]  dvb_demux_ioctl+0x29/0x30
[  278.972630][ T7056]  __se_sys_ioctl+0xfd/0x170
[  278.977246][ T7056]  do_syscall_64+0x55/0xa0
[  278.981679][ T7056]  ? clear_bhb_loop+0x40/0x90
[  278.986376][ T7056]  ? clear_bhb_loop+0x40/0x90
[  278.991087][ T7056]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  278.997010][ T7056] RIP: 0033:0x7f25af39cdd9
[  279.001449][ T7056] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  279.021333][ T7056] RSP: 002b:00007f25b027c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  279.029859][ T7056] RAX: ffffffffffffffda RBX: 00007f25af615fa0 RCX: 00007f25af39cdd9
[  279.038021][ T7056] RDX: 0000400000002000 RSI: 0000000000006f2d RDI: 0000000000000005
[  279.046280][ T7056] RBP: 00007f25af432d69 R08: 0000000000000000 R09: 0000000000000000
[  279.054621][ T7056] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  279.062864][ T7056] R13: 00007f25af616038 R14: 00007f25af615fa0 R15: 00007ffc5b24a9f8
[  279.070867][ T7056]  </TASK>
[  279.118792][ T7056] Mem-Info:
[  279.143120][ T7056] active_anon:50713 inactive_anon:0 isolated_anon:0
[  279.143120][ T7056]  active_file:18543 inactive_file:40056 isolated_file:0
[  279.143120][ T7056]  unevictable:768 dirty:87 writeback:0
[  279.143120][ T7056]  slab_reclaimable:10876 slab_unreclaimable:94041
[  279.143120][ T7056]  mapped:38529 shmem:46090 pagetables:737
[  279.143120][ T7056]  sec_pagetables:0 bounce:0
[  279.143120][ T7056]  kernel_misc_reclaimable:0
[  279.143120][ T7056]  free:1297584 free_pcp:8582 free_cma:0
[  279.321880][ T7056] Node 0 active_anon:201968kB inactive_anon:0kB active_file:74172kB inactive_file:160020kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:139520kB dirty:344kB writeback:0kB shmem:181776kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10856kB pagetables:2920kB sec_pagetables:0kB all_unreclaimable? no
[  279.425752][ T7056] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  279.481559][ T7056] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  279.776484][ T7056] lowmem_reserve[]: 0 2521 2522 2522 2522
[  279.823745][ T7056] Node 0 DMA32 free:1266028kB boost:0kB min:34644kB low:43304kB high:51964kB reserved_highatomic:0KB active_anon:214700kB inactive_anon:0kB active_file:74172kB inactive_file:159196kB unevictable:1536kB writepending:348kB present:3129332kB managed:2586952kB mlocked:0kB bounce:0kB free_pcp:17568kB local_pcp:2536kB free_cma:0kB
[  279.932859][ T7069] netlink: 754 bytes leftover after parsing attributes in process `syz.6.290'.
[  279.948131][ T7056] lowmem_reserve[]: 0 0 0 0 0
[  279.953884][ T7056] Node 0 Normal free:8kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:824kB unevictable:0kB writepending:0kB present:1048576kB managed:872kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  280.017179][ T7056] lowmem_reserve[]: 0 0 0 0 0
[  280.071726][ T7056] Node 1 Normal free:3895668kB boost:0kB min:55244kB low:69052kB high:82860kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:17888kB local_pcp:6176kB free_cma:0kB
[  280.171628][ T7056] lowmem_reserve[]: 0 0 0 0 0
[  280.226064][ T7056] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  280.311700][ T7056] Node 0 DMA32: 680*4kB (UME) 340*8kB (UM) 121*16kB (UME) 24*32kB (UME) 35*64kB (UME) 23*128kB (UME) 6*256kB (UME) 9*512kB (UME) 1*1024kB (E) 3*2048kB (UME) 304*4096kB (M) = 1271824kB
[  280.471247][ T7056] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  280.553716][ T7056] Node 1 Normal: 221*4kB (UME) 58*8kB (UME) 45*16kB (UME) 93*32kB (UME) 31*64kB (UME) 6*128kB (UE) 1*256kB (E) 3*512kB (UME) 1*1024kB (U) 1*2048kB (E) 948*4096kB (M) = 3895668kB
[  280.652625][ T7056] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  280.699186][ T7056] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  280.771990][ T7056] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  280.916021][ T7056] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  281.054291][ T7056] 101870 total pagecache pages
[  281.059245][ T7056] 0 pages in swap cache
[  281.161631][ T7056] Free swap  = 124996kB
[  281.176881][ T7056] Total swap = 124996kB
[  281.295486][ T7056] 2097051 pages RAM
[  281.299483][ T7056] 0 pages HighMem/MovableOnly
[  281.421685][ T7056] 416927 pages reserved
[  281.461493][ T7056] 0 pages cma reserved
[  281.637445][ T7098] netlink: 24 bytes leftover after parsing attributes in process `syz.6.296'.
[  282.615276][ T7113] Bluetooth: MGMT ver 1.22
[  284.346703][ T5833] usb 6-1: USB disconnect, device number 2
[  285.041674][ T7133] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[7134] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[7133]
[  285.761922][ T5833] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  285.982414][ T5833] usb 6-1: Using ep0 maxpacket: 16
[  286.025407][ T5833] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  286.067620][ T5833] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  286.096623][ T5833] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  286.123614][ T5833] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.154506][ T5833] usb 6-1: Product: syz
[  286.173171][ T5833] usb 6-1: Manufacturer: syz
[  286.185395][ T5833] usb 6-1: SerialNumber: syz
[  286.520664][ T5833] usb 6-1: 0:2 : does not exist
[  286.530778][ T5833] usb 6-1: unit 9 not found!
[  286.567478][ T5833] usb 6-1: 4:0: cannot get min/max values for control 1 (id 4)
[  286.613115][ T5833] usb 6-1: 4:0: cannot get min/max values for control 2 (id 4)
[  286.716469][ T5833] usb 6-1: USB disconnect, device number 3
[  286.804293][ T5783] udevd[5783]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  286.924428][ T7157] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  290.051670][ T7183] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[7184] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[7183]
[  292.545927][ T5776] Bluetooth: hci0: unexpected event for opcode 0x2062
[  295.088302][ T7240] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[7242] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[7240]
[  297.139589][ T5776] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  297.149041][ T5782] Bluetooth: hci3: command tx timeout
[  297.155390][ T5776] Bluetooth: hci0: Injecting HCI hardware error event
[  297.163724][ T5776] Bluetooth: hci0: hardware error 0x00
[  299.261681][ T5776] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  299.541247][   T27] kernel write not supported for file /cpu/0/msr (pid: 27 comm: kworker/1:1)
[  300.389802][ T7285] netlink: 'syz.6.333': attribute type 4 has an invalid length.
[  302.551644][  T787] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  302.751444][  T787] usb 2-1: Using ep0 maxpacket: 8
[  303.073368][  T787] usb 2-1: unable to get BOS descriptor or descriptor too short
[  303.095964][  T787] usb 2-1: config 10 has 0 interfaces, different from the descriptor's value: 9
[  303.194353][  T787] usb 2-1: New USB device found, idVendor=2357, idProduct=000d, bcdDevice=32.18
[  303.335246][ T7314] ptrace attach of "ci2-linux-6-6-kasan/syz-executor exec"[7315] was attempted by "ci2-linux-6-6-kasan/syz-executor exec"[7314]
[  303.350260][  T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  303.471917][  T787] usb 2-1: Product: syz
[  303.554661][  T787] usb 2-1: Manufacturer: syz
[  303.613688][  T787] usb 2-1: SerialNumber: syz
[  303.893402][  T787] usb 2-1: USB disconnect, device number 6
[  305.363976][ T5846] kernel write not supported for file /cpu/0/msr (pid: 5846 comm: kworker/0:7)
[  305.841861][ T7332] loop5: detected capacity change from 0 to 4095
[  306.631619][  T787] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  307.235293][  T787] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[  307.246528][  T787] usb 5-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xBA, skipping
[  307.281992][  T787] usb 5-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  307.301708][  T787] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  307.321992][  T787] usb 5-1: Product: syz
[  307.331203][  T787] usb 5-1: Manufacturer: syz
[  307.338440][  T787] usb 5-1: SerialNumber: syz
[  307.350267][  T787] usb 5-1: config 0 descriptor??
[  307.362117][ T7344] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  307.369524][ T7344] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  307.427465][  T787] usb 5-1: ucan: probing device on interface #0
[  307.470612][  T787] usb 5-1: ucan: invalid EP count (1)
[  307.490922][  T787] usb 5-1: ucan: probe failed; try to update the device firmware
[  307.638398][ T7361] netlink: 592 bytes leftover after parsing attributes in process `syz.5.355'.
[  308.483333][ T5833] kernel write not supported for file /cpu/0/msr (pid: 5833 comm: kworker/1:5)
[  309.494101][ T5833] usb 5-1: USB disconnect, device number 2
[  310.521947][ T5833] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[  310.744022][ T5833] usb 6-1: config 135 has an invalid interface number: 230 but max is 0
[  310.781971][ T5833] usb 6-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  310.819586][ T5833] usb 6-1: config 135 has no interface number 0
[  310.846889][ T5833] usb 6-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  310.898941][ T5833] usb 6-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  310.919071][ T5833] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  310.937587][ T5833] usb 6-1: Product: syz
[  310.957189][ T5833] usb 6-1: Manufacturer: syz
[  310.967305][ T5833] usb 6-1: SerialNumber: syz
[  310.986344][ T5833] uvcvideo 6-1:135.230: Found Unit with invalid ID 0
[  311.016948][ T5833] usb 6-1: Found UVC 0.00 device syz (18ec:3288)
[  311.032804][ T5833] usb 6-1: No valid video chain found.
[  311.231809][ T5846] usb 7-1: new low-speed USB device number 2 using dummy_hcd
[  311.282247][ T5814] usb 6-1: USB disconnect, device number 4
[  311.447452][ T5846] usb 7-1: No LPM exit latency info found, disabling LPM.
[  311.506577][ T5846] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid maxpacket 1799, setting to 0
[  311.561476][ T5846] usb 7-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 251, changing to 4
[  311.615926][ T5846] usb 7-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid maxpacket 16, setting to 0
[  311.670446][ T5846] usb 7-1: New USB device found, idVendor=245f, idProduct=931c, bcdDevice= 0.40
[  311.711898][ T5846] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  311.719981][ T5846] usb 7-1: Product: 퀛做퓔繸닅ꕁᮬ㩍ㅭꠧѴ褆㭂핡⃐㺟ὄ响큥⩔ꬂ漜苒य़뱩쌦䅑즣废魺שּׁ蘘ᢆ㣄ㆃሇ䛖楂䳝篮錑圊逾몋罀働鏐꙼兌皖ᜟ鵣峸䑶埵邑
[  311.781599][ T5846] usb 7-1: Manufacturer: 뺑⥉ᷯཽ캍ᖣҡﰫ콝骦険晻䄛㿶꬈st俩辄씬ﵵ卷靥䁽჋좕穈綠咹᪶빦副呼ꄢḯ㱜肗⼌䑕변䷖茁꺡槆䗹鸒棃怽〆׉眊㷼贁Ꞝⳣ狔赼ᡍ̣燉ﳼㅗ鵪﷋缣㊴ᯮ聫쭜ꓰ䎓ᄧ
[  311.856086][ T5846] usb 7-1: SerialNumber: 聡ޞ뙶〙⸸ꏋ㥇墿뱤曨䭩
[  311.970079][    T8] kernel write not supported for file /cpu/0/msr (pid: 8 comm: kworker/0:0)
[  312.404883][ T5846] usb 7-1: Audio class v2/v3 interfaces need an interface association
[  312.515714][ T5846] snd-usb-audio: probe of 7-1:1.0 failed with error -22
[  312.521740][ T7448] loop5: detected capacity change from 0 to 7
[  312.538181][ T7448] Dev loop5: unable to read RDB block 7
[  312.561026][ T7448]  loop5: AHDI p1 p2 p3
[  312.567390][ T7448] loop5: partition table partially beyond EOD, truncated
[  312.592167][ T5846] usb 7-1: can't set first interface for hiFace device.
[  312.599205][ T5846] snd-usb-hiface: probe of 7-1:1.0 failed with error -5
[  312.600620][ T7448] loop5: p1 start 7562610 is beyond EOD, 
[  312.644950][ T5846] usb 7-1: can't set first interface for hiFace device.
[  312.666525][ T7448] truncated
[  312.674781][ T7448] loop5: p2 start 1702059890 is beyond EOD, truncated
[  312.728378][ T5846] snd-usb-hiface: probe of 7-1:1.1 failed with error -5
[  312.782113][ T5846] usb 7-1: can't set first interface for hiFace device.
[  312.790305][ T5846] snd-usb-hiface: probe of 7-1:1.2 failed with error -5
[  312.826937][ T5846] usb 7-1: USB disconnect, device number 2
[  312.995161][ T7456] vivid-007: =================  START STATUS  =================
[  313.005808][ T7456] vivid-007: Generate PTS: true
[  313.011178][ T7456] vivid-007: Generate SCR: true
[  313.016329][ T7456] tpg source WxH: 640x360 (Y'CbCr)
[  313.021817][ T7456] tpg field: 1
[  313.025349][ T7456] tpg crop: 640x360@0x0
[  313.030163][ T7456] tpg compose: 640x360@0x0
[  313.035135][ T7456] tpg colorspace: 8
[  313.039078][ T7456] tpg transfer function: 0/0
[  313.043875][ T7456] tpg Y'CbCr encoding: 0/0
[  313.048469][ T7456] tpg quantization: 0/0
[  313.052745][ T7456] tpg RGB range: 0/2
[  313.056843][ T7456] vivid-007: ==================  END STATUS  ==================
[  313.751223][ T5783] udevd[5783]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  314.182146][ T7468] netlink: 28 bytes leftover after parsing attributes in process `syz.6.381'.
[  316.822514][ T5833] kernel write not supported for file /cpu/0/msr (pid: 5833 comm: kworker/1:5)
[  317.371755][  T787] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  317.662946][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  317.674888][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  317.765645][  T787] usb 7-1: Using ep0 maxpacket: 16
[  317.848176][  T787] usb 7-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4
[  317.895666][  T787] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.989042][  T787] usb 7-1: config 0 descriptor??
[  318.065839][  T787] gspca_main: sonixj-2.14.0 probing 0471:0327
[  319.611518][  T787] gspca_sonixj: reg_w1 err -110
[  319.616536][  T787] sonixj: probe of 7-1:0.0 failed with error -110
[  320.576085][  T787] kernel write not supported for file /cpu/0/msr (pid: 787 comm: kworker/1:2)
[  320.698759][  T787] usb 7-1: USB disconnect, device number 3
[  323.181703][ T5814] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  323.393948][ T5814] usb 2-1: config 0 has no interfaces?
[  323.420146][ T5814] usb 2-1: New USB device found, idVendor=12d1, idProduct=42f7, bcdDevice=aa.47
[  323.457217][ T5814] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  323.487151][ T5814] usb 2-1: config 0 descriptor??
[  324.965486][ T5814] usb 2-1: USB disconnect, device number 7
[  325.206480][ T7628] netlink: 36 bytes leftover after parsing attributes in process `syz.1.418'.
[  326.311826][   T28] audit: type=1326 audit(1778445488.305:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7635 comm="syz.1.421" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcaeab9cdd9 code=0x0
[  432.741380][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  432.748541][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5138/1:b..l P6585/1:b..l
[  432.758462][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=29341, q=281 ncpus=2)
[  432.766267][    C0] task:syz-executor    state:R  running task     stack:21576 pid:6585  ppid:6569   flags:0x00004000
[  432.777929][    C0] Call Trace:
[  432.781519][    C0]  <TASK>
[  432.785173][    C0]  __schedule+0x1553/0x45a0
[  432.790082][    C0]  ? mark_lock+0x94/0x320
[  432.794625][    C0]  ? asan.module_dtor+0x20/0x20
[  432.800264][    C0]  ? preempt_schedule+0xc0/0xd0
[  432.805633][    C0]  preempt_schedule_common+0x82/0xc0
[  432.810934][    C0]  preempt_schedule+0xc0/0xd0
[  432.815825][    C0]  ? schedule_preempt_disabled+0x20/0x20
[  432.821570][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  432.826872][    C0]  preempt_schedule_thunk+0x1a/0x30
[  432.832288][    C0]  _raw_spin_unlock+0x3a/0x40
[  432.836996][    C0]  ? copy_page_range+0x2b6f/0x3670
[  432.842329][    C0]  copy_page_range+0x2ba0/0x3670
[  432.847313][    C0]  ? pfn_valid+0x450/0x450
[  432.852035][    C0]  ? copy_mm+0x1232/0x1d80
[  432.856842][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  432.861981][    C0]  ? mas_empty_area_rev+0x1960/0x1960
[  432.867718][    C0]  ? down_write+0x16e/0x200
[  432.874150][    C0]  ? up_write+0x1c3/0x410
[  432.878842][    C0]  ? anon_vma_interval_tree_verify+0x150/0x150
[  432.885465][    C0]  copy_mm+0x1281/0x1d80
[  432.889914][    C0]  ? copy_signal+0x680/0x680
[  432.894623][    C0]  ? lockdep_init_map_type+0x9c/0x8e0
[  432.900043][    C0]  ? __init_rwsem+0x122/0x160
[  432.904828][    C0]  ? copy_signal+0x556/0x680
[  432.909620][    C0]  copy_process+0x16f7/0x3d80
[  432.914779][    C0]  ? copy_process+0x96e/0x3d80
[  432.919847][    C0]  ? __pidfd_prepare+0x140/0x140
[  432.924923][    C0]  kernel_clone+0x24b/0x8a0
[  432.929556][    C0]  ? create_io_thread+0x190/0x190
[  432.934927][    C0]  ? __might_fault+0xaa/0x120
[  432.939979][    C0]  __x64_sys_clone+0x1b7/0x230
[  432.945320][    C0]  ? __ia32_sys_vfork+0x140/0x140
[  432.951018][    C0]  ? lock_chain_count+0x20/0x20
[  432.956099][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  432.961700][    C0]  do_syscall_64+0x55/0xa0
[  432.967138][    C0]  ? clear_bhb_loop+0x40/0x90
[  432.972582][    C0]  ? clear_bhb_loop+0x40/0x90
[  432.979075][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  432.985622][    C0] RIP: 0033:0x7f25af3c5852
[  432.990243][    C0] RSP: 002b:00007ffc5b24ac10 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[  433.000606][    C0] RAX: ffffffffffffffda RBX: 00007ffc5b24ac10 RCX: 00007f25af3c5852
[  433.008969][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[  433.017211][    C0] RBP: 00007ffc5b24ad9c R08: 0000000000000000 R09: 0000000000000001
[  433.025680][    C0] R10: 00005555773387d0 R11: 0000000000000246 R12: 0000000000000001
[  433.034334][    C0] R13: 00000000000927c0 R14: 000000000004fef2 R15: 00007ffc5b24adf0
[  433.042902][    C0]  </TASK>
[  433.046109][    C0] task:udevd           state:R  running task     stack:25032 pid:5138  ppid:1      flags:0x00004002
[  433.057785][    C0] Call Trace:
[  433.061069][    C0]  <TASK>
[  433.064361][    C0]  __schedule+0x1553/0x45a0
[  433.069343][    C0]  ? __x64_sys_openat+0x139/0x160
[  433.074613][    C0]  ? asan.module_dtor+0x20/0x20
[  433.079585][    C0]  ? mark_lock+0x94/0x320
[  433.084103][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  433.090196][    C0]  ? preempt_schedule_irq+0xb4/0x150
[  433.095525][    C0]  preempt_schedule_irq+0xbf/0x150
[  433.101573][    C0]  ? preempt_schedule_notrace+0x110/0x110
[  433.107684][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  433.113786][    C0]  irqentry_exit+0x67/0x70
[  433.118301][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  433.124476][    C0] RIP: 0010:lock_acquire+0x8a/0x420
[  433.129798][    C0] Code: 8c 48 c7 44 24 70 30 2a 68 81 4c 8d 64 24 60 49 c1 ec 03 48 b8 f1 f1 f1 f1 f8 f2 f2 f2 4b 89 04 3c 43 c7 44 3c 08 f8 f3 f3 f3 <0f> 1f 44 00 00 65 8b 05 06 8b 9b 7e 83 f8 08 0f 83 a0 01 00 00 41
[  433.150833][    C0] RSP: 0018:ffffc900032876e0 EFLAGS: 00000a06
[  433.157000][    C0] RAX: f2f2f2f8f1f1f1f1 RBX: 0000000000000000 RCX: 0000000000000002
[  433.165147][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff8d1320e0
[  433.173432][    C0] RBP: ffffc900032877f0 R08: 0000000000000000 R09: 0000000000000000
[  433.181779][    C0] R10: 0000000000000004 R11: 0000000000000000 R12: 1ffff92000650ee8
[  433.190127][    C0] R13: ffffffff8d1320e0 R14: 00007fccf4111b0a R15: dffffc0000000000
[  433.198160][    C0]  ? read_lock_is_recursive+0x20/0x20
[  433.203994][    C0]  ? __read_once_word_nocheck+0x9/0x10
[  433.210440][    C0]  ? deref_stack_reg+0x1bd/0x240
[  433.215572][    C0]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  433.222024][    C0]  is_bpf_text_address+0x47/0x2a0
[  433.227691][    C0]  ? is_bpf_text_address+0x26/0x2a0
[  433.232929][    C0]  ? is_bpf_text_address+0x26/0x2a0
[  433.238265][    C0]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  433.244633][    C0]  kernel_text_address+0xa0/0xd0
[  433.249784][    C0]  __kernel_text_address+0xd/0x30
[  433.255465][    C0]  unwind_get_return_address+0x5d/0xc0
[  433.261032][    C0]  ? stack_trace_save+0x100/0x100
[  433.266071][    C0]  arch_stack_walk+0x11d/0x190
[  433.271294][    C0]  stack_trace_save+0xaa/0x100
[  433.276798][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  433.282195][    C0]  ? verify_lock_unused+0x140/0x140
[  433.287886][    C0]  ? __lock_acquire+0x1273/0x7d40
[  433.293247][    C0]  kasan_set_track+0x4e/0x70
[  433.298478][    C0]  ? kasan_set_track+0x4e/0x70
[  433.303393][    C0]  ? __kasan_slab_alloc+0x6c/0x80
[  433.308806][    C0]  ? slab_post_alloc_hook+0x6e/0x4b0
[  433.314372][    C0]  ? kmem_cache_alloc+0x11a/0x2d0
[  433.319511][    C0]  ? getname_flags+0xbb/0x500
[  433.324214][    C0]  ? vfs_fstatat+0x111/0x1b0
[  433.328835][    C0]  ? __x64_sys_newfstatat+0x149/0x1f0
[  433.334408][    C0]  ? do_syscall_64+0x55/0xa0
[  433.339144][    C0]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  433.345251][    C0]  __kasan_slab_alloc+0x6c/0x80
[  433.350566][    C0]  slab_post_alloc_hook+0x6e/0x4b0
[  433.355804][    C0]  kmem_cache_alloc+0x11a/0x2d0
[  433.360674][    C0]  ? getname_flags+0xbb/0x500
[  433.365464][    C0]  getname_flags+0xbb/0x500
[  433.370093][    C0]  vfs_fstatat+0x111/0x1b0
[  433.374624][    C0]  __x64_sys_newfstatat+0x149/0x1f0
[  433.379857][    C0]  ? __ia32_sys_newlstat+0x1e0/0x1e0
[  433.385347][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  433.391007][    C0]  do_syscall_64+0x55/0xa0
[  433.395456][    C0]  ? clear_bhb_loop+0x40/0x90
[  433.400355][    C0]  ? clear_bhb_loop+0x40/0x90
[  433.405199][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  433.411391][    C0] RIP: 0033:0x7fccf4111b0a
[  433.415941][    C0] RSP: 002b:00007ffcb7212318 EFLAGS: 00000246 ORIG_RAX: 0000000000000106
[  433.425375][    C0] RAX: ffffffffffffffda RBX: 00007ffcb72127b0 RCX: 00007fccf4111b0a
[  433.433555][    C0] RDX: 00007ffcb7212320 RSI: 00007ffcb72127b0 RDI: 00000000ffffff9c
[  433.441559][    C0] RBP: 000055eef6b8b910 R08: 0000000000000000 R09: 0000000000000001
[  433.450786][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcb72123b0
[  433.459289][    C0] R13: 00000000000000fe R14: 000055eed0649be0 R15: 00007ffcb7212eb0
[  433.467750][    C0]  </TASK>
[  433.470888][    C0] rcu: rcu_preempt kthread starved for 10452 jiffies! g29341 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  433.482641][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  433.493678][    C0] rcu: RCU grace-period kthread stack dump:
[  433.499745][    C0] task:rcu_preempt     state:R  running task     stack:26632 pid:17    ppid:2      flags:0x00004000
[  433.511000][    C0] Call Trace:
[  433.514293][    C0]  <TASK>
[  433.517337][    C0]  __schedule+0x1553/0x45a0
[  433.521880][    C0]  ? asan.module_dtor+0x20/0x20
[  433.526760][    C0]  ? enqueue_timer+0x23d/0x550
[  433.531628][    C0]  ? __mod_timer+0x984/0xdb0
[  433.536525][    C0]  schedule+0xbd/0x170
[  433.540697][    C0]  schedule_timeout+0x188/0x2d0
[  433.545930][    C0]  ? console_conditional_schedule+0x40/0x40
[  433.552443][    C0]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  433.558419][    C0]  ? update_process_times+0x1b0/0x1b0
[  433.563905][    C0]  ? prepare_to_swait_event+0x339/0x360
[  433.569832][    C0]  rcu_gp_fqs_loop+0x313/0x1590
[  433.574820][    C0]  ? dyntick_save_progress_counter+0x2b0/0x2b0
[  433.580989][    C0]  ? rcu_gp_init+0x1560/0x1560
[  433.586120][    C0]  ? rcu_gp_cleanup+0xb41/0xc90
[  433.591161][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  433.596633][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  433.602206][    C0]  rcu_gp_kthread+0x9d/0x3b0
[  433.608366][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  433.614038][    C0]  ? __kthread_parkme+0x7a/0x1c0
[  433.619789][    C0]  ? __kthread_parkme+0x162/0x1c0
[  433.625114][    C0]  kthread+0x2fa/0x390
[  433.629274][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  433.634416][    C0]  ? kthread_blkcg+0xd0/0xd0
[  433.639030][    C0]  ret_from_fork+0x48/0x80
[  433.644036][    C0]  ? kthread_blkcg+0xd0/0xd0
[  433.648964][    C0]  ret_from_fork_asm+0x11/0x20
[  433.653931][    C0]  </TASK>
[  433.657178][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  433.663886][    C0] Sending NMI from CPU 0 to CPUs 1:
[  433.669239][    C1] NMI backtrace for cpu 1
[  433.669251][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[  433.669265][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  433.669273][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x10
[  433.669297][    C1] Code: 19 21 02 c3 cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d e3 d3 41 00 fb f4 <c3> 66 0f 1f 00 55 41 57 41 56 41 54 53 50 8b 2f eb 2e 41 89 de 80
[  433.669308][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6
[  433.669322][    C1] RAX: 06ef763aab340000 RBX: ffffffff8162a8f1 RCX: 06ef763aab340000
[  433.669333][    C1] RDX: 0000000000000001 RSI: ffffffff8acac9e0 RDI: ffffffff8b1c8fa0
[  433.669343][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65
[  433.669353][    C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: 1ffff92000030fc8
[  433.669363][    C1] R13: dffffc0000000000 R14: 1ffff1100344e780 R15: 0000000000000000
[  433.669373][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  433.669385][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  433.669395][    C1] CR2: 00007f25b01456b8 CR3: 000000006a6d2000 CR4: 00000000003526e0
[  433.669410][    C1] Call Trace:
[  433.669419][    C1]  <TASK>
[  433.669424][    C1]  default_idle+0x13/0x20
[  433.669441][    C1]  default_idle_call+0x6c/0xa0
[  433.669460][    C1]  do_idle+0x221/0x590
[  433.669480][    C1]  ? idle_inject_timer_fn+0x60/0x60
[  433.669497][    C1]  ? asm_sysvec_call_function_single+0x1a/0x20
[  433.669523][    C1]  cpu_startup_entry+0x43/0x60
[  433.669539][    C1]  start_secondary+0xee/0xf0
[  433.669554][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[  433.669580][    C1]  </TASK>
[  433.848853][    C0] sched: RT throttling activated
[  434.168810][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  434.189904][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
SYZFAIL: failed to send rpc
fd=3 want=360 sent=0 n=-1 (errno 32: Broken pipe)
[  436.221653][ T5786] Bluetooth: hci2: command 0x0406 tx timeout
[  436.562534][ T5786] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  436.572772][ T5895] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.589385][ T5786] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  436.602033][ T5786] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  436.613759][ T5786] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  436.632181][ T5786] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  436.642621][ T5786] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  436.806470][ T5895] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.896348][ T5895] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.008489][ T5895] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  437.292621][ T7681] chnl_net:caif_netlink_parms(): no params data found
[  437.497544][ T7681] bridge0: port 1(bridge_slave_0) entered blocking state
[  437.508125][ T7681] bridge0: port 1(bridge_slave_0) entered disabled state
[  437.516132][ T7681] bridge_slave_0: entered allmulticast mode
[  437.525777][ T7681] bridge_slave_0: entered promiscuous mode
[  437.535071][ T7681] bridge0: port 2(bridge_slave_1) entered blocking state
[  437.542682][ T7681] bridge0: port 2(bridge_slave_1) entered disabled state
[  437.550083][ T7681] bridge_slave_1: entered allmulticast mode
[  437.559677][ T7681] bridge_slave_1: entered promiscuous mode
[  437.625330][ T7681] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  437.640427][ T7681] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  437.734766][ T7681] team0: Port device team_slave_0 added
[  437.784960][ T7681] team0: Port device team_slave_1 added
[  437.898540][ T7681] batman_adv: batadv0: Adding interface: batadv_slave_0
[  437.905994][ T7681] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  437.935782][ T7681] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  437.971202][ T7681] batman_adv: batadv0: Adding interface: batadv_slave_1
[  437.978837][ T7681] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  438.008738][ T7681] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  438.095889][ T7681] hsr_slave_0: entered promiscuous mode
[  438.107100][ T7681] hsr_slave_1: entered promiscuous mode
[  438.119394][ T7681] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  438.131892][ T7681] Cannot create hsr debugfs directory
[  438.572985][ T5895] hsr_slave_0: left promiscuous mode
[  438.579505][ T5895] hsr_slave_1: left promiscuous mode
[  438.597469][ T5895] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  438.608510][ T5895] batman_adv: batadv0: Removing interface: batadv_slave_0
[  438.620982][ T5895] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  438.637143][ T5895] batman_adv: batadv0: Removing interface: batadv_slave_1
[  438.647313][ T5895] bridge_slave_1: left allmulticast mode
[  438.665868][ T5895] bridge_slave_1: left promiscuous mode
[  438.677883][ T5895] bridge0: port 2(bridge_slave_1) entered disabled state
[  438.690724][ T5895] bridge_slave_0: left allmulticast mode
[  438.701711][ T5776] Bluetooth: hci0: command tx timeout
[  438.717156][ T5895] bridge_slave_0: left promiscuous mode
[  438.725938][ T5895] bridge0: port 1(bridge_slave_0) entered disabled state
[  438.788028][ T5895] veth1_macvtap: left promiscuous mode
[  438.799926][ T5895] veth0_macvtap: left promiscuous mode
[  438.807924][ T5895] veth1_vlan: left promiscuous mode
[  438.818654][ T5895] veth0_vlan: left promiscuous mode
[  439.661197][ T5895] team0 (unregistering): Port device team_slave_1 removed
[  439.719358][ T5895] team0 (unregistering): Port device team_slave_0 removed
[  439.777236][ T5895] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  439.839729][ T5895] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  440.251296][ T5895] bond0 (unregistering): Released all slaves
[  440.377155][ T7681] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  440.390548][ T7681] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  440.409549][ T7681] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  440.431827][ T7681] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  440.474707][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  440.494169][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  440.690301][ T7681] 8021q: adding VLAN 0 to HW filter on device bond0
[  440.716065][ T7681] 8021q: adding VLAN 0 to HW filter on device team0
[  440.733510][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  440.740783][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  440.759061][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  440.766528][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  440.790049][ T5776] Bluetooth: hci0: command tx timeout
[  440.876900][ T7681] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  441.064107][ T5895] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.173008][ T5895] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.250836][ T5895] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.298525][ T7681] 8021q: adding VLAN 0 to HW filter on device batadv0
[  441.354951][ T5895] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.643954][ T5895] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.736099][ T5895] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.839033][ T5895] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.925443][ T5895] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  441.944028][ T7681] veth0_vlan: entered promiscuous mode
[  441.964679][ T7681] veth1_vlan: entered promiscuous mode
[  442.054196][ T7681] veth0_macvtap: entered promiscuous mode
[  442.075807][ T7681] veth1_macvtap: entered promiscuous mode
[  442.098266][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  442.110832][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.123788][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  442.137035][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.150126][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  442.166306][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.178924][ T7681] batman_adv: batadv0: Interface activated: batadv_slave_0
[  442.211214][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  442.230134][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.242580][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  442.256552][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.269899][ T7681] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  442.281461][ T7681] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  442.294087][ T7681] batman_adv: batadv0: Interface activated: batadv_slave_1
[  442.398298][ T7681] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  442.419017][ T7681] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  442.429302][ T7681] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  442.438706][ T7681] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  442.480777][ T5895] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.573142][ T5895] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.665841][ T5895] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  442.708872][  T142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  442.735319][  T142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  442.747044][ T5895] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0