last executing test programs:

5m21.451287904s ago: executing program 32 (id=2005):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000280)=[@text32={0x20, &(0x7f0000000380)="c4e2caf5cf36f00fb3b7b3f200000fc76d010f01c2660f598100800000c7442400ef84c227c744240254000000c7442406000000000f011c240f011d8a00000066baf80cb86c7a7b8bef66bafc0c66b817c066ef670fc79dd3000f20d835080000000f22d8", 0x65}], 0x1, 0x3e, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5m17.012092416s ago: executing program 33 (id=2006):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x5, @none, 0x0, 0x2}, 0xe)
listen(r0, 0xa1)
accept4$bt_l2cap(r0, 0x0, 0x0, 0x0)
shutdown(r0, 0x1)

5m14.16837947s ago: executing program 34 (id=2007):
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
socket$inet6_dccp(0xa, 0x6, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f0000000280))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000000c0)={[0x79, 0x0, 0x3, 0x0, 0x1, 0x0, 0x2, 0x6, 0xd0, 0x6, 0x2, 0x0, 0x2, 0x6, 0x0, 0x8], 0x2000, 0x98302})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000003c0)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

5m10.012115648s ago: executing program 35 (id=2008):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xc, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
io_setup(0x4082, &(0x7f0000000380))
unshare(0x400)
ioperm(0x0, 0x6e, 0xe)
arch_prctl$ARCH_REQ_XCOMP_GUEST_PERM(0x1025, 0x12)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0xb, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000004f4b000000000000000000180100002020702000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000fdffffff850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xffffffff, 0xffffffff, 0x0)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r5 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r5, &(0x7f0000000000)={0x18, 0x0, {0x1, @broadcast, 'lo\x00'}}, 0x1e)
ioctl$DRM_IOCTL_WAIT_VBLANK(r4, 0xc010643a, &(0x7f00000000c0)={0x4000000, 0x1, 0xa2})
ioctl$PPPOEIOCSFWD(r5, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x1, @broadcast, 'lo\x00'}})
r6 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/profiling', 0xa0042, 0x0)
write$tcp_mem(r6, &(0x7f0000000280)={0x7, 0x2d, 0xffffffffffffffff, 0x3a, 0x0, 0x2c}, 0x48)

2m26.652112125s ago: executing program 36 (id=3016):
r0 = syz_usb_connect(0x3, 0x36, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100008010bd40820514009dbb0000000109022400011b00000009040000022a3e740009058bff7f0000100109050b362f"], 0x0)
r1 = syz_open_dev$midi(0x0, 0x3, 0x88c02)
syz_usb_disconnect(r0)
dup(r1)
syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')

2m25.721074731s ago: executing program 37 (id=3031):
open(&(0x7f00009e1000)='./file0\x00', 0xc162, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', 0x0, 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000c3c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
capset(&(0x7f0000000080)={0x19980330}, &(0x7f0000000040)={0x200000, 0x200000, 0x0, 0x3f})
write$FUSE_INIT(r0, &(0x7f00000000c0)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x7ab78c4493c52f9b}}, 0x50)
open(&(0x7f0000000000)='./file0\x00', 0x200, 0x8f)

2m25.027771165s ago: executing program 38 (id=3038):
bind$pptp(0xffffffffffffffff, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x80)
writev(r1, &(0x7f0000000000)=[{&(0x7f00000000c0)="14", 0x1f68}], 0x2)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000480)=[0x1, 0x0], 0x0, 0x0, 0x2, 0x1}}, 0x40)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x44)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000001, 0x12, r2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='net_prio.prioidx\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x200000b, 0x12, r3, 0x0)
mprotect(&(0x7f0000002000/0x1000)=nil, 0x1000, 0xd)

1m54.783196664s ago: executing program 39 (id=3231):
openat(0xffffffffffffff9c, 0x0, 0x2040, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
close(r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000007c0)=ANY=[@ANYRES32, @ANYRES32=r3, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{}, &(0x7f0000000000), &(0x7f00000002c0)=r1}, 0x20)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x22fe0}], 0x1}, 0x0)

1m51.259691547s ago: executing program 40 (id=3245):
ioctl$UFFDIO_WAKE(0xffffffffffffffff, 0x8010aa02, &(0x7f0000000000)={&(0x7f0000ffe000/0x2000)=nil, 0x2000})
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
ioctl$UFFDIO_UNREGISTER(r0, 0xc020aa08, &(0x7f0000000000)={&(0x7f00000c2000/0x1000)=nil, 0x1000})

1m21.159658719s ago: executing program 8 (id=3495):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
open(&(0x7f0000000100)='./file0\x00', 0x80ff, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f000000c3c0)={0x2020, 0x0, <r2=>0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x10408}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000f60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f4000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1997e358660e994000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b60000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000056087d7200000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r1, 0x0, 0x0, &(0x7f0000000c80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x78, 0x0, 0x6, {0x0, 0x0, 0x0, {0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3966, 0x6, 0x8000, 0x0, r3, r4, 0xe, 0x4}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x80101, 0x0)
write$tcp_congestion(r5, &(0x7f00000000c0)='lp\x00', 0xfffffdef)
dup2(r5, r1)
close_range(r0, 0xffffffffffffffff, 0x0)

1m21.082360808s ago: executing program 0 (id=3497):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000400)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_IOAS_MAP(r0, 0x3b85, &(0x7f0000000080)={0x28, 0x6, r1, 0x0, 0x0, 0x0, 0x7a})

1m21.081933101s ago: executing program 0 (id=3498):
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f0000000000)={0x6, @local, 0x0, 0x0, 'lblcr\x00'}, 0x2c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000002540)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$netlink(r0, &(0x7f00000047c0)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="180000007a000107000000000000000007"], 0x18}], 0x1}, 0x0)

1m20.951588062s ago: executing program 8 (id=3499):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
listen(r1, 0x6)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
accept(r0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[], 0x84}}, 0x0)

1m20.17198845s ago: executing program 0 (id=3501):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000040)={@multicast, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x24, 0x17c1, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)

1m20.171623774s ago: executing program 0 (id=3502):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000340)='./file0/../file0/../file0/file0\x00', 0x0, 0x11000, 0x0)
chroot(0x0)
chdir(&(0x7f0000000040)='./file0\x00')
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')

1m20.116525035s ago: executing program 0 (id=3503):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r2)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r3, @ANYBLOB="010023010000050000000200000008000100", @ANYRES32=r1], 0x1c}}, 0x0)

1m20.116309474s ago: executing program 8 (id=3504):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x400000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r1, 0x29, 0x1c, &(0x7f0000000200)={@dev={0xfe, 0x80, '\x00', 0x3}}, 0x14)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
r2 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
preadv(r2, &(0x7f0000000040)=[{&(0x7f0000000180)=""/66, 0x42}], 0x1, 0x4, 0x3)

1m19.882934778s ago: executing program 0 (id=3506):
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@remote, @in6=@remote, 0x0, 0x0, 0xfffc, 0x41, 0x2}, {0x5, 0x3, 0xfffffffffffffffe, 0x8, 0x400000000004, 0x0, 0x80000000000000}, {0x400, 0x3, 0x0, 0x800}, 0x8, 0x0, 0x1, 0x0, 0x2}, {{@in=@dev={0xac, 0x14, 0x14, 0xe}, 0x10000000, 0x2b}, 0x2, @in=@empty, 0xffffffff, 0x1, 0x0, 0x0, 0xfffffffe, 0x0, 0xfffffffe}}, 0xe8)
connect$inet6(r0, 0x0, 0x0)

1m19.788053923s ago: executing program 41 (id=3506):
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000180)={{{@in6=@remote, @in6=@remote, 0x0, 0x0, 0xfffc, 0x41, 0x2}, {0x5, 0x3, 0xfffffffffffffffe, 0x8, 0x400000000004, 0x0, 0x80000000000000}, {0x400, 0x3, 0x0, 0x800}, 0x8, 0x0, 0x1, 0x0, 0x2}, {{@in=@dev={0xac, 0x14, 0x14, 0xe}, 0x10000000, 0x2b}, 0x2, @in=@empty, 0xffffffff, 0x1, 0x0, 0x0, 0xfffffffe, 0x0, 0xfffffffe}}, 0xe8)
connect$inet6(r0, 0x0, 0x0)

1m19.101460823s ago: executing program 8 (id=3511):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000340)='./file0/../file0/../file0/file0\x00', 0x0, 0x11000, 0x0)
chroot(&(0x7f0000000300)='./file0\x00')
chdir(0x0)
pivot_root(&(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0\x00')

1m19.101169686s ago: executing program 8 (id=3512):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000040)={@multicast, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x24, 0x17c1, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)

1m18.832392283s ago: executing program 8 (id=3514):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000000000)={0x85})

1m18.745927316s ago: executing program 42 (id=3514):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REINJECT_CONTROL(r1, 0xae71, &(0x7f0000000000)={0x85})

1m17.361915803s ago: executing program 3 (id=3522):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x2c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x54}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000040)={@multicast, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x24, 0x17c1, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)

1m17.26211763s ago: executing program 3 (id=3523):
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48850}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
write$FUSE_BMAP(0xffffffffffffffff, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(0xffffffffffffffff, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(0xffffffffffffffff, &(0x7f00000004c0)={0x18}, 0x18)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000200)={0x50, 0x0, r3, {0x7, 0x29, 0x20200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x4000000, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {}, 0x2c, {[{@cache_fscache}]}})
r4 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r4, &(0x7f00000005c0)=[{&(0x7f00000000c0)="14", 0x1}], 0x1)

1m16.431153897s ago: executing program 3 (id=3525):
mkdir(&(0x7f0000000600)='./file0\x00', 0xe8)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, 0x0, 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0)
getresuid(&(0x7f0000000000), &(0x7f0000000480), &(0x7f00000004c0)=<r3=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,access=', @ANYRESDEC=r3])
lstat(&(0x7f0000006c80)='./file0\x00', 0x0)

1m16.371683644s ago: executing program 3 (id=3527):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000340)='./file0/../file0/../file0/file0\x00', 0x0, 0x11000, 0x0)
chroot(&(0x7f0000000300)='./file0\x00')
chdir(&(0x7f0000000040)='./file0\x00')
pivot_root(0x0, &(0x7f00000001c0)='./file0/../file0/../file0\x00')

1m16.301748413s ago: executing program 3 (id=3529):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000000400000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="90010000305200001c00128009000100626f6e64000000000c0002800500160001"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, 0x0, 0x0)

1m15.874927417s ago: executing program 3 (id=3530):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000300)=0x2)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180))
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0xe)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x2)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000200)=0x5)

1m15.568354929s ago: executing program 43 (id=3530):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TCFLSH(r0, 0x400455c8, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000300)=0x2)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180))
ioctl$TIOCSTI(r1, 0x5412, &(0x7f00000000c0)=0xe)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x2)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000200)=0x5)

1m15.145937879s ago: executing program 6 (id=3532):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x28de, 0x1102, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0xd0, 0x0, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x1, 0xf9, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x0, 0x50}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000040)={0x2c, &(0x7f0000000200)=ANY=[@ANYBLOB="200b4000000028b1"], 0x0, 0x0, 0x0, 0x0}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)

1m13.360503154s ago: executing program 6 (id=3541):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, 0x0)
ioctl$IOMMU_VFIO_IOAS$SET(r0, 0x3b88, &(0x7f0000000300)={0xc})
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000340)={0x28, 0x4, 0x0, 0x0, &(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x2})
ioctl$IOMMU_VFIO_SET_IOMMU(r0, 0x3b66, 0x1)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES8, @ANYRES8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffff"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="280500003d0007010000000000000000017c0000040000000c00018006000600800a000004050280ff0414800c"], 0x528}}, 0xc004)
ioctl$IOMMU_VFIO_IOMMU_UNMAP_DMA(r0, 0x3b72, &(0x7f0000000440)=ANY=[@ANYBLOB="1800007f000000000020"])

1m13.221415585s ago: executing program 6 (id=3542):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r3=>0x0})
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r3, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}, 0x1, 0x0, 0x0, 0x4048800}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xfff3}}}, 0x24}}, 0x0)

1m11.870903338s ago: executing program 6 (id=3549):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000340)='./file0/../file0/../file0/file0\x00', 0x0, 0x11000, 0x0)
chroot(&(0x7f0000000300)='./file0\x00')
chdir(&(0x7f0000000040)='./file0\x00')
pivot_root(0x0, &(0x7f00000001c0)='./file0/../file0/../file0\x00')

1m11.870720142s ago: executing program 6 (id=3550):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x30, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x58}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000040)={@multicast, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x24, 0x17c1, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)

1m11.452123316s ago: executing program 6 (id=3551):
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x10)
syz_open_dev$sndpcmp(&(0x7f0000000240), 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x862b01)
syz_open_dev$evdev(0x0, 0x0, 0x28900)
socket$rds(0x15, 0x5, 0x0)
syz_usb_connect(0x0, 0x5f, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000b1f203401e0903003bd7010203010902"], 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="1f003300d00000000802110000010802110000005050505050500000", @ANYRES8=r0], 0x3c}}, 0x10)

1m11.38711476s ago: executing program 44 (id=3551):
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x10)
syz_open_dev$sndpcmp(&(0x7f0000000240), 0x0, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x862b01)
syz_open_dev$evdev(0x0, 0x0, 0x28900)
socket$rds(0x15, 0x5, 0x0)
syz_usb_connect(0x0, 0x5f, &(0x7f0000000380)=ANY=[@ANYBLOB="12010000b1f203401e0903003bd7010203010902"], 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="1f003300d00000000802110000010802110000005050505050500000", @ANYRES8=r0], 0x3c}}, 0x10)

1m11.191137139s ago: executing program 2 (id=3554):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xce)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(0xffffffffffffffff, 0x401c5820, &(0x7f0000000080)={0x8})
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
listen(0xffffffffffffffff, 0x3)
gettid()
timer_create(0x0, 0x0, 0x0)
accept4$rose(0xffffffffffffffff, 0x0, 0x0, 0x0)
ftruncate(r1, 0x2008002)
ioctl$VIDIOC_QUERYBUF_DMABUF(r1, 0xc0585609, &(0x7f0000000040)={0x277, 0x9, 0x4, 0x0, 0x7, {0x77359400}, {0x1, 0x2, 0x0, 0x0, 0x9, 0xe0, "6e1fa996"}, 0x3, 0x4, {<r3=>0xffffffffffffffff}, 0x100, 0x0, r0})
signalfd(r3, &(0x7f0000000200)={[0x6]}, 0x8)
sendfile(r0, r1, 0x0, 0x80000001)

1m9.602005771s ago: executing program 2 (id=3560):
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48850}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000004c0)={0x18}, 0x18)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r3, &(0x7f00000021c0)={0x2020, 0x0, <r4=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000200)={0x50, 0x0, r4, {0x7, 0x29, 0x20200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x4000000, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache}]}})
r5 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r5, &(0x7f00000005c0)=[{&(0x7f00000000c0)="14", 0x1}], 0x1)

1m8.582147687s ago: executing program 2 (id=3562):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000000400000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="90010000305200001c00128009000100626f6e64000000000c0002800500160001"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

1m8.581865811s ago: executing program 2 (id=3564):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000340)='./file0/../file0/../file0/file0\x00', 0x0, 0x11000, 0x0)
chroot(&(0x7f0000000300)='./file0\x00')
chdir(&(0x7f0000000040)='./file0\x00')
pivot_root(&(0x7f0000000000)='./file0\x00', 0x0)

1m8.509137963s ago: executing program 2 (id=3566):
mkdir(&(0x7f0000000600)='./file0\x00', 0xe8)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000300)=ANY=[@ANYBLOB="b0000000000000008d15c937040795e9ec68ba339b8fd15e58983b3da942"], 0xb0)
getresuid(&(0x7f0000000000), &(0x7f0000000480), &(0x7f00000004c0)=<r3=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,access=', @ANYRESDEC=r3])
lstat(&(0x7f0000006c80)='./file0\x00', 0x0)

1m8.431856743s ago: executing program 1 (id=3568):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
listen(r1, 0x6)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
accept(r0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r4, @ANYBLOB="010000000000fbdbdf2501000000080002000000000005000500000000000800030001"], 0x84}}, 0x0)

1m8.321536872s ago: executing program 1 (id=3569):
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x48850}, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r0 = dup(0xffffffffffffffff)
write$FUSE_BMAP(r0, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r0, &(0x7f00000004c0)={0x18}, 0x18)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000003c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000200)={0x50, 0x0, r2, {0x7, 0x29, 0x20200, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x4000000, &(0x7f0000000400)={'trans=fd,', {}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@cache_fscache}]}})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r3, &(0x7f00000005c0)=[{&(0x7f00000000c0)="14", 0x1}], 0x1)

1m7.612077572s ago: executing program 2 (id=3570):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f00000001c0)=0x1, &(0x7f0000000300)=0x2)

1m7.589228489s ago: executing program 45 (id=3570):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
getsockopt$bt_BT_VOICE(r3, 0x112, 0xb, &(0x7f00000001c0)=0x1, &(0x7f0000000300)=0x2)

1m7.492391176s ago: executing program 1 (id=3572):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000000400000000fddbdf2500000000", @ANYRES32=0x0, @ANYBLOB="90010000305200001c00128009000100626f6e64000000000c0002800500160001"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x50}}, 0x0)

1m7.342119459s ago: executing program 1 (id=3573):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2901090, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000340)='./file0/../file0/../file0/file0\x00', 0x0, 0x11000, 0x0)
chroot(&(0x7f0000000300)='./file0\x00')
chdir(&(0x7f0000000040)='./file0\x00')
pivot_root(&(0x7f0000000000)='./file0\x00', 0x0)

1m7.341867965s ago: executing program 1 (id=3574):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x48, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @ct={{0x7}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_CT_KEY={0x8, 0x2, 0x1, 0x0, 0xf}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x70}}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000040)={@multicast, @local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x24, 0x17c1, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)

1m6.960632605s ago: executing program 1 (id=3575):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
listen(r1, 0x6)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
accept(r0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r4, @ANYBLOB="010000000000fbdbdf2501000000080002000000000005000500000000000800030001"], 0x84}}, 0x0)

1m6.942491347s ago: executing program 46 (id=3575):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
listen(r1, 0x6)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
accept(r0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r4, @ANYBLOB="010000000000fbdbdf2501000000080002000000000005000500000000000800030001"], 0x84}}, 0x0)

3.563996795s ago: executing program 7 (id=4208):
openat$kvm(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006200000050005000a00000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x4c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @local}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x4c}}, 0x4000080)

2.9609063s ago: executing program 5 (id=4224):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180), 0x0, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
getsockopt$inet_sctp6_SCTP_GET_PEER_ADDR_INFO(r0, 0x84, 0xf, &(0x7f0000000240)={0x0, @in={{0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x42}}}, 0x1, 0x8, 0x3, 0x10001, 0x5d}, &(0x7f0000000040)=0x98)

2.828167366s ago: executing program 5 (id=4226):
r0 = socket$inet(0x2, 0x2, 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='macvlan1\x00', 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setresgid(0xee01, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x71, 0x11, 0x6a}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r4 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
write$dsp(r4, &(0x7f0000000000)="81", 0x1)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0xb, 0x8012, r4, 0x0)
close(r4)

2.63475076s ago: executing program 7 (id=4230):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f0000000300)=0x100000001, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r0, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f0000000340)='\b', 0x1, 0x0, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x0, 0x0, 0xfffffffffffffd25)

2.39095052s ago: executing program 7 (id=4232):
prlimit64(0x0, 0xe, &(0x7f0000000380)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x1, 0xa00000, 0x10000, @value}, 0x28)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r1, 0x4020565a, &(0x7f00000000c0)={0x3, 0x980900})
ioctl$VIDIOC_QUERYMENU(r1, 0xc008561c, &(0x7f0000000000)={0x980900, 0x10003, @value=0x3})

1.911651149s ago: executing program 4 (id=4236):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x0, 0x80000)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000900)={0xb5, 0x0, 0x4, r2, 0x1})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, 0x0)

1.871093655s ago: executing program 5 (id=4237):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
r1 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x40100001, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r2, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r2, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1})
ioctl$DRM_IOCTL_MODE_SETCRTC(r1, 0xc06864a2, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xffffffff, 0x804, {0xac7c, 0x1, 0x3, 0x69, 0xf4b, 0x1, 0x1f, 0x5, 0x412f, 0xe154, 0x1000, 0x5, 0x6, 0x3, "fe1d00003413000000000000000caa000000090000000000000004b427180010"}})
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r3, 0xc02064b2, &(0x7f0000000040)={0x7, 0x6576, 0x3})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r3, 0x100000000)
mremap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f00003eb000/0x1000)=nil)

1.791189769s ago: executing program 5 (id=4239):
openat$kvm(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_1\x00'})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006200000050005000a00000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000400)={0x4c, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x24, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0x18, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @local}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x4c}}, 0x4000080)

1.790979541s ago: executing program 4 (id=4240):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000010c0), 0x802, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000080)={'syz0\x00', {}, 0x49, [0x0, 0x3, 0x403, 0x100000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, 0xffffffff, 0x0, 0x0, 0x0, 0x3, 0x3, 0x10000000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000a, 0x0, 0x0, 0x80000007, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xa9a4, 0x0, 0xffffffff], [0x0, 0xa82, 0x0, 0x0, 0x2, 0x733, 0x3, 0xedc0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x2000000, 0x0, 0x0, 0x80000, 0x0, 0xfffffff8, 0x0, 0x0, 0x79, 0xfffffffd, 0x0, 0x0, 0x0, 0x2, 0x47, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x7fff0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x2, 0xfffffffc, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x20], [0x0, 0xfffffffc, 0x0, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0xffffffff, 0x89, 0x0, 0x800, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80008000, 0x0, 0xfffffffe, 0xfffffffc, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x351e, 0x0, 0xd, 0x0, 0x0, 0x6492, 0x8], [0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xd2a, 0x200000, 0x0, 0x0, 0x10, 0x0, 0x0, 0x804, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x2, 0x0, 0x4, 0x0, 0xfd32, 0x6, 0x0, 0x0, 0x0, 0x2, 0x5, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x8000006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x1, 0x0, 0x0, 0x100000]}, 0x45c)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x5)
ioctl$UI_DEV_CREATE(r0, 0x5501)

1.660566301s ago: executing program 4 (id=4242):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f00000000c0)=ANY=[])

1.530042433s ago: executing program 4 (id=4245):
syz_usb_connect(0x2, 0x3d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000bdce4208110f80106afc0000000109022b00010000000009043700022ee5cd0009058010ff037f790209050e0320000980070705ab0b78"], 0x0)
r0 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
poll(&(0x7f0000000000)=[{r0, 0x1120}], 0x1, 0x1)

1.420536192s ago: executing program 7 (id=4247):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000041c0)={0x2020, 0x0, 0x0, 0x0, <r1=>0x0}, 0x2020)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0/../file0/file0\x00', 0x80200, 0x2)
openat(r2, 0x0, 0x100, 0x120)
syz_fuse_handle_req(r0, &(0x7f000000a280)="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", 0x2000, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000008c0)={0x90, 0x0, 0x4, {0x3, 0x1, 0xfffffffffffffffa, 0x0, 0x200, 0x38820000, {0x5, 0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, 0x57586a62, 0x0, 0x200, 0xa000, 0x0, 0x0, r1, 0x2, 0x8009}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7ffffffc}]})
close_range(r3, 0xffffffffffffffff, 0x0)

950.517626ms ago: executing program 5 (id=4253):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB])

901.181143ms ago: executing program 9 (id=4255):
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000001c0), 0x2)
r1 = memfd_create(&(0x7f00000003c0)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\x0f<\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\xd5\xf3\\\x00\xbe]Et\xad*\xecj\x02\xc8\xc4\f\x04\x99\xf6\xfc', 0x3)
fcntl$addseals(r1, 0x409, 0x7)
ioctl$UDMABUF_CREATE_LIST(r0, 0x40087543, &(0x7f00000009c0)=ANY=[@ANYBLOB="0020000002000000", @ANYRES32=r1, @ANYBLOB="0000000000000000000000000080000000000000", @ANYRES16])

840.585502ms ago: executing program 9 (id=4256):
r0 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r0, 0xc4c85512, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000]})

840.229371ms ago: executing program 5 (id=4257):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x87}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x278, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0xa8, 0xd8}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x2d8)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f00000004c0)=@raw={'raw\x00', 0x8, 0x3, 0x458, 0xd0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x388, 0xffffffff, 0xffffffff, 0x388, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @dev={0xfe, 0x80, '\x00', 0x3f}, [0xff], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @empty}, @private2, [0x0, 0xffffff00], [0xffffffff, 0xff, 0x0, 0xffffff00], 'gre0\x00', 'veth0\x00', {0xff}, {0xff}, 0x87, 0xe, 0x6, 0x9}, 0x0, 0x258, 0x2b8, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x3, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x4, 0x0, 0x2001000, 0x6, 0x3, 0x0, 0x20}, {0x2}}}]}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@private=0xa010101, [0xffffffff, 0xffffff00], 0x4e20, 0x4e23, 0x4e20, 0x4e21, 0x41f86f8c, 0x9, 0x49, 0x7, 0x8}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x4b8)

840.112695ms ago: executing program 9 (id=4258):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, 0x0, &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
connect$netlink(r1, &(0x7f0000000280)=@proc={0x10, 0x0, 0x25dfdbfc, 0x100000}, 0xc)
sendmsg$nl_route(r1, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c00000020000f0000f90100000000000a"], 0x1c}}, 0x0)

791.508639ms ago: executing program 9 (id=4259):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000010c0), 0x802, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000080)={'syz0\x00', {}, 0x49, [0x0, 0x3, 0x403, 0x100000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x4, 0x1, 0xffffffff, 0x0, 0x0, 0x0, 0x3, 0x3, 0x10000000, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000a, 0x0, 0x0, 0x80000007, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0xa9a4, 0x0, 0xffffffff], [0x0, 0xa82, 0x0, 0x0, 0x2, 0x733, 0x3, 0xedc0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x2000000, 0x0, 0x0, 0x80000, 0x0, 0xfffffff8, 0x0, 0x0, 0x79, 0xfffffffd, 0x0, 0x0, 0x0, 0x2, 0x47, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x7fff0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x2, 0xfffffffc, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x20], [0x0, 0xfffffffc, 0x0, 0x6, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0xffffffff, 0x89, 0x0, 0x800, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80008000, 0x0, 0xfffffffe, 0xfffffffc, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x351e, 0x0, 0xd, 0x0, 0x0, 0x6492, 0x8], [0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0xd2a, 0x200000, 0x0, 0x0, 0x10, 0x0, 0x0, 0x804, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x40, 0x0, 0x2, 0x0, 0x4, 0x0, 0xfd32, 0x6, 0x0, 0x0, 0x0, 0x2, 0x5, 0x0, 0x3ff, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffc, 0x0, 0x8000006, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x1, 0x0, 0x0, 0x100000]}, 0x45c)
ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0x3)
ioctl$UI_DEV_CREATE(r0, 0x5501)

791.308802ms ago: executing program 9 (id=4260):
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x7, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket(0x10, 0x803, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000340), 0x302, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r6, 0x0)
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000000c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2, 0x0, 0x100000000000]})
ioctl$KVM_SET_GUEST_DEBUG(r6, 0x4048ae9b, &(0x7f0000000040)={0xb0000, 0x0, [0x0, 0x0, 0x0, 0x0, 0x200, 0x800000000000000]})
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000640)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r9, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffff, 0xf}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x6}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r9, {0x0, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0x8, 0x2, [@TCA_U32_POLICE={0x4}]}}]}, 0x34}, 0x1, 0x0, 0x0, 0x80}, 0x40)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
fsmount(0xffffffffffffffff, 0x0, 0x1)
timer_create(0x3, 0x0, &(0x7f0000000240))

513.411245ms ago: executing program 9 (id=4261):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
fcntl$lock(r1, 0x26, &(0x7f0000000140)={0x1, 0x2, 0x100, 0x4})
fcntl$lock(r1, 0x26, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x6)
r2 = getpid()
ioctl$AUTOFS_DEV_IOCTL_OPENMOUNT(0xffffffffffffffff, 0xc0189374, &(0x7f0000000f80)={{0x1, 0x1, 0x18, <r3=>r0, {0x7}}, './cgroup/../file0\x00'})
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000740)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
mkdir(0x0, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r6)
sendmsg$NL80211_CMD_GET_REG(r6, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000001100)={0x14, r7, 0xf09, 0x70bd2d, 0x25dfdbfe}, 0x14}}, 0x8084)
sendmsg$NL80211_CMD_SET_WIPHY_NETNS(r0, &(0x7f0000001100)={&(0x7f0000001000)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f00000010c0)={&(0x7f00000011c0)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="200029bd7000fbdbdf25310000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=r3, @ANYBLOB, @ANYRES32=r1, @ANYBLOB], 0x48}, 0x1, 0x0, 0x0, 0xd7ecd36814b87d08}, 0x4)
r8 = fsopen(&(0x7f0000000040)='bpf\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r8, 0x6, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r8, 0x7, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x2, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffff97, 0x10, &(0x7f00000000c0), 0xfffffffffffffd27, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

492.406382ms ago: executing program 7 (id=4262):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000400), 0x0, &(0x7f0000003880)=ANY=[@ANYBLOB='huge=always'])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x192)
ftruncate(r0, 0x82081fc)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
sendfile(r2, r1, 0x0, 0x7ffff000)

121.62187ms ago: executing program 4 (id=4263):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
r1 = syz_io_uring_setup(0x70cb, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x3, 0x179}, &(0x7f0000000100)=<r2=>0x0, &(0x7f00000007c0)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x3, 0x0, &(0x7f0000000440)=[{&(0x7f0000000580)="1a", 0x1}], 0x1})
io_uring_enter(r1, 0x9df, 0x2, 0x2, 0x0, 0x0)

174.411µs ago: executing program 4 (id=4264):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x40100001, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r1, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r2, 0xc02064b2, &(0x7f0000000040)={0x7, 0x6576, 0x3})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r2, 0x100000000)
mremap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f00003eb000/0x1000)=nil)

0s ago: executing program 7 (id=4265):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_MSRS(r3, 0xc008ae88, &(0x7f00000000c0)=ANY=[@ANYBLOB])

kernel console output (not intermixed with test programs):

46] bridge_slave_1: left allmulticast mode
[  481.508177][   T46] bridge_slave_1: left promiscuous mode
[  481.510381][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  481.519940][   T46] bridge_slave_0: left allmulticast mode
[  481.521463][   T46] bridge_slave_0: left promiscuous mode
[  481.523450][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  481.823649][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  481.827175][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  481.830447][   T46] bond0 (unregistering): Released all slaves
[  481.840965][T15445] 8021q: adding VLAN 0 to HW filter on device team0
[  481.854580][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  481.856439][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  481.859046][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  481.860871][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  481.959540][T15445] 8021q: adding VLAN 0 to HW filter on device batadv0
[  481.975274][T15445] veth0_vlan: entered promiscuous mode
[  481.981191][T15445] veth1_vlan: entered promiscuous mode
[  482.017350][T15445] veth0_macvtap: entered promiscuous mode
[  482.021775][T15445] veth1_macvtap: entered promiscuous mode
[  482.040059][T15445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  482.044372][T15445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  482.047786][T15445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  482.050474][T15445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  482.052976][T15445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  482.057638][T15445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  482.062404][T15445] batman_adv: batadv0: Interface activated: batadv_slave_0
[  482.068993][T15445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  482.072550][T15445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  482.076154][T15445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  482.079169][T15445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  482.083388][T15445] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  482.088638][T15445] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  482.091982][T15445] batman_adv: batadv0: Interface activated: batadv_slave_1
[  482.096848][T15445] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  482.099237][T15445] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  482.101659][T15445] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  482.104186][T15445] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  482.194715][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  482.200153][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  482.229404][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  482.236439][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  482.236650][   T67] Bluetooth: hci0: command 0x1003 tx timeout
[  482.237613][ T5944] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  482.327160][   T46] hsr_slave_0: left promiscuous mode
[  482.333148][   T46] hsr_slave_1: left promiscuous mode
[  482.335098][T15564] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3232'.
[  482.335117][T15564] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3232'.
[  482.335131][T15564] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3232'.
[  482.335152][T15564] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3232'.
[  482.352834][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  482.355608][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  482.360443][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  482.362714][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  482.410705][   T46] veth1_macvtap: left promiscuous mode
[  482.412736][   T46] veth0_macvtap: left promiscuous mode
[  482.417203][   T46] veth1_vlan: left promiscuous mode
[  482.419114][   T46] veth0_vlan: left promiscuous mode
[  482.501412][T15571] fuse: Invalid rootmode
[  482.878325][   T67] Bluetooth: hci3: command tx timeout
[  483.468535][T15590] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3261'.
[  483.471368][T15590] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3261'.
[  483.475969][T15590] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3261'.
[  483.478768][T15590] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3261'.
[  483.529504][   T67] Bluetooth: hci5: command tx timeout
[  483.572823][   T46] team0 (unregistering): Port device team_slave_1 removed
[  483.719107][   T46] team0 (unregistering): Port device team_slave_0 removed
[  484.572770][T15611] Invalid ELF header magic: != ELF
[  484.573805][   T40] audit: type=1400 audit(2000000074.669:586): avc:  denied  { module_load } for  pid=15609 comm="syz.2.3269" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[  484.793742][ T5944] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  484.953708][ T5944] Bluetooth: hci3: command tx timeout
[  485.234518][ T6015] usb 13-1: new high-speed USB device number 5 using dummy_hcd
[  485.357344][T15517] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  485.361252][T15517] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  485.372751][T15517] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  485.378493][T15517] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  485.384916][ T6015] usb 13-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  485.387322][ T6015] usb 13-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  485.390076][ T6015] usb 13-1: config 1 has 1 interface, different from the descriptor's value: 66
[  485.392500][ T6015] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  485.403687][ T6015] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  485.407758][T15517] 8021q: adding VLAN 0 to HW filter on device bond0
[  485.409324][ T6015] usb 13-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  485.411950][ T6015] usb 13-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  485.414793][T15517] 8021q: adding VLAN 0 to HW filter on device team0
[  485.418160][ T6015] usb 13-1: Product: syz
[  485.418859][   T80] bridge0: port 1(bridge_slave_0) entered blocking state
[  485.419337][ T6015] usb 13-1: Manufacturer: syz
[  485.421258][   T80] bridge0: port 1(bridge_slave_0) entered forwarding state
[  485.424634][ T6015] cdc_wdm 13-1:1.0: skipping garbage
[  485.426276][ T6015] cdc_wdm 13-1:1.0: skipping garbage
[  485.428998][ T6015] cdc_wdm 13-1:1.0: cdc-wdm0: USB WDM device
[  485.429076][   T80] bridge0: port 2(bridge_slave_1) entered blocking state
[  485.430664][ T6015] cdc_wdm 13-1:1.0: Unknown control protocol
[  485.432823][   T80] bridge0: port 2(bridge_slave_1) entered forwarding state
[  485.545782][T15681] fuse: Unknown parameter 'fd0x0000000000000005'
[  485.561824][T15517] 8021q: adding VLAN 0 to HW filter on device batadv0
[  485.597073][T15517] veth0_vlan: entered promiscuous mode
[  485.601672][T15517] veth1_vlan: entered promiscuous mode
[  485.605915][ T5944] Bluetooth: hci5: command tx timeout
[  485.618335][T15517] veth0_macvtap: entered promiscuous mode
[  485.621419][T15517] veth1_macvtap: entered promiscuous mode
[  485.627881][    C2] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  485.627926][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  485.629694][    C2] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  485.632462][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.634273][    C2] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  485.636670][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  485.638380][    C2] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  485.640994][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.642743][    C2] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  485.646143][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  485.646876][    C2] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  485.649662][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.651357][   T63] usb 13-1: USB disconnect, device number 5
[  485.653920][    C2] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  485.653931][    C2] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  485.653938][    C2] cdc_wdm 13-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  485.656983][T15517] batman_adv: batadv0: Interface activated: batadv_slave_0
[  485.664857][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  485.667907][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.670412][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  485.673112][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.678195][T15517] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  485.680959][T15517] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  485.684225][T15517] batman_adv: batadv0: Interface activated: batadv_slave_1
[  485.699498][T15517] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  485.702335][T15517] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  485.707027][T15517] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  485.709821][T15517] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  485.794070][ T1171] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  485.796220][ T1171] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  485.809315][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  485.811549][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  486.103790][   T63] usb 8-1: new high-speed USB device number 65 using dummy_hcd
[  486.257456][   T63] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  486.260395][   T63] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  486.263130][   T63] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  486.281263][   T63] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  486.296057][T15697] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  486.300240][   T63] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  486.421339][T15723] fuse: Unknown parameter '00000000000000000000'
[  486.592400][T14625] usb 8-1: USB disconnect, device number 65
[  486.698426][T15738] 9p: Unknown access argument 18446744073709551615: -34
[  486.854221][T15748] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3286'.
[  486.857658][T15748] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3286'.
[  486.888126][   T40] audit: type=1400 audit(2000000076.989:587): avc:  denied  { ioctl } for  pid=15746 comm="syz.8.3287" path="socket:[55676]" dev="sockfs" ino=55676 ioctlcmd=0x89ef scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  487.043742][ T5944] Bluetooth: hci3: command tx timeout
[  487.843962][T15781] fuse: Unknown parameter '00000000000000000000'
[  488.023636][T15214] usb 13-1: new high-speed USB device number 6 using dummy_hcd
[  488.214820][T15214] usb 13-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  488.217177][T15214] usb 13-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  488.219918][T15214] usb 13-1: config 1 has 1 interface, different from the descriptor's value: 66
[  488.223015][T15214] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  488.226537][T15214] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  488.235852][T15214] usb 13-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  488.238319][T15214] usb 13-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  488.240441][T15214] usb 13-1: Product: syz
[  488.242903][T15214] usb 13-1: Manufacturer: syz
[  488.257435][T15214] cdc_wdm 13-1:1.0: skipping garbage
[  488.258918][T15214] cdc_wdm 13-1:1.0: skipping garbage
[  488.260958][T15214] cdc_wdm 13-1:1.0: cdc-wdm0: USB WDM device
[  488.262703][T15214] cdc_wdm 13-1:1.0: Unknown control protocol
[  488.548661][    C0] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  488.550497][    C0] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  488.552358][    C0] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  488.554478][    C0] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  488.556632][    C0] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  488.558787][    C0] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  488.560725][    C0] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  488.562542][    C0] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  488.564454][    C0] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  488.566283][    C0] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  488.568118][    C0] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  488.569914][    C0] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  488.596235][   T10] usb 13-1: USB disconnect, device number 6
[  488.598431][    C0] cdc_wdm 13-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  488.627684][T15812] fuse: Bad value for 'fd'
[  488.986329][T15802] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  488.988036][T15802] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  488.995340][T15802] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  489.000363][T15802] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  489.002067][T15802] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  489.005241][T15802] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  489.007603][T15802] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  489.009319][T15802] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  489.012760][T15802] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  489.156145][T15844] __nla_validate_parse: 2 callbacks suppressed
[  489.156161][T15844] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3299'.
[  489.160589][T15844] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3299'.
[  489.163456][T15844] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3299'.
[  489.169470][T15844] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3299'.
[  489.362811][T15860] fuse: Unknown parameter 'user00000000000000000000'
[  489.866863][T15891] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3307'.
[  489.869955][T15891] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3307'.
[  489.873052][T15891] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3307'.
[  489.875913][T15891] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3307'.
[  489.878398][T15891] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3307'.
[  490.163831][   T10] usb 13-1: new high-speed USB device number 7 using dummy_hcd
[  490.348367][   T10] usb 13-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  490.353501][   T10] usb 13-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  490.357082][   T10] usb 13-1: config 1 has 1 interface, different from the descriptor's value: 66
[  490.363022][   T10] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  490.366992][   T10] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  490.380903][   T10] usb 13-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  490.384935][   T10] usb 13-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  490.387909][   T10] usb 13-1: Product: syz
[  490.389648][   T10] usb 13-1: Manufacturer: syz
[  490.422143][   T10] cdc_wdm 13-1:1.0: skipping garbage
[  490.423709][   T10] cdc_wdm 13-1:1.0: skipping garbage
[  490.430294][   T10] cdc_wdm 13-1:1.0: cdc-wdm0: USB WDM device
[  490.438672][   T10] cdc_wdm 13-1:1.0: Unknown control protocol
[  490.634342][   T67] Bluetooth: hci1: command 0x0405 tx timeout
[  490.741740][    C0] wdm_int_callback: 155 callbacks suppressed
[  490.741763][    C0] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  490.741853][T15661] usb 13-1: USB disconnect, device number 7
[  490.743421][    C0] wdm_int_callback: 155 callbacks suppressed
[  490.743432][    C0] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  490.750117][    C0] cdc_wdm 13-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  490.753265][T15898] cdc_wdm 13-1:1.0: Tx URB error: -19
[  491.046065][   T67] Bluetooth: hci3: command 0x0c1a tx timeout
[  491.047904][   T67] Bluetooth: hci5: command 0x0c1a tx timeout
[  491.087308][   T40] audit: type=1400 audit(2000000081.189:588): avc:  denied  { connect } for  pid=15931 comm="syz.3.3314" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  491.094701][   T40] audit: type=1400 audit(2000000081.189:589): avc:  denied  { write } for  pid=15931 comm="syz.3.3314" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  491.183729][T11528] usb 5-1: new high-speed USB device number 57 using dummy_hcd
[  491.194215][ T5944] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  491.341370][T11528] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  491.346965][T11528] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  491.350248][T11528] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  491.368412][T11528] usb 5-1: config 0 descriptor??
[  491.393149][T11528] pwc: Askey VC010 type 2 USB webcam detected.
[  491.789549][T11528] pwc: recv_control_msg error -32 req 02 val 2b00
[  491.803711][T11528] pwc: recv_control_msg error -32 req 02 val 2700
[  491.833190][T11528] pwc: recv_control_msg error -32 req 02 val 2c00
[  491.847147][T11528] pwc: recv_control_msg error -32 req 04 val 1000
[  491.854989][T11528] pwc: recv_control_msg error -32 req 04 val 1300
[  491.866349][T11528] pwc: recv_control_msg error -32 req 04 val 1400
[  491.875695][T11528] pwc: recv_control_msg error -32 req 02 val 2000
[  491.882553][T11528] pwc: recv_control_msg error -32 req 02 val 2100
[  491.890023][T11528] pwc: recv_control_msg error -32 req 04 val 1500
[  491.899042][T11528] pwc: recv_control_msg error -32 req 02 val 2500
[  491.908335][T11528] pwc: recv_control_msg error -32 req 02 val 2400
[  491.920785][T11528] pwc: recv_control_msg error -32 req 02 val 2600
[  492.132386][T11528] pwc: recv_control_msg error -71 req 02 val 2800
[  492.136550][T11528] pwc: recv_control_msg error -71 req 04 val 1100
[  492.138708][T11528] pwc: recv_control_msg error -71 req 04 val 1200
[  492.143860][T11528] pwc: Registered as video103.
[  492.148252][T11528] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb5/5-1/input/input26
[  492.155972][T11528] usb 5-1: USB disconnect, device number 57
[  492.419745][T15967] Bluetooth: hci0: Frame reassembly failed (-84)
[  492.425006][T15967] Bluetooth: hci0: Frame reassembly failed (-84)
[  492.468632][T15973] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  492.687295][T15981] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  492.711164][T15983] vcan0 speed is unknown, defaulting to 1000
[  492.714568][ T5954] Bluetooth: hci1: command 0x0405 tx timeout
[  492.742576][    C1] vkms_vblank_simulate: vblank timer overrun
[  492.759755][T15985] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3331'.
[  492.766952][T15985] geneve2: entered allmulticast mode
[  492.796981][    C0] IPv4: Oversized IP packet from 172.20.20.24
[  492.952557][T15991] fuse: Bad value for 'fd'
[  492.974554][T11528] usb 13-1: new high-speed USB device number 8 using dummy_hcd
[  493.116213][   T67] Bluetooth: hci3: command 0x0c1a tx timeout
[  493.118032][ T5954] Bluetooth: hci5: command 0x0c1a tx timeout
[  493.124839][T11528] usb 13-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  493.127258][T11528] usb 13-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  493.130073][T11528] usb 13-1: config 1 has 1 interface, different from the descriptor's value: 66
[  493.132757][T11528] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  493.137438][T11528] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  493.143347][T11528] usb 13-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  493.146910][T11528] usb 13-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  493.149895][T11528] usb 13-1: Product: syz
[  493.151503][T11528] usb 13-1: Manufacturer: syz
[  493.155859][T11528] cdc_wdm 13-1:1.0: skipping garbage
[  493.157319][T11528] cdc_wdm 13-1:1.0: skipping garbage
[  493.160501][T11528] cdc_wdm 13-1:1.0: cdc-wdm0: USB WDM device
[  493.162200][T11528] cdc_wdm 13-1:1.0: Unknown control protocol
[  493.407706][T16003] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[  493.409807][T16003] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  493.415806][T16003] vhci_hcd vhci_hcd.0: Device attached
[  493.416480][   T10] usb 13-1: USB disconnect, device number 8
[  493.417701][    C3] cdc_wdm 13-1:1.0: nonzero urb status received: -71
[  493.421044][    C3] cdc_wdm 13-1:1.0: wdm_int_callback - 0 bytes
[  493.422821][    C3] cdc_wdm 13-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  493.593687][T15214] vhci_hcd: vhci_device speed not set
[  493.653651][T15214] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[  493.663774][ T6015] usb 7-1: new low-speed USB device number 58 using dummy_hcd
[  493.815223][ T6015] usb 7-1: config 0 has no interfaces?
[  493.817411][ T6015] usb 7-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  493.820735][ T6015] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  493.825546][ T6015] usb 7-1: config 0 descriptor??
[  494.031108][T16004] usbip_core: unknown command
[  494.032940][T16004] vhci_hcd: unknown pdu 0
[  494.037654][   T10] usb 7-1: USB disconnect, device number 58
[  494.044283][T16004] usbip_core: unknown command
[  494.054408][   T46] vhci_hcd: stop threads
[  494.056860][   T46] vhci_hcd: release socket
[  494.060741][   T46] vhci_hcd: disconnect device
[  494.061193][   T40] audit: type=1400 audit(2000000084.159:590): avc:  denied  { read } for  pid=16007 comm="syz.0.3336" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  494.072278][   T40] audit: type=1400 audit(2000000084.169:591): avc:  denied  { read } for  pid=16007 comm="syz.0.3336" name="btrfs-control" dev="devtmpfs" ino=1337 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  494.081359][   T40] audit: type=1400 audit(2000000084.169:592): avc:  denied  { open } for  pid=16007 comm="syz.0.3336" path="/dev/btrfs-control" dev="devtmpfs" ino=1337 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  494.090261][   T40] audit: type=1400 audit(2000000084.169:593): avc:  denied  { ioctl } for  pid=16007 comm="syz.0.3336" path="/dev/btrfs-control" dev="devtmpfs" ino=1337 ioctlcmd=0x9405 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:lvm_control_t tclass=chr_file permissive=1
[  494.103745][T15214] vhci_hcd: vhci_device speed not set
[  494.238412][T16012] __nla_validate_parse: 1 callbacks suppressed
[  494.238423][T16012] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3337'.
[  494.247475][T16012] IPVS: Error joining to the multicast group
[  494.473912][ T5944] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  494.803786][ T5944] Bluetooth: hci1: command 0x0405 tx timeout
[  494.919399][   T40] audit: type=1400 audit(2000000085.019:594): avc:  denied  { shutdown } for  pid=16021 comm="syz.2.3340" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  495.054298][T16029] fuse: Bad value for 'fd'
[  495.204008][ T5944] Bluetooth: hci5: command 0x0c1a tx timeout
[  495.205715][ T5954] Bluetooth: hci3: command 0x0c1a tx timeout
[  495.402139][T16047] fuse: Unknown parameter 'user_id00000000000000000000'
[  495.403676][   T36] usb 8-1: new high-speed USB device number 66 using dummy_hcd
[  495.557021][   T36] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  495.559409][   T36] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  495.573675][   T36] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  495.594975][   T36] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  495.597948][   T36] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  495.602562][   T36] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  495.605238][   T36] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  495.607370][   T36] usb 8-1: Product: syz
[  495.608496][   T36] usb 8-1: Manufacturer: syz
[  495.617515][   T36] cdc_wdm 8-1:1.0: skipping garbage
[  495.618963][   T36] cdc_wdm 8-1:1.0: skipping garbage
[  495.623995][   T36] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  495.626241][   T36] cdc_wdm 8-1:1.0: Unknown control protocol
[  495.794505][T16053] Bluetooth: hci0: Frame reassembly failed (-84)
[  495.798980][ T5944] Bluetooth: hci0: sending frame failed (-49)
[  495.801702][ T5954] Bluetooth: hci0: Opcode 0x1003 failed: -49
[  495.874798][    C3] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  495.875034][T12020] usb 8-1: USB disconnect, device number 66
[  495.876825][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  495.880444][    C3] cdc_wdm 8-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  495.883731][T16038] cdc_wdm 8-1:1.0: Tx URB error: -19
[  495.900370][ T5954] Bluetooth: hci0: sending frame failed (-49)
[  495.903184][ T5944] Bluetooth: hci0: Opcode 0x1003 failed: -49
[  495.907947][T16056] Bluetooth: hci0: Frame reassembly failed (-84)
[  495.909829][T16056] Bluetooth: hci0: Frame reassembly failed (-84)
[  496.044854][T16063] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3350'.
[  496.224305][   T40] audit: type=1400 audit(2000000086.329:595): avc:  denied  { write } for  pid=16064 comm="syz.0.3351" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  496.230933][T16065] loop6: detected capacity change from 0 to 63
[  496.232858][   T40] audit: type=1400 audit(2000000086.329:596): avc:  denied  { map } for  pid=16064 comm="syz.0.3351" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  496.248880][   T40] audit: type=1400 audit(2000000086.329:597): avc:  denied  { execute } for  pid=16064 comm="syz.0.3351" path="/dev/loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  496.249549][    C3] blk_print_req_error: 40 callbacks suppressed
[  496.249562][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 8 prio class 0
[  496.255417][   T40] audit: type=1400 audit(2000000086.349:598): avc:  denied  { map } for  pid=16064 comm="syz.0.3351" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  496.260738][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  496.269249][    C3] buffer_io_error: 39 callbacks suppressed
[  496.269259][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  496.276350][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  496.279565][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  496.288089][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  496.291315][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  496.295611][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  496.298805][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  496.302543][    C3] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  496.305789][    C3] Buffer I/O error on dev loop6, logical block 0, async page read
[  496.515324][T16072] 9pnet_fd: Insufficient options for proto=fd
[  496.673466][   T36] libceph: connect (1)[c::]:6789 error -101
[  496.675485][   T36] libceph: mon0 (1)[c::]:6789 connect error
[  496.682480][ T5944] Bluetooth: hci0: sending frame failed (-49)
[  496.687819][ T5954] Bluetooth: hci0: Opcode 0x1003 failed: -49
[  496.687917][T16086] Bluetooth: hci4: Frame reassembly failed (-84)
[  496.691105][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  496.693969][T16084] Bluetooth: hci0: Frame reassembly failed (-84)
[  496.701747][T16086] Bluetooth: hci4: Frame reassembly failed (-84)
[  496.877535][T16097] vcan0 speed is unknown, defaulting to 1000
[  496.963875][   T36] libceph: connect (1)[c::]:6789 error -101
[  496.965625][   T36] libceph: mon0 (1)[c::]:6789 connect error
[  497.023605][   T40] audit: type=1326 audit(2000000087.119:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16096 comm="syz.2.3362" exe="/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f3a1618d169 code=0x0
[  497.463523][T16080] ceph: No mds server is up or the cluster is laggy
[  497.701520][T16126] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for gretap1
[  497.705428][T16126] batman_adv: batadv0: Adding interface: gretap1
[  497.707586][T16126] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  497.716245][T16126] batman_adv: batadv0: Not using interface gretap1 (retrying later): interface not active
[  497.820034][T16130] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  497.911025][T16135] fuse: Bad value for 'fd'
[  498.226951][T16140] netlink: 52 bytes leftover after parsing attributes in process `syz.2.3373'.
[  498.713797][ T6000] usb 13-1: new high-speed USB device number 9 using dummy_hcd
[  498.715156][ T5954] Bluetooth: hci4: command 0x1003 tx timeout
[  498.720000][   T67] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  498.814828][T16160] fuse: Bad value for 'fd'
[  498.884976][ T6000] usb 13-1: config 0 has no interfaces?
[  498.888467][ T6000] usb 13-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  498.891831][ T6000] usb 13-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  498.891850][ T6000] usb 13-1: Product: syz
[  498.891864][ T6000] usb 13-1: Manufacturer: syz
[  498.891877][ T6000] usb 13-1: SerialNumber: syz
[  498.898352][ T6000] usb 13-1: config 0 descriptor??
[  499.013794][   T40] audit: type=1326 audit(2000000089.109:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16164 comm="syz.3.3383" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae71f8d169 code=0x7ffc0000
[  499.022408][   T40] audit: type=1326 audit(2000000089.119:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16164 comm="syz.3.3383" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae71f8d169 code=0x7ffc0000
[  499.031444][   T40] audit: type=1326 audit(2000000089.119:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16164 comm="syz.3.3383" exe="/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7fae71f8d169 code=0x7ffc0000
[  499.038109][   T40] audit: type=1326 audit(2000000089.119:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16164 comm="syz.3.3383" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae71f8d169 code=0x7ffc0000
[  499.044483][   T40] audit: type=1326 audit(2000000089.119:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=16164 comm="syz.3.3383" exe="/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7fae71f8d169 code=0x7ffc0000
[  499.100822][T16176] 9pnet_fd: Insufficient options for proto=fd
[  499.110503][T14360] usb 13-1: USB disconnect, device number 9
[  499.287451][T16185] fuse: Unknown parameter '0x0000000000000005'
[  499.844810][T11512] usb 5-1: new high-speed USB device number 58 using dummy_hcd
[  500.003681][T11512] usb 5-1: Using ep0 maxpacket: 16
[  500.009336][T11512] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 65, using maximum allowed: 30
[  500.012256][T11512] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  500.015393][T11512] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 65
[  500.019095][T11512] usb 5-1: New USB device found, idVendor=0419, idProduct=0001, bcdDevice= 0.00
[  500.021570][T11512] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  500.028192][T11512] usb 5-1: config 0 descriptor??
[  500.147023][T16209] fuse: Unknown parameter '0x0000000000000005'
[  500.363823][T14676] usb 8-1: new full-speed USB device number 67 using dummy_hcd
[  500.436563][T11512] samsung 0003:0419:0001.000D: item fetching failed at offset 10/11
[  500.438924][T11512] samsung 0003:0419:0001.000D: parse failed
[  500.441995][T11512] samsung 0003:0419:0001.000D: probe with driver samsung failed with error -22
[  500.527395][T14676] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  500.530903][T14676] usb 8-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  500.534519][T14676] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  500.538823][T14676] usb 8-1: config 0 descriptor??
[  500.543933][T16207] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  500.638410][T15010] usb 5-1: USB disconnect, device number 58
[  501.084405][T14676] elan 0003:04F3:0755.000E: hidraw1: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.3-1/input0
[  501.201066][T15010] hid-generic 0000:0003:0000.000F: unknown main item tag 0x0
[  501.203839][T15010] hid-generic 0000:0003:0000.000F: unknown main item tag 0x0
[  501.214388][T15010] hid-generic 0000:0003:0000.000F: hidraw2: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  501.217617][T14625] usb 8-1: USB disconnect, device number 67
[  501.276770][T16251] fuse: Unknown parameter '0x0000000000000005'
[  501.355810][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  501.502276][T16262] 9pnet_fd: Insufficient options for proto=fd
[  501.833867][T14676] usb 7-1: new high-speed USB device number 59 using dummy_hcd
[  501.913441][ T5954] Bluetooth: hci0: sending frame failed (-49)
[  501.917122][   T67] Bluetooth: hci0: Opcode 0x1003 failed: -49
[  501.946549][T16291] fuse: Unknown parameter '0x0000000000000005'
[  502.005009][T14676] usb 7-1: config 0 has an invalid interface number: 64 but max is 0
[  502.008353][T14676] usb 7-1: config 0 has an invalid descriptor of length 69, skipping remainder of the config
[  502.011076][T14676] usb 7-1: config 0 has no interface number 0
[  502.024971][T14676] usb 7-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice=39.48
[  502.027549][T14676] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  502.029713][T14676] usb 7-1: Product: syz
[  502.030867][T14676] usb 7-1: Manufacturer: syz
[  502.032166][T14676] usb 7-1: SerialNumber: syz
[  502.036246][T14676] usb 7-1: config 0 descriptor??
[  502.441689][T14676] usb 7-1: Found UVC 0.00 device syz (046d:0823)
[  502.443532][T14676] usb 7-1: No valid video chain found.
[  502.444066][T16312] 9pnet_fd: Insufficient options for proto=fd
[  502.445249][ T6008] usb 8-1: new high-speed USB device number 68 using dummy_hcd
[  502.451800][T14676] usb 7-1: USB disconnect, device number 59
[  502.604964][ T6008] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  502.607882][ T6008] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  502.610314][ T6008] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  502.623888][ T6008] usb 8-1: config 0 descriptor??
[  502.627039][ T6008] pwc: Askey VC010 type 2 USB webcam detected.
[  502.651901][T16335] fuse: Unknown parameter '0x0000000000000005'
[  502.963960][T15010] usb 5-1: new high-speed USB device number 59 using dummy_hcd
[  503.031088][ T6008] pwc: recv_control_msg error -32 req 02 val 2b00
[  503.033368][ T6008] pwc: recv_control_msg error -32 req 02 val 2700
[  503.035684][ T6008] pwc: recv_control_msg error -32 req 02 val 2c00
[  503.038215][ T6008] pwc: recv_control_msg error -32 req 04 val 1000
[  503.040495][ T6008] pwc: recv_control_msg error -32 req 04 val 1300
[  503.042662][ T6008] pwc: recv_control_msg error -32 req 04 val 1400
[  503.045993][ T6008] pwc: recv_control_msg error -32 req 02 val 2000
[  503.048596][ T6008] pwc: recv_control_msg error -32 req 02 val 2100
[  503.111059][T16363] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3436'.
[  503.123678][T15010] usb 5-1: Using ep0 maxpacket: 32
[  503.133525][T15010] usb 5-1: config 0 has an invalid interface number: 16 but max is 0
[  503.137288][T15010] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  503.139975][T15010] usb 5-1: config 0 has no interface number 0
[  503.141596][T15010] usb 5-1: config 0 interface 16 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 1023
[  503.145351][T15010] usb 5-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  503.150267][T15010] usb 5-1: New USB device found, idVendor=0499, idProduct=102a, bcdDevice=85.2d
[  503.152697][T15010] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  503.157136][T15010] usb 5-1: Product: syz
[  503.158350][T15010] usb 5-1: Manufacturer: syz
[  503.159622][T15010] usb 5-1: SerialNumber: syz
[  503.161738][T15010] usb 5-1: config 0 descriptor??
[  503.163481][T16342] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  503.169212][T15010] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  503.171700][T15010] usb 5-1: invalid MIDI in EP 0
[  503.182935][T15010] snd-usb-audio 5-1:0.16: probe with driver snd-usb-audio failed with error -22
[  503.183687][  T835] usb 13-1: new high-speed USB device number 10 using dummy_hcd
[  503.207497][T11440] udevd[11440]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.16/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  503.251602][ T6008] pwc: recv_control_msg error -71 req 02 val 2500
[  503.254402][ T6008] pwc: recv_control_msg error -71 req 02 val 2400
[  503.256777][ T6008] pwc: recv_control_msg error -71 req 02 val 2600
[  503.259105][ T6008] pwc: recv_control_msg error -71 req 02 val 2900
[  503.261415][ T6008] pwc: recv_control_msg error -71 req 02 val 2800
[  503.264021][ T6008] pwc: recv_control_msg error -71 req 04 val 1100
[  503.266380][ T6008] pwc: recv_control_msg error -71 req 04 val 1200
[  503.272187][ T6008] pwc: Registered as video103.
[  503.274701][ T6008] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb8/8-1/input/input28
[  503.279461][ T6008] usb 8-1: USB disconnect, device number 68
[  503.353744][  T835] usb 13-1: Using ep0 maxpacket: 32
[  503.360019][  T835] usb 13-1: config 0 has an invalid interface number: 1 but max is 0
[  503.362271][  T835] usb 13-1: config 0 has no interface number 0
[  503.363967][  T835] usb 13-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  503.366830][  T835] usb 13-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  503.368728][T15010] usb 5-1: USB disconnect, device number 59
[  503.369935][  T835] usb 13-1: New USB device found, idVendor=28bd, idProduct=0094, bcdDevice= 0.00
[  503.402912][  T835] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  503.406796][  T835] usb 13-1: config 0 descriptor??
[  503.930548][T16379] fuse: Unknown parameter '0x0000000000000005'
[  504.013735][  T835] uclogic 0003:28BD:0094.0010: failed retrieving string descriptor #100: -71
[  504.016305][  T835] uclogic 0003:28BD:0094.0010: failed retrieving pen parameters: -71
[  504.018823][  T835] uclogic 0003:28BD:0094.0010: pen probing failed: -71
[  504.020731][  T835] uclogic 0003:28BD:0094.0010: failed probing parameters: -71
[  504.022939][  T835] uclogic 0003:28BD:0094.0010: probe with driver uclogic failed with error -71
[  504.026650][  T835] usb 13-1: USB disconnect, device number 10
[  504.153805][T15010] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[  504.405302][T15010] usb 5-1: config 0 has no interfaces?
[  504.409470][T15010] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  504.412567][T15010] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  504.415361][T15010] usb 5-1: Product: syz
[  504.416825][T15010] usb 5-1: Manufacturer: syz
[  504.418465][T15010] usb 5-1: SerialNumber: syz
[  504.421648][T15010] usb 5-1: config 0 descriptor??
[  504.698520][T14676] usb 5-1: USB disconnect, device number 60
[  505.208852][T16407] RDS: rds_bind could not find a transport for ::ffff:172.30.0.3, load rds_tcp or rds_rdma?
[  505.299812][T16411] fuse: Unknown parameter 'fd0x0000000000000005'
[  506.480539][T11434] Bluetooth: (null): Invalid header checksum
[  506.482760][T11434] Bluetooth: (null): Invalid header checksum
[  506.623908][T14360] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[  506.628146][ T1140] Bluetooth: (null): Invalid header checksum
[  506.704144][T11434] Bluetooth: (null): Invalid header checksum
[  506.795501][T14360] usb 5-1: config 0 has no interfaces?
[  506.800131][T14360] usb 5-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  506.802656][T14360] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  506.805205][T14360] usb 5-1: Product: syz
[  506.806729][T14360] usb 5-1: Manufacturer: syz
[  506.808188][T14360] usb 5-1: SerialNumber: syz
[  506.811501][T14360] usb 5-1: config 0 descriptor??
[  506.814214][   T12] Bluetooth: (null): Invalid header checksum
[  506.938332][ T1171] Bluetooth: (null): Invalid header checksum
[  507.020233][T14360] usb 5-1: USB disconnect, device number 61
[  507.075989][T16440] PKCS7: Unknown OID: [4] 0.38.11253.6554(bad)
[  507.079469][T16440] PKCS7: Only support pkcs7_signedData type
[  507.188413][T16444] fuse: Unknown parameter 'fd0x0000000000000005'
[  507.685732][T16452] IPVS: lc: UDP 224.0.0.2:0 - no destination available
[  507.690908][T15010] IPVS: starting estimator thread 0...
[  507.816031][T16456] IPVS: using max 35 ests per chain, 84000 per kthread
[  507.854087][   T40] kauditd_printk_skb: 4 callbacks suppressed
[  507.854263][   T40] audit: type=1400 audit(2000000097.949:609): avc:  denied  { ioctl } for  pid=16464 comm="syz.2.3470" path="socket:[56162]" dev="sockfs" ino=56162 ioctlcmd=0x89e0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  508.550484][T16476] fuse: Unknown parameter 'fd0x0000000000000005'
[  508.863647][  T835] usb 8-1: new high-speed USB device number 69 using dummy_hcd
[  509.026901][  T835] usb 8-1: config 0 has no interfaces?
[  509.033217][  T835] usb 8-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  509.036495][  T835] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  509.039120][  T835] usb 8-1: Product: syz
[  509.040495][  T835] usb 8-1: Manufacturer: syz
[  509.041945][  T835] usb 8-1: SerialNumber: syz
[  509.044592][  T835] usb 8-1: config 0 descriptor??
[  509.262779][  T835] usb 8-1: USB disconnect, device number 69
[  509.655967][T16497] warning: `syz.0.3481' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  509.872440][T16511] 9pnet_fd: Insufficient options for proto=fd
[  510.717678][T16534] IPv6: NLM_F_CREATE should be specified when creating new route
[  510.953956][ T5954] Bluetooth: hci3: command 0x0c1a tx timeout
[  511.053767][T15010] usb 8-1: new high-speed USB device number 70 using dummy_hcd
[  511.215968][T15010] usb 8-1: config 0 has no interfaces?
[  511.220358][T15010] usb 8-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[  511.223970][T15010] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  511.227000][T15010] usb 8-1: Product: syz
[  511.228711][T15010] usb 8-1: Manufacturer: syz
[  511.230588][T15010] usb 8-1: SerialNumber: syz
[  511.244371][T15010] usb 8-1: config 0 descriptor??
[  511.450313][T14625] usb 8-1: USB disconnect, device number 70
[  512.052486][   T40] audit: type=1400 audit(2000000102.149:610): avc:  denied  { unmount } for  pid=15445 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:rpc_pipefs_t tclass=filesystem permissive=1
[  512.070938][   T67] Bluetooth: hci3: unexpected event for opcode 0x0c2d
[  512.274019][ T5954] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  512.278356][ T5954] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  512.282841][ T5954] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  512.287396][T16569] 9pnet_fd: Insufficient options for proto=fd
[  512.289176][ T5954] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  512.293401][ T5954] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  512.299049][ T5954] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  512.325035][T16566] vcan0 speed is unknown, defaulting to 1000
[  512.475419][T16566] chnl_net:caif_netlink_parms(): no params data found
[  512.836213][T16566] bridge0: port 1(bridge_slave_0) entered blocking state
[  512.838709][T16566] bridge0: port 1(bridge_slave_0) entered disabled state
[  512.841000][T16566] bridge_slave_0: entered allmulticast mode
[  512.843106][T16566] bridge_slave_0: entered promiscuous mode
[  512.846095][T16566] bridge0: port 2(bridge_slave_1) entered blocking state
[  512.848243][T16566] bridge0: port 2(bridge_slave_1) entered disabled state
[  512.850657][T16566] bridge_slave_1: entered allmulticast mode
[  512.853033][T16566] bridge_slave_1: entered promiscuous mode
[  512.902987][T16566] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  512.907633][T16566] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  512.934867][T16566] team0: Port device team_slave_0 added
[  512.938753][T16566] team0: Port device team_slave_1 added
[  512.958204][T16566] batman_adv: batadv0: Adding interface: batadv_slave_0
[  512.960256][T16566] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  512.967460][T16566] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  512.971276][T16566] batman_adv: batadv0: Adding interface: batadv_slave_1
[  512.973216][T16566] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  512.980365][T16566] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  513.004990][T16566] hsr_slave_0: entered promiscuous mode
[  513.006889][T16566] hsr_slave_1: entered promiscuous mode
[  513.008794][T16566] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  513.010918][T16566] Cannot create hsr debugfs directory
[  513.299483][ T5954] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  513.303647][ T5954] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  513.308087][ T5954] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  513.310638][ T5954] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  513.313004][ T5954] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  513.315533][ T5954] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  513.362306][T16595] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  513.374827][   T67] Bluetooth: hci3: unexpected event for opcode 0x0c2d
[  513.401893][T16597] vcan0 speed is unknown, defaulting to 1000
[  513.562214][T16597] chnl_net:caif_netlink_parms(): no params data found
[  513.737731][T16597] bridge0: port 1(bridge_slave_0) entered blocking state
[  513.743306][T16597] bridge0: port 1(bridge_slave_0) entered disabled state
[  513.752193][T16597] bridge_slave_0: entered allmulticast mode
[  513.758143][T16597] bridge_slave_0: entered promiscuous mode
[  513.763362][   T40] audit: type=1400 audit(2000000103.859:611): avc:  denied  { create } for  pid=16625 comm="syz.3.3519" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1
[  513.770636][T16597] bridge0: port 2(bridge_slave_1) entered blocking state
[  513.772792][T16597] bridge0: port 2(bridge_slave_1) entered disabled state
[  513.775338][T16597] bridge_slave_1: entered allmulticast mode
[  513.778680][T16597] bridge_slave_1: entered promiscuous mode
[  513.869175][T16597] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  513.876251][T16597] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  513.996235][T16597] team0: Port device team_slave_0 added
[  514.014996][T16597] team0: Port device team_slave_1 added
[  514.055060][T16566] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  514.059442][T16597] batman_adv: batadv0: Adding interface: batadv_slave_0
[  514.061325][T16597] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  514.069166][T16597] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  514.072406][T16566] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  514.086609][T16566] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  514.091093][T16597] batman_adv: batadv0: Adding interface: batadv_slave_1
[  514.092963][T16597] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  514.100392][T16597] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  514.111384][T16566] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  514.165980][T16597] hsr_slave_0: entered promiscuous mode
[  514.167900][T16597] hsr_slave_1: entered promiscuous mode
[  514.169920][T16597] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  514.172058][T16597] Cannot create hsr debugfs directory
[  514.252969][T16566] 8021q: adding VLAN 0 to HW filter on device bond0
[  514.394935][   T67] Bluetooth: hci0: command tx timeout
[  514.405711][T16566] 8021q: adding VLAN 0 to HW filter on device team0
[  514.547712][   T80] bridge0: port 1(bridge_slave_0) entered blocking state
[  514.550498][   T80] bridge0: port 1(bridge_slave_0) entered forwarding state
[  514.578210][   T80] bridge0: port 2(bridge_slave_1) entered blocking state
[  514.580831][   T80] bridge0: port 2(bridge_slave_1) entered forwarding state
[  514.666350][T16672] 9pnet_fd: Insufficient options for proto=fd
[  514.689848][T16566] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  514.694151][T16566] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  514.869152][T16566] 8021q: adding VLAN 0 to HW filter on device batadv0
[  514.897095][T16566] veth0_vlan: entered promiscuous mode
[  514.906857][T16566] veth1_vlan: entered promiscuous mode
[  514.923451][T16566] veth0_macvtap: entered promiscuous mode
[  514.935215][T16566] veth1_macvtap: entered promiscuous mode
[  514.957379][T16566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  514.960268][T16566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.962842][T16566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  514.966270][T16566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.968852][T16566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  514.971414][T16566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.974019][T16566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  514.976694][T16566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.979903][T16566] batman_adv: batadv0: Interface activated: batadv_slave_0
[  514.986234][T16566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  514.989762][T16566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.992238][T16566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  514.994961][T16566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.997514][T16566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  515.000172][T16566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.002602][T16566] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  515.005424][T16566] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.010164][T16566] batman_adv: batadv0: Interface activated: batadv_slave_1
[  515.013411][T16566] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  515.022813][T16566] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  515.025958][T16566] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  515.028978][T16566] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  515.121420][ T1230] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  515.124812][ T1230] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  515.127656][T16597] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  515.134318][T16597] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  515.144480][T16597] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  515.150214][   T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  515.150342][T16597] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  515.153023][   T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  515.192892][T16597] 8021q: adding VLAN 0 to HW filter on device bond0
[  515.200452][T16597] 8021q: adding VLAN 0 to HW filter on device team0
[  515.207275][T11428] bridge0: port 1(bridge_slave_0) entered blocking state
[  515.209288][T11428] bridge0: port 1(bridge_slave_0) entered forwarding state
[  515.212057][T11428] bridge0: port 2(bridge_slave_1) entered blocking state
[  515.214080][T11428] bridge0: port 2(bridge_slave_1) entered forwarding state
[  515.303230][T16706] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3513'.
[  515.311536][T16706] bridge_slave_1: left allmulticast mode
[  515.316868][T16706] bridge_slave_1: left promiscuous mode
[  515.320532][T16706] bridge0: port 2(bridge_slave_1) entered disabled state
[  515.327290][T16706] bridge_slave_0: left allmulticast mode
[  515.328909][T16706] bridge_slave_0: left promiscuous mode
[  515.330523][T16706] bridge0: port 1(bridge_slave_0) entered disabled state
[  515.363722][   T67] Bluetooth: hci1: command tx timeout
[  515.403391][T16597] 8021q: adding VLAN 0 to HW filter on device batadv0
[  515.528709][T16597] veth0_vlan: entered promiscuous mode
[  515.534815][T16597] veth1_vlan: entered promiscuous mode
[  515.547870][   T40] audit: type=1400 audit(2000000105.649:612): avc:  denied  { read write } for  pid=16726 comm="syz.2.3526" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  515.549203][T16728] virtio-pci 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  515.552408][T16597] veth0_macvtap: entered promiscuous mode
[  515.555782][T16597] veth1_macvtap: entered promiscuous mode
[  515.572030][T16597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  515.574220][   T40] audit: type=1400 audit(2000000105.649:613): avc:  denied  { open } for  pid=16726 comm="syz.2.3526" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  515.575716][T16597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.593644][T16597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  515.596574][T16597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.599294][T16597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  515.602055][T16597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.605124][T16597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  515.607832][T16597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.610510][T16597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  515.613842][T16597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.618832][T16597] batman_adv: batadv0: Interface activated: batadv_slave_0
[  515.652576][T16597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  515.656120][T16597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.658883][T16597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  515.663201][T16597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.666030][T16597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  515.668972][T16597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.671958][T16597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  515.675779][T16597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.679184][T16597] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  515.685393][T16597] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  515.705283][T16597] batman_adv: batadv0: Interface activated: batadv_slave_1
[  515.719872][T16597] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  515.722322][T16597] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  515.725117][T16597] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  515.728327][T16597] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  515.843711][ T1230] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  515.845867][ T1230] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  515.860850][   T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  515.863199][   T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  515.896716][   T40] audit: type=1400 audit(2000000105.999:614): avc:  denied  { mounton } for  pid=16597 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  516.032038][   T80] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.101076][   T80] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.195819][   T80] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.280084][   T80] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  516.431994][   T80] bridge_slave_1: left allmulticast mode
[  516.435531][   T80] bridge_slave_1: left promiscuous mode
[  516.440175][   T80] bridge0: port 2(bridge_slave_1) entered disabled state
[  516.456212][   T80] bridge_slave_0: left allmulticast mode
[  516.457826][   T80] bridge_slave_0: left promiscuous mode
[  516.459546][   T80] bridge0: port 1(bridge_slave_0) entered disabled state
[  516.473960][   T67] Bluetooth: hci0: command tx timeout
[  516.596897][ T5954] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  516.601009][ T5954] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  516.605198][ T5954] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  516.618528][ T5954] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  516.621050][ T5954] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  516.623430][ T5954] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  516.932461][   T80] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  516.936281][   T80] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  516.939583][   T80] bond0 (unregistering): Released all slaves
[  516.968760][T16773] vcan0 speed is unknown, defaulting to 1000
[  517.073685][   T63] usb 11-1: new full-speed USB device number 27 using dummy_hcd
[  517.098704][T16773] chnl_net:caif_netlink_parms(): no params data found
[  517.173526][T16773] bridge0: port 1(bridge_slave_0) entered blocking state
[  517.177272][T16773] bridge0: port 1(bridge_slave_0) entered disabled state
[  517.179452][T16773] bridge_slave_0: entered allmulticast mode
[  517.181823][T16773] bridge_slave_0: entered promiscuous mode
[  517.205822][T16773] bridge0: port 2(bridge_slave_1) entered blocking state
[  517.208176][T16773] bridge0: port 2(bridge_slave_1) entered disabled state
[  517.210201][T16773] bridge_slave_1: entered allmulticast mode
[  517.212347][T16773] bridge_slave_1: entered promiscuous mode
[  517.237562][T16773] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  517.241376][T16773] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  517.241713][   T63] usb 11-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  517.247557][   T63] usb 11-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[  517.251246][   T63] usb 11-1: config 0 interface 0 has no altsetting 0
[  517.254054][   T63] usb 11-1: New USB device found, idVendor=28de, idProduct=1102, bcdDevice= 0.00
[  517.256920][   T63] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  517.260092][   T63] usb 11-1: config 0 descriptor??
[  517.306917][T16773] team0: Port device team_slave_0 added
[  517.311364][T16773] team0: Port device team_slave_1 added
[  517.335604][   T80] hsr_slave_0: left promiscuous mode
[  517.337452][   T80] hsr_slave_1: left promiscuous mode
[  517.339218][   T80] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  517.341283][   T80] batman_adv: batadv0: Removing interface: batadv_slave_0
[  517.348804][   T80] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  517.350962][   T80] batman_adv: batadv0: Removing interface: batadv_slave_1
[  517.374935][   T80] veth1_macvtap: left promiscuous mode
[  517.376562][   T80] veth0_macvtap: left promiscuous mode
[  517.378136][   T80] veth1_vlan: left promiscuous mode
[  517.379636][   T80] veth0_vlan: left promiscuous mode
[  517.445530][   T67] Bluetooth: hci1: command tx timeout
[  517.556928][T16832] ptrace attach of "/syz-executor exec"[16566] was attempted by "/syz-executor exec"[16832]
[  517.668697][   T63] hid-steam 0003:28DE:1102.0011: unknown main item tag 0x0
[  517.671122][   T63] hid-steam 0003:28DE:1102.0011: unknown main item tag 0x0
[  517.675707][   T63] hid-steam 0003:28DE:1102.0011: : USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.6-1/input0
[  517.737948][   T63] hid-steam 0003:28DE:1102.0011: Steam Controller 'XXXXXXXXXX' connected
[  517.747636][   T63] input: Steam Controller as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/0003:28DE:1102.0011/input/input29
[  517.915758][   T63] hid-steam 0003:28DE:1102.0012: unknown main item tag 0x0
[  517.920635][   T63] hid-steam 0003:28DE:1102.0012: unknown main item tag 0x0
[  517.991171][   T63] hid-steam 0003:28DE:1102.0012: hidraw1: USB HID v0.01 Device [HID 28de:1102] on usb-dummy_hcd.6-1/input0
[  518.020839][   T63] usb 11-1: USB disconnect, device number 27
[  518.168487][   T63] hid-steam 0003:28DE:1102.0011: Steam Controller 'XXXXXXXXXX' disconnected
[  518.563663][   T67] Bluetooth: hci0: command tx timeout
[  518.717653][   T67] Bluetooth: hci2: command tx timeout
[  518.769142][   T80] team0 (unregistering): Port device team_slave_1 removed
[  518.773226][T16851] netlink: 4 bytes leftover after parsing attributes in process `syz.6.3542'.
[  518.904400][   T80] team0 (unregistering): Port device team_slave_0 removed
[  519.514551][   T67] Bluetooth: hci1: command tx timeout
[  519.761423][T16773] batman_adv: batadv0: Adding interface: batadv_slave_0
[  519.763385][T16773] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  519.771633][T16773] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  519.777360][T16773] batman_adv: batadv0: Adding interface: batadv_slave_1
[  519.780035][T16773] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  519.789581][T16773] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  519.829437][T16851] bridge_slave_1: left allmulticast mode
[  519.831027][T16851] bridge_slave_1: left promiscuous mode
[  519.832627][T16851] bridge0: port 2(bridge_slave_1) entered disabled state
[  519.836918][T16851] bridge_slave_0: left allmulticast mode
[  519.838513][T16851] bridge_slave_0: left promiscuous mode
[  519.840157][T16851] bridge0: port 1(bridge_slave_0) entered disabled state
[  520.018034][T16773] hsr_slave_0: entered promiscuous mode
[  520.020805][T16773] hsr_slave_1: entered promiscuous mode
[  520.023333][T16773] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  520.026530][T16773] Cannot create hsr debugfs directory
[  520.569371][ T1171] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.633829][   T67] Bluetooth: hci0: command tx timeout
[  520.685006][ T1171] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.694905][ T5954] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  520.699486][ T5954] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  520.702182][ T5954] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  520.707346][ T5954] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  520.709646][ T5954] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  520.712425][ T5954] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  520.736849][T16901] vcan0 speed is unknown, defaulting to 1000
[  520.793675][ T5954] Bluetooth: hci2: command tx timeout
[  520.802530][ T1171] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.879934][ T1171] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  520.895213][T16773] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  520.913857][T16773] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  520.920006][T16773] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  520.925123][T16773] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  521.065446][T16773] 8021q: adding VLAN 0 to HW filter on device bond0
[  521.199259][T16918] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3557'.
[  521.406031][ T1171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  521.410417][ T1171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  521.414902][ T1171] bond0 (unregistering): Released all slaves
[  521.421867][T16901] chnl_net:caif_netlink_parms(): no params data found
[  521.455858][T16773] 8021q: adding VLAN 0 to HW filter on device team0
[  521.471808][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  521.473888][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  521.573886][T16901] bridge0: port 1(bridge_slave_0) entered blocking state
[  521.575912][T16901] bridge0: port 1(bridge_slave_0) entered disabled state
[  521.577939][T16901] bridge_slave_0: entered allmulticast mode
[  521.580196][T16901] bridge_slave_0: entered promiscuous mode
[  521.700780][T11434] bridge0: port 2(bridge_slave_1) entered blocking state
[  521.702784][T11434] bridge0: port 2(bridge_slave_1) entered forwarding state
[  521.708706][T16901] bridge0: port 2(bridge_slave_1) entered blocking state
[  521.710699][T16901] bridge0: port 2(bridge_slave_1) entered disabled state
[  521.712982][T16901] bridge_slave_1: entered allmulticast mode
[  521.715417][T16901] bridge_slave_1: entered promiscuous mode
[  521.761209][T16901] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  521.790659][T16901] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  521.860145][T16901] team0: Port device team_slave_0 added
[  521.872396][T16901] team0: Port device team_slave_1 added
[  521.936950][T16901] batman_adv: batadv0: Adding interface: batadv_slave_0
[  521.939658][T16901] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  521.950526][T16901] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  521.966962][T16901] batman_adv: batadv0: Adding interface: batadv_slave_1
[  521.969554][T16901] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  521.981033][T16901] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  522.015477][ T1171] hsr_slave_0: left promiscuous mode
[  522.018382][ T1171] hsr_slave_1: left promiscuous mode
[  522.022615][ T1171] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  522.026283][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_0
[  522.029587][ T1171] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  522.033987][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_1
[  522.086180][ T1171] veth1_macvtap: left promiscuous mode
[  522.088858][ T1171] veth0_macvtap: left promiscuous mode
[  522.091528][ T1171] veth1_vlan: left promiscuous mode
[  522.096056][ T1171] veth0_vlan: left promiscuous mode
[  522.811281][ T5954] Bluetooth: hci1: command tx timeout
[  522.883793][ T5954] Bluetooth: hci2: command tx timeout
[  523.101661][ T1171] team0 (unregistering): Port device team_slave_1 removed
[  523.227253][ T1171] team0 (unregistering): Port device team_slave_0 removed
[  523.527597][T16947] netlink: 88 bytes leftover after parsing attributes in process `syz.1.3568'.
[  523.587734][T16949] 9pnet_fd: Insufficient options for proto=fd
[  524.130180][T16901] hsr_slave_0: entered promiscuous mode
[  524.132816][T16901] hsr_slave_1: entered promiscuous mode
[  524.136098][T16901] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  524.138793][T16901] Cannot create hsr debugfs directory
[  524.319990][T16773] 8021q: adding VLAN 0 to HW filter on device batadv0
[  524.464170][   T67] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  524.469499][   T67] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  524.473239][   T67] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  524.480043][   T67] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  524.484689][   T67] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  524.487442][   T67] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  524.514812][T16960] vcan0 speed is unknown, defaulting to 1000
[  524.538779][T16773] veth0_vlan: entered promiscuous mode
[  524.554532][T16773] veth1_vlan: entered promiscuous mode
[  524.587894][T16773] veth0_macvtap: entered promiscuous mode
[  524.654303][T16773] veth1_macvtap: entered promiscuous mode
[  524.694412][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  524.697423][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  524.700144][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  524.702914][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  524.707266][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  524.710132][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  524.712713][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  524.715595][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  524.719053][T16773] batman_adv: batadv0: Interface activated: batadv_slave_0
[  524.765412][T16960] chnl_net:caif_netlink_parms(): no params data found
[  524.786390][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  524.790387][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  524.794956][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  524.797943][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  524.800635][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  524.803490][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  524.806317][T16773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  524.809204][T16773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  524.812389][T16773] batman_adv: batadv0: Interface activated: batadv_slave_1
[  524.815906][T16773] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  524.818348][T16773] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  524.820610][T16773] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  524.822923][T16773] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  524.861057][T16960] bridge0: port 1(bridge_slave_0) entered blocking state
[  524.863747][T16960] bridge0: port 1(bridge_slave_0) entered disabled state
[  524.866293][T16960] bridge_slave_0: entered allmulticast mode
[  524.869273][T16960] bridge_slave_0: entered promiscuous mode
[  524.872730][T16960] bridge0: port 2(bridge_slave_1) entered blocking state
[  524.875567][T16960] bridge0: port 2(bridge_slave_1) entered disabled state
[  524.878185][T16960] bridge_slave_1: entered allmulticast mode
[  524.881023][T16960] bridge_slave_1: entered promiscuous mode
[  524.883690][ T5954] Bluetooth: hci1: command tx timeout
[  524.920650][T16960] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  524.950452][T16960] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  524.954199][ T5954] Bluetooth: hci2: command tx timeout
[  524.983922][ T1171] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  525.027384][T16960] team0: Port device team_slave_0 added
[  525.042374][T16960] team0: Port device team_slave_1 added
[  525.109719][ T1171] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  525.127747][T16960] batman_adv: batadv0: Adding interface: batadv_slave_0
[  525.129847][T16960] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  525.136718][   T67] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  525.141198][   T67] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  525.141977][T16960] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  525.145404][   T67] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  525.150148][   T67] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  525.158467][   T67] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  525.160669][   T67] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  525.175666][T16960] batman_adv: batadv0: Adding interface: batadv_slave_1
[  525.178183][T16960] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  525.186619][T16960] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  525.196658][T16901] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  525.199897][T16901] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  525.205351][T16901] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  525.208433][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  525.213593][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  525.228669][ T1171] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  525.233413][T16901] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  525.270002][T16960] hsr_slave_0: entered promiscuous mode
[  525.272063][T16960] hsr_slave_1: entered promiscuous mode
[  525.276921][T16960] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  525.279047][T16960] Cannot create hsr debugfs directory
[  525.288589][T16987] vcan0 speed is unknown, defaulting to 1000
[  525.316621][ T1171] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  525.331881][   T80] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  525.336408][   T80] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  525.588122][T17006] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  525.670396][ T1171] bridge_slave_1: left allmulticast mode
[  525.672113][ T1171] bridge_slave_1: left promiscuous mode
[  525.674747][ T1171] bridge0: port 2(bridge_slave_1) entered disabled state
[  525.679007][ T1171] bridge_slave_0: left allmulticast mode
[  525.680959][ T1171] bridge_slave_0: left promiscuous mode
[  525.682886][ T1171] bridge0: port 1(bridge_slave_0) entered disabled state
[  526.031301][ T1171] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  526.064366][ T1171] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  526.075865][ T1171] bond0 (unregistering): Released all slaves
[  526.083312][T16987] chnl_net:caif_netlink_parms(): no params data found
[  526.161361][T16901] 8021q: adding VLAN 0 to HW filter on device bond0
[  526.252776][T16987] bridge0: port 1(bridge_slave_0) entered blocking state
[  526.256622][T16987] bridge0: port 1(bridge_slave_0) entered disabled state
[  526.258642][T16987] bridge_slave_0: entered allmulticast mode
[  526.260773][T16987] bridge_slave_0: entered promiscuous mode
[  526.264153][T16987] bridge0: port 2(bridge_slave_1) entered blocking state
[  526.266302][T16987] bridge0: port 2(bridge_slave_1) entered disabled state
[  526.269111][T16987] bridge_slave_1: entered allmulticast mode
[  526.271691][T16987] bridge_slave_1: entered promiscuous mode
[  526.310518][T16987] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  526.314270][T16987] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  526.372101][T16987] team0: Port device team_slave_0 added
[  526.401024][T16987] team0: Port device team_slave_1 added
[  526.420456][T16901] 8021q: adding VLAN 0 to HW filter on device team0
[  526.439251][T16987] batman_adv: batadv0: Adding interface: batadv_slave_0
[  526.441782][T16987] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  526.451014][T16987] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  526.457443][T16987] batman_adv: batadv0: Adding interface: batadv_slave_1
[  526.459933][T16987] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  526.469852][T16987] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  526.498002][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[  526.500133][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[  526.536398][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  526.538964][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  526.549291][T16987] hsr_slave_0: entered promiscuous mode
[  526.551842][T16987] hsr_slave_1: entered promiscuous mode
[  526.555806][T16987] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  526.558499][T16987] Cannot create hsr debugfs directory
[  526.563839][   T67] Bluetooth: hci3: command tx timeout
[  526.612199][ T1171] hsr_slave_0: left promiscuous mode
[  526.630782][ T1171] hsr_slave_1: left promiscuous mode
[  526.632731][ T1171] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  526.635521][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_0
[  526.645024][ T1171] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  526.647126][ T1171] batman_adv: batadv0: Removing interface: batadv_slave_1
[  526.680572][ T1171] veth1_macvtap: left promiscuous mode
[  526.682531][ T1171] veth0_macvtap: left promiscuous mode
[  526.685069][ T1171] veth1_vlan: left promiscuous mode
[  526.686967][ T1171] veth0_vlan: left promiscuous mode
[  526.953805][   T67] Bluetooth: hci1: command tx timeout
[  527.155874][T17054] 9pnet_fd: Insufficient options for proto=fd
[  527.197114][   T67] Bluetooth: hci0: command tx timeout
[  527.730125][ T1171] team0 (unregistering): Port device team_slave_1 removed
[  527.837850][ T1171] team0 (unregistering): Port device team_slave_0 removed
[  528.182932][   T40] audit: type=1400 audit(2000000118.279:615): avc:  denied  { write } for  pid=17058 comm="syz.7.3581" path="socket:[62027]" dev="sockfs" ino=62027 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  528.638606][   T67] Bluetooth: hci3: command tx timeout
[  529.033760][   T67] Bluetooth: hci1: command tx timeout
[  529.105796][T16901] 8021q: adding VLAN 0 to HW filter on device batadv0
[  529.219299][T16901] veth0_vlan: entered promiscuous mode
[  529.220552][ T1171] IPVS: stop unused estimator thread 0...
[  529.224017][T16901] veth1_vlan: entered promiscuous mode
[  529.234640][T16901] veth0_macvtap: entered promiscuous mode
[  529.237596][T16901] veth1_macvtap: entered promiscuous mode
[  529.249695][T16901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  529.252608][T16901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.255707][T16901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  529.258585][T16901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.261326][T16901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  529.267891][T16901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.270631][T16901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  529.273505][T16901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.273677][   T67] Bluetooth: hci0: command tx timeout
[  529.277415][T16901] batman_adv: batadv0: Interface activated: batadv_slave_0
[  529.340809][T16901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  529.344003][T16901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.346749][T16901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  529.349654][T16901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.352325][T16901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  529.352359][T17094] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  529.356516][T16901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.362928][T16901] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  529.368848][T16901] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  529.372088][T16901] batman_adv: batadv0: Interface activated: batadv_slave_1
[  529.376976][T16901] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  529.379446][T16901] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  529.381858][T16901] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  529.385534][T16901] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  529.466444][T11434] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  529.468999][T11434] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  529.492285][ T1142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  529.495275][ T1142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  529.691198][   T40] audit: type=1400 audit(2000000119.789:616): avc:  denied  { name_bind } for  pid=17114 comm="syz.5.3584" src=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:reserved_port_t tclass=tcp_socket permissive=1
[  530.401511][T16960] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  530.406590][T16960] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  530.412709][T16960] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  530.417213][T16960] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  530.504885][T16987] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  530.512966][T16987] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  530.531139][T16987] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  530.537567][T17132] 9pnet_fd: Insufficient options for proto=fd
[  530.537886][T16987] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  530.581998][T16960] 8021q: adding VLAN 0 to HW filter on device bond0
[  530.602493][T16960] 8021q: adding VLAN 0 to HW filter on device team0
[  530.618675][ T1142] bridge0: port 1(bridge_slave_0) entered blocking state
[  530.621322][ T1142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  530.634503][ T1142] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.636474][ T1142] bridge0: port 2(bridge_slave_1) entered forwarding state
[  530.653328][T16960] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  530.658094][T16960] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  530.670024][T16987] 8021q: adding VLAN 0 to HW filter on device bond0
[  530.698863][T16987] 8021q: adding VLAN 0 to HW filter on device team0
[  530.707919][ T1230] bridge0: port 1(bridge_slave_0) entered blocking state
[  530.710595][ T1230] bridge0: port 1(bridge_slave_0) entered forwarding state
[  530.714009][   T67] Bluetooth: hci3: command tx timeout
[  530.729580][T11428] bridge0: port 2(bridge_slave_1) entered blocking state
[  530.731578][T11428] bridge0: port 2(bridge_slave_1) entered forwarding state
[  530.800349][T16960] 8021q: adding VLAN 0 to HW filter on device batadv0
[  530.880751][T16987] 8021q: adding VLAN 0 to HW filter on device batadv0
[  530.908076][T17166] Cannot find del_set index 0 as target
[  531.031790][T16960] veth0_vlan: entered promiscuous mode
[  531.061464][T16960] veth1_vlan: entered promiscuous mode
[  531.131695][T16987] veth0_vlan: entered promiscuous mode
[  531.143721][T16987] veth1_vlan: entered promiscuous mode
[  531.176246][T16960] veth0_macvtap: entered promiscuous mode
[  531.188372][T16960] veth1_macvtap: entered promiscuous mode
[  531.192589][T16987] veth0_macvtap: entered promiscuous mode
[  531.210488][T16987] veth1_macvtap: entered promiscuous mode
[  531.221121][T16960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.225259][T16960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.228135][T16960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.231126][T16960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.234052][T16960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.237227][T16960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.240831][T16960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.246509][T16960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.250064][T16960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.254860][T16960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.260330][T16960] batman_adv: batadv0: Interface activated: batadv_slave_0
[  531.271384][T16960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.276150][T16960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.279132][T16960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.282155][T16960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.285922][T16960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.288923][T16960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.291731][T16960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.294916][T16960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.297783][T16960] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.300655][T16960] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.304121][T16960] batman_adv: batadv0: Interface activated: batadv_slave_1
[  531.315620][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.318511][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.321247][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.325964][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.328722][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.331583][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.334395][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.337310][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.340109][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.342998][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.345863][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  531.348769][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.352129][T16987] batman_adv: batadv0: Interface activated: batadv_slave_0
[  531.353709][   T67] Bluetooth: hci0: command tx timeout
[  531.355303][T16960] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  531.358367][T16960] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  531.360792][T16960] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  531.363197][T16960] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  531.373000][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.376253][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.379058][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.381842][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.384759][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.387634][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.390329][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.393320][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.396180][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.399328][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.401979][T16987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  531.404894][T16987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  531.408756][T16987] batman_adv: batadv0: Interface activated: batadv_slave_1
[  531.429204][T16987] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  531.432194][T16987] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  531.435357][T16987] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  531.437841][T16987] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  531.594877][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  531.597585][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  531.631225][ T1230] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  531.638845][ T1230] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  531.704354][T11434] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  531.706694][T11434] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  531.767721][T11434] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  531.775389][T11434] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  532.804145][   T67] Bluetooth: hci3: command tx timeout
[  533.433763][   T67] Bluetooth: hci0: command tx timeout
[  533.661412][   T40] audit: type=1400 audit(2000000123.759:617): avc:  denied  { ioctl } for  pid=17329 comm="syz.7.3616" path="socket:[64793]" dev="sockfs" ino=64793 ioctlcmd=0x89f3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  534.076982][T15612] usb 12-1: new low-speed USB device number 24 using dummy_hcd
[  534.425701][T15612] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  534.429521][T15612] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  534.432733][T15612] usb 12-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00
[  534.436494][T15612] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  534.447608][T15612] usb 12-1: config 0 descriptor??
[  534.703684][   T63] usb 14-1: new full-speed USB device number 6 using dummy_hcd
[  534.854926][   T63] usb 14-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  534.858052][   T63] usb 14-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  534.860715][   T63] usb 14-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  534.864337][   T63] usb 14-1: config 0 descriptor??
[  534.866209][T17390] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22
[  534.869608][T15612] kone 0003:1E7D:2CED.0013: hidraw1: USB HID v0.00 Device [HID 1e7d:2ced] on usb-dummy_hcd.7-1/input0
[  535.065617][T11512] usb 12-1: USB disconnect, device number 24
[  535.417300][   T63] elan 0003:04F3:0755.0014: hidraw1: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.9-1/input0
[  535.567239][T11512] usb 14-1: USB disconnect, device number 6
[  535.881099][   T40] audit: type=1400 audit(2000000125.979:618): avc:  denied  { setopt } for  pid=17446 comm="syz.7.3631" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  535.943288][   T40] audit: type=1400 audit(2000000126.039:619): avc:  denied  { sqpoll } for  pid=17446 comm="syz.7.3631" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1
[  536.650000][T17481] syz.5.3637: attempt to access beyond end of device
[  536.650000][T17481] nbd5: rw=0, sector=2, nr_sectors = 2 limit=0
[  536.654646][T17481] syz.5.3637: attempt to access beyond end of device
[  536.654646][T17481] nbd5: rw=0, sector=16, nr_sectors = 2 limit=0
[  537.121648][T17504] ptrace attach of "/syz-executor exec"[16987] was attempted by "/syz-executor exec"[17504]
[  537.751062][T17521] netlink: zone id is out of range
[  537.751678][T17521] netlink: zone id is out of range
[  537.757232][T17521] netlink: zone id is out of range
[  537.784161][T17521] netlink: set zone limit has 8 unknown bytes
[  538.320334][T17526] ax25_connect(): syz.5.3646 uses autobind, please contact jreuter@yaina.de
[  538.321150][   T40] audit: type=1400 audit(2000000128.419:620): avc:  denied  { connect } for  pid=17525 comm="syz.5.3646" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  538.510519][   T40] audit: type=1400 audit(2000000128.609:621): avc:  denied  { watch watch_reads } for  pid=17546 comm="syz.9.3652" path="/19/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  538.727371][T11528] libceph: connect (1)[c::]:6789 error -101
[  538.729846][T11528] libceph: mon0 (1)[c::]:6789 connect error
[  538.951147][   T40] audit: type=1400 audit(2000000129.049:622): avc:  denied  { write } for  pid=17564 comm="syz.7.3656" path="socket:[64968]" dev="sockfs" ino=64968 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  538.993884][T11528] libceph: connect (1)[c::]:6789 error -101
[  538.999083][T11528] libceph: mon0 (1)[c::]:6789 connect error
[  539.001725][T17567] input: syz0 as /devices/virtual/input/input30
[  539.137900][T17563] ALSA: mixer_oss: invalid OSS volume 'P×}VIN'
[  539.263933][T17556] ceph: No mds server is up or the cluster is laggy
[  539.290740][   T40] audit: type=1400 audit(2000000129.379:623): avc:  denied  { watch } for  pid=17576 comm="syz.7.3660" path="/28/file0" dev="tmpfs" ino=163 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  539.783957][T14624] usb 12-1: new high-speed USB device number 25 using dummy_hcd
[  539.937375][T17607] lo speed is unknown, defaulting to 1000
[  539.940292][T17607] lo speed is unknown, defaulting to 1000
[  539.943684][T17607] lo speed is unknown, defaulting to 1000
[  539.945175][T14624] usb 12-1: Using ep0 maxpacket: 16
[  539.956625][T14624] usb 12-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  539.959451][T14624] usb 12-1: config 1 has 1 interface, different from the descriptor's value: 3
[  539.968962][T14624] usb 12-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  539.971521][T14624] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  539.981267][T14624] usb 12-1: Product: syz
[  539.982492][T14624] usb 12-1: Manufacturer: syz
[  539.983910][T14624] usb 12-1: SerialNumber: syz
[  540.001094][T17607] infiniband s
z1: set active
[  540.001302][T17613] »»»»»»7: renamed from lo (while UP)
[  540.002997][T17607] infiniband s
z1: added »»»»»»7
[  540.010165][T16745] »»»»»»7 speed is unknown, defaulting to 1000
[  540.025872][T17607] RDS/IB: s
z1: added
[  540.027387][T17607] smc: adding ib device s
z1 with port count 1
[  540.029112][T17607] smc:    ib device s
z1 port 1 has pnetid 
[  540.030825][T16745] »»»»»»7 speed is unknown, defaulting to 1000
[  540.032891][T17607] »»»»»»7 speed is unknown, defaulting to 1000
[  540.076899][T17607] »»»»»»7 speed is unknown, defaulting to 1000
[  540.138947][T17607] »»»»»»7 speed is unknown, defaulting to 1000
[  540.320770][T17607] »»»»»»7 speed is unknown, defaulting to 1000
[  540.385697][T17607] »»»»»»7 speed is unknown, defaulting to 1000
[  540.443474][T17607] »»»»»»7 speed is unknown, defaulting to 1000
[  540.472614][   T40] audit: type=1400 audit(2000000130.569:624): avc:  denied  { lock } for  pid=17625 comm="syz.5.3666" path="socket:[63322]" dev="sockfs" ino=63322 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  540.493161][T17607] »»»»»»7 speed is unknown, defaulting to 1000
[  540.547329][T17607] »»»»»»7 speed is unknown, defaulting to 1000
[  540.824527][T14624] usb 12-1: 0:2 : does not exist
[  540.828588][T14624] usb 12-1: USB disconnect, device number 25
[  540.930453][T17647] netlink: 9 bytes leftover after parsing attributes in process `syz.4.3667'.
[  541.118623][T17647] gretap0: entered promiscuous mode
[  541.129886][T17650] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3668'.
[  541.549759][   T40] audit: type=1400 audit(2000000131.629:625): avc:  denied  { mounton } for  pid=17666 comm="syz.5.3673" path="/22/file0" dev="tmpfs" ino=130 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  541.733735][   T40] audit: type=1400 audit(2000000131.829:626): avc:  denied  { create } for  pid=17703 comm="syz.9.3676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  541.743223][   T40] audit: type=1400 audit(2000000131.839:627): avc:  denied  { write } for  pid=17703 comm="syz.9.3676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  541.748459][   T40] audit: type=1400 audit(2000000131.849:628): avc:  denied  { nlmsg_read } for  pid=17703 comm="syz.9.3676" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  541.757977][T17713] x_tables: ip_tables: osf match: only valid for protocol 6
[  541.926310][T16745] IPVS: starting estimator thread 0...
[  542.063838][T17722] IPVS: using max 34 ests per chain, 81600 per kthread
[  542.267074][T17738] nfs: Unknown parameter 'ntext'
[  542.616090][   T40] audit: type=1400 audit(2000000132.719:629): avc:  denied  { setattr } for  pid=17749 comm="syz.4.3684" name="UDP-Lite" dev="sockfs" ino=64242 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  543.463398][T17770] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3688'.
[  543.586367][   T40] audit: type=1400 audit(2000000133.689:630): avc:  denied  { accept } for  pid=17772 comm="syz.9.3689" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  544.801149][T17849] CIFS mount error: No usable UNC path provided in device string!
[  544.801149][T17849] 
[  544.811383][T17849] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  545.538068][T17889] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3708'.
[  545.540605][T17889] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3708'.
[  545.825753][T17913] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  545.827906][ T1140] Bluetooth: hci4: Frame reassembly failed (-84)
[  546.003738][   T57] usb 9-1: new high-speed USB device number 27 using dummy_hcd
[  546.173699][   T57] usb 9-1: Using ep0 maxpacket: 8
[  546.186428][   T57] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  546.195880][   T57] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  546.200002][   T57] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  546.213366][T17935] 9pnet_fd: Insufficient options for proto=fd
[  546.256482][   T57] usb 9-1: config 0 descriptor??
[  546.467207][   T57] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  546.667263][   T57] usb 9-1: USB disconnect, device number 27
[  547.014783][T17983] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3717'.
[  547.017961][T17983] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3717'.
[  547.233302][T18003] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3720'.
[  547.236540][T17995] block nbd5: server does not support multiple connections per device.
[  547.240451][T18003] netlink: 28 bytes leftover after parsing attributes in process `syz.9.3720'.
[  547.475743][   T40] audit: type=1326 audit(2000000137.519:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.3721" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ecb98d169 code=0x7ffc0000
[  547.482384][   T40] audit: type=1326 audit(2000000137.519:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.3721" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ecb98d169 code=0x7ffc0000
[  547.490413][   T40] audit: type=1326 audit(2000000137.519:633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.3721" exe="/syz-executor" sig=0 arch=c000003e syscall=132 compat=0 ip=0x7f5ecb98d169 code=0x7ffc0000
[  547.503741][   T40] audit: type=1326 audit(2000000137.519:634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.3721" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ecb98d169 code=0x7ffc0000
[  547.511519][   T40] audit: type=1326 audit(2000000137.519:635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.3721" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ecb98d169 code=0x7ffc0000
[  547.522289][   T40] audit: type=1326 audit(2000000137.519:636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.3721" exe="/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f5ecb98d169 code=0x7ffc0000
[  547.529930][   T40] audit: type=1326 audit(2000000137.529:637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.3721" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ecb98d169 code=0x7ffc0000
[  547.537022][   T40] audit: type=1326 audit(2000000137.529:638): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18000 comm="syz.4.3721" exe="/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5ecb98d169 code=0x7ffc0000
[  547.833665][   T67] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  547.833730][ T5955] Bluetooth: hci4: command 0x1003 tx timeout
[  547.919922][T17989] block nbd5: shutting down sockets
[  548.169141][   T67] Bluetooth: hci2: Ignoring connect complete event for invalid link type
[  548.314830][   T67] Bluetooth: hci0: command 0x0405 tx timeout
[  548.994641][T18078] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3727'.
[  548.997297][T18078] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3727'.
[  549.042609][T18084] 9pnet_fd: Insufficient options for proto=fd
[  550.017264][T18148] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3737'.
[  550.019790][T18148] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3737'.
[  550.135131][T18166] 9pnet_fd: Insufficient options for proto=fd
[  551.279850][T18240] ptrace attach of "/syz-executor exec"[16901] was attempted by "/syz-executor exec"[18240]
[  551.542347][T18250] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3753'.
[  551.545894][T18250] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3753'.
[  551.552902][T18250] ipvlan2: entered allmulticast mode
[  551.555139][T18250] veth0_vlan: entered allmulticast mode
[  552.018676][T18268] 9pnet_fd: Insufficient options for proto=fd
[  552.640992][T18292] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3762'.
[  552.894801][T18308] netlink: 36 bytes leftover after parsing attributes in process `syz.4.3769'.
[  552.940826][   T40] audit: type=1400 audit(2000000143.039:639): avc:  denied  { getopt } for  pid=18300 comm="syz.5.3766" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  553.220180][T18320] ptrace attach of "/syz-executor exec"[16773] was attempted by "/syz-executor exec"[18320]
[  553.549015][T18324] netlink: 12 bytes leftover after parsing attributes in process `syz.9.3772'.
[  553.685049][T18337] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3778'.
[  553.774432][T18346] overlayfs: overlapping lowerdir path
[  554.062331][T18350] ptrace attach of "/syz-executor exec"[16987] was attempted by "/syz-executor exec"[18350]
[  554.798177][T18367] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3792'.
[  554.801450][T18367] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3792'.
[  554.845190][T18367] ipvlan2: entered allmulticast mode
[  554.847217][T18367] veth0_vlan: entered allmulticast mode
[  554.912447][T18369] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3784'.
[  555.267026][T18376] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3790'.
[  555.385907][T16745] kernel write not supported for file /dsp (pid: 16745 comm: kworker/0:8)
[  557.951128][T18473] netlink: 8 bytes leftover after parsing attributes in process `syz.5.3822'.
[  557.953897][T18473] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3822'.
[  558.039285][T18477] ptrace attach of "/syz-executor exec"[16901] was attempted by "/syz-executor exec"[18477]
[  558.700363][T18492] Bluetooth: MGMT ver 1.23
[  558.741146][T18496] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3831'.
[  558.743618][T18496] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3831'.
[  559.826145][T18529] ptrace attach of "/syz-executor exec"[16773] was attempted by "/syz-executor exec"[18529]
[  560.351885][T18552] syz_tun: entered promiscuous mode
[  560.354767][T18552] macsec1: entered allmulticast mode
[  560.356365][T18552] syz_tun: entered allmulticast mode
[  560.359402][T18552] syz_tun: left allmulticast mode
[  560.360993][T18552] syz_tun: left promiscuous mode
[  562.075078][T18652] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3870'.
[  562.169594][T18658] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3872'.
[  562.173171][T18658] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3872'.
[  562.401001][T18681] 9pnet_fd: Insufficient options for proto=fd
[  562.809239][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[  563.916757][   T40] audit: type=1400 audit(2000000153.999:640): avc:  denied  { create } for  pid=18721 comm="syz.7.3882" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  563.922352][   T40] audit: type=1400 audit(2000000154.009:641): avc:  denied  { connect } for  pid=18721 comm="syz.7.3882" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  563.967818][   T40] audit: type=1400 audit(2000000154.069:642): avc:  denied  { listen } for  pid=18721 comm="syz.7.3882" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  564.049505][T18760] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3889'.
[  564.079670][   T40] audit: type=1400 audit(2000000154.149:643): avc:  denied  { setopt } for  pid=18753 comm="syz.5.3889" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1
[  564.708809][T18778] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3894'.
[  564.711285][T18778] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3894'.
[  565.159352][T18798] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  565.507490][T18803] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3904'.
[  565.510117][T18803] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3904'.
[  565.685147][T18821] loop6: detected capacity change from 0 to 16384
[  565.960017][T18828] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3913'.
[  565.963637][T18828] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3913'.
[  566.833779][ T1166] I/O error, dev loop6, sector 656 op 0x1:(WRITE) flags 0x8800 phys_seg 1 prio class 0
[  567.973868][T18899] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[  568.688994][T18911] netlink: 48 bytes leftover after parsing attributes in process `syz.9.3941'.
[  568.922340][   T40] audit: type=1400 audit(2000000159.019:644): avc:  denied  { getopt } for  pid=18917 comm="syz.7.3944" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netrom_socket permissive=1
[  569.687073][T18936] netlink: 48 bytes leftover after parsing attributes in process `syz.9.3950'.
[  569.968504][T18947] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3953'.
[  569.971082][T18947] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3953'.
[  569.976962][T18947] ipvlan3: entered allmulticast mode
[  570.620767][T18965] netlink: 48 bytes leftover after parsing attributes in process `syz.4.3960'.
[  571.554104][T19002] 9pnet_fd: Insufficient options for proto=fd
[  571.977486][T19017] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  572.371870][T19042] 9p: Unknown access argument 18446744073709551615: -34
[  572.924698][T19060] trusted_key: encrypted_key: insufficient parameters specified
[  573.321284][T19066] 9p: Unknown access argument 18446744073709551615: -34
[  573.843815][   T36] usb 10-1: new high-speed USB device number 21 using dummy_hcd
[  573.883378][T19115] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  574.110894][   T36] usb 10-1: Using ep0 maxpacket: 16
[  574.227531][   T36] usb 10-1: config 0 has no interfaces?
[  574.296719][   T36] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  574.303009][   T36] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  574.313724][   T36] usb 10-1: Product: syz
[  574.318595][   T36] usb 10-1: Manufacturer: syz
[  574.323636][   T36] usb 10-1: SerialNumber: syz
[  574.497996][   T36] usb 10-1: config 0 descriptor??
[  574.740242][T19089] program syz.5.4014 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  574.833918][ T8142] usb 10-1: USB disconnect, device number 21
[  575.637183][T19146] 9pnet_fd: Insufficient options for proto=fd
[  575.913732][ T5954] Bluetooth: hci4: command 0x1003 tx timeout
[  575.913802][   T67] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  576.025192][T19167] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4044'.
[  576.028547][T19167] netlink: 4 bytes leftover after parsing attributes in process `syz.7.4044'.
[  576.344607][T19193] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4056'.
[  576.464482][T19201] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4060'.
[  577.146230][T19221] netlink: 36 bytes leftover after parsing attributes in process `syz.9.4066'.
[  577.204058][T19225] 9pnet_fd: Insufficient options for proto=fd
[  577.314720][T19234] 9p: Unknown access argument 18446744073709551615: -34
[  577.421736][T19244] netlink: 36 bytes leftover after parsing attributes in process `syz.9.4077'.
[  577.713363][   T40] audit: type=1400 audit(2000000167.809:645): avc:  denied  { append } for  pid=19258 comm="syz.7.4083" name="fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  577.721737][   T40] audit: type=1400 audit(2000000167.809:646): avc:  denied  { map } for  pid=19258 comm="syz.7.4083" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  577.728924][   T40] audit: type=1400 audit(2000000167.809:647): avc:  denied  { execute } for  pid=19258 comm="syz.7.4083" path="/dev/fb0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:framebuf_device_t tclass=chr_file permissive=1
[  577.894157][T19269] netlink: 36 bytes leftover after parsing attributes in process `syz.4.4089'.
[  577.976676][T19266] lo speed is unknown, defaulting to 1000
[  577.978368][T19266] lo speed is unknown, defaulting to 1000
[  577.980784][T19266] lo speed is unknown, defaulting to 1000
[  577.983756][T19266] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  577.988722][T19266] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  577.996198][T19266] lo speed is unknown, defaulting to 1000
[  577.998634][T19266] lo speed is unknown, defaulting to 1000
[  578.000612][T19266] lo speed is unknown, defaulting to 1000
[  578.002606][T19266] lo speed is unknown, defaulting to 1000
[  578.004799][T19266] lo speed is unknown, defaulting to 1000
[  578.006806][T19266] lo speed is unknown, defaulting to 1000
[  578.008773][T19266] lo speed is unknown, defaulting to 1000
[  578.010782][T19266] lo speed is unknown, defaulting to 1000
[  579.508024][T19332] ptrace attach of "/syz-executor exec"[16773] was attempted by "/syz-executor exec"[19332]
[  581.881533][T19378] ptrace attach of "/syz-executor exec"[16960] was attempted by "/syz-executor exec"[19378]
[  583.244783][T19416] virtio-fs: tag <(null)> not found
[  583.359486][T19418] 9pnet_fd: Insufficient options for proto=fd
[  583.714531][T19436] ptrace attach of "/syz-executor exec"[16987] was attempted by "/syz-executor exec"[19436]
[  583.780186][   T40] audit: type=1400 audit(2000000173.879:648): avc:  denied  { unmount } for  pid=16901 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1
[  583.875474][T19443] 9pnet_fd: Insufficient options for proto=fd
[  586.155235][T19504] 9pnet_fd: Insufficient options for proto=fd
[  586.991339][T19527] input: syz0 as /devices/virtual/input/input31
[  588.478709][T18451] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  588.575295][T18451] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  588.672526][T18451] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  588.738416][T18451] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  589.014313][   T40] audit: type=1400 audit(2000000179.119:649): avc:  denied  { ioctl } for  pid=19674 comm="syz.4.4225" path="socket:[70850]" dev="sockfs" ino=70850 ioctlcmd=0x89f0 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1
[  589.094029][T19676] 9pnet_fd: Insufficient options for proto=fd
[  589.173431][   T40] audit: type=1400 audit(2000000179.269:650): avc:  denied  { setopt } for  pid=19681 comm="syz.5.4226" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  589.273667][ T5954] Bluetooth: hci2: command 0x0c1a tx timeout
[  589.276916][   T31] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  589.280836][   T31] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[  589.284950][T18451] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  589.289502][T18451] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  589.294014][T18451] bond0 (unregistering): Released all slaves
[  590.172529][T19713] input: syz0 as /devices/virtual/input/input32
[  590.613696][ T8142] usb 9-1: new full-speed USB device number 28 using dummy_hcd
[  590.765422][ T8142] usb 9-1: config 0 has an invalid interface number: 55 but max is 0
[  590.768614][ T8142] usb 9-1: config 0 has no interface number 0
[  590.775127][ T8142] usb 9-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  590.779265][ T8142] usb 9-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  590.783075][ T8142] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[  590.787277][ T8142] usb 9-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid maxpacket 120, setting to 64
[  590.791296][ T8142] usb 9-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  590.796228][ T8142] usb 9-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  590.799551][ T8142] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  590.805256][ T8142] usb 9-1: config 0 descriptor??
[  590.807792][T19722] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  590.811887][ T8142] ldusb 9-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  591.016077][  T835] usb 9-1: USB disconnect, device number 28
[  591.018824][  T835] ldusb 9-1:0.55: LD USB Device #0 now disconnected
[  591.301699][T19761] xt_HMARK: proto mask must be zero with L3 mode
[  591.353757][   T31] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[  591.366573][   T31] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[  591.774973][   T40] audit: type=1400 audit(2000000181.689:651): avc:  denied  { mount } for  pid=19762 comm="syz.9.4261" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  591.956500][T19767] ------------[ cut here ]------------
[  591.958580][T19767] UBSAN: array-index-out-of-bounds in kernel/bpf/core.c:2384:29
[  591.960799][T19767] index 16 is out of range for type '<unknown> *[16]'
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  591.962772][T19767] CPU: 2 UID: 0 PID: 19767 Comm: syz.9.4261 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  591.962786][T19767] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  591.962793][T19767] Call Trace:
[  591.962797][T19767]  <TASK>
[  591.962801][T19767]  dump_stack_lvl+0x16c/0x1f0
[  591.962835][T19767]  __ubsan_handle_out_of_bounds+0x110/0x150
[  591.962855][T19767]  bpf_prog_select_runtime+0x665/0x6f0
[  591.962867][T19767]  ? selinux_bpf_prog_load+0x15f/0x1c0
[  591.962881][T19767]  bpf_prog_load+0xe70/0x2480
[  591.962895][T19767]  ? __pfx_bpf_prog_load+0x10/0x10
[  591.962905][T19767]  ? avc_has_perm_noaudit+0x143/0x3a0
[  591.962926][T19767]  ? selinux_bpf+0xde/0x130
[  591.962938][T19767]  __sys_bpf+0x4043/0x49c0
[  591.962951][T19767]  ? __pfx___sys_bpf+0x10/0x10
[  591.962962][T19767]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  591.962982][T19767]  ? do_futex+0x123/0x350
[  591.962996][T19767]  ? __pfx_do_futex+0x10/0x10
[  591.963014][T19767]  ? xfd_validate_state+0x5d/0x180
[  591.963030][T19767]  ? rcu_is_watching+0x12/0xc0
[  591.963044][T19767]  __x64_sys_bpf+0x78/0xc0
[  591.963056][T19767]  ? lockdep_hardirqs_on+0x7c/0x110
[  591.963070][T19767]  do_syscall_64+0xcd/0x250
[  591.963086][T19767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.963102][T19767] RIP: 0033:0x7f287ff8d169
[  591.963111][T19767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  591.963122][T19767] RSP: 002b:00007f287ddd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  591.963133][T19767] RAX: ffffffffffffffda RBX: 00007f28801a6160 RCX: 00007f287ff8d169
[  591.963140][T19767] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  591.963146][T19767] RBP: 00007f288000e2a0 R08: 0000000000000000 R09: 0000000000000000
[  591.963153][T19767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  591.963159][T19767] R13: 0000000000000000 R14: 00007f28801a6160 R15: 00007ffdf47cd208
[  591.963172][T19767]  </TASK>
[  591.963176][T19767] ---[ end trace ]---
[  592.023093][T19767] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[  592.025161][T19767] CPU: 2 UID: 0 PID: 19767 Comm: syz.9.4261 Not tainted 6.14.0-rc7-syzkaller-00186-gd07de43e3f05 #0
[  592.028113][T19767] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  592.031102][T19767] Call Trace:
[  592.032189][T19767]  <TASK>
[  592.033065][T19767]  dump_stack_lvl+0x3d/0x1f0
[  592.034526][T19767]  panic+0x71d/0x800
[  592.035632][T19767]  ? __pfx_panic+0x10/0x10
[  592.036942][T19767]  ? __pfx__printk+0x10/0x10
[  592.038275][T19767]  check_panic_on_warn+0xab/0xb0
[  592.039696][T19767]  __ubsan_handle_out_of_bounds+0x137/0x150
[  592.041387][T19767]  bpf_prog_select_runtime+0x665/0x6f0
[  592.043349][T19767]  ? selinux_bpf_prog_load+0x15f/0x1c0
[  592.045125][T19767]  bpf_prog_load+0xe70/0x2480
[  592.046563][T19767]  ? __pfx_bpf_prog_load+0x10/0x10
[  592.048254][T19767]  ? avc_has_perm_noaudit+0x143/0x3a0
[  592.050216][T19767]  ? selinux_bpf+0xde/0x130
[  592.052191][T19767]  __sys_bpf+0x4043/0x49c0
[  592.053942][T19767]  ? __pfx___sys_bpf+0x10/0x10
[  592.055286][T19767]  ? __mutex_unlock_slowpath+0x164/0x6a0
[  592.056925][T19767]  ? do_futex+0x123/0x350
[  592.058178][T19767]  ? __pfx_do_futex+0x10/0x10
[  592.059526][T19767]  ? xfd_validate_state+0x5d/0x180
[  592.060992][T19767]  ? rcu_is_watching+0x12/0xc0
[  592.062459][T19767]  __x64_sys_bpf+0x78/0xc0
[  592.063761][T19767]  ? lockdep_hardirqs_on+0x7c/0x110
[  592.065280][T19767]  do_syscall_64+0xcd/0x250
[  592.066667][T19767]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  592.068519][T19767] RIP: 0033:0x7f287ff8d169
[  592.069851][T19767] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  592.075984][T19767] RSP: 002b:00007f287ddd5038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  592.078511][T19767] RAX: ffffffffffffffda RBX: 00007f28801a6160 RCX: 00007f287ff8d169
[  592.080850][T19767] RDX: 0000000000000048 RSI: 00002000000017c0 RDI: 0000000000000005
[  592.083203][T19767] RBP: 00007f288000e2a0 R08: 0000000000000000 R09: 0000000000000000
[  592.085515][T19767] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  592.088343][T19767] R13: 0000000000000000 R14: 00007f28801a6160 R15: 00007ffdf47cd208
[  592.091474][T19767]  </TASK>
[  592.093543][T19767] Kernel Offset: disabled
[  592.094863][T19767] Rebooting in 86400 seconds..

VM DIAGNOSIS:
00:02:29  Registers:
info registers vcpu 0

CPU#0
RAX=fffffbfff20c4d82 RBX=fffffbfff20c4d83 RCX=ffffffff8195d1bc RDX=fffffbfff20c4d83
RSI=0000000000000008 RDI=ffffffff90626c10 RBP=fffffbfff20c4d82 RSP=ffffc9000343fa08
R8 =0000000000000000 R9 =fffffbfff20c4d82 R10=ffffffff90626c17 R11=0000000000000003
R12=0000000000000000 R13=000000000003d94c R14=0000000000000000 R15=0000000000000000
RIP=ffffffff821d0241 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00005555610f5500 ffffffff 00c00000
GS =0000 ffff88806a600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007f5ecc82ed58 CR3=0000000032e5a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffed0a77a10 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5ecba0f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5ecba0f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5ecba0f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5ecba0f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5ecba0f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f5ecba0f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6c667265766f20 6772612061746164 000a747261745374 6f687370616e5300
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a49435740534a05 4257440544514441 000a515744515351 4a4d5655444b5300
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=1ffff920006d3e2b RCX=ffffffff8196b149 RDX=0000000000000000
RSI=ffffffff8bd369a0 RDI=ffffffff8dab5ce8 RBP=0000000000000001 RSP=ffffc9000369f148
R8 =0000000000000000 R9 =fffffbfff20c4d82 R10=ffffffff90626c17 R11=0000000000007f48
R12=ffffffff8e1bd140 R13=0000000000000001 R14=0000000000000000 R15=ffff88801dd58298
RIP=ffffffff8196b582 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88806a700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000110c29a656 CR3=000000000df80000 CR4=00352ef0
DR0=0000000000000680 DR1=0000000000000003 DR2=0000000000000007 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa5a240f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa5a240f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa5a240f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa5a240f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa5a240f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fa5a240f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 0008000f0010000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8540c375 RDI=ffffffff9ab847c0 RBP=ffffffff9ab84780 RSP=ffffc900034bf5c8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000004
R12=0000000000000000 R13=000000000000003a R14=ffffffff9ab84780 R15=0000000000000000
RIP=ffffffff8540c39f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f287ddd56c0 ffffffff 00c00000
GS =0000 ffff88806a800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000030 CR3=0000000024eac000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000008001 Opmask01=0000000000000000 Opmask02=00000000000003ff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb4820f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb4820f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb4820f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb4820f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb4820f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb4820f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb4837c488 00007fbb4837c480 00007fbb4837c478 00007fbb4837c450
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb48edd100 00007fbb4837c440 00007fbb48370004 0000000b000c000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fbb4837c498 00007fbb4837c490 00007fbb4837c488 00007fbb4837c480
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002 0000000000000000 0000000000000000 0000000000000088
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000002a204f2 RBX=0000000000000000 RCX=0000000000000004 RDX=ffff8880476b0000
RSI=ffff8880476b0000 RDI=ffff8880476b0590 RBP=0000000000000000 RSP=ffffc90003f873c8
R8 =0000000000000005 R9 =0000000000000000 R10=0000000002a204f2 R11=0000000000012f1f
R12=dffffc0000000000 R13=0000000000000001 R14=0000000000000004 R15=ffffea0000fda400
RIP=ffffffff82268efa RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555575143500 ffffffff 00c00000
GS =0000 ffff88806a900000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffec3833fe8 CR3=00000000596aa000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000004000040 Opmask01=0000000000000000 Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffdf47cd590 0000003000000018
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001a0000000d0 00000000ffffffff
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f288000f282
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f288000f28f
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f288000f289
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f288000f29d
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f288000f323
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f288000f401
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000524f525245
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00524f5252450040
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00e800a800000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000