last executing test programs:

2.459431716s ago: executing program 2 (id=170):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000200)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
migrate_pages(0x0, 0xa94b, 0x0, 0x0)

2.337354405s ago: executing program 2 (id=171):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000340)='/proc/bus/input/handlers\x00', 0x0, 0x0)

2.335530599s ago: executing program 1 (id=172):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200003, 0x0, 0x0, 0x3, 0x800})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040), 0x6)
ioctl$sock_bt_hci(r0, 0x400448e7, 0x0)

2.326771968s ago: executing program 2 (id=173):
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f0000000180)=@abs={0x1, 0x0, 0x4e24}, 0x6e)
listen(r0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, 0x0}}], 0x0, 0x0, 0x0})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

2.273061492s ago: executing program 1 (id=174):
r0 = syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000040))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0xfffffffffffffd83, 0xfa00, {0x0, 0x0}}, 0xfdbc)
ioctl$SNDRV_PCM_IOCTL_SW_PARAMS(r2, 0xc0884113, &(0x7f0000000240)={0x1, 0x0, 0x203, 0x0, 0xffffffffffffffff, 0x1, 0x8, 0x200, 0x5a56, 0x2c, 0x80000006, 0x1})

2.223013184s ago: executing program 2 (id=175):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080), 0xffffffffffffffff)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
sendmsg$GTP_CMD_DELPDP(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000002c0)={0x24, r1, 0x1, 0x70bd27, 0x25dfdbff, {}, [@GTPA_LINK={0x8, 0x1, r3}, @GTPA_VERSION={0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x1884)

2.197867668s ago: executing program 2 (id=177):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x256c, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x22, 0x5, {[@local=@item_4={0x3, 0x2, 0x2, "19fde941"}]}}, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000480)={0x2c, 0x0, &(0x7f0000000240)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x3445}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f00000009c0)={0x2c, 0x0, &(0x7f0000000380)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000400000e0000000000000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
syz_usb_control_io(r0, &(0x7f0000000200)={0x2c, 0x0, &(0x7f0000000a00)={0x0, 0x3, 0xc, @string={0xc, 0x3, "2949439d1859e5ae217d"}}, 0x0, 0x0, 0x0}, 0x0)

1.362814s ago: executing program 1 (id=183):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={<r2=>0x0}, &(0x7f00000000c0)=0x8)
getsockopt$inet_sctp_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f00000000c0)={r2, 0x4, 0x2, 0x3}, &(0x7f0000000140)=0x10)

1.362576049s ago: executing program 1 (id=184):
syz_usb_connect$cdc_ncm(0x3, 0x6e, &(0x7f0000000140)={{0x12, 0x1, 0x310, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x69, 0xeec2ee4064794930, 0x2, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x42fc}, {0xd, 0x24, 0xf, 0x1, 0x783, 0x5, 0x8, 0xb}, {0x6, 0x24, 0x1a, 0x8}}, {{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x58, 0x3, 0xf}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x400, 0x4, 0x6, 0x3}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0x14, 0xa, 0x9}}}}}}}]}}, &(0x7f0000000300)={0x0, 0x0, 0x2d, &(0x7f0000000240)={0x5, 0xf, 0x2d, 0x2, [@ssp_cap={0x14, 0x10, 0xa, 0x5, 0x2, 0x1, 0x0, 0x4, [0xc0cf, 0x7]}, @ss_container_id={0x14, 0x10, 0x4, 0xf, "2538d9a8f6876ae0acb6e4acbc32cf9e"}]}})

493.059178ms ago: executing program 0 (id=185):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000900)={0x2, 0x3, &(0x7f00000000c0)=@framed={{0x18, 0x0, 0x0, 0x18}}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x61e5cc96}, 0x94)

492.782028ms ago: executing program 0 (id=186):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006100000018010000646c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={0xffffffffffffffff, 0x18000000000002a0, 0x28, 0x0, &(0x7f00000002c0)="b9ff03076003008cb89e08f086dd", 0x0, 0x5da0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x86, 0xe40, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

423.178938ms ago: executing program 0 (id=187):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000002240)='./file0\x00', 0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x2c0, &(0x7f00000006c0)="$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")
mount$nfs(&(0x7f0000000100)='8..', 0x0, 0x0, 0xc0036, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x80342, 0x0)
unlink(&(0x7f0000000100)='./file0\x00')

370.868889ms ago: executing program 0 (id=188):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7a, &(0x7f0000000340)={r2, @in={{0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, &(0x7f0000000040)=0x84)
getsockopt$inet_sctp_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000002c0)={0x0, 0x0, 0x30}, &(0x7f0000000680)=0xc)

370.457294ms ago: executing program 0 (id=189):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x201000a, &(0x7f00000001c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000002,nostrict,uid=', @ANYRESOCT=0x0, @ANYRES16=0x0], 0x6, 0xc36, &(0x7f0000002540)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000300)='./bus\x00', 0x3000009, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})

254.944384ms ago: executing program 0 (id=190):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe3}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='cubic', 0x4)
sendmmsg$inet(r0, &(0x7f0000001e40)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000ac0)="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", 0x713}], 0x1}}], 0x1, 0x40)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000480)=0x1df9, 0x4)
sendto$inet(r0, &(0x7f0000000580)="17", 0x1d4c, 0x10048095, 0x0, 0x0)

101.113984ms ago: executing program 1 (id=191):
syz_emit_ethernet(0x2a, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x66, 0x0, 0x4, 0x2, 0x0, @empty, @multicast2}, @address_request={0x11, 0x0, 0x0, 0x50}}}}}, 0x0)

23.077366ms ago: executing program 1 (id=192):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000fc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000080)="3bfdd75fa5717852d59a9367444a2130e72cd4dabc8854532cca0c32a5b9f844a4610c7525650ce3d3b76b15026d93e6dee896115e9364066aa3d14e33ef732b4681335c576902153114bdb9c74b538a71115fb1d1a63d1b04129661b29aab89d0be999a6b7c9bea755adedbf305a79f70b71d3d4c98577b49db4963ce89b0def5e840f459659cb6f86d56b069a5de11d601d348ff88ca6e5e2cfe40176880b33e9e8dbc32ba2e6a99b1b50276dc4f06166000d7069a3cc76f", 0xb9}, {&(0x7f0000000180)="892950e2405ee8629d9384a91c16d1706a3e61f305119f95cac0f1927f4c205b971eb41147cb1f86883d6910e68ac3996551800b3ec64b77f8444b18345a2c8b178eeeba0cde7319a5a46bfe7f5770e019efd9d52069edcced33a758c4e657f3a792dc193a1911b4e82ea800ad7afe03c851a8", 0x73}, {&(0x7f0000000200)="a68cde0d56b170df7710b54f17d9a39c4f98f3547190", 0x20000216}, {&(0x7f0000000240)="45e04400f2b383517a08c397dd0a76e67ecfc8e74573c24dedd3a48fb62418c1412fdcd15e888cb0f5d02e77bfecefda6b064c0bb2b66a9a522e63873dde02330510255eec7dfa1af708cdab59fb71eca786a359a2c3b0cbad35144ec5b069c53f90e43339845dc7fd140c55b0149ab38eb27c140f374bcc2c95b0b121d1a9302f3a01b888243b3fc0d46f0de0", 0x8d}, {&(0x7f0000000300)="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", 0xcb3}], 0x5, &(0x7f0000001480)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @private, @multicast1}}}], 0x20}, 0x0)
recvmsg$unix(r1, &(0x7f0000001140)={0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000015c0)=""/4096, 0x7ffff000}], 0x1, 0x0, 0x2}, 0x40000300)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r2 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r2, &(0x7f00000092c0), 0x4ff, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)

0s ago: executing program 2 (id=193):
r0 = syz_open_dev$swradio(&(0x7f00000001c0), 0x0, 0x2)
ioctl$VIDIOC_QUERYBUF(r0, 0xc0585609, &(0x7f0000000740)=@multiplanar_userptr={0x400, 0x9, 0x4, 0x1000, 0x475, {}, {0x1, 0x1, 0x8, 0x1, 0xd0, 0xd, "dc89e410"}, 0x3ad, 0x2, {0x0}})

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:23296' (ED25519) to the list of known hosts.
syzkaller login: [   63.932098][ T5837] cgroup: Unknown subsys name 'net'
[   64.089701][ T5837] cgroup: Unknown subsys name 'cpuset'
[   64.093676][ T5837] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   66.095330][ T5837] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   71.211880][ T1362] ieee802154 phy0 wpan0: encryption failed: -22
[   71.214309][ T1362] ieee802154 phy1 wpan1: encryption failed: -22
[   74.508104][   T56] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   74.512849][   T56] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   74.516665][   T56] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   74.520889][   T56] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   74.524802][   T56] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   74.557472][ T5236] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   74.561615][ T5236] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   74.565912][ T5236] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   74.573119][ T5236] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   74.577015][ T5236] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   74.659256][   T56] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   74.663243][   T56] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   74.667528][   T56] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   74.671515][   T56] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   74.675040][   T56] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   74.909809][ T5846] chnl_net:caif_netlink_parms(): no params data found
[   75.010252][ T5850] chnl_net:caif_netlink_parms(): no params data found
[   75.076412][ T5846] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.079531][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.082677][ T5846] bridge_slave_0: entered allmulticast mode
[   75.087748][ T5846] bridge_slave_0: entered promiscuous mode
[   75.109562][ T5846] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.111941][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.114537][ T5846] bridge_slave_1: entered allmulticast mode
[   75.118814][ T5846] bridge_slave_1: entered promiscuous mode
[   75.192248][ T5846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.195584][ T5850] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.199049][ T5850] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.202301][ T5850] bridge_slave_0: entered allmulticast mode
[   75.205706][ T5850] bridge_slave_0: entered promiscuous mode
[   75.229573][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.233479][ T5850] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.236190][ T5850] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.239111][ T5850] bridge_slave_1: entered allmulticast mode
[   75.241984][ T5850] bridge_slave_1: entered promiscuous mode
[   75.287334][ T5850] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.303171][ T5854] chnl_net:caif_netlink_parms(): no params data found
[   75.312828][ T5850] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.317858][ T5846] team0: Port device team_slave_0 added
[   75.340708][ T5846] team0: Port device team_slave_1 added
[   75.370520][ T5850] team0: Port device team_slave_0 added
[   75.397431][ T5850] team0: Port device team_slave_1 added
[   75.405519][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.408702][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.418686][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.454767][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.457533][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.467033][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.486926][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.489911][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.498672][ T5850] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.526911][ T5850] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.529432][ T5850] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.539439][ T5850] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.557199][ T5846] hsr_slave_0: entered promiscuous mode
[   75.560839][ T5846] hsr_slave_1: entered promiscuous mode
[   75.563514][ T5854] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.565928][ T5854] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.569213][ T5854] bridge_slave_0: entered allmulticast mode
[   75.572282][ T5854] bridge_slave_0: entered promiscuous mode
[   75.583554][ T5854] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.586905][ T5854] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.589520][ T5854] bridge_slave_1: entered allmulticast mode
[   75.592506][ T5854] bridge_slave_1: entered promiscuous mode
[   75.651259][ T5854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   75.683837][ T5854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   75.698463][ T5850] hsr_slave_0: entered promiscuous mode
[   75.701503][ T5850] hsr_slave_1: entered promiscuous mode
[   75.704314][ T5850] debugfs: 'hsr0' already exists in 'hsr'
[   75.706699][ T5850] Cannot create hsr debugfs directory
[   75.750418][ T5854] team0: Port device team_slave_0 added
[   75.779762][ T5854] team0: Port device team_slave_1 added
[   75.873104][ T5854] batman_adv: batadv0: Adding interface: batadv_slave_0
[   75.875898][ T5854] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.885849][ T5854] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   75.900181][ T5854] batman_adv: batadv0: Adding interface: batadv_slave_1
[   75.902928][ T5854] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   75.911809][ T5854] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   75.990139][ T5854] hsr_slave_0: entered promiscuous mode
[   75.993941][ T5854] hsr_slave_1: entered promiscuous mode
[   75.997601][ T5854] debugfs: 'hsr0' already exists in 'hsr'
[   75.999911][ T5854] Cannot create hsr debugfs directory
[   76.089713][ T5846] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   76.112654][ T5846] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   76.119921][ T5846] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   76.143199][ T5846] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   76.219797][ T5850] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   76.228784][ T5850] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   76.242789][ T5850] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   76.250393][ T5850] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   76.323579][ T5854] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   76.333386][ T5854] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   76.342017][ T5854] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   76.359096][ T5854] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   76.413814][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.444951][ T5850] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.453969][ T5846] 8021q: adding VLAN 0 to HW filter on device team0
[   76.471402][ T1091] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.474255][ T1091] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.492286][  T136] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.495033][  T136] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.502531][ T5850] 8021q: adding VLAN 0 to HW filter on device team0
[   76.524037][  T136] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.526688][  T136] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.544105][ T3047] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.546788][ T3047] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.567753][   T56] Bluetooth: hci0: command tx timeout
[   76.621017][ T5854] 8021q: adding VLAN 0 to HW filter on device bond0
[   76.656603][   T56] Bluetooth: hci1: command tx timeout
[   76.683567][ T5854] 8021q: adding VLAN 0 to HW filter on device team0
[   76.709741][ T1091] bridge0: port 1(bridge_slave_0) entered blocking state
[   76.712569][ T1091] bridge0: port 1(bridge_slave_0) entered forwarding state
[   76.725424][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.728445][   T56] Bluetooth: hci2: command tx timeout
[   76.734090][ T3603] bridge0: port 2(bridge_slave_1) entered blocking state
[   76.737328][ T3603] bridge0: port 2(bridge_slave_1) entered forwarding state
[   76.857482][ T5846] veth0_vlan: entered promiscuous mode
[   76.880566][ T5846] veth1_vlan: entered promiscuous mode
[   76.893597][ T5850] 8021q: adding VLAN 0 to HW filter on device batadv0
[   76.944731][ T5846] veth0_macvtap: entered promiscuous mode
[   76.959583][ T5846] veth1_macvtap: entered promiscuous mode
[   77.000752][ T5850] veth0_vlan: entered promiscuous mode
[   77.013037][ T5850] veth1_vlan: entered promiscuous mode
[   77.022660][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.048380][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.060550][ T5854] 8021q: adding VLAN 0 to HW filter on device batadv0
[   77.072199][ T5874] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.077633][ T5874] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.080817][ T5874] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.100679][ T5874] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.127931][ T5850] veth0_macvtap: entered promiscuous mode
[   77.133758][ T5850] veth1_macvtap: entered promiscuous mode
[   77.183458][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.228280][ T5850] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.233662][ T5854] veth0_vlan: entered promiscuous mode
[   77.247003][   T66] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.250227][   T66] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.262652][ T5715] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.271447][ T5715] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.290802][ T5715] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.301920][ T5854] veth1_vlan: entered promiscuous mode
[   77.311123][ T5715] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.317438][   T66] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.325659][   T66] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.384031][ T5854] veth0_macvtap: entered promiscuous mode
[   77.404210][ T5854] veth1_macvtap: entered promiscuous mode
[   77.410302][ T5846] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   77.424327][ T1091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.435550][ T1091] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.491360][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_0
[   77.497974][  T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.501096][  T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.511837][ T5854] batman_adv: batadv0: Interface activated: batadv_slave_1
[   77.545173][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   77.553331][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   77.569935][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   77.573155][   T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   77.676670][ T5915] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3'.
[   77.698495][  T136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.701492][  T136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.771483][  T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.775772][  T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   78.134895][ T5934] NILFS (loop0): device size too small
[   78.155439][ T5940] overlayfs: failed to resolve './file1metacopy=off': -2
[   78.309514][ T5946] comedi comedi4: bad chanlist[0]=0x00080004 chan=4 range length=2
[   78.323265][ T5943] I/O error, dev loop0, sector 2 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[   78.345059][ T5943] hfsplus: unable to find HFS+ superblock
[   78.400152][ T5948] binder: 5947:5948 ioctl c018620c 200000000080 returned -22
[   78.461249][ T5951] netlink: 68 bytes leftover after parsing attributes in process `syz.1.20'.
[   78.646664][   T56] Bluetooth: hci0: command tx timeout
[   78.733388][   T56] Bluetooth: hci1: command tx timeout
[   78.807283][   T56] Bluetooth: hci2: command tx timeout
[   78.944944][ T5980] capability: warning: `syz.2.34' uses deprecated v2 capabilities in a way that may be insecure
[   78.966951][ T5981] sctp: [Deprecated]: syz.1.33 (pid 5981) Use of struct sctp_assoc_value in delayed_ack socket option.
[   78.966951][ T5981] Use struct sctp_sack_info instead
[   79.233161][ T5989] NILFS (loop0): device size too small
[   79.610793][   T10] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[   79.806875][ T6009] ref_ctr going negative. vaddr: 0x200000ffc002, curr val: -29824, delta: 1
[   79.810697][ T6009] ref_ctr increment failed for inode: 0x62 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88801a87ab00
[   79.850573][   T33] audit: type=1804 audit(1758626416.037:2): pid=6009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.47" name="/newroot/16/file0" dev="tmpfs" ino=98 res=1 errno=0
[   80.019949][   T10] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   80.025706][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 64
[   80.030320][   T10] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   80.034101][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   80.056909][   T10] usb 1-1: config 0 descriptor??
[   80.061499][ T6001] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   80.069799][   T10] hub 1-1:0.0: USB hub found
[   80.277266][   T10] hub 1-1:0.0: 2 ports detected
[   80.487839][   T10] hub 1-1:0.0: hub_hub_status failed (err = -71)
[   80.496513][   T10] hub 1-1:0.0: config failed, can't get hub status (err -71)
[   80.504877][   T10] usbhid 1-1:0.0: can't add hid device: -71
[   80.508649][   T10] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[   80.540063][   T10] usb 1-1: USB disconnect, device number 2
[   80.727811][   T56] Bluetooth: hci0: command tx timeout
[   80.817542][   T56] Bluetooth: hci1: command tx timeout
[   80.854786][ T6025] syz.1.55 uses obsolete (PF_INET,SOCK_PACKET)
[   80.896461][   T56] Bluetooth: hci2: command tx timeout
[   81.115166][ T6032] =======================================================
[   81.115166][ T6032] WARNING: The mand mount option has been deprecated and
[   81.115166][ T6032]          and is ignored by this kernel. Remove the mand
[   81.115166][ T6032]          option from the mount to silence this warning.
[   81.115166][ T6032] =======================================================
[   81.920650][ T6042] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   81.925428][ T6042] FAT-fs (loop0): unable to read boot sector
[   82.807174][   T56] Bluetooth: hci0: command tx timeout
[   82.888379][   T56] Bluetooth: hci1: command tx timeout
[   82.966817][   T56] Bluetooth: hci2: command tx timeout
[   83.002121][ T6068] netlink: 4 bytes leftover after parsing attributes in process `syz.0.67'.
[   84.346407][  T795] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[   84.417190][ T5895] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   84.496454][  T795] usb 1-1: Using ep0 maxpacket: 8
[   84.502848][  T795] usb 1-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[   84.507702][  T795] usb 1-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[   84.511109][  T795] usb 1-1: Product: syz
[   84.512908][  T795] usb 1-1: Manufacturer: syz
[   84.514919][  T795] usb 1-1: SerialNumber: syz
[   84.519835][  T795] usb 1-1: config 0 descriptor??
[   84.528636][  T795] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[   84.568831][ T5895] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   84.573242][ T5895] usb 3-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   84.581454][ T5895] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   84.585953][ T5895] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.589605][ T5895] usb 3-1: Product: syz
[   84.592105][ T5895] usb 3-1: Manufacturer: syz
[   84.594080][ T5895] usb 3-1: SerialNumber: syz
[   84.605782][ T5895] cdc_ncm 3-1:1.0: skipping garbage
[   84.608348][ T5895] cdc_ncm 3-1:1.0: CDC Union missing and no IAD found
[   84.611490][ T5895] cdc_ncm 3-1:1.0: bind() failure
[   84.621249][ T5895] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[   84.624495][ T5895] cdc_ncm 3-1:1.1: bind() failure
[   84.825675][ T5909] usb 3-1: USB disconnect, device number 2
[   84.928821][  T795] gspca_zc3xx: reg_r err -71
[   84.932446][  T795] gspca_zc3xx 1-1:0.0: probe with driver gspca_zc3xx failed with error -71
[   84.945131][  T795] usb 1-1: USB disconnect, device number 3
[   84.988880][ T6101] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   84.993264][ T6101] FAT-fs (loop1): unable to read boot sector
[   85.429612][ T6107] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   85.433645][ T6107] I/O error, dev loop1, sector 120 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[   85.438381][ T6107] Mount JFS Failure: -5
[   85.784239][ T6129] tipc: Started in network mode
[   85.786642][ T6129] tipc: Node identity ca5762f3baa6, cluster identity 4711
[   85.789816][ T6129] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   85.793444][ T6129] syzkaller0: entered promiscuous mode
[   85.795666][ T6129] syzkaller0: entered allmulticast mode
[   85.828302][ T6129] tipc: Resetting bearer <eth:syzkaller0>
[   85.835457][ T6128] tipc: Resetting bearer <eth:syzkaller0>
[   85.845288][ T6128] tipc: Disabling bearer <eth:syzkaller0>
[   85.926444][   T24] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   86.050649][ T6132] Illegal XDP return value 4294967274 on prog  (id 12) dev N/A, expect packet loss!
[   86.116602][   T24] usb 3-1: Using ep0 maxpacket: 8
[   86.144854][   T24] usb 3-1: config 6 has an invalid interface number: 2 but max is 0
[   86.154829][   T24] usb 3-1: config 6 has no interface number 0
[   86.167225][   T24] usb 3-1: config 6 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[   86.189573][   T24] usb 3-1: config 6 interface 2 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0
[   86.269835][   T24] usb 3-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91
[   86.324822][   T24] usb 3-1: New USB device strings: Mfr=17, Product=2, SerialNumber=3
[   86.329846][   T24] usb 3-1: Product: syz
[   86.332558][   T24] usb 3-1: Manufacturer: syz
[   86.334498][   T24] usb 3-1: SerialNumber: syz
[   86.344242][   T24] hso 3-1:6.2: Failed to find INT IN ep
[   86.388368][ T6140] exfat: Deprecated parameter 'utf8'
[   86.390798][ T6140] exFAT-fs (loop0): mounting with "discard" option, but the device does not support discard
[   86.395088][ T6140] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[   86.399338][ T6140] exFAT-fs (loop0): unable to read boot sector
[   86.402422][ T6140] exFAT-fs (loop0): failed to read boot sector
[   86.404855][ T6140] exFAT-fs (loop0): failed to recognize exfat type
[   86.586832][  T795] usb 3-1: USB disconnect, device number 3
[   86.650005][   T47] cfg80211: failed to load regulatory.db
[   86.775738][ T6160] program syz.1.108 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   86.830617][ T6162] I/O error, dev loop1, sector 2 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2
[   86.834763][ T6162] hfsplus: unable to find HFS+ superblock
[   86.897013][ T5909] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[   86.948005][ T6166] pimreg: tun_chr_ioctl cmd 1074025677
[   86.950349][ T6166] pimreg: linktype set to 769
[   87.056780][ T5909] usb 1-1: Using ep0 maxpacket: 16
[   87.063232][ T5909] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   87.073544][ T5909] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x94, changing to 0x84
[   87.078236][ T5909] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid maxpacket 1794, setting to 1024
[   87.082505][ T5909] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x84 has invalid maxpacket 1024
[   87.096388][ T5909] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   87.100273][ T5909] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   87.104267][ T5909] usb 1-1: config 0 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[   87.113622][ T5909] usb 1-1: New USB device found, idVendor=104f, idProduct=0004, bcdDevice=c6.c3
[   87.122796][ T5909] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   87.125889][ T5909] usb 1-1: Product: syz
[   87.128402][ T5909] usb 1-1: Manufacturer: syz
[   87.130181][ T5909] usb 1-1: SerialNumber: syz
[   87.135955][ T5909] usb 1-1: config 0 descriptor??
[   87.139299][ T6155] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   87.165410][ T5909] iuu_phoenix 1-1:0.0: iuu_phoenix converter detected
[   87.184271][ T5909] usb 1-1: iuu_phoenix converter now attached to ttyUSB0
[   87.366142][   T24] usb 1-1: USB disconnect, device number 4
[   87.381963][   T24] iuu_phoenix ttyUSB0: iuu_phoenix converter now disconnected from ttyUSB0
[   87.389543][   T24] iuu_phoenix 1-1:0.0: device disconnected
[   87.878638][ T6184] netlink: 16 bytes leftover after parsing attributes in process `syz.1.119'.
[   88.236493][  T795] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[   88.342719][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   88.348042][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   88.351085][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   88.353907][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   88.358292][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   88.361278][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   88.363385][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   88.366074][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   88.369593][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   88.373435][   T24] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[   88.380543][   T24] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v8.00 Device [syz0] on syz0
[   88.396620][  T795] usb 2-1: Using ep0 maxpacket: 32
[   88.677391][ T6201] xt_AUDIT: Audit type out of range (valid range: 0..2)
[   88.697198][  T795] usb 2-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[   88.700416][  T795] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   88.716952][  T795] usb 2-1: config 0 descriptor??
[   88.927183][  T795] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[   88.932152][  T795] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[   88.937047][  T795] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[   88.939369][  T795] usb 2-1: media controller created
[   88.951572][  T795] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[   89.036345][   T24] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   89.163833][ T6209] netlink: 'syz.2.130': attribute type 1 has an invalid length.
[   89.168270][ T6209] netlink: 'syz.2.130': attribute type 2 has an invalid length.
[   89.202376][   T24] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   89.210067][   T24] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[   89.226948][   T24] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   89.230915][   T24] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   89.234019][   T24] usb 1-1: Product: syz
[   89.235583][   T24] usb 1-1: Manufacturer: syz
[   89.237921][   T24] usb 1-1: SerialNumber: syz
[   89.454660][   T24] usb 1-1: Audio class v2/v3 interfaces need an interface association
[   89.510776][   T24] snd-usb-audio 1-1:1.0: probe with driver snd-usb-audio failed with error -22
[   89.522646][   T24] usb 1-1: USB disconnect, device number 5
[   89.543696][ T5847] udevd[5847]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   89.958667][  T795] az6027: usb out operation failed. (-71)
[   89.965591][  T795] az6027: usb out operation failed. (-71)
[   89.968611][  T795] stb0899_attach: Driver disabled by Kconfig
[   89.971146][  T795] az6027: no front-end attached
[   89.971146][  T795] 
[   89.975708][  T795] az6027: usb out operation failed. (-71)
[   89.978545][  T795] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[   89.984467][  T795] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input4
[   89.994491][  T795] dvb-usb: schedule remote query interval to 400 msecs.
[   89.999838][  T795] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[   90.012435][  T795] usb 2-1: USB disconnect, device number 2
[   90.033858][ T6215] I/O error, dev loop1, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[   90.040322][ T6215] EXT4-fs (loop1): unable to read superblock
[   90.135789][  T795] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[   90.453837][ T6237] netlink: 'syz.2.142': attribute type 12 has an invalid length.
[   91.416483][   T10] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[   91.486387][   T47] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[   91.636407][   T47] usb 2-1: Using ep0 maxpacket: 32
[   91.640800][   T47] usb 2-1: config 0 has an invalid interface number: 89 but max is 0
[   91.644072][   T47] usb 2-1: config 0 has no interface number 0
[   91.646409][   T47] usb 2-1: config 0 interface 89 has no altsetting 0
[   91.650572][   T47] usb 2-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4e
[   91.653918][   T47] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   91.658803][   T47] usb 2-1: Product: syz
[   91.660749][   T47] usb 2-1: Manufacturer: syz
[   91.662818][   T47] usb 2-1: SerialNumber: syz
[   91.676502][   T47] usb 2-1: config 0 descriptor??
[   91.683381][   T47] em28xx 2-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[   91.691660][   T47] em28xx 2-1:0.89: Video interface 89 found: bulk
[   91.848932][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   91.853122][   T10] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   92.186813][   T47] em28xx 2-1:0.89: unknown em28xx chip ID (0)
[   92.291726][   T47] em28xx 2-1:0.89: reading from i2c device at 0xa0 failed (error=-5)
[   92.295066][   T47] em28xx 2-1:0.89: board has no eeprom
[   92.296973][   T10] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   92.301364][   T10] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   92.304470][   T10] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.340344][   T10] usb 1-1: config 0 descriptor??
[   92.376667][   T47] em28xx 2-1:0.89: Identified as Terratec Grabby (card=67)
[   92.381177][   T47] em28xx 2-1:0.89: analog set to bulk mode.
[   92.383884][   T24] em28xx 2-1:0.89: Registering V4L2 extension
[   92.399967][   T47] usb 2-1: USB disconnect, device number 3
[   92.403593][   T47] em28xx 2-1:0.89: Disconnecting em28xx
[   92.430296][ T6290] ntfs3(loop2): try to read out of volume at offset 0x0
[   92.454481][   T24] em28xx 2-1:0.89: Config register raw data: 0xffffffed
[   92.461526][   T24] em28xx 2-1:0.89: AC97 chip type couldn't be determined
[   92.464802][   T24] em28xx 2-1:0.89: No AC97 audio processor
[   92.472567][   T24] usb 2-1: Decoder not found
[   92.474447][   T24] em28xx 2-1:0.89: failed to create media graph
[   92.481910][   T24] em28xx 2-1:0.89: V4L2 device video103 deregistered
[   92.491823][   T24] em28xx 2-1:0.89: Registering snapshot button...
[   92.499974][   T24] input: em28xx snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.89/input/input5
[   92.509061][   T24] em28xx 2-1:0.89: Remote control support is not available for this card.
[   92.512734][   T47] em28xx 2-1:0.89: Closing input extension
[   92.517138][   T47] em28xx 2-1:0.89: Deregistering snapshot button
[   92.551654][   T47] em28xx 2-1:0.89: Freeing device
[   92.805882][   T10] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[   93.072971][  T795] usb 1-1: USB disconnect, device number 6
[   93.867619][ T6302] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[   93.871848][ T6302] XFS (loop1): SB validate failed with error -5.
[   94.446474][  T795] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[   94.609194][  T795] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   94.613427][  T795] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   94.617747][  T795] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[   94.621466][  T795] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   94.635170][  T795] usb 3-1: config 0 descriptor??
[   94.654585][ T6346] netlink: 'syz.0.181': attribute type 6 has an invalid length.
[   94.947111][ T5881] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   95.096453][ T5881] usb 1-1: Using ep0 maxpacket: 32
[   95.101974][ T5881] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64
[   95.105966][ T5881] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024
[   95.113558][ T5881] usb 1-1: string descriptor 0 read error: -22
[   95.116123][ T5881] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   95.119846][ T5881] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.335686][ T5881] cdc_ncm 1-1:1.0: bind() failure
[   95.343399][ T5881] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[   95.346642][ T5881] cdc_ncm 1-1:1.1: bind() failure
[   95.352507][ T5881] usb 1-1: USB disconnect, device number 7
[   95.356399][ T5888] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[   95.530918][ T5888] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 88, changing to 10
[   95.535257][ T5888] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[   95.538941][ T5888] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[   95.545697][ T5888] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   95.550648][ T5888] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.554183][ T5888] usb 2-1: Product: syz
[   95.556146][ T5888] usb 2-1: Manufacturer: syz
[   95.558147][ T5888] usb 2-1: SerialNumber: syz
[   95.776577][ T5888] cdc_ncm 2-1:1.0: bind() failure
[   95.782642][ T5888] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[   95.784937][ T5888] cdc_ncm 2-1:1.1: bind() failure
[   95.791561][ T5888] usb 2-1: USB disconnect, device number 4
[   95.858324][  T795] uclogic 0003:256C:006D.0003: v1 frame probing failed: -71
[   95.860639][  T795] uclogic 0003:256C:006D.0003: failed probing parameters: -71
[   95.863041][  T795] uclogic 0003:256C:006D.0003: probe with driver uclogic failed with error -71
[   95.868988][  T795] usb 3-1: USB disconnect, device number 4
[   95.950090][ T6358] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   95.954332][ T6358] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[   95.965163][ T6358] FAT-fs (loop0): unable to read boot sector
[   96.034986][ T6362] I/O error, dev loop0, sector 256 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[   96.038933][ T6362] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   96.042557][ T6362] I/O error, dev loop0, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[   96.045457][ T6362] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   96.049841][ T6362] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   96.052586][ T6362] UDF-fs: Scanning with blocksize 512 failed
[   96.055272][ T6362] I/O error, dev loop0, sector 512 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[   96.059313][ T6362] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   96.062903][ T6362] I/O error, dev loop0, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[   96.066212][ T6362] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   96.069832][ T6362] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   96.072360][ T6362] UDF-fs: Scanning with blocksize 1024 failed
[   96.074837][ T6362] I/O error, dev loop0, sector 1024 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[   96.078318][ T6362] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   96.081955][ T6362] I/O error, dev loop0, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[   96.085055][ T6362] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   96.088473][ T6362] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   96.091253][ T6362] UDF-fs: Scanning with blocksize 2048 failed
[   96.094839][ T6362] I/O error, dev loop0, sector 2048 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[   96.098741][ T6362] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[   96.102583][ T6362] I/O error, dev loop0, sector 4096 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 3
[   96.105893][ T6362] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=512, location=512
[   96.109947][ T6362] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[   96.112957][ T6362] UDF-fs: Scanning with blocksize 4096 failed
[   96.115358][ T6362] UDF-fs: warning (device loop0): udf_fill_super: No partition found (1)
[   96.458446][ T6373] ==================================================================
[   96.461771][ T6373] BUG: KASAN: slab-out-of-bounds in zpool_get_total_pages+0x46/0x70
[   96.465063][ T6373] Read of size 8 at addr ffff888107e6aab0 by task syz.1.192/6373
[   96.469275][ T6373] 
[   96.470092][ T6373] CPU: 1 UID: 0 PID: 6373 Comm: syz.1.192 Not tainted syzkaller #0 PREEMPT(full) 
[   96.470104][ T6373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   96.470110][ T6373] Call Trace:
[   96.470115][ T6373]  <TASK>
[   96.470120][ T6373]  dump_stack_lvl+0x189/0x250
[   96.470182][ T6373]  ? __virt_addr_valid+0x1c8/0x5c0
[   96.470193][ T6373]  ? rcu_is_watching+0x15/0xb0
[   96.470206][ T6373]  ? __kasan_check_byte+0x12/0x40
[   96.470215][ T6373]  ? __pfx_dump_stack_lvl+0x10/0x10
[   96.470224][ T6373]  ? rcu_is_watching+0x15/0xb0
[   96.470235][ T6373]  ? lock_release+0x4b/0x3e0
[   96.470246][ T6373]  ? __virt_addr_valid+0x1c8/0x5c0
[   96.470254][ T6373]  ? __virt_addr_valid+0x4a5/0x5c0
[   96.470263][ T6373]  print_report+0xca/0x240
[   96.470271][ T6373]  ? zpool_get_total_pages+0x46/0x70
[   96.470279][ T6373]  kasan_report+0x118/0x150
[   96.470287][ T6373]  ? zpool_get_total_pages+0x46/0x70
[   96.470296][ T6373]  kasan_check_range+0x2b0/0x2c0
[   96.470307][ T6373]  zpool_get_total_pages+0x46/0x70
[   96.470316][ T6373]  ? zswap_total_pages+0x1f/0x1e0
[   96.470324][ T6373]  zswap_total_pages+0xf6/0x1e0
[   96.470332][ T6373]  zswap_store+0x52f/0x1f40
[   96.470340][ T6373]  ? __lock_acquire+0xab9/0xd20
[   96.470351][ T6373]  ? do_raw_spin_lock+0x121/0x290
[   96.470360][ T6373]  ? __pfx_zswap_store+0x10/0x10
[   96.470368][ T6373]  ? do_raw_spin_unlock+0x4d/0x240
[   96.470377][ T6373]  ? _raw_spin_unlock+0x28/0x50
[   96.470388][ T6373]  ? swap_entry_swapped+0x139/0x1c0
[   96.470398][ T6373]  ? folio_free_swap+0x1ed/0x370
[   96.470408][ T6373]  swap_writeout+0x710/0xd70
[   96.470419][ T6373]  shrink_folio_list+0x3011/0x4c70
[   96.470436][ T6373]  ? __pfx_shrink_folio_list+0x10/0x10
[   96.470445][ T6373]  ? __switch_to+0xdc8/0x1690
[   96.470455][ T6373]  ? __lock_acquire+0xab9/0xd20
[   96.470471][ T6373]  ? css_rstat_updated+0x23a/0x4f0
[   96.470485][ T6373]  reclaim_folio_list+0xeb/0x500
[   96.470498][ T6373]  ? __pfx_reclaim_folio_list+0x10/0x10
[   96.470507][ T6373]  ? lru_gen_update_size+0x818/0xd20
[   96.470515][ T6373]  ? __mod_zone_page_state+0xd7/0x140
[   96.470527][ T6373]  ? lru_gen_del_folio+0x359/0x540
[   96.470534][ T6373]  reclaim_pages+0x2f4/0x520
[   96.470544][ T6373]  ? __pfx_reclaim_pages+0x10/0x10
[   96.470554][ T6373]  ? madvise_cold_or_pageout_pte_range+0x194b/0x1d00
[   96.470563][ T6373]  madvise_cold_or_pageout_pte_range+0x1974/0x1d00
[   96.470575][ T6373]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[   96.470586][ T6373]  ? memcg_rstat_updated+0xee/0x220
[   96.470595][ T6373]  walk_pgd_range+0xfe9/0x1d40
[   96.470613][ T6373]  ? __pfx_walk_pgd_range+0x10/0x10
[   96.470621][ T6373]  ? rcu_is_watching+0x15/0xb0
[   96.470632][ T6373]  ? lru_add+0xa2f/0xd80
[   96.470640][ T6373]  ? lru_add+0x198/0xd80
[   96.470649][ T6373]  __walk_page_range+0x14c/0x710
[   96.470658][ T6373]  ? __pfx_lru_add+0x10/0x10
[   96.470666][ T6373]  ? __pfx_folio_batch_move_lru+0x10/0x10
[   96.470675][ T6373]  ? __lock_acquire+0xab9/0xd20
[   96.470686][ T6373]  walk_page_range_vma+0x393/0x440
[   96.470696][ T6373]  ? mlock_drain_local+0x79/0x490
[   96.470705][ T6373]  ? __pfx_walk_page_range_vma+0x10/0x10
[   96.470715][ T6373]  ? mlock_drain_local+0x79/0x490
[   96.470724][ T6373]  madvise_vma_behavior+0x311f/0x3a10
[   96.470734][ T6373]  ? __pfx_madvise_vma_behavior+0x10/0x10
[   96.470741][ T6373]  ? __page_table_check_zero+0x406/0x530
[   96.470752][ T6373]  ? __page_table_check_zero+0xba/0x530
[   96.470764][ T6373]  ? post_alloc_hook+0x253/0x2a0
[   96.470776][ T6373]  ? get_page_from_freelist+0x21e4/0x22c0
[   96.470783][ T6373]  ? is_bpf_text_address+0x26/0x2b0
[   96.470802][ T6373]  ? mas_prev_slot+0xb31/0xbb0
[   96.470816][ T6373]  ? find_vma_prev+0xe3/0x150
[   96.470825][ T6373]  ? __pfx_find_vma_prev+0x10/0x10
[   96.470837][ T6373]  ? __lock_acquire+0xab9/0xd20
[   96.470848][ T6373]  madvise_walk_vmas+0x51c/0xa30
[   96.470857][ T6373]  ? __pfx_madvise_walk_vmas+0x10/0x10
[   96.470866][ T6373]  ? blk_start_plug+0x6f/0x1b0
[   96.470877][ T6373]  madvise_do_behavior+0x38e/0x550
[   96.470886][ T6373]  ? __pfx_madvise_do_behavior+0x10/0x10
[   96.470895][ T6373]  ? down_read+0x1ad/0x2e0
[   96.470905][ T6373]  do_madvise+0x1bc/0x270
[   96.470913][ T6373]  ? __pfx_do_madvise+0x10/0x10
[   96.470926][ T6373]  ? do_user_addr_fault+0xc85/0x1380
[   96.470937][ T6373]  __x64_sys_madvise+0xa7/0xc0
[   96.470945][ T6373]  do_syscall_64+0xfa/0xfa0
[   96.470953][ T6373]  ? lockdep_hardirqs_on+0x9c/0x150
[   96.470960][ T6373]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.470969][ T6373]  ? exc_page_fault+0xab/0x100
[   96.470976][ T6373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.470984][ T6373] RIP: 0033:0x7fa6c3f8ec29
[   96.470993][ T6373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.471012][ T6373] RSP: 002b:00007fa6c4dd6038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   96.471047][ T6373] RAX: ffffffffffffffda RBX: 00007fa6c41d6180 RCX: 00007fa6c3f8ec29
[   96.471060][ T6373] RDX: 0000000000000015 RSI: 0000000000600000 RDI: 0000200000000000
[   96.471065][ T6373] RBP: 00007fa6c4011e41 R08: 0000000000000000 R09: 0000000000000000
[   96.471070][ T6373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   96.471075][ T6373] R13: 00007fa6c41d6218 R14: 00007fa6c41d6180 R15: 00007ffea7ece698
[   96.471085][ T6373]  </TASK>
[   96.471088][ T6373] 
[   96.667754][ T6373] Allocated by task 1:
[   96.669464][ T6373]  kasan_save_track+0x3e/0x80
[   96.671466][ T6373]  __kasan_kmalloc+0x93/0xb0
[   96.673362][ T6373]  __kmalloc_node_track_caller_noprof+0x568/0x800
[   96.675894][ T6373]  kstrdup+0x42/0x100
[   96.677532][ T6373]  __kernfs_new_node+0x9c/0x7e0
[   96.679633][ T6373]  kernfs_new_node+0x102/0x210
[   96.681577][ T6373]  kernfs_create_dir_ns+0x44/0x130
[   96.683688][ T6373]  sysfs_create_dir_ns+0x123/0x280
[   96.685917][ T6373]  kobject_add_internal+0x59f/0xb40
[   96.688192][ T6373]  kobject_add+0x155/0x220
[   96.690101][ T6373]  device_add+0x408/0xb50
[   96.691899][ T6373]  usb_new_device+0xa39/0x16f0
[   96.693890][ T6373]  register_root_hub+0x275/0x590
[   96.695930][ T6373]  usb_add_hcd+0xba1/0x1050
[   96.697820][ T6373]  vhci_hcd_probe+0x144/0x380
[   96.699764][ T6373]  platform_probe+0xf9/0x190
[   96.701653][ T6373]  really_probe+0x26d/0x9e0
[   96.703534][ T6373]  __driver_probe_device+0x18c/0x2f0
[   96.705668][ T6373]  driver_probe_device+0x4f/0x430
[   96.707793][ T6373]  __device_attach_driver+0x2ce/0x530
[   96.710043][ T6373]  bus_for_each_drv+0x251/0x2e0
[   96.711952][ T6373]  __device_attach+0x2b8/0x400
[   96.713891][ T6373]  bus_probe_device+0x185/0x260
[   96.715891][ T6373]  device_add+0x7b6/0xb50
[   96.717671][ T6373]  platform_device_add+0x4b4/0x820
[   96.719762][ T6373]  platform_device_register_full+0x46c/0x570
[   96.722228][ T6373]  vhci_hcd_init+0x1bc/0x310
[   96.724144][ T6373]  do_one_initcall+0x236/0x820
[   96.726130][ T6373]  do_initcall_level+0x104/0x190
[   96.728178][ T6373]  do_initcalls+0x59/0xa0
[   96.729953][ T6373]  kernel_init_freeable+0x334/0x4b0
[   96.732065][ T6373]  kernel_init+0x1d/0x1d0
[   96.733820][ T6373]  ret_from_fork+0x4bc/0x870
[   96.735695][ T6373]  ret_from_fork_asm+0x1a/0x30
[   96.737632][ T6373] 
[   96.738598][ T6373] The buggy address belongs to the object at ffff888107e6aaa0
[   96.738598][ T6373]  which belongs to the cache kmalloc-8 of size 8
[   96.743710][ T6373] The buggy address is located 10 bytes to the right of
[   96.743710][ T6373]  allocated 6-byte region [ffff888107e6aaa0, ffff888107e6aaa6)
[   96.748984][ T6373] 
[   96.749938][ T6373] The buggy address belongs to the physical page:
[   96.752392][ T6373] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x107e6a
[   96.755723][ T6373] flags: 0x57ff00000000000(node=1|zone=2|lastcpupid=0x7ff)
[   96.758447][ T6373] page_type: f5(slab)
[   96.760058][ T6373] raw: 057ff00000000000 ffff88801a841500 dead000000000100 dead000000000122
[   96.763312][ T6373] raw: 0000000000000000 0000000000800080 00000000f5000000 0000000000000000
[   96.766707][ T6373] page dumped because: kasan: bad access detected
[   96.769269][ T6373] page_owner tracks the page as allocated
[   96.771500][ T6373] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 13173875935, free_ts 7050631744
[   96.778923][ T6373]  post_alloc_hook+0x240/0x2a0
[   96.780893][ T6373]  get_page_from_freelist+0x21e4/0x22c0
[   96.783071][ T6373]  __alloc_frozen_pages_noprof+0x181/0x370
[   96.785547][ T6373]  alloc_pages_mpol+0x232/0x4a0
[   96.787457][ T6373]  allocate_slab+0x96/0x3a0
[   96.789179][ T6373]  ___slab_alloc+0xe94/0x1920
[   96.791005][ T6373]  __slab_alloc+0x65/0x100
[   96.792768][ T6373]  __kmalloc_node_track_caller_noprof+0x5c7/0x800
[   96.795496][ T6373]  kstrdup+0x42/0x100
[   96.797151][ T6373]  __kernfs_new_node+0x9c/0x7e0
[   96.799145][ T6373]  kernfs_new_node+0x102/0x210
[   96.801029][ T6373]  kernfs_create_link+0xa7/0x200
[   96.803017][ T6373]  sysfs_do_create_link_sd+0x83/0x110
[   96.805209][ T6373]  driver_sysfs_add+0x89/0x210
[   96.807149][ T6373]  really_probe+0x151/0x9e0
[   96.808955][ T6373]  __driver_probe_device+0x18c/0x2f0
[   96.811024][ T6373] page last free pid 10 tgid 10 stack trace:
[   96.813394][ T6373]  __free_frozen_pages+0xbc4/0xd30
[   96.815361][ T6373]  vfree+0x25a/0x400
[   96.816845][ T6373]  delayed_vfree_work+0x55/0x80
[   96.818746][ T6373]  process_scheduled_works+0xae1/0x17b0
[   96.820950][ T6373]  worker_thread+0x8a0/0xda0
[   96.822717][ T6373]  kthread+0x711/0x8a0
[   96.824296][ T6373]  ret_from_fork+0x4bc/0x870
[   96.826065][ T6373]  ret_from_fork_asm+0x1a/0x30
[   96.827881][ T6373] 
[   96.828813][ T6373] Memory state around the buggy address:
[   96.831015][ T6373]  ffff888107e6a980: 07 fc fc fc 06 fc fc fc 00 fc fc fc 07 fc fc fc
[   96.833381][ T6373]  ffff888107e6aa00: 07 fc fc fc 00 fc fc fc 00 fc fc fc 06 fc fc fc
[   96.835901][ T6373] >ffff888107e6aa80: 06 fc fc fc 06 fc fc fc 06 fc fc fc 06 fc fc fc
[   96.838624][ T6373]                                      ^
[   96.840638][ T6373]  ffff888107e6ab00: 04 fc fc fc 04 fc fc fc 00 fc fc fc 00 fc fc fc
[   96.843751][ T6373]  ffff888107e6ab80: 00 fc fc fc 05 fc fc fc 00 fc fc fc 07 fc fc fc
[   96.846215][ T6373] ==================================================================
[   96.855270][ T6373] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   96.858225][ T6373] CPU: 0 UID: 0 PID: 6373 Comm: syz.1.192 Not tainted syzkaller #0 PREEMPT(full) 
[   96.862033][ T6373] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   96.866014][ T6373] Call Trace:
[   96.867337][ T6373]  <TASK>
[   96.868538][ T6373]  dump_stack_lvl+0x99/0x250
[   96.870362][ T6373]  ? __asan_memcpy+0x40/0x70
[   96.872109][ T6373]  ? __pfx_dump_stack_lvl+0x10/0x10
[   96.874069][ T6373]  ? __pfx__printk+0x10/0x10
[   96.875953][ T6373]  vpanic+0x237/0x6d0
[   96.877578][ T6373]  ? __pfx_vpanic+0x10/0x10
[   96.879329][ T6373]  ? preempt_schedule_common+0x83/0xd0
[   96.881515][ T6373]  ? preempt_schedule+0xae/0xc0
[   96.883487][ T6373]  panic+0xb9/0xc0
[   96.884978][ T6373]  ? __pfx_panic+0x10/0x10
[   96.886751][ T6373]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   96.889314][ T6373]  ? zpool_get_total_pages+0x46/0x70
[   96.891453][ T6373]  check_panic_on_warn+0x89/0xb0
[   96.893437][ T6373]  ? zpool_get_total_pages+0x46/0x70
[   96.895525][ T6373]  end_report+0x78/0x160
[   96.897249][ T6373]  kasan_report+0x129/0x150
[   96.899109][ T6373]  ? zpool_get_total_pages+0x46/0x70
[   96.901212][ T6373]  kasan_check_range+0x2b0/0x2c0
[   96.903213][ T6373]  zpool_get_total_pages+0x46/0x70
[   96.905293][ T6373]  ? zswap_total_pages+0x1f/0x1e0
[   96.907322][ T6373]  zswap_total_pages+0xf6/0x1e0
[   96.909293][ T6373]  zswap_store+0x52f/0x1f40
[   96.911136][ T6373]  ? __lock_acquire+0xab9/0xd20
[   96.913106][ T6373]  ? do_raw_spin_lock+0x121/0x290
[   96.915139][ T6373]  ? __pfx_zswap_store+0x10/0x10
[   96.917127][ T6373]  ? do_raw_spin_unlock+0x4d/0x240
[   96.919178][ T6373]  ? _raw_spin_unlock+0x28/0x50
[   96.921134][ T6373]  ? swap_entry_swapped+0x139/0x1c0
[   96.923247][ T6373]  ? folio_free_swap+0x1ed/0x370
[   96.925216][ T6373]  swap_writeout+0x710/0xd70
[   96.927099][ T6373]  shrink_folio_list+0x3011/0x4c70
[   96.929168][ T6373]  ? __pfx_shrink_folio_list+0x10/0x10
[   96.931363][ T6373]  ? __switch_to+0xdc8/0x1690
[   96.933264][ T6373]  ? __lock_acquire+0xab9/0xd20
[   96.935271][ T6373]  ? css_rstat_updated+0x23a/0x4f0
[   96.937351][ T6373]  reclaim_folio_list+0xeb/0x500
[   96.939262][ T6373]  ? __pfx_reclaim_folio_list+0x10/0x10
[   96.941407][ T6373]  ? lru_gen_update_size+0x818/0xd20
[   96.943505][ T6373]  ? __mod_zone_page_state+0xd7/0x140
[   96.945714][ T6373]  ? lru_gen_del_folio+0x359/0x540
[   96.947770][ T6373]  reclaim_pages+0x2f4/0x520
[   96.950072][ T6373]  ? __pfx_reclaim_pages+0x10/0x10
[   96.952194][ T6373]  ? madvise_cold_or_pageout_pte_range+0x194b/0x1d00
[   96.954868][ T6373]  madvise_cold_or_pageout_pte_range+0x1974/0x1d00
[   96.957529][ T6373]  ? __pfx_madvise_cold_or_pageout_pte_range+0x10/0x10
[   96.960287][ T6373]  ? memcg_rstat_updated+0xee/0x220
[   96.962403][ T6373]  walk_pgd_range+0xfe9/0x1d40
[   96.964338][ T6373]  ? __pfx_walk_pgd_range+0x10/0x10
[   96.966313][ T6373]  ? rcu_is_watching+0x15/0xb0
[   96.968382][ T6373]  ? lru_add+0xa2f/0xd80
[   96.969996][ T6373]  ? lru_add+0x198/0xd80
[   96.971634][ T6373]  __walk_page_range+0x14c/0x710
[   96.973527][ T6373]  ? __pfx_lru_add+0x10/0x10
[   96.975253][ T6373]  ? __pfx_folio_batch_move_lru+0x10/0x10
[   96.977380][ T6373]  ? __lock_acquire+0xab9/0xd20
[   96.979247][ T6373]  walk_page_range_vma+0x393/0x440
[   96.981273][ T6373]  ? mlock_drain_local+0x79/0x490
[   96.983330][ T6373]  ? __pfx_walk_page_range_vma+0x10/0x10
[   96.985603][ T6373]  ? mlock_drain_local+0x79/0x490
[   96.987652][ T6373]  madvise_vma_behavior+0x311f/0x3a10
[   96.989844][ T6373]  ? __pfx_madvise_vma_behavior+0x10/0x10
[   96.992240][ T6373]  ? __page_table_check_zero+0x406/0x530
[   96.994616][ T6373]  ? __page_table_check_zero+0xba/0x530
[   96.996909][ T6373]  ? post_alloc_hook+0x253/0x2a0
[   96.998948][ T6373]  ? get_page_from_freelist+0x21e4/0x22c0
[   97.001300][ T6373]  ? is_bpf_text_address+0x26/0x2b0
[   97.003402][ T6373]  ? mas_prev_slot+0xb31/0xbb0
[   97.005312][ T6373]  ? find_vma_prev+0xe3/0x150
[   97.007131][ T6373]  ? __pfx_find_vma_prev+0x10/0x10
[   97.009132][ T6373]  ? __lock_acquire+0xab9/0xd20
[   97.011422][ T6373]  madvise_walk_vmas+0x51c/0xa30
[   97.013416][ T6373]  ? __pfx_madvise_walk_vmas+0x10/0x10
[   97.015535][ T6373]  ? blk_start_plug+0x6f/0x1b0
[   97.017378][ T6373]  madvise_do_behavior+0x38e/0x550
[   97.019396][ T6373]  ? __pfx_madvise_do_behavior+0x10/0x10
[   97.021659][ T6373]  ? down_read+0x1ad/0x2e0
[   97.023432][ T6373]  do_madvise+0x1bc/0x270
[   97.025185][ T6373]  ? __pfx_do_madvise+0x10/0x10
[   97.027055][ T6373]  ? do_user_addr_fault+0xc85/0x1380
[   97.029214][ T6373]  __x64_sys_madvise+0xa7/0xc0
[   97.031157][ T6373]  do_syscall_64+0xfa/0xfa0
[   97.032916][ T6373]  ? lockdep_hardirqs_on+0x9c/0x150
[   97.034866][ T6373]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.037250][ T6373]  ? exc_page_fault+0xab/0x100
[   97.039138][ T6373]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.041447][ T6373] RIP: 0033:0x7fa6c3f8ec29
[   97.043149][ T6373] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   97.050397][ T6373] RSP: 002b:00007fa6c4dd6038 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[   97.053424][ T6373] RAX: ffffffffffffffda RBX: 00007fa6c41d6180 RCX: 00007fa6c3f8ec29
[   97.056365][ T6373] RDX: 0000000000000015 RSI: 0000000000600000 RDI: 0000200000000000
[   97.059431][ T6373] RBP: 00007fa6c4011e41 R08: 0000000000000000 R09: 0000000000000000
[   97.062465][ T6373] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   97.065598][ T6373] R13: 00007fa6c41d6218 R14: 00007fa6c41d6180 R15: 00007ffea7ece698
[   97.068809][ T6373]  </TASK>
[   97.070788][ T6373] Kernel Offset: disabled
[   97.072582][ T6373] Rebooting in 86400 seconds..

VM DIAGNOSIS:
11:20:32  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000001 RBX=0000000000000007 RCX=ffffffff936d0780 RDX=0000000000000008
RSI=ffff8881087ca948 RDI=ffff8881087c9d00 RBP=0000000000000000 RSP=ffffc90003f2f1e0
R8 =0000000000000000 R9 =ffffffff822fab2a R10=dffffc0000000000 R11=fffff9400013fbe9
R12=0000000000000003 R13=0000000000000001 R14=ffff8881087ca948 R15=0000000000000000
RIP=ffffffff819d87ea RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00005555883ab500 ffffffff 00c00000
GS =0000 ffff8880b83dd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f394c3056c0 CR3=000000010f924000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=0000000000000000 0000000000000000 XMM05=0000000000000000 0000000000000000
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=0000000000000000 0000000000000000 XMM09=0000000000000000 0000000000000000
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=1ffffffff3405a60 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=0000000000005fd8 RDI=0000000000005fd9 RBP=ffffffff9a02d3d0 RSP=ffffc90004f55f10
R8 =ffff88801fdf8237 R9 =1ffff11003fbf046 R10=dffffc0000000000 R11=ffffffff85547220
R12=dffffc0000000000 R13=0000000000000000 R14=ffffffff9a02d140 R15=0000000000000000
RIP=ffffffff85547297 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fa6c4dd66c0 ffffffff 00c00000
GS =0000 ffff8881a39dd000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000200000271000 CR3=0000000026f3a000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=00007fa6c41a7498 00007fa6c41a7470 XMM03=00007fa6c41a74a8 00007fa6c41a74a0
XMM04=00007fa6c4d0d100 00007fa6c41a7460 XMM05=00007fa6c41a7478 00007fa6c41a74c0
XMM06=00007fa6c41a74b8 00007fa6c41a74b0 XMM07=00007fa6c41a74a8 00007fa6c41a74a0
XMM08=994b46ba4a4a0003 73ad4cf05aee8bcd XMM09=0000000000000000 00007fa6c4012fed
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
