last executing test programs:

2m26.205183878s ago: executing program 2 (id=183):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
symlink(&(0x7f0000000000)='./file1\x00', 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x800, 0x3}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_OPENAT={0x12, 0x40, 0x0, r1, 0x0, &(0x7f0000000040)='./file1\x00', 0x160, 0x80})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)

2m26.096074268s ago: executing program 2 (id=187):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000540), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000140)='mmap_lock_acquire_returned\x00', r3}, 0x10)
ioctl$KVM_PRE_FAULT_MEMORY(r2, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})

2m26.000939521s ago: executing program 1 (id=191):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000031c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440), 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
sendto$packet(r3, &(0x7f0000000600)="5f0efc", 0xfffffffffffffe4c, 0x44, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

2m25.98765163s ago: executing program 1 (id=192):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000400)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES8], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, &(0x7f0000000100)={0x17c04, 0xffffffffffffffff, 0x100000, 0x7ffe, 0x6, 0x9})
r1 = getpid()
r2 = gettid()
kcmp(r1, r2, 0x1, 0xffffffffffffffff, 0xffffffffffffffff)
r3 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r3, 0xd01c4813, &(0x7f0000000100)={0x2, 0xffffffff, 0x0, 0x2, 0x0, 0x42})

2m25.908722939s ago: executing program 0 (id=195):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)={0x44, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x44}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="8c0000000906010200000000000000000200ffff08000940000000390900020073797a310000000005000100070000005c0008801c0007801800018014000240"], 0x8c}, 0x1, 0x0, 0x0, 0x10000182}, 0x4000080)

2m25.826341937s ago: executing program 0 (id=197):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
fchdir(r1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_wait_time\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000004, 0x28011, r2, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
ftruncate(r2, 0x796c)
write$uinput_user_dev(r2, &(0x7f00000025c0)={'syz0\x00', {0x2, 0x7, 0x3, 0x7fff}, 0x14, [0x3, 0x5, 0x7, 0x9, 0xfffffffd, 0x736, 0x8001, 0x9, 0x401, 0x2, 0x7d, 0x2, 0x10, 0xf6, 0x9, 0x0, 0x1, 0x5, 0x5, 0x3, 0x6, 0xfffff301, 0x8, 0x9, 0x9, 0x80000001, 0x7, 0x7, 0x6, 0x8, 0x8, 0x5, 0x2faf, 0x0, 0x1, 0x6, 0xd, 0x4, 0x80000001, 0xc2, 0x10001, 0x0, 0x3, 0x4, 0x16, 0x486, 0x2c, 0x7, 0x7, 0xb2, 0x7fff, 0x9, 0x5d, 0x8, 0xfac, 0xfe6, 0x5, 0x90f9, 0x1, 0x7, 0x81, 0xd43e, 0x7, 0x8001], [0x7, 0xcb47, 0x9056, 0xceb, 0x6, 0xdaf, 0x5, 0x7, 0x3a, 0x247, 0x40, 0x200, 0x40, 0x2, 0x1000, 0x0, 0x421b, 0xee37, 0x0, 0x1, 0x7ff, 0x2, 0x7fffffff, 0x7, 0x10003, 0x3, 0x7ff, 0x63, 0x46a78be1, 0x7fff, 0xa1, 0x6f8, 0xf, 0x9, 0x200, 0x9, 0x4, 0x0, 0x7, 0xebe, 0x8001, 0xf7f, 0x8, 0x100, 0x1, 0x8, 0x4, 0x6, 0x200, 0xf2, 0x7, 0x3, 0x10001, 0x101, 0x2, 0x8001, 0x100, 0x7fff, 0xb07, 0xdff, 0x1, 0x1, 0x40, 0x8], [0x9, 0x2, 0x9, 0xd, 0x41f, 0x37e0, 0x1, 0x3, 0x4, 0xc000000, 0x6, 0x4, 0x5, 0x2, 0x10000, 0x44, 0x8001, 0x7, 0x3ff, 0xb020, 0x3, 0x81, 0x2, 0x304, 0x9, 0x80000001, 0x0, 0x800, 0x3, 0x1, 0x5, 0x6, 0x4, 0x6, 0x10000, 0xfffffffd, 0x2, 0x7fffffff, 0x1fc00, 0x0, 0x1e6, 0x8, 0x3, 0x7, 0xe5e, 0x0, 0x9, 0x2e, 0x7, 0xff, 0x40, 0xfaa7, 0x3, 0xfffffff8, 0xa49, 0x10, 0x1ff, 0x1, 0x80000000, 0x18, 0xfff, 0x2af, 0x401, 0x1], [0x5, 0x8, 0xf, 0x2, 0x2, 0xc, 0x6, 0xbb7b, 0x5, 0x8000, 0x10, 0x89e6, 0x1, 0x7, 0x80002, 0x3, 0x4, 0x1, 0x2c5, 0x2, 0x10, 0x1, 0x3, 0x3, 0x2, 0x5, 0xb7, 0x80000000, 0x2000000, 0x800, 0x40, 0x3, 0x3, 0xffff8001, 0x40, 0x7ff, 0x0, 0x6, 0x7, 0x8, 0xf3c, 0x3, 0x0, 0x9, 0xfffff800, 0xc, 0xffffffff, 0x5, 0x73, 0x0, 0x9, 0xfffffff7, 0x4, 0x7, 0x1, 0x3, 0x9, 0x1, 0x3, 0x4000000, 0x7ffffffe, 0x2, 0xcf2, 0x5]}, 0x45c)

2m25.814685814s ago: executing program 0 (id=198):
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=ANY=[@ANYBLOB="600000001800dd8d000000000000000002000000ff0000060000000008000500ac1414bb08001e0069"], 0x60}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="b8000000190001000000000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a00000029"], 0xb8}}, 0x4004)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="b8000000190001000000000000000000e00000020000000000000000000000000000000000000000000000000000000000000000000000000a"], 0xb8}}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast2, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x29}, {0x0, 0x0, 0x9, 0x0, 0x0, 0x2, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0xffffffffffffffff}, 0x7}}, 0xb8}}, 0x10)

2m25.768285247s ago: executing program 0 (id=199):
prctl$PR_SET_SECUREBITS(0x1c, 0x2c)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r1)
r2 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x0)
fchdir(r3)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)

2m25.740429289s ago: executing program 2 (id=200):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x6, 0x4, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
close(0x3)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000240)={r1, &(0x7f0000000140), &(0x7f0000000000)=""/6, 0x2}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="17fa00000000090000000400000000001c110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffff"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)

2m25.735797492s ago: executing program 0 (id=201):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x1000012, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0)

2m25.690165284s ago: executing program 0 (id=202):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x2, 0x2)
sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14)
sendto$inet6(r0, &(0x7f0000000800)="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", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0)

2m25.633762883s ago: executing program 2 (id=203):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
write$qrtrtun(r0, &(0x7f0000000300)="ca0e808bb35bdabb", 0x8)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000100)=[0x7], 0x0, 0x0, 0x1, 0x0, r3}}, 0x40)
mremap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f0000c51000/0x2000)=nil)

2m25.537955523s ago: executing program 2 (id=206):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x102)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0)

2m25.50114524s ago: executing program 2 (id=207):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="0d01000009000008250592d20700006a3b010902241700fa0074980904e4ff11070103000905010200ffe0000009058202", @ANYRES32], 0x0)
syz_usb_control_io(r1, 0x0, &(0x7f0000000200)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB=' '], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r1)
r2 = syz_usb_connect$cdc_ncm(0x0, 0x7a, &(0x7f0000000140)=ANY=[], 0x0)
syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0)
pipe(&(0x7f0000000080))

2m24.365902109s ago: executing program 1 (id=209):
r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x10c, &(0x7f00000000c0)=0xd, 0x0, 0x4)
r2 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000400)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x47f6, 0x0, 0x0, 0x0, 0x0)

2m23.444400289s ago: executing program 1 (id=211):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
symlink(&(0x7f0000000000)='./file1\x00', &(0x7f0000000100)='./file1\x00')
setpgid(r0, 0x0)
setpgid(0x0, r0)
mount$9p_fd(0x0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x10000, 0x0)

2m23.424691704s ago: executing program 1 (id=212):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2a4c0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000040)={0x50, 0x0, r2, {0x7, 0x1f, 0xe0000000, 0x5e490420, 0x2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x8, 0x8}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000004200)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20, 0x0, 0x3731, {0x0, 0x7f69ff17f1e1ab77}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0xc5001, 0x104)
close_range(r0, 0xffffffffffffffff, 0x0)

2m23.063697776s ago: executing program 1 (id=213):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$kcm(r0, &(0x7f0000001900)={0x0, 0xffffffea, 0x0}, 0x20040005)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="1400000023000b6c8cfffdfccabb00f90429fc60", 0x14}], 0x1}, 0x2400c000)
socket$alg(0x26, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x20048040)

2m23.006759078s ago: executing program 32 (id=213):
r0 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$kcm(r0, &(0x7f0000001900)={0x0, 0xffffffea, 0x0}, 0x20040005)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0xfc, 0x0}, 0x30004001)
r1 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000140)="1400000023000b6c8cfffdfccabb00f90429fc60", 0x14}], 0x1}, 0x2400c000)
socket$alg(0x26, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$kcm(r0, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x20048040)

2m10.621750444s ago: executing program 33 (id=202):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x2, 0x2)
sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14)
sendto$inet6(r0, &(0x7f0000000800)="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", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0)

2m10.481150407s ago: executing program 34 (id=207):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x100}}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = syz_usb_connect$printer(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="0d01000009000008250592d20700006a3b010902241700fa0074980904e4ff11070103000905010200ffe0000009058202", @ANYRES32], 0x0)
syz_usb_control_io(r1, 0x0, &(0x7f0000000200)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB=' '], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r1)
r2 = syz_usb_connect$cdc_ncm(0x0, 0x7a, &(0x7f0000000140)=ANY=[], 0x0)
syz_usb_control_io$cdc_ncm(r2, 0x0, 0x0)
pipe(&(0x7f0000000080))

1m53.303050242s ago: executing program 5 (id=374):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000100)={0x0, "ff0f00000000e800f5a72d86620000f0ffdefe00eb6f0400089f00"})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r2 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r2, 0xc0184800, &(0x7f0000000100)={0x4, <r3=>r1})
ioctl$DMA_BUF_SET_NAME_A(r3, 0x40086203, &(0x7f00000001c0)='\x02\x00\x00\x00\x05\x00\x00\x00-control\x00')
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x2a, [0x8000, 0xc95a, 0xe, 0x8, 0x80, 0x2, 0x7, 0x7f, 0xa9, 0x4d, 0x6, 0x5, 0x9, 0x15, 0xffff2d37, 0xff7fff01, 0x6, 0x5, 0x7, 0x5, 0x6, 0x0, 0x7, 0x3c5b, 0x1, 0x24, 0xd, 0x1, 0x0, 0xffffffff, 0xe661, 0x4, 0x7, 0x5, 0x8, 0x4c74, 0x10400, 0x242, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x17, 0x1, 0x7, 0x5, 0x3e, 0x18e, 0x6, 0x6, 0x0, 0x8, 0x4, 0x8, 0x3ff, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x1, 0x40], [0x10000007, 0x9, 0x8000012f, 0x8004, 0x5, 0xfffffff3, 0x129432f6, 0xc8, 0xf1, 0xe, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0xff, 0x5, 0x2f, 0xe, 0x312, 0x66abcbd2, 0xea4, 0x0, 0x4, 0x1007, 0x7fff, 0x6, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x1000005, 0x5f31, 0xd, 0x4e0, 0x381, 0x4, 0xb, 0x4, 0x9, 0x8, 0x40, 0x6, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x2, 0x4, 0x9, 0x3, 0x3, 0x4000009, 0x6, 0x0, 0x3, 0xbc45, 0x48c93690, 0x42, 0x3], [0x7, 0x408, 0x3ff, 0x5, 0xfffffffd, 0x100, 0x4, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ef, 0x5, 0x8, 0x86, 0x3, 0x303c, 0x3e7, 0xb, 0x5, 0x2, 0x2, 0x3, 0x20000008, 0x4, 0x6d01, 0x6, 0x38, 0x200, 0x1fd, 0x1c, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x4, 0xa9, 0x5, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0x12b, 0x4, 0x1, 0xa, 0xffffffff, 0x5, 0x1c, 0x120000, 0x802, 0x2006, 0x31, 0x4, 0x25], [0x9, 0x9, 0x7, 0xb, 0x5, 0x938, 0x6, 0x6, 0x0, 0xb9, 0xce4, 0x1ff, 0x2, 0x57, 0x5, 0x3, 0x2, 0x10000, 0x4, 0x7fff, 0xffff, 0xa620, 0x1, 0x5, 0x1, 0x2000002, 0x150, 0x60a7, 0x6, 0x16, 0xffffffff, 0x80000000, 0x5, 0x5, 0xc8, 0x1, 0xfffff001, 0x10000, 0x3, 0x7e, 0x9, 0x9622, 0x7, 0xaf, 0x20000008, 0x5, 0x226, 0x2, 0x5, 0x0, 0x30b1d693, 0xa1f, 0xf40, 0xcf9, 0x530e, 0x6c1b, 0x0, 0x4, 0x5, 0x7ff, 0xd7, 0x200, 0xb, 0xfff]}, 0x45c)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

1m53.221368587s ago: executing program 5 (id=376):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000000d000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="260f01cfbaf80c66b835b9ca8166efbafc0cec66640f32baf80c66b83065cd8966efbafc0c66b88f9b000066efbaf80c66b8a8a86e8866efbafc0c66b80100000066efbaf80c66b8983d448366efbafc0cb000eeea012b5d00660ff96700c4e2bddfdd0f01c2", 0x66}], 0x1, 0x74, 0x0, 0x0)
syz_usb_connect$cdc_ncm(0x1, 0x6e, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m50.643729681s ago: executing program 5 (id=400):
fsopen(&(0x7f0000000300)='exfat\x00', 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_io_uring_setup(0x9d2, &(0x7f00000000c0)={0x0, 0x1, 0x800, 0x3, 0x1}, &(0x7f0000000000)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r2, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
recvfrom(r0, 0x0, 0x0, 0x0, 0x0, 0x0)
connect$unix(r1, &(0x7f0000000100)=@file={0x0, './file0\x00'}, 0x6e)

1m49.713592384s ago: executing program 5 (id=403):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
unshare(0x22020600)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

1m49.634509048s ago: executing program 5 (id=404):
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000440)=0x1, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000003180)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf84, 0x3}, 0x1c)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x2d, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x3, 0x0, 0x3c, 0x0, 0x0, 0x0, 0x29, 0x0, @empty, @empty}, {0x4e22, 0x0, 0x28, 0x0, @wg=@data={0x4, 0x0, 0x0, "200200"/16}}}}}}, 0x0)

1m49.414577483s ago: executing program 5 (id=409):
r0 = socket$nl_generic(0x11, 0x3, 0x10)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r1, 0x0)
r2 = syz_io_uring_setup(0x460, &(0x7f0000000480)={0x0, 0x40000020, 0x10, 0x2, 0x34f}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x2f, 0x1, 0x0, 0x4}]}, 0x8)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0)

1m49.358507672s ago: executing program 35 (id=409):
r0 = socket$nl_generic(0x11, 0x3, 0x10)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r1, 0x0)
r2 = syz_io_uring_setup(0x460, &(0x7f0000000480)={0x0, 0x40000020, 0x10, 0x2, 0x34f}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000000)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x2f, 0x1, 0x0, 0x4}]}, 0x8)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r2, 0x47bc, 0x0, 0x0, 0x0, 0x0)

1m22.06203117s ago: executing program 6 (id=681):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
socket$kcm(0x10, 0x400000002, 0x0)
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$UHID_CREATE(r0, &(0x7f00000002c0)={0x0, {'syz0\x00', 'syz0\x00', 'syz1\x00', &(0x7f0000000540)=""/32, 0x20, 0x1, 0x0, 0x0, 0xffffffff}}, 0x11c)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="1201000000000040341a02080000000000010902"], 0x0)
getpeername$unix(0xffffffffffffffff, &(0x7f00000001c0), &(0x7f0000000140)=0x6e)
r1 = syz_open_dev$hidraw(&(0x7f0000000080), 0x1, 0x200)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$HIDIOCGFEATURE(r1, 0xc0404807, &(0x7f00000000c0)={0x8, "53bab9ea1cc27f70d208f2adddd2e861831db579b2c1746e9406fdf5849dda870743fa9db4f5c2df09b40f7fab01f215d7a0bd9c8e87a5c677eb6580167fa645"})

1m20.731400574s ago: executing program 6 (id=695):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r2 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00')
read$FUSE(r2, &(0x7f0000000080)={0x2020}, 0x2020)

1m19.796270385s ago: executing program 6 (id=699):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x28, r1, 0x5, 0x0, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000895}, 0x4000004)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes\x00', 0x26e1, 0x0)
close(r3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
ioctl$SIOCSIFHWADDR(r3, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="0100008dffff"})

1m19.743425872s ago: executing program 6 (id=701):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xce0a, 0x10100, 0x3, 0x370, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x708, 0x41e3, 0x0, 0x0, 0x0)
io_setup(0x7, &(0x7f0000000140)=<r5=>0x0)
io_pgetevents(r5, 0x2, 0x2, &(0x7f00000000c0)=[{}, {}], &(0x7f0000000700)={0x77359400}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)

1m19.260266109s ago: executing program 6 (id=702):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200), 0x1000012, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='ramfs\x00', 0x2014800, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0)

1m19.193598518s ago: executing program 6 (id=705):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r2, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42}, 0x2}}, 0x10, 0x0}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88)

1m3.688965876s ago: executing program 36 (id=705):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x0, 0x2}, 0x10)
sendmsg$tipc(r2, &(0x7f0000000540)={&(0x7f00000001c0)=@name={0x1e, 0x2, 0x0, {{0x42}, 0x2}}, 0x10, 0x0}, 0x10)
setsockopt$TIPC_GROUP_LEAVE(r2, 0x10f, 0x88)

18.886465632s ago: executing program 4 (id=1117):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='comm\x00')
writev(r0, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
io_uring_enter(0xffffffffffffffff, 0x1aa4, 0x853, 0x4f, 0x0, 0x0)
fsopen(&(0x7f0000000080)='fuse\x00', 0x1)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0x28, 0x3, 0x6, 0x101, 0x0, 0x0, {0x5, 0x0, 0x9}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000800}, 0x4080)

18.587039265s ago: executing program 4 (id=1120):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x8400, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xa4c81, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000700)=[&(0x7f0000000440)={0x0, 0x20000000, 0x4, 0x1, 0x0, r2, &(0x7f00000003c0)='j~', 0x2, 0x1}])
dup3(r2, r0, 0x0)

18.341665279s ago: executing program 4 (id=1122):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000002800000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
pipe(&(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x76, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={0xffffffffffffffff, 0x0, 0x0}, 0x20)

15.627765838s ago: executing program 4 (id=1124):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000040))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mount$9p_virtio(&(0x7f0000000180), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x40, &(0x7f0000000840)=ANY=[@ANYBLOB="78224fc427ed619f319b73733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x4000)
write$vhost_msg_v2(r0, &(0x7f00000003c0)={0x2, 0x0, {0x0, 0x0, 0x0, 0x2, 0x3}}, 0x48)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000240), 0x208e24b)

15.462988342s ago: executing program 4 (id=1132):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000380)='./bus\x00')
setpgid(0x0, r0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)

15.176498317s ago: executing program 7 (id=1135):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000d40)={0x3, 0xc, &(0x7f0000000e00)=ANY=[@ANYBLOB="180200000000000000000000000000008500000011000000180100002020692500000000002020207b1af8ff00000000bfa110000000000007010000f8ffffffb702000008000000b703000000000000850000007b00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000002140)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd2c, 0x25dfdbff, {0x0, 0x0, 0x0, r4, {0x10, 0xfff2}, {}, {0x7, 0x3}}, [@filter_kind_options=@f_bpf={{0x8}, {0xc, 0x2, [@TCA_BPF_FD={0x8, 0x6, r5}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x10}, 0x0)

15.17144202s ago: executing program 7 (id=1141):
r0 = io_uring_setup(0x5f41, &(0x7f00000001c0)={0x0, 0x0, 0x2})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000340), 0x14)
write$binfmt_script(r1, &(0x7f00000000c0)={'#! ', './file0'}, 0xb)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000500)=@gcm_128={{0x303}, "668f4918bdecc7bf", "a590d6cbe29665fffe6115bb3dbf924c", "c8beb772", "c8f6140f4d4f5b4c"}, 0x28)
close_range(r0, 0xffffffffffffffff, 0x0)

15.171091783s ago: executing program 7 (id=1142):
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0x40405514, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x40, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4000000000000000, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3, 0x0, 0x3, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xc, 0x2, 0x0, 0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]})
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000540)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d75a3d0000b110000000000000000000000000000000000ff0200000000000000000000000000014f1c4e20"], 0xd6)

15.170978174s ago: executing program 4 (id=1143):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x4e3, &(0x7f0000000480)={0x0, 0x938c, 0x10100, 0x0, 0x800}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x708, 0x41e3, 0x0, 0x0, 0x0)
poll(&(0x7f00000001c0), 0x0, 0x8001)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x9e, 0x0, &(0x7f00000006c0), &(0x7f00000001c0))

15.023349146s ago: executing program 7 (id=1147):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000180)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0xffffffff85000014, 0x5, 0x7, 0x0, 0x0, 0x0, 0x0, 0x1}}, 0x50)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x4b)
syz_fuse_handle_req(r0, &(0x7f00000042c0), 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006380)={0x20, 0x0, 0x0, {0x0, 0x8}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000067c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001b00", 0x2000, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="780000000000000002000000000000040000000000000000000000000000000004"], 0x0, 0x0, 0x0, 0x0})
getdents(r2, &(0x7f0000000700)=""/90, 0x5a)

14.295376039s ago: executing program 7 (id=1157):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000380)='./bus\x00')
setpgid(0x0, r0)
mount(0x0, &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0)

14.203303501s ago: executing program 7 (id=1152):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x10}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd25, 0x25dfdc00, {0x0, 0x0, 0x0, r6, {0x0, 0x8}, {}, {0x7}}, [@filter_kind_options=@f_bpf={{0x8}, {0x14, 0x2, [@TCA_BPF_FLAGS_GEN={0x8, 0x9, 0x6}, @TCA_BPF_FD={0x8}]}}]}, 0x40}, 0x1, 0x0, 0x0, 0x10}, 0x0)

12.286161169s ago: executing program 3 (id=1162):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r4}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x70, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x18}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x44, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x8, 0x0, 0x2, 0x8, 0xc, 0x7}, {0x1, 0x0, 0x9, 0x401, 0x0, 0x7fffffff}, 0x2000001, 0x1000, 0x575}}, @TCA_TBF_RATE64={0xc, 0x4, 0x274bdcb7db3981e2}, @TCA_TBF_PRATE64={0xc, 0x5, 0xe1e31d5aa9748ab8}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x404}, 0x0)

12.228948533s ago: executing program 3 (id=1163):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000680)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x2c, 0x24, 0x5820a61ca228651, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000006c0)=@newtfilter={0x30, 0x28, 0x575ac7824d421709, 0x70bd2d, 0x4, {0x0, 0x0, 0x0, r3, {0x10}, {0xfff1}, {0xfff1, 0x3d}}, [@filter_kind_options=@f_bpf={{0x8}, {0x4}}]}, 0x30}}, 0x40)
r4 = socket(0x10, 0x3, 0x0)
sendmmsg$alg(r4, &(0x7f0000000140), 0x4924b68, 0x0)

12.204378585s ago: executing program 8 (id=1164):
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440)={0x28, 0x0, 0x2710, @host}, 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
r2 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$sock_timeval(r2, 0x1, 0x14, &(0x7f0000000600)={0x0, 0xea60}, 0x10)
recvmsg$kcm(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)=""/150, 0x96}], 0x5}, 0x0)

12.164818538s ago: executing program 3 (id=1165):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x38fe, &(0x7f0000000300)={0x0, 0x1fffff, 0x10100, 0x0, 0x16e}, &(0x7f0000000180)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0})
io_uring_enter(r2, 0x3f80, 0x3697, 0x25, 0x0, 0x0)
r5 = openat$vimc2(0xffffff9c, &(0x7f00000000c0), 0x2, 0x0)
socket$inet(0x2, 0x2000000080002, 0x0)
ioctl$VIDIOC_DQEVENT(r5, 0x80805659, &(0x7f00000001c0)={0x0, @frame_sync})

12.099772394s ago: executing program 8 (id=1167):
r0 = io_uring_setup(0x5f41, &(0x7f00000001c0)={0x0, 0x0, 0x2})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000000)=0x1, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r1, 0x6, 0x1d, &(0x7f0000000340), 0x14)
write$binfmt_script(r1, &(0x7f00000000c0)={'#! ', './file0'}, 0xb)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x2, &(0x7f0000000500)=@gcm_128={{0x303}, "668f4918bdecc7bf", "a590d6cbe29665fffe6115bb3dbf924c", "c8beb772", "c8f6140f4d4f5b4c"}, 0x28)
close_range(r0, 0xffffffffffffffff, 0x0)

12.098089715s ago: executing program 8 (id=1168):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
r3 = creat(&(0x7f0000000000)='./file0\x00', 0x6a)
write$binfmt_elf32(r3, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000000000000000000000030006"], 0x69)
close(r3)
execve(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)

12.097967684s ago: executing program 3 (id=1169):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000208500000004"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x20, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f00000007c0)='skb_copy_datagram_iovec\x00', r1}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)
recvmsg$unix(r2, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x0)

12.074071746s ago: executing program 3 (id=1170):
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
recvmmsg(r3, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)

149.619304ms ago: executing program 37 (id=1143):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x4e3, &(0x7f0000000480)={0x0, 0x938c, 0x10100, 0x0, 0x800}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x708, 0x41e3, 0x0, 0x0, 0x0)
poll(&(0x7f00000001c0), 0x0, 0x8001)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
syz_io_uring_setup(0x9e, 0x0, &(0x7f00000006c0), &(0x7f00000001c0))

130.402949ms ago: executing program 8 (id=1172):
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(0xffffffffffffffff, 0x40405514, &(0x7f0000000540)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x0, [0xfffffffffffffe00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x1, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000001, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x40, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7, 0x4000000000000000, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x3, 0x0, 0x3, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xc, 0x2, 0x0, 0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000000000000, 0x0, 0x0, 0x0, 0x0, 0x4000000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2]})
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000540)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d75a3d0000b110000000000000000000000000000000000ff0200000000000000000000000000014f1c4e20"], 0xd6)

123.469729ms ago: executing program 3 (id=1179):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x4000000)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
capset(&(0x7f0000000340)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000, 0x20000000})
r3 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000900)=[{&(0x7f0000000280)="89000000120081ae08060cdc030000017f03e3f7000000006ee2ffca1b1f00ff0f00000000000050375ed08a56331dbf9ed78105001ad6e747033a0093b837dc6cc01e32efaec8c7a6ec00120c00010004080c00bdad01409bbc7a46e39a54cbbda812176679df069163ce955fed0009d78f0a947ee2b49e33538afaeb2713f450ebd010a20ff27fff", 0x89}], 0x1, 0x0, 0x0, 0x7}, 0x0)

5.508912ms ago: executing program 8 (id=1173):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0}, 0x18)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r3], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r4}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x70, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x18}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x44, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x8, 0x0, 0x2, 0x8, 0xc, 0x7}, {0x1, 0x0, 0x9, 0x401, 0x0, 0x7fffffff}, 0x2000001, 0x1000, 0x575}}, @TCA_TBF_RATE64={0xc, 0x4, 0x274bdcb7db3981e2}, @TCA_TBF_PRATE64={0xc, 0x5, 0xe1e31d5aa9748ab8}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x404}, 0x0)

0s ago: executing program 8 (id=1181):
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000100), 0x161281, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0040001e1d113c812e5d6000"})
r1 = syz_open_pts(r0, 0x0)
syz_io_uring_setup(0x2f90, &(0x7f0000000180)={0x0, 0x683a, 0x3010, 0x2, 0x200804}, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000200)={0x3, 0x0, 0x3, 0xfffffffffffffffd, 0x6, 0x0, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0xff, 0xa533, 0x0, 0x0, 0x34d6}, 0x0, 0x0)
ioctl$TCXONC(r1, 0x540a, 0x2)

kernel console output (not intermixed with test programs):

 T5950] Bluetooth: hci3: command tx timeout
[   47.274752][ T5939] Bluetooth: hci1: command tx timeout
[   47.300190][ T5935] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   47.305403][ T5935] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   47.315967][ T5935] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   47.320381][ T5935] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   47.345553][ T5939] Bluetooth: hci2: command tx timeout
[   47.365730][ T5942] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   47.376854][ T5942] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   47.381390][ T5942] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   47.387651][ T5934] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.392185][ T5942] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   47.439575][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.444481][ T5934] 8021q: adding VLAN 0 to HW filter on device team0
[   47.456846][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.459473][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.472726][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.475312][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.492928][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.497035][ T5943] 8021q: adding VLAN 0 to HW filter on device team0
[   47.531758][ T1144] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.534425][ T1144] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.537984][ T1144] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.540217][ T1144] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.555578][ T5935] 8021q: adding VLAN 0 to HW filter on device team0
[   47.566029][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.568446][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.593085][ T5942] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.603691][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.606666][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.624216][ T5942] 8021q: adding VLAN 0 to HW filter on device team0
[   47.630038][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.632304][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.649922][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.652187][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.690191][ T5934] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.733776][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.743194][ T5934] veth0_vlan: entered promiscuous mode
[   47.749535][ T5934] veth1_vlan: entered promiscuous mode
[   47.795757][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.800308][ T5943] veth0_vlan: entered promiscuous mode
[   47.803409][ T5934] veth0_macvtap: entered promiscuous mode
[   47.809604][ T5934] veth1_macvtap: entered promiscuous mode
[   47.815027][ T5942] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.818778][ T5943] veth1_vlan: entered promiscuous mode
[   47.831351][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.842590][ T5934] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.850333][ T5934] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.854087][ T5934] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.858473][ T5934] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.861471][ T5934] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.887826][ T5942] veth0_vlan: entered promiscuous mode
[   47.895775][ T5935] veth0_vlan: entered promiscuous mode
[   47.902956][ T5943] veth0_macvtap: entered promiscuous mode
[   47.912628][ T5942] veth1_vlan: entered promiscuous mode
[   47.920827][ T5935] veth1_vlan: entered promiscuous mode
[   47.939279][ T5943] veth1_macvtap: entered promiscuous mode
[   47.942740][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.946275][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.967674][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.969931][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.985234][ T5935] veth0_macvtap: entered promiscuous mode
[   47.990527][ T5935] veth1_macvtap: entered promiscuous mode
[   47.998478][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.002462][ T5942] veth0_macvtap: entered promiscuous mode
[   48.010368][ T5942] veth1_macvtap: entered promiscuous mode
[   48.011599][ T5934] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   48.018039][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.027874][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.036235][ T5943] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.038889][ T5943] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.042443][ T5943] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.045745][ T5943] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.051828][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.057985][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.065847][ T5935] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.068620][ T5935] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.071324][ T5935] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.074354][ T5935] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.080727][ T5942] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.096996][ T5942] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.099545][ T5942] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.102071][ T5942] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.105681][ T5942] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.146847][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.150589][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.164260][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.166838][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.185199][ T1150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.187886][ T1150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.205260][ T1144] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.208057][ T1144] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.234262][   T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.236815][   T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.252966][   T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.259154][   T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.321343][ T6012] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3'.
[   48.368254][ T6018] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11'.
[   48.418588][ T6024] netlink: 'syz.0.13': attribute type 5 has an invalid length.
[   48.421063][ T6024] netlink: 4 bytes leftover after parsing attributes in process `syz.0.13'.
[   48.594873][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.597426][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.614910][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.345023][ T5939] Bluetooth: hci1: command tx timeout
[   49.354796][ T5939] Bluetooth: hci3: command tx timeout
[   49.355007][ T5950] Bluetooth: hci0: command tx timeout
[   49.425168][ T5950] Bluetooth: hci2: command tx timeout
[   49.454577][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.657855][ T6067] netlink: 'syz.0.27': attribute type 27 has an invalid length.
[   49.687751][ T6067] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.691104][ T6067] bridge0: port 1(bridge_slave_0) entered disabled state
[   49.748675][ T6067] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   49.756873][ T6067] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   49.806871][ T6067] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   49.809741][ T6067] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   49.812683][ T6067] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   49.816015][ T6067] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   49.865413][ T6068] 8021q: adding VLAN 0 to HW filter on device bond0
[   49.868258][ T6068] 8021q: adding VLAN 0 to HW filter on device team0
[   49.872480][ T6068] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   50.111731][ T6078] netlink: 156 bytes leftover after parsing attributes in process `syz.1.31'.
[   50.414370][   T10] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   50.564386][   T10] usb 6-1: Using ep0 maxpacket: 8
[   50.568446][   T10] usb 6-1: config 0 has no interfaces?
[   50.570280][   T10] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[   50.572964][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   50.579195][   T10] usb 6-1: config 0 descriptor??
[   51.254436][ T5976] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   51.281575][ T5979] usb 6-1: USB disconnect, device number 2
[   51.407977][ T6122] netlink: 12 bytes leftover after parsing attributes in process `syz.0.39'.
[   51.424921][ T5976] usb 7-1: Using ep0 maxpacket: 8
[   51.428285][ T5950] Bluetooth: hci0: command tx timeout
[   51.430144][ T5950] Bluetooth: hci1: command tx timeout
[   51.430553][ T5939] Bluetooth: hci3: command tx timeout
[   51.432753][ T5976] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   51.438035][ T5976] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   51.442121][ T5976] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   51.446911][ T5976] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   51.452245][ T5976] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   51.454278][ T6122] netlink: 'syz.0.39': attribute type 2 has an invalid length.
[   51.458843][ T5976] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   51.514382][ T5939] Bluetooth: hci2: command tx timeout
[   51.718035][ T5976] usb 7-1: GET_CAPABILITIES returned 0
[   51.719994][ T5976] usbtmc 7-1:16.0: can't read capabilities
[   51.862768][ T6147] netlink: 12 bytes leftover after parsing attributes in process `syz.1.45'.
[   51.907979][ T6149] netlink: 4 bytes leftover after parsing attributes in process `syz.1.46'.
[   51.918349][    C1] usbtmc 7-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[   51.923044][ T5976] usb 7-1: USB disconnect, device number 2
[   52.543599][ T6156] veth0_virt_wifi: entered promiscuous mode
[   52.622900][ T6161] netlink: 'syz.0.51': attribute type 4 has an invalid length.
[   52.732446][ T6167] netlink: 'syz.0.55': attribute type 4 has an invalid length.
[   52.742443][ T6167] netlink: 'syz.0.55': attribute type 4 has an invalid length.
[   52.827361][ T6176] netlink: 'syz.3.59': attribute type 1 has an invalid length.
[   52.828847][ T6178] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   52.889691][ T6176] veth0: entered promiscuous mode
[   52.890925][ T6183] Zero length message leads to an empty skb
[   52.999244][   T40] audit: type=1800 audit(1748832657.097:2): pid=6191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.65" name="file0" dev="overlay" ino=177 res=0 errno=0
[   53.020448][ T6197] netlink: 12 bytes leftover after parsing attributes in process `syz.2.68'.
[   53.052994][ T6199] netlink: 4 bytes leftover after parsing attributes in process `syz.2.69'.
[   53.128855][ T6201] netlink: 12 bytes leftover after parsing attributes in process `syz.0.70'.
[   53.177610][ T6195] netlink: 'syz.3.67': attribute type 23 has an invalid length.
[   53.329953][ T5939] Bluetooth: hci0: unexpected event 0x09 length: 4 > 3
[   53.504422][ T5939] Bluetooth: hci3: command tx timeout
[   53.504761][ T5949] Bluetooth: hci0: command tx timeout
[   53.510090][ T5950] Bluetooth: hci1: command tx timeout
[   53.594432][ T5949] Bluetooth: hci2: command tx timeout
[   53.910984][ T6241] netlink: 8 bytes leftover after parsing attributes in process `syz.3.87'.
[   54.052461][ T6252] evm: overlay not supported
[   54.125707][ T6256] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[   54.367965][ T6258] syz.1.94 uses obsolete (PF_INET,SOCK_PACKET)
[   54.822514][ T6287] netlink: 412 bytes leftover after parsing attributes in process `syz.0.103'.
[   54.827766][ T6287] netlink: 4 bytes leftover after parsing attributes in process `syz.0.103'.
[   55.994168][ T6330] loop6: detected capacity change from 0 to 7
[   55.996556][ T6332] netlink: 4 bytes leftover after parsing attributes in process `syz.0.120'.
[   55.997551][ T6332] netlink: 4 bytes leftover after parsing attributes in process `syz.0.120'.
[   56.003953][ T5944] Dev loop6: unable to read RDB block 7
[   56.005794][ T6332] netlink: 4 bytes leftover after parsing attributes in process `syz.0.120'.
[   56.006383][ T5944]  loop6: AHDI p1 p2 p4
[   56.010990][ T5944] loop6: partition table partially beyond EOD, truncated
[   56.015424][ T5944] loop6: p1 start 926365495 is beyond EOD, truncated
[   56.031880][ T6330] Dev loop6: unable to read RDB block 7
[   56.033721][ T6330]  loop6: AHDI p1 p2 p4
[   56.035281][ T6330] loop6: partition table partially beyond EOD, truncated
[   56.038055][ T6330] loop6: p1 start 926365495 is beyond EOD, truncated
[   56.038579][ T6334] netlink: 4 bytes leftover after parsing attributes in process `syz.0.121'.
[   56.046719][ T6334] netlink: 12 bytes leftover after parsing attributes in process `syz.0.121'.
[   56.058355][ T5944] udevd[5944]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[   56.072086][ T5944] udevd[5944]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[   56.096314][ T6336] tipc: Started in network mode
[   56.097948][ T6336] tipc: Node identity f6bc8882bda2, cluster identity 4711
[   56.100239][ T6336] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   56.108045][ T6338] netlink: 12 bytes leftover after parsing attributes in process `syz.0.123'.
[   56.131585][ T6336] syzkaller0: entered promiscuous mode
[   56.133348][ T6336] syzkaller0: entered allmulticast mode
[   56.135555][ T5979] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   56.136692][ T6336] tipc: Resetting bearer <eth:syzkaller0>
[   56.151360][ T6338] 8021q: adding VLAN 0 to HW filter on device bond1
[   56.163800][ T6335] tipc: Resetting bearer <eth:syzkaller0>
[   56.170852][ T6338] netlink: 4 bytes leftover after parsing attributes in process `syz.0.123'.
[   56.284440][ T5979] usb 7-1: Using ep0 maxpacket: 8
[   56.297320][ T5979] usb 7-1: config 0 has an invalid interface number: 31 but max is 0
[   56.301166][ T5979] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   56.305400][ T5979] usb 7-1: config 0 has no interface number 0
[   56.312294][ T5979] usb 7-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[   56.316616][ T5979] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   56.319770][ T5979] usb 7-1: Product: syz
[   56.321425][ T5979] usb 7-1: Manufacturer: syz
[   56.323299][ T5979] usb 7-1: SerialNumber: syz
[   56.327663][ T5979] usb 7-1: config 0 descriptor??
[   56.331684][ T5979] usb 7-1: Found UVC 0.04 device syz (046d:08c3)
[   56.334163][ T5979] usb 7-1: No valid video chain found.
[   56.753660][ T6342] kvm: pic: non byte read
[   56.758373][ T6342] kvm: pic: level sensitive irq not supported
[   56.758680][ T6342] kvm: pic: non byte read
[   56.763173][ T6342] kvm: pic: level sensitive irq not supported
[   56.763407][ T6342] kvm: pic: non byte read
[   56.767887][ T6342] kvm: pic: level sensitive irq not supported
[   56.768121][ T6342] kvm: pic: non byte read
[   56.775466][ T6342] kvm: pic: level sensitive irq not supported
[   56.775701][ T6342] kvm: pic: non byte read
[   56.780076][ T6342] kvm: pic: level sensitive irq not supported
[   56.780314][ T6342] kvm: pic: non byte read
[   56.787530][ T6342] kvm: pic: level sensitive irq not supported
[   56.787773][ T6342] kvm: pic: non byte read
[   56.856142][ T6335] tipc: Disabling bearer <eth:syzkaller0>
[   56.944148][ T6338] bond1 (unregistering): Released all slaves
[   58.917380][ T2287] usb 7-1: USB disconnect, device number 3
[   58.973393][ T6389] serio: Serial port ptm0
[   59.197145][ T6400] netlink: zone id is out of range
[   59.198884][ T6400] netlink: zone id is out of range
[   59.201725][ T6400] netlink: zone id is out of range
[   59.210287][ T6400] netlink: zone id is out of range
[   59.217825][ T6400] netlink: del zone limit has 4 unknown bytes
[   59.764392][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   60.169951][ T6430] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   60.304423][ T6441] __nla_validate_parse: 4 callbacks suppressed
[   60.304435][ T6441] netlink: 4 bytes leftover after parsing attributes in process `syz.0.159'.
[   60.532150][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.538473][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.550109][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.559438][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.564272][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.569194][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.572625][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.576093][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.579606][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.581971][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.584245][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.586735][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.589016][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.591332][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.593660][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.596176][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.598584][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.600959][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.603251][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.605632][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.608181][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.610555][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.612837][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.615153][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.617414][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.619652][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.621910][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.624184][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.628172][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.630576][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.632934][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.635323][   T54] hid-generic 0001:0000:0000.0002: unknown main item tag 0x0
[   60.642380][   T54] hid-generic 0001:0000:0000.0002: hidraw1: <UNKNOWN> HID vffffff.ff Device [syz0] on syz0
[   60.804354][ T6150] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   60.976634][ T6150] usb 6-1: config 0 has no interfaces?
[   60.978960][ T6150] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[   60.982664][ T6150] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   60.996911][ T6150] usb 6-1: config 0 descriptor??
[   61.146925][ T6466] bridge2: entered promiscuous mode
[   61.152344][ T6475] netlink: 8 bytes leftover after parsing attributes in process `syz.3.170'.
[   61.399748][ T2287] libceph: connect (1)[c::]:6789 error -101
[   61.402727][ T2287] libceph: mon0 (1)[c::]:6789 connect error
[   61.413283][ T2287] usb 6-1: USB disconnect, device number 3
[   61.546212][ T6486] ceph: No mds server is up or the cluster is laggy
[   61.607509][ T6494] netlink: 8 bytes leftover after parsing attributes in process `syz.0.175'.
[   61.792347][ T6496] macsec0: entered promiscuous mode
[   61.794012][ T6496] macsec0: entered allmulticast mode
[   61.797205][ T6496] veth1_macvtap: entered allmulticast mode
[   61.799757][ T6496] macsec0: left promiscuous mode
[   61.801974][ T6496] macsec0: left allmulticast mode
[   61.804047][ T6496] veth1_macvtap: left allmulticast mode
[   62.203590][ T6524] netlink: 12 bytes leftover after parsing attributes in process `syz.3.189'.
[   62.227282][ T6528] process 'syz.0.190' launched './file1' with NULL argv: empty string added
[   62.300367][ T6534] netlink: 8 bytes leftover after parsing attributes in process `syz.0.193'.
[   62.332269][ T6536] warning: `syz.3.194' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   62.437200][ T6544] netlink: 4 bytes leftover after parsing attributes in process `syz.0.198'.
[   62.440566][ T6544] netlink: 4 bytes leftover after parsing attributes in process `syz.0.198'.
[   62.444008][ T6544] netlink: 4 bytes leftover after parsing attributes in process `syz.0.198'.
[   62.504501][ T1020] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   62.656185][ T1020] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   62.659456][ T1020] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   62.662421][ T1020] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   62.666600][ T1020] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   62.669562][ T1020] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.673707][ T1020] usb 6-1: config 0 descriptor??
[   63.090829][ T1020] plantronics 0003:047F:FFFF.0003: reserved main item tag 0xd
[   63.094476][ T1020] plantronics 0003:047F:FFFF.0003: No inputs registered, leaving
[   63.101924][ T1020] plantronics 0003:047F:FFFF.0003: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   63.349535][   T54] usb 6-1: USB disconnect, device number 4
[   65.141875][   T76] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.245724][   T76] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.368128][   T76] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.371360][ T5950] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   65.377368][ T5950] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   65.383022][ T5950] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   65.387546][ T5950] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   65.390274][ T5950] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   65.431775][   T76] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.532897][ T6578] chnl_net:caif_netlink_parms(): no params data found
[   65.572387][   T76] bridge_slave_1: left allmulticast mode
[   65.574206][   T76] bridge_slave_1: left promiscuous mode
[   65.577088][   T76] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.583410][   T76] bridge_slave_0: left allmulticast mode
[   65.585426][   T76] bridge_slave_0: left promiscuous mode
[   65.587269][   T76] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.858870][   T76] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   65.869667][   T76] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   65.876350][   T76] bond0 (unregistering): Released all slaves
[   65.944942][ T6578] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.947237][ T6578] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.949677][ T6578] bridge_slave_0: entered allmulticast mode
[   65.952386][ T6578] bridge_slave_0: entered promiscuous mode
[   65.955972][   T76] tipc: Left network mode
[   65.956107][ T6578] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.959838][ T6578] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.962099][ T6578] bridge_slave_1: entered allmulticast mode
[   65.965788][ T6578] bridge_slave_1: entered promiscuous mode
[   66.018536][ T6578] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.024018][ T6578] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.061998][ T6578] team0: Port device team_slave_0 added
[   66.073659][ T6578] team0: Port device team_slave_1 added
[   66.114667][ T6578] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.116994][ T6578] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.125115][ T6578] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.129389][ T6578] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.131528][ T6578] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.139432][ T6578] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.217839][   T76] hsr_slave_0: left promiscuous mode
[   66.219970][   T76] hsr_slave_1: left promiscuous mode
[   66.222034][   T76] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   66.225881][   T76] batman_adv: batadv0: Removing interface: batadv_slave_0
[   66.228875][   T76] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   66.231160][   T76] batman_adv: batadv0: Removing interface: batadv_slave_1
[   66.249876][   T76] veth1_macvtap: left promiscuous mode
[   66.251733][   T76] veth0_macvtap: left promiscuous mode
[   66.253561][   T76] veth1_vlan: left promiscuous mode
[   66.256944][   T76] veth0_vlan: left promiscuous mode
[   66.741733][   T76] team0 (unregistering): Port device team_slave_1 removed
[   66.796867][   T76] team0 (unregistering): Port device team_slave_0 removed
[   67.081890][   T40] audit: type=1326 audit(1748832671.177:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6610 comm="syz.3.218" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[   67.088418][   T40] audit: type=1326 audit(1748832671.177:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6610 comm="syz.3.218" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ee5a7 code=0x7ffc0000
[   67.095309][   T40] audit: type=1326 audit(1748832671.177:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6610 comm="syz.3.218" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[   67.101885][   T40] audit: type=1326 audit(1748832671.177:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6610 comm="syz.3.218" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[   67.109593][   T40] audit: type=1326 audit(1748832671.177:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6610 comm="syz.3.218" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[   67.116311][   T40] audit: type=1326 audit(1748832671.177:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6610 comm="syz.3.218" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[   67.123417][   T40] audit: type=1326 audit(1748832671.177:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6610 comm="syz.3.218" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[   67.130605][   T40] audit: type=1326 audit(1748832671.177:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6610 comm="syz.3.218" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf70ee5a7 code=0x7ffc0000
[   67.139071][   T40] audit: type=1326 audit(1748832671.177:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6610 comm="syz.3.218" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x7ffc0000
[   67.147422][   T40] audit: type=1326 audit(1748832671.177:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6610 comm="syz.3.218" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70ee579 code=0x7ffc0000
[   67.266897][ T6616] trusted_key: syz.3.220 sent an empty control message without MSG_MORE.
[   67.270074][ T6578] hsr_slave_0: entered promiscuous mode
[   67.272254][ T6578] hsr_slave_1: entered promiscuous mode
[   67.274223][ T6578] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.278759][ T6578] Cannot create hsr debugfs directory
[   67.415651][ T6578] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   67.419832][ T6578] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   67.424607][ T5950] Bluetooth: hci3: command tx timeout
[   67.424910][ T6578] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   67.430517][ T6578] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   67.490428][ T6578] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.499817][ T6578] 8021q: adding VLAN 0 to HW filter on device team0
[   67.512199][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.514478][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.520913][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.523101][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.649037][ T6578] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.783218][ T6578] veth0_vlan: entered promiscuous mode
[   67.789676][ T6578] veth1_vlan: entered promiscuous mode
[   67.808666][ T6578] veth0_macvtap: entered promiscuous mode
[   67.812495][ T6578] veth1_macvtap: entered promiscuous mode
[   67.822142][ T6578] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.829028][ T6578] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.833904][ T6578] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.836770][ T6578] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.840102][ T6578] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.842803][ T6578] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.886167][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.889534][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.904391][ T1150] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.907295][ T1150] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.121957][ T6667] binder: 6666:6667 ioctl c0306201 0 returned -14
[   68.177279][ T6673] binder: 6666:6673 ioctl c0306201 0 returned -14
[   69.390698][ T6726] binder_alloc: 6725: binder_alloc_buf size -296 failed, no address space
[   69.393476][ T6726] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 4096 (num: 1 largest: 4096)
[   69.504617][ T5950] Bluetooth: hci3: command tx timeout
[   70.753264][ T6760] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   70.867923][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[   70.870497][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[   71.594439][ T5950] Bluetooth: hci3: command tx timeout
[   71.984086][ T6771] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(6)
[   71.986816][ T6771] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[   71.990342][ T6771] vhci_hcd vhci_hcd.0: Device attached
[   71.996923][ T6772] vhci_hcd: connection closed
[   71.998746][ T1140] vhci_hcd: stop threads
[   72.002781][ T1140] vhci_hcd: release socket
[   72.004722][ T1140] vhci_hcd: disconnect device
[   72.534170][ T6776] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[   72.536337][ T6776] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   72.538916][ T6776] vhci_hcd vhci_hcd.0: Device attached
[   72.552678][ T6776] netdevsim netdevsim4: Direct firmware load for @ failed with error -2
[   72.556357][ T6776] netdevsim netdevsim4: Falling back to sysfs fallback for: @
[   72.774406][   T54] usb 45-1: new high-speed USB device number 2 using vhci_hcd
[   73.362989][ T6777] vhci_hcd: connection reset by peer
[   73.365880][  T226] vhci_hcd: stop threads
[   73.367429][  T226] vhci_hcd: release socket
[   73.369647][  T226] vhci_hcd: disconnect device
[   73.664752][ T5950] Bluetooth: hci3: command tx timeout
[   74.260257][ T6796] netfs: Couldn't get user pages (rc=-14)
[   75.446462][ T6810] netlink: 'syz.3.261': attribute type 5 has an invalid length.
[   75.678074][ T6820] uprobe: syz.3.265:6820 failed to unregister, leaking uprobe
[   76.936492][ T5950] Bluetooth: Unexpected continuation frame (len 16)
[   77.009822][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   77.235604][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   77.336870][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   77.633285][ T6904] netlink: 4 bytes leftover after parsing attributes in process `syz.4.275'.
[   77.637256][ T6904] netlink: 12 bytes leftover after parsing attributes in process `syz.4.275'.
[   77.774155][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.778438][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.781171][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.787009][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.789814][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   77.915614][   T54] vhci_hcd: vhci_device speed not set
[   78.089340][ T5949] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   78.093587][ T5949] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   78.096949][ T5949] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   78.099806][ T5949] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   78.102512][ T5949] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   78.109466][ T6915] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[   78.234378][ T5936] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   78.406637][ T6907] chnl_net:caif_netlink_parms(): no params data found
[   78.414338][ T5936] usb 8-1: Using ep0 maxpacket: 8
[   78.425103][ T6839] bridge_slave_1: left allmulticast mode
[   78.427024][ T6839] bridge_slave_1: left promiscuous mode
[   78.429693][ T6839] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.432922][ T5936] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   78.436207][ T5936] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   78.439263][ T5936] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   78.442426][ T5936] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   78.455110][ T6839] bridge_slave_0: left allmulticast mode
[   78.460479][ T6839] bridge_slave_0: left promiscuous mode
[   78.465306][ T5936] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   78.465604][ T6839] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.469030][ T5936] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.651885][ T6923] netlink: 12 bytes leftover after parsing attributes in process `syz.4.280'.
[   78.694465][ T5936] usb 8-1: GET_CAPABILITIES returned 0
[   78.696287][ T5936] usbtmc 8-1:16.0: can't read capabilities
[   78.698340][ T5949] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   78.705746][ T5949] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   78.708833][ T5949] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   78.714397][ T5949] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   78.717025][ T5949] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   78.901590][    C1] usbtmc 8-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[   78.906200][ T5979] usb 8-1: USB disconnect, device number 2
[   79.043228][ T6839] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   79.048731][ T6839] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   79.053755][ T6839] bond0 (unregistering): Released all slaves
[   79.217397][   T40] kauditd_printk_skb: 153 callbacks suppressed
[   79.217409][   T40] audit: type=1804 audit(1748832683.317:166): pid=6934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.282" name="/newroot/27/file0" dev="tmpfs" ino=163 res=1 errno=0
[   79.246986][ T6907] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.250138][ T6907] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.253304][ T6907] bridge_slave_0: entered allmulticast mode
[   79.258309][ T6907] bridge_slave_0: entered promiscuous mode
[   79.261873][ T6907] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.264203][ T6907] bridge0: port 2(bridge_slave_1) entered disabled state
[   79.267385][ T6907] bridge_slave_1: entered allmulticast mode
[   79.270803][ T6907] bridge_slave_1: entered promiscuous mode
[   79.348854][ T6907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   79.390854][ T6907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   79.525171][ T6907] team0: Port device team_slave_0 added
[   79.528198][ T6946] netlink: 96 bytes leftover after parsing attributes in process `syz.4.285'.
[   79.561785][ T6839] hsr_slave_0: left promiscuous mode
[   79.574657][ T6839] hsr_slave_1: left promiscuous mode
[   79.577278][ T6839] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.584232][ T6839] batman_adv: batadv0: Removing interface: batadv_slave_1
[   79.711546][ T6953] loop6: detected capacity change from 0 to 524287999
[   79.834981][ T5949] Bluetooth: hci0: command tx timeout
[   80.301610][ T6970] netlink: 12 bytes leftover after parsing attributes in process `syz.3.296'.
[   80.359245][ T6972] netlink: 4 bytes leftover after parsing attributes in process `syz.3.296'.
[   80.516158][ T6839] team0 (unregistering): Port device team_slave_1 removed
[   80.578701][ T6839] team0 (unregistering): Port device team_slave_0 removed
[   80.784517][ T5949] Bluetooth: hci2: command tx timeout
[   80.995259][ T6907] team0: Port device team_slave_1 added
[   81.020845][ T6970] 8021q: adding VLAN 0 to HW filter on device bond1
[   81.077788][ T6972] bond1 (unregistering): Released all slaves
[   81.111515][   T53] cfg80211: failed to load regulatory.db
[   81.127288][ T6907] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.130520][ T6907] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.138979][ T6907] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.157169][ T6907] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.159361][ T6907] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.167469][ T6907] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.258420][ T6907] hsr_slave_0: entered promiscuous mode
[   81.260846][ T6907] hsr_slave_1: entered promiscuous mode
[   81.330896][ T6924] chnl_net:caif_netlink_parms(): no params data found
[   81.459584][ T7000] loop6: detected capacity change from 0 to 524287999
[   81.600648][ T6924] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.602933][ T6924] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.610203][ T6924] bridge_slave_0: entered allmulticast mode
[   81.613860][ T6924] bridge_slave_0: entered promiscuous mode
[   81.638497][ T6924] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.641270][ T6924] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.643624][ T6924] bridge_slave_1: entered allmulticast mode
[   81.654007][ T6924] bridge_slave_1: entered promiscuous mode
[   81.727738][ T6924] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.732719][ T6924] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.762639][ T6907] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   81.784192][ T6924] team0: Port device team_slave_0 added
[   81.786430][ T6907] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   81.793143][ T6924] team0: Port device team_slave_1 added
[   81.812415][ T6907] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   81.855894][ T6924] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.858105][ T6924] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.866202][ T6924] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.874038][ T6907] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   81.882018][ T6924] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.884172][ T6924] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.892231][ T6924] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.904674][ T5949] Bluetooth: hci0: command tx timeout
[   81.915514][ T6839] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.961525][ T6924] hsr_slave_0: entered promiscuous mode
[   81.963764][ T6924] hsr_slave_1: entered promiscuous mode
[   81.966048][ T6924] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   81.968397][ T6924] Cannot create hsr debugfs directory
[   81.999650][ T6839] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.091572][ T6839] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.131286][ T6924] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   82.135661][ T6924] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   82.144679][ T6924] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   82.148756][ T6924] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   82.166226][ T6839] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   82.181932][ T6907] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.199448][ T6907] 8021q: adding VLAN 0 to HW filter on device team0
[   82.209167][ T6880] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.211432][ T6880] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.214892][ T6880] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.217291][ T6880] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.259919][ T6907] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   82.277398][ T6924] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.312975][ T6924] 8021q: adding VLAN 0 to HW filter on device team0
[   82.319826][ T6864] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.322161][ T6864] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.330277][ T6845] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.332834][ T6845] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.355577][ T6839] bridge_slave_1: left allmulticast mode
[   82.357420][ T6839] bridge_slave_1: left promiscuous mode
[   82.359298][ T6839] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.381027][ T6839] bridge_slave_0: left allmulticast mode
[   82.382831][ T6839] bridge_slave_0: left promiscuous mode
[   82.392136][ T6839] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.750491][ T6839] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   82.755182][ T6839] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   82.758387][ T6839] bond0 (unregistering): Released all slaves
[   82.823716][ T6907] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.864999][ T5949] Bluetooth: hci2: command tx timeout
[   82.886467][ T6924] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.949604][ T6907] veth0_vlan: entered promiscuous mode
[   82.962107][ T6907] veth1_vlan: entered promiscuous mode
[   82.984022][ T6839] hsr_slave_0: left promiscuous mode
[   82.986805][ T6839] hsr_slave_1: left promiscuous mode
[   82.989658][ T6839] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   82.992817][ T6839] batman_adv: batadv0: Removing interface: batadv_slave_0
[   82.997381][ T6839] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   82.999715][ T6839] batman_adv: batadv0: Removing interface: batadv_slave_1
[   83.017798][ T6839] veth1_macvtap: left promiscuous mode
[   83.019580][ T6839] veth0_macvtap: left promiscuous mode
[   83.021351][ T6839] veth1_vlan: left promiscuous mode
[   83.023006][ T6839] veth0_vlan: left promiscuous mode
[   83.617360][ T6839] team0 (unregistering): Port device team_slave_1 removed
[   83.624523][ T1020] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   83.679505][ T6839] team0 (unregistering): Port device team_slave_0 removed
[   83.784434][ T1020] usb 9-1: Using ep0 maxpacket: 8
[   83.787512][ T1020] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   83.790562][ T1020] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   83.793682][ T1020] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   83.797008][ T1020] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   83.801030][ T1020] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   83.803981][ T1020] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.994407][ T5949] Bluetooth: hci0: command tx timeout
[   84.016033][ T1020] usb 9-1: GET_CAPABILITIES returned 0
[   84.018255][ T1020] usbtmc 9-1:16.0: can't read capabilities
[   84.132798][ T6907] veth0_macvtap: entered promiscuous mode
[   84.138266][ T6907] veth1_macvtap: entered promiscuous mode
[   84.155610][ T6907] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.166027][ T6907] batman_adv: batadv0: Interface activated: batadv_slave_1
[   84.171270][ T6907] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.174056][ T6907] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.177921][ T6907] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.180925][ T6907] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.223051][    C3] usbtmc 9-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[   84.232457][   T34] usb 9-1: USB disconnect, device number 2
[   84.241673][ T6924] veth0_vlan: entered promiscuous mode
[   84.253358][ T6924] veth1_vlan: entered promiscuous mode
[   84.287069][ T6856] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.289677][ T6856] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.291398][ T6924] veth0_macvtap: entered promiscuous mode
[   84.337433][ T6924] veth1_macvtap: entered promiscuous mode
[   84.341737][ T6879] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.344215][ T6879] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.357183][ T6924] batman_adv: batadv0: Interface activated: batadv_slave_0
[   84.364039][ T6924] batman_adv: batadv0: Interface activated: batadv_slave_1
[   84.371963][ T6924] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   84.376330][ T6924] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   84.379611][ T6924] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   84.383146][ T6924] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   84.447921][ T6845] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.450939][ T6845] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.467570][ T6879] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   84.470777][ T6879] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   84.945375][ T5950] Bluetooth: hci2: command tx timeout
[   85.339315][   T40] audit: type=1804 audit(1748832689.437:167): pid=7134 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.317" name="/newroot/92/file0" dev="tmpfs" ino=534 res=1 errno=0
[   85.621635][ T7160] loop6: detected capacity change from 0 to 524287999
[   86.074456][ T5950] Bluetooth: hci0: command tx timeout
[   86.359808][ T7193] netlink: 12 bytes leftover after parsing attributes in process `syz.6.315'.
[   86.713823][ T7222] loop6: detected capacity change from 0 to 524287999
[   86.876761][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   86.898574][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   87.029667][ T5950] Bluetooth: hci2: command tx timeout
[   89.076808][ T7268] loop6: detected capacity change from 0 to 524287999
[   91.472280][ T7303] loop6: detected capacity change from 0 to 524287999
[   91.837483][ T7306] overlayfs: upper fs does not support file handles, falling back to index=off.
[   92.900963][ T7334] loop6: detected capacity change from 0 to 524287999
[   93.346939][    C1] IPv4: Oversized IP packet from 172.20.20.24
[   93.748337][ T7355] overlayfs: failed to clone upperpath
[   94.008846][ T7357] tipc: Started in network mode
[   94.011206][ T7357] tipc: Node identity ac141425, cluster identity 4711
[   94.014814][ T7357] tipc: New replicast peer: 0.0.0.0
[   94.020065][ T7357] tipc: Enabled bearer <udp:syz2>, priority 10
[   94.022466][ T7358] tipc: New replicast peer: 10.1.1.0
[   94.110759][ T7365] loop6: detected capacity change from 0 to 524287999
[   95.145441][   T34] tipc: Node number set to 2886997029
[   95.214408][ T6150] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[   95.365546][ T6150] usb 9-1: Using ep0 maxpacket: 8
[   95.374472][ T6150] usb 9-1: config 0 has no interfaces?
[   95.376830][ T6150] usb 9-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[   95.380518][ T6150] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.395330][ T6150] usb 9-1: config 0 descriptor??
[   95.786374][   T53] usb 9-1: USB disconnect, device number 3
[   95.793641][ T7394] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(4)
[   95.796065][ T7394] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   95.799622][ T7394] vhci_hcd vhci_hcd.0: Device attached
[   95.807465][ T7394] vhci_hcd vhci_hcd.0: pdev(6) rhport(1) sockfd(6)
[   95.809593][ T7394] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[   95.814530][ T7394] vhci_hcd vhci_hcd.0: Device attached
[   95.818784][ T7394] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   95.822174][ T7394] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[   95.828314][ T7397] vhci_hcd: connection closed
[   95.828515][ T7395] vhci_hcd: connection closed
[   95.828715][  T226] vhci_hcd: stop threads
[   95.833068][  T226] vhci_hcd: release socket
[   95.835285][  T226] vhci_hcd: disconnect device
[   95.837897][  T226] vhci_hcd: stop threads
[   95.839345][  T226] vhci_hcd: release socket
[   95.840853][  T226] vhci_hcd: disconnect device
[   96.392374][ T7411] netlink: 4 bytes leftover after parsing attributes in process `syz.6.387'.
[   96.399336][ T7411] netlink: 12 bytes leftover after parsing attributes in process `syz.6.387'.
[   97.398601][ T7424] netlink: 'syz.4.393': attribute type 12 has an invalid length.
[   97.745677][   T53] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[   97.905789][   T53] usb 11-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   97.908685][   T53] usb 11-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   97.911931][   T53] usb 11-1: config 1 has 1 interface, different from the descriptor's value: 66
[   97.914881][   T53] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[   97.918906][   T53] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[   97.923939][   T53] usb 11-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   97.926939][   T53] usb 11-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   97.929621][   T53] usb 11-1: Product: syz
[   97.931017][   T53] usb 11-1: Manufacturer: syz
[   97.937548][   T53] cdc_wdm 11-1:1.0: skipping garbage
[   97.939728][   T53] cdc_wdm 11-1:1.0: skipping garbage
[   97.942989][   T53] cdc_wdm 11-1:1.0: cdc-wdm0: USB WDM device
[   97.945055][   T53] cdc_wdm 11-1:1.0: Unknown control protocol
[   97.984506][    T9] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[   98.134486][    T9] usb 9-1: Using ep0 maxpacket: 8
[   98.141818][    T9] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   98.145440][    T9] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   98.148601][    T9] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   98.151842][    T9] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   98.157111][    T9] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   98.160623][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   98.371750][    T9] usb 9-1: GET_CAPABILITIES returned 0
[   98.375275][    T9] usbtmc 9-1:16.0: can't read capabilities
[   98.409270][ T6150] usb 11-1: USB disconnect, device number 2
[   98.575962][ T5979] usb 9-1: USB disconnect, device number 4
[   98.800980][ T6901] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.869476][ T6901] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.966438][ T6901] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.034498][ T6901] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.043909][ T5949] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   99.047820][ T5949] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   99.050465][ T5949] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   99.054010][ T5949] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   99.057989][ T5949] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   99.218774][ T6901] bridge_slave_1: left allmulticast mode
[   99.220770][ T6901] bridge_slave_1: left promiscuous mode
[   99.222636][ T6901] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.228031][ T6901] bridge_slave_0: left allmulticast mode
[   99.229909][ T6901] bridge_slave_0: left promiscuous mode
[   99.231963][ T6901] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.460203][ T6901] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   99.468268][ T6901] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   99.472888][ T6901] bond0 (unregistering): Released all slaves
[   99.489070][ T7467] chnl_net:caif_netlink_parms(): no params data found
[   99.601963][ T7467] bridge0: port 1(bridge_slave_0) entered blocking state
[   99.605859][ T7467] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.608464][ T7467] bridge_slave_0: entered allmulticast mode
[   99.611683][ T7467] bridge_slave_0: entered promiscuous mode
[   99.616977][ T7467] bridge0: port 2(bridge_slave_1) entered blocking state
[   99.619990][ T7467] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.623333][ T7467] bridge_slave_1: entered allmulticast mode
[   99.627673][ T7467] bridge_slave_1: entered promiscuous mode
[   99.675493][ T7467] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   99.690917][ T7467] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   99.728869][ T7467] team0: Port device team_slave_0 added
[   99.733507][ T7467] team0: Port device team_slave_1 added
[   99.774126][ T7467] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.778440][ T7467] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.786623][ T7467] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.802779][ T6901] hsr_slave_0: left promiscuous mode
[   99.805630][ T6901] hsr_slave_1: left promiscuous mode
[   99.807789][ T6901] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   99.810227][ T6901] batman_adv: batadv0: Removing interface: batadv_slave_0
[   99.813504][ T6901] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   99.815937][ T6901] batman_adv: batadv0: Removing interface: batadv_slave_1
[   99.830819][ T6901] veth1_macvtap: left promiscuous mode
[   99.832653][ T6901] veth0_macvtap: left promiscuous mode
[   99.836689][ T6901] veth1_vlan: left promiscuous mode
[   99.838598][ T6901] veth0_vlan: left promiscuous mode
[   99.907911][ T5950] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[   99.910811][ T5950] Bluetooth: hci2: Injecting HCI hardware error event
[   99.918606][ T5950] Bluetooth: hci2: hardware error 0x00
[  100.366567][ T6901] team0 (unregistering): Port device team_slave_1 removed
[  100.421316][ T6901] team0 (unregistering): Port device team_slave_0 removed
[  100.857551][ T7467] batman_adv: batadv0: Adding interface: batadv_slave_1
[  100.860467][ T7467] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  100.869809][ T7467] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  100.957250][ T7467] hsr_slave_0: entered promiscuous mode
[  100.959848][ T7467] hsr_slave_1: entered promiscuous mode
[  101.108564][ T7467] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  101.109373][ T5949] Bluetooth: hci0: command tx timeout
[  101.115489][ T7467] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  101.120478][ T7467] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  101.125419][ T7467] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  101.171534][ T7467] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.182333][ T7467] 8021q: adding VLAN 0 to HW filter on device team0
[  101.191912][ T6845] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.195492][ T6845] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.203789][ T6839] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.206750][ T6839] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.344098][ T7467] 8021q: adding VLAN 0 to HW filter on device batadv0
[  101.515657][ T7467] veth0_vlan: entered promiscuous mode
[  101.521665][ T7467] veth1_vlan: entered promiscuous mode
[  101.542206][ T7467] veth0_macvtap: entered promiscuous mode
[  101.547081][ T7467] veth1_macvtap: entered promiscuous mode
[  101.556413][ T7467] batman_adv: batadv0: Interface activated: batadv_slave_0
[  101.562477][ T7467] batman_adv: batadv0: Interface activated: batadv_slave_1
[  101.568029][ T7467] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.570788][ T7467] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.573518][ T7467] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.576649][ T7467] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.632979][ T6839] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.637004][ T6839] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.653978][ T6845] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.656892][ T7540] infiniband syz1: set active
[  101.659508][ T6845] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.660585][ T7540] infiniband syz1: added syz_tun
[  101.692332][ T7540] RDS/IB: syz1: added
[  101.693977][ T7540] smc: adding ib device syz1 with port count 1
[  101.696177][ T7540] smc:    ib device syz1 port 1 has pnetid 
[  101.984533][ T5950] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  102.205756][ T7571] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  102.208057][ T7571] overlayfs: failed to set xattr on upper
[  102.210110][ T7571] overlayfs: ...falling back to redirect_dir=nofollow.
[  102.212470][ T7571] overlayfs: ...falling back to index=off.
[  102.214272][ T7571] overlayfs: ...falling back to uuid=null.
[  102.278292][ T7573] overlayfs: failed to clone upperpath
[  102.381069][ T7582] netlink: 12 bytes leftover after parsing attributes in process `syz.4.447'.
[  102.893275][ T5950] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[  102.897154][ T5950] CPU: 0 UID: 0 PID: 5950 Comm: kworker/u33:6 Not tainted 6.15.0-syzkaller-10820-gcd2e103d57e5 #0 PREEMPT(full) 
[  102.897205][ T5950] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  102.897219][ T5950] Workqueue: hci0 hci_rx_work
[  102.897271][ T5950] Call Trace:
[  102.897277][ T5950]  <TASK>
[  102.897284][ T5950]  dump_stack_lvl+0x16c/0x1f0
[  102.897311][ T5950]  sysfs_warn_dup+0x7f/0xa0
[  102.897331][ T5950]  sysfs_create_dir_ns+0x24b/0x2b0
[  102.897350][ T5950]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  102.897368][ T5950]  ? find_held_lock+0x2b/0x80
[  102.897397][ T5950]  ? do_raw_spin_unlock+0x172/0x230
[  102.897419][ T5950]  kobject_add_internal+0x2c4/0x9b0
[  102.897450][ T5950]  kobject_add+0x16e/0x240
[  102.897474][ T5950]  ? __pfx_kobject_add+0x10/0x10
[  102.897500][ T5950]  ? do_raw_spin_unlock+0x172/0x230
[  102.897522][ T5950]  ? kobject_put+0xab/0x5a0
[  102.897564][ T5950]  device_add+0x288/0x1a70
[  102.897593][ T5950]  ? __pfx_dev_set_name+0x10/0x10
[  102.897619][ T5950]  ? __pfx_device_add+0x10/0x10
[  102.897640][ T5950]  ? mgmt_send_event_skb+0x2fb/0x460
[  102.897675][ T5950]  hci_conn_add_sysfs+0x17e/0x230
[  102.897705][ T5950]  le_conn_complete_evt+0x1075/0x1d70
[  102.897739][ T5950]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  102.897763][ T5950]  ? hci_event_packet+0x459/0x11c0
[  102.897797][ T5950]  hci_le_conn_complete_evt+0x23c/0x370
[  102.897829][ T5950]  hci_le_meta_evt+0x357/0x5e0
[  102.897854][ T5950]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  102.897884][ T5950]  hci_event_packet+0x682/0x11c0
[  102.897909][ T5950]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  102.897936][ T5950]  ? __pfx_hci_event_packet+0x10/0x10
[  102.897964][ T5950]  ? kcov_remote_start+0x3c9/0x6d0
[  102.897986][ T5950]  ? lockdep_hardirqs_on+0x7c/0x110
[  102.898017][ T5950]  hci_rx_work+0x2c5/0x16b0
[  102.898045][ T5950]  ? rcu_is_watching+0x12/0xc0
[  102.898075][ T5950]  process_one_work+0x9cf/0x1b70
[  102.898112][ T5950]  ? __pfx_process_one_work+0x10/0x10
[  102.898144][ T5950]  ? assign_work+0x1a0/0x250
[  102.898184][ T5950]  worker_thread+0x6c8/0xf10
[  102.898224][ T5950]  ? __pfx_worker_thread+0x10/0x10
[  102.898248][ T5950]  kthread+0x3c2/0x780
[  102.898270][ T5950]  ? __pfx_kthread+0x10/0x10
[  102.898293][ T5950]  ? rcu_is_watching+0x12/0xc0
[  102.898318][ T5950]  ? __pfx_kthread+0x10/0x10
[  102.898340][ T5950]  ret_from_fork+0x5d4/0x6f0
[  102.898358][ T5950]  ? __pfx_kthread+0x10/0x10
[  102.898379][ T5950]  ret_from_fork_asm+0x1a/0x30
[  102.898412][ T5950]  </TASK>
[  102.898735][ T5950] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  102.997395][ T5950] Bluetooth: hci0: failed to register connection device
[  103.059812][ T7605] kvm: pic: non byte read
[  103.063095][ T7605] kvm: pic: non byte read
[  103.067013][ T7605] kvm: pic: non byte read
[  103.070056][ T7605] kvm: pic: non byte read
[  103.072655][ T7605] kvm: pic: non byte read
[  103.075538][ T7605] kvm: pic: level sensitive irq not supported
[  103.075774][ T7605] kvm: pic: non byte read
[  103.080318][ T7605] kvm: pic: non byte read
[  103.082916][ T7605] kvm: pic: non byte read
[  103.085988][ T7605] kvm: pic: non byte read
[  103.166625][ T7608] netlink: 24 bytes leftover after parsing attributes in process `syz.6.456'.
[  103.193116][ T7608] netlink: 4 bytes leftover after parsing attributes in process `syz.6.456'.
[  103.194479][ T5950] Bluetooth: hci0: command tx timeout
[  103.517945][ T5978] usb 12-1: new high-speed USB device number 2 using dummy_hcd
[  103.571488][ T7625] netlink: 24 bytes leftover after parsing attributes in process `syz.4.462'.
[  103.600283][ T7625] netlink: 4 bytes leftover after parsing attributes in process `syz.4.462'.
[  103.694568][ T5978] usb 12-1: Using ep0 maxpacket: 32
[  103.703999][ T5978] usb 12-1: config 0 has an invalid interface number: 247 but max is 0
[  103.707088][ T5978] usb 12-1: config 0 has no interface number 0
[  103.710291][ T5978] usb 12-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  103.713161][ T5978] usb 12-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  103.715989][ T5978] usb 12-1: Product: syz
[  103.717459][ T5978] usb 12-1: Manufacturer: syz
[  103.720239][ T5978] usb 12-1: config 0 descriptor??
[  104.147788][ T7633] netlink: 'syz.3.464': attribute type 4 has an invalid length.
[  104.401212][ T7642] syz_tun: entered allmulticast mode
[  104.409795][ T7641] syz_tun: left allmulticast mode
[  104.664394][ T7651] bridge_slave_0: left allmulticast mode
[  104.666636][ T7651] bridge_slave_0: left promiscuous mode
[  104.668828][ T7651] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.678299][ T7651] bridge_slave_1: left allmulticast mode
[  104.680477][ T7651] bridge_slave_1: left promiscuous mode
[  104.682742][ T7651] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.698084][ T7651] bond0: (slave bond_slave_0): Releasing backup interface
[  104.708106][ T7651] bond0: (slave bond_slave_1): Releasing backup interface
[  104.726712][ T7651] team0: Port device team_slave_0 removed
[  104.738434][ T7651] team0: Port device team_slave_1 removed
[  104.741365][ T7651] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.743961][ T7651] batman_adv: batadv0: Removing interface: batadv_slave_0
[  104.749462][ T7651] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  104.752105][ T7651] batman_adv: batadv0: Removing interface: batadv_slave_1
[  104.776510][ T7652] team0: Mode changed to "broadcast"
[  105.026920][ T2287] usb 12-1: USB disconnect, device number 2
[  105.264685][ T5950] Bluetooth: hci0: command tx timeout
[  105.460261][ T7663] overlayfs: failed to clone upperpath
[  105.463667][ T7665] netlink: 12 bytes leftover after parsing attributes in process `syz.6.475'.
[  105.702924][ T7680] netlink: 12 bytes leftover after parsing attributes in process `syz.4.481'.
[  105.723722][ T7680] netlink: 'syz.4.481': attribute type 2 has an invalid length.
[  105.763871][ T7682] netlink: 'syz.4.482': attribute type 27 has an invalid length.
[  105.877458][ T7682] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.880420][ T7682] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.883258][ T7682] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.886237][ T7682] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  105.901734][   T34] syz1: Port: 1 Link DOWN
[  105.917015][ T7683] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.919740][ T7683] 8021q: adding VLAN 0 to HW filter on device team0
[  105.923580][ T7683] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  105.931697][   T53] syz1: Port: 1 Link ACTIVE
[  106.141551][ T7689] netlink: 'syz.4.484': attribute type 33 has an invalid length.
[  106.146386][ T7689] netlink: 152 bytes leftover after parsing attributes in process `syz.4.484'.
[  106.153071][ T7689] netlink: 4 bytes leftover after parsing attributes in process `syz.4.484'.
[  106.512689][ T7704] netlink: 4 bytes leftover after parsing attributes in process `syz.6.491'.
[  106.655514][ T7707] netlink: 'syz.6.492': attribute type 2 has an invalid length.
[  106.682776][ T5978] usb 12-1: new high-speed USB device number 3 using dummy_hcd
[  106.760384][ T7711] netlink: 'syz.6.494': attribute type 27 has an invalid length.
[  106.790599][ T7711] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.793835][ T7711] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.845184][ T5978] usb 12-1: Using ep0 maxpacket: 8
[  106.849211][ T5978] usb 12-1: config 0 has no interfaces?
[  106.851659][ T5978] usb 12-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  106.855464][ T5978] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.856707][ T7711] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  106.860271][ T5978] usb 12-1: config 0 descriptor??
[  106.867672][ T7711] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  106.909404][ T7711] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  106.913028][ T7711] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  106.916795][ T7711] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  106.920354][ T7711] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  106.964165][ T7712] 8021q: adding VLAN 0 to HW filter on device bond0
[  106.969359][ T7712] 8021q: adding VLAN 0 to HW filter on device team0
[  106.975427][ T7712] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  107.344571][ T5950] Bluetooth: hci0: command tx timeout
[  107.555589][ T5936] usb 12-1: USB disconnect, device number 3
[  108.265860][ T7753] netlink: 'syz.3.508': attribute type 27 has an invalid length.
[  108.291309][ T7753] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.293826][ T7753] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.317191][ T7753] veth0: left promiscuous mode
[  108.355999][ T7753] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  108.362368][ T7753] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  108.451460][ T7753] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.454677][ T7753] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.458151][ T7753] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.460907][ T7753] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  108.504472][ T5936] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[  108.514110][ T7756] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.518442][ T7756] 8021q: adding VLAN 0 to HW filter on device team0
[  108.522340][ T7756] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  108.655580][ T5936] usb 11-1: Using ep0 maxpacket: 32
[  108.660892][ T5936] usb 11-1: New USB device found, idVendor=084f, idProduct=0001, bcdDevice=e0.b8
[  108.663835][ T5936] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.666663][ T5936] usb 11-1: Product: syz
[  108.668194][ T5936] usb 11-1: Manufacturer: syz
[  108.669724][ T5936] usb 11-1: SerialNumber: syz
[  108.673365][ T5936] usb 11-1: config 0 descriptor??
[  108.677780][ T5936] empeg 11-1:0.0: empeg converter detected
[  108.680008][ T5936] usb 11-1: active config #0 != 1 ??
[  108.976984][ T5936] usb 11-1: USB disconnect, device number 3
[  109.855321][ T1020] syz1: Port: 1 Link DOWN
[  110.123314][ T7821] overlayfs: failed to clone upperpath
[  110.173483][    T9] IPVS: starting estimator thread 0...
[  110.174884][ T7824] IPVS: wrr: FWM 3 0x00000003 - no destination available
[  110.284487][ T7825] IPVS: using max 42 ests per chain, 100800 per kthread
[  110.284572][ T5979] usb 12-1: new high-speed USB device number 4 using dummy_hcd
[  110.464382][ T5979] usb 12-1: Using ep0 maxpacket: 8
[  110.468510][ T5979] usb 12-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  110.473527][ T5979] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  110.476751][ T5979] usb 12-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  110.480018][ T5979] usb 12-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  110.484169][ T5979] usb 12-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  110.487982][ T5979] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.714400][ T5979] usb 12-1: GET_CAPABILITIES returned 0
[  110.716292][ T5979] usbtmc 12-1:16.0: can't read capabilities
[  110.877001][ T7838] overlayfs: failed to clone upperpath
[  110.920130][    C1] usbtmc 12-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  110.925692][   T55] usb 12-1: USB disconnect, device number 4
[  111.497472][ T7870] overlayfs: failed to clone upperpath
[  111.505919][ T7868] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.508417][ T7868] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.563141][ T7868] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  111.571938][ T7868] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  111.619803][ T7868] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  111.622656][ T7868] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  111.626296][ T7868] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  111.629231][ T7868] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  111.788134][   T40] audit: type=1804 audit(1748832715.887:168): pid=7880 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.560" name="/newroot/61/file0" dev="tmpfs" ino=355 res=1 errno=0
[  111.788673][ T7880] ref_ctr increment failed for inode: 0x163 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88804cfa8ac0
[  111.804232][ T7879] uprobe: syz.6.560:7879 failed to unregister, leaking uprobe
[  112.003786][ T7891] =======================================================
[  112.003786][ T7891] WARNING: The mand mount option has been deprecated and
[  112.003786][ T7891]          and is ignored by this kernel. Remove the mand
[  112.003786][ T7891]          option from the mount to silence this warning.
[  112.003786][ T7891] =======================================================
[  112.022050][ T7891] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  112.647908][ T7917] netlink: 'syz.7.575': attribute type 1 has an invalid length.
[  112.662355][ T7917] 8021q: adding VLAN 0 to HW filter on device bond1
[  112.676748][ T7917] 8021q: adding VLAN 0 to HW filter on device bond1
[  112.679313][ T7917] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  112.683585][ T7917] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  112.720673][ T7921] erspan0: entered allmulticast mode
[  112.726389][ T7921] bond1: (slave erspan0): making interface the new active one
[  112.729266][ T7921] bond1: (slave erspan0): Enslaving as an active interface with an up link
[  112.767608][ T7923] binder: BINDER_SET_CONTEXT_MGR already set
[  112.769918][ T7923] binder: 7922:7923 ioctl 4018620d 80000040 returned -16
[  113.086414][ T7936] block nbd0: server does not support multiple connections per device.
[  113.105926][ T7936] block nbd0: shutting down sockets
[  113.144809][ T7945] __nla_validate_parse: 1 callbacks suppressed
[  113.144826][ T7945] netlink: 12 bytes leftover after parsing attributes in process `syz.3.586'.
[  113.162653][ T7945] sch_tbf: burst 129 is lower than device bridge2 mtu (1514) !
[  113.274520][   T34] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  113.299331][ T7957] netlink: 12 bytes leftover after parsing attributes in process `syz.6.591'.
[  113.436271][   T34] usb 9-1: Using ep0 maxpacket: 8
[  113.442757][   T34] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  113.447330][   T34] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  113.450912][   T34] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  113.473424][   T34] usb 9-1: config 0 descriptor??
[  113.683718][   T34] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  113.892315][    T9] usb 9-1: USB disconnect, device number 5
[  113.894771][    C0] iowarrior 9-1:0.0: iowarrior_callback - usb_submit_urb failed with result -19
[  114.634468][ T5978] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  114.784794][ T5978] usb 11-1: Using ep0 maxpacket: 16
[  114.786953][ T5978] usb 11-1: too many configurations: 123, using maximum allowed: 8
[  114.790643][ T5978] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  114.794929][ T5978] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  114.799403][ T5978] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  114.803139][ T5978] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  114.807257][ T5978] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  114.811589][ T5978] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  114.815848][ T5978] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  114.819802][ T5978] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  114.824019][ T5978] usb 11-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  114.827588][ T5978] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=45
[  114.830261][ T5978] usb 11-1: SerialNumber: syz
[  114.837615][ T5978] usb 11-1: config 0 descriptor??
[  114.842489][ T5978] input: bcm5974 as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/input/input6
[  115.058918][ T5333] bcm5974 11-1:0.0: could not read from device
[  115.059961][ T2287] usb 11-1: USB disconnect, device number 4
[  115.065362][ T5944] bcm5974 11-1:0.0: could not read from device
[  116.184548][ T8023] netdevsim netdevsim3: Direct firmware load for @ failed with error -2
[  116.187993][ T8023] netdevsim netdevsim3: Falling back to sysfs fallback for: @
[  116.230483][ T8025] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  116.970203][ T8040] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  117.148741][ T8048] device ioctl magic numbers don't match! Did you rebuild pvfs2-client-core/libpvfs2? [cmd 89f3, magic 89 != 6b]
[  117.203067][ T8052] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  118.153903][ T8071] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(5)
[  118.156767][ T8071] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  118.160394][ T8071] vhci_hcd vhci_hcd.0: Device attached
[  118.170472][ T8071] netdevsim netdevsim6: Direct firmware load for @ failed with error -2
[  118.173636][ T8071] netdevsim netdevsim6: Falling back to sysfs fallback for: @
[  118.394475][ T2287] usb 49-1: new low-speed USB device number 2 using vhci_hcd
[  118.978704][ T8072] vhci_hcd: connection reset by peer
[  118.981292][ T6839] vhci_hcd: stop threads
[  118.983105][ T6839] vhci_hcd: release socket
[  118.985205][ T6839] vhci_hcd: disconnect device
[  120.454941][ T8116] binder_alloc: 8115: binder_alloc_buf size -296 failed, no address space
[  120.458686][ T8116] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 4096 (num: 1 largest: 4096)
[  122.682817][ T8124] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(5)
[  122.685067][ T8124] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  122.687955][ T8124] vhci_hcd vhci_hcd.0: Device attached
[  122.694093][ T8124] netdevsim netdevsim7: Direct firmware load for @ failed with error -2
[  122.698771][ T8124] netdevsim netdevsim7: Falling back to sysfs fallback for: @
[  122.934422][ T5979] usb 51-1: new low-speed USB device number 2 using vhci_hcd
[  123.504556][ T2287] vhci_hcd: vhci_device speed not set
[  123.526641][ T8125] vhci_hcd: connection reset by peer
[  123.530795][ T6866] vhci_hcd: stop threads
[  123.532674][ T6866] vhci_hcd: release socket
[  123.534880][ T6866] vhci_hcd: disconnect device
[  124.942415][ T8154] binder_alloc: 8153: binder_alloc_buf size -296 failed, no address space
[  124.945244][ T8154] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 4096 (num: 1 largest: 4096)
[  124.989729][ T2287] libceph: connect (1)[c::]:6789 error -101
[  124.993883][ T2287] libceph: mon0 (1)[c::]:6789 connect error
[  125.134603][ T8156] ceph: No mds server is up or the cluster is laggy
[  125.280229][ T8185] netlink: 8 bytes leftover after parsing attributes in process `syz.7.669'.
[  125.446272][ T8187] bridge3: entered promiscuous mode
[  125.549929][   T34] libceph: connect (1)[c::]:6789 error -101
[  125.551995][   T34] libceph: mon0 (1)[c::]:6789 connect error
[  125.700230][ T8199] ceph: No mds server is up or the cluster is laggy
[  126.152022][ T8212] macsec0: entered promiscuous mode
[  126.153717][ T8212] macsec0: entered allmulticast mode
[  126.156452][ T8212] veth1_macvtap: entered allmulticast mode
[  126.158302][ T8212] macsec0: left promiscuous mode
[  126.159946][ T8212] macsec0: left allmulticast mode
[  126.161539][ T8212] veth1_macvtap: left allmulticast mode
[  126.168498][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.171525][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.174516][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.177619][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.179952][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.182266][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.184955][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.187538][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.190623][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.193631][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.198457][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.201100][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.204125][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.206708][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.209207][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.211427][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.214183][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.216737][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.219768][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.222589][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.228013][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.231441][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.233842][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.236258][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.239127][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.241401][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.243672][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.246058][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.248631][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.250967][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.254022][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.257165][   T34] hid-generic 0001:0000:0000.0004: unknown main item tag 0x0
[  126.263966][   T34] hid-generic 0001:0000:0000.0004: hidraw1: <UNKNOWN> HID vffffff.ff Device [syz0] on syz0
[  126.414612][ T5978] usb 11-1: new high-speed USB device number 5 using dummy_hcd
[  126.442436][ T8223] netlink: 8 bytes leftover after parsing attributes in process `syz.4.682'.
[  126.566698][ T5978] usb 11-1: config 0 has no interfaces?
[  126.569082][ T5978] usb 11-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[  126.572890][ T5978] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.578442][ T5978] usb 11-1: config 0 descriptor??
[  126.603987][ T8225] bridge1: entered promiscuous mode
[  126.955813][   T55] usb 11-1: USB disconnect, device number 5
[  127.197809][ T8253] netlink: 12 bytes leftover after parsing attributes in process `syz.4.693'.
[  127.644941][ T8259] bridge4: entered promiscuous mode
[  128.054388][ T5979] vhci_hcd: vhci_device speed not set
[  131.328133][ T8317] netlink: zone id is out of range
[  131.330387][ T8317] netlink: zone id is out of range
[  131.332627][ T8317] netlink: zone id is out of range
[  131.335021][ T8317] netlink: zone id is out of range
[  131.338421][ T8317] netlink: del zone limit has 4 unknown bytes
[  131.544412][ T8321] serio: Serial port ptm0
[  132.307732][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  132.309998][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  132.909663][ T8339] macsec0: entered promiscuous mode
[  132.911392][ T8339] macsec0: entered allmulticast mode
[  132.913884][ T8339] veth1_macvtap: entered allmulticast mode
[  132.916165][ T8339] macsec0: left promiscuous mode
[  132.918146][ T8339] macsec0: left allmulticast mode
[  132.919799][ T8339] veth1_macvtap: left allmulticast mode
[  144.727836][ T5949] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  144.731705][ T5949] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  144.735918][ T5949] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  144.739634][ T5949] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  144.744966][ T5949] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  145.041152][ T8350] chnl_net:caif_netlink_parms(): no params data found
[  145.134552][ T6839] bridge_slave_1: left allmulticast mode
[  145.136413][ T6839] bridge_slave_1: left promiscuous mode
[  145.138272][ T6839] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.141571][ T6839] bridge_slave_0: left allmulticast mode
[  145.143478][ T6839] bridge_slave_0: left promiscuous mode
[  145.145806][ T6839] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.567370][ T6839] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  145.571056][ T6839] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  145.574219][ T6839] bond0 (unregistering): Released all slaves
[  145.595140][ T8350] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.597496][ T8350] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.599803][ T8350] bridge_slave_0: entered allmulticast mode
[  145.602437][ T8350] bridge_slave_0: entered promiscuous mode
[  145.607102][ T8350] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.609396][ T8350] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.611663][ T8350] bridge_slave_1: entered allmulticast mode
[  145.614420][ T8350] bridge_slave_1: entered promiscuous mode
[  145.650964][ T8350] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  145.655648][ T8350] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  145.724453][ T8350] team0: Port device team_slave_0 added
[  145.729656][ T8350] team0: Port device team_slave_1 added
[  145.785456][ T8350] batman_adv: batadv0: Adding interface: batadv_slave_0
[  145.787669][ T8350] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.797321][ T8350] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  145.802721][ T8350] batman_adv: batadv0: Adding interface: batadv_slave_1
[  145.804997][ T8350] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  145.812832][ T8350] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  145.865275][ T8350] hsr_slave_0: entered promiscuous mode
[  145.867580][ T8350] hsr_slave_1: entered promiscuous mode
[  145.869743][ T8350] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  145.872126][ T8350] Cannot create hsr debugfs directory
[  145.983977][ T6839] hsr_slave_0: left promiscuous mode
[  145.986206][ T6839] hsr_slave_1: left promiscuous mode
[  145.988215][ T6839] batman_adv: batadv0: Removing interface: batadv_slave_0
[  145.991331][ T6839] batman_adv: batadv0: Removing interface: batadv_slave_1
[  146.500101][ T6839] team0 (unregistering): Port device team_slave_1 removed
[  146.562074][ T6839] team0 (unregistering): Port device team_slave_0 removed
[  146.785112][ T5950] Bluetooth: hci2: command tx timeout
[  147.112529][ T8350] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  147.117073][ T8350] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  147.121378][ T8350] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  147.125614][ T8350] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  147.186752][ T8350] 8021q: adding VLAN 0 to HW filter on device bond0
[  147.197799][ T8350] 8021q: adding VLAN 0 to HW filter on device team0
[  147.207465][ T6897] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.210274][ T6897] bridge0: port 1(bridge_slave_0) entered forwarding state
[  147.229895][ T6897] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.232345][ T6897] bridge0: port 2(bridge_slave_1) entered forwarding state
[  147.370343][ T8350] 8021q: adding VLAN 0 to HW filter on device batadv0
[  147.541209][ T8350] veth0_vlan: entered promiscuous mode
[  147.550017][ T8350] veth1_vlan: entered promiscuous mode
[  147.573847][ T8350] veth0_macvtap: entered promiscuous mode
[  147.584261][ T8350] veth1_macvtap: entered promiscuous mode
[  147.601368][ T8350] batman_adv: batadv0: Interface activated: batadv_slave_0
[  147.609232][ T8350] batman_adv: batadv0: Interface activated: batadv_slave_1
[  147.616885][ T8350] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  147.620526][ T8350] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  147.624106][ T8350] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  147.627872][ T8350] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  147.669951][ T6847] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.672535][ T6847] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.686076][ T6847] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  147.688608][ T6847] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  147.743103][ T8376] overlayfs: failed to clone upperpath
[  148.820823][ T8386] ref_ctr going negative. vaddr: 0x80ffc002, curr val: -29824, delta: 1
[  148.825597][   T40] audit: type=1804 audit(1748832752.917:169): pid=8386 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.727" name="/newroot/144/file0" dev="tmpfs" ino=819 res=1 errno=0
[  148.838076][ T8386] ref_ctr increment failed for inode: 0x333 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88801b47e0c0
[  148.859460][ T8393] netlink: zone id is out of range
[  148.861650][ T8393] netlink: zone id is out of range
[  148.863944][ T8393] netlink: zone id is out of range
[  148.866630][ T5950] Bluetooth: hci2: command tx timeout
[  148.868692][ T8393] netlink: zone id is out of range
[  148.871174][ T8393] netlink: del zone limit has 4 unknown bytes
[  149.022739][ T8407] tipc: Started in network mode
[  149.025439][ T8407] tipc: Node identity 4, cluster identity 4711
[  149.028192][ T8407] tipc: Node number set to 4
[  149.154595][ T8414] 9pnet_fd: Insufficient options for proto=fd
[  149.231320][ T8423] netlink: 'syz.3.746': attribute type 10 has an invalid length.
[  149.234497][ T8416] netlink: 'syz.7.743': attribute type 9 has an invalid length.
[  149.237062][ T8416] netlink: 32 bytes leftover after parsing attributes in process `syz.7.743'.
[  149.251348][ T8423] team0: Device ipvlan1 failed to register rx_handler
[  149.535614][   T34] usb 13-1: new full-speed USB device number 2 using dummy_hcd
[  149.695743][   T34] usb 13-1: config 1 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  149.699415][   T34] usb 13-1: config 1 interface 0 has no altsetting 0
[  149.703261][   T34] usb 13-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.40
[  149.706615][   T34] usb 13-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.709619][   T34] usb 13-1: Product: syz
[  149.711060][   T34] usb 13-1: Manufacturer: syz
[  149.712891][   T34] usb 13-1: SerialNumber: syz
[  149.892328][ T8445] overlayfs: failed to clone upperpath
[  149.930792][   T34] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.8/usb13/13-1/13-1:1.0/input/input7
[  149.935263][ T8447] netlink: 24 bytes leftover after parsing attributes in process `syz.3.754'.
[  149.950276][   T34] usb 13-1: USB disconnect, device number 2
[  149.950463][ T5333] pxrc 13-1:1.0: pxrc_open - usb_submit_urb failed, error: -19
[  150.522136][   T10] IPVS: starting estimator thread 0...
[  150.614449][ T8464] IPVS: using max 42 ests per chain, 100800 per kthread
[  150.954440][ T5950] Bluetooth: hci2: command tx timeout
[  151.481627][ T8495] netlink: 24 bytes leftover after parsing attributes in process `syz.4.769'.
[  151.633127][ T8504] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  152.355293][   T40] audit: type=1800 audit(1748832756.457:170): pid=8500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.771" name="/" dev="fuse" ino=0 res=0 errno=0
[  153.003618][ T8546] netlink: 24 bytes leftover after parsing attributes in process `syz.8.796'.
[  153.024419][ T5950] Bluetooth: hci2: command tx timeout
[  153.316792][ T8560] overlayfs: failed to clone upperpath
[  154.524597][   T10] usb 12-1: new high-speed USB device number 5 using dummy_hcd
[  154.674511][   T10] usb 12-1: Using ep0 maxpacket: 8
[  154.677972][   T10] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  154.681377][   T10] usb 12-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  154.685558][   T10] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  154.690812][   T10] usb 12-1: config 0 descriptor??
[  154.899411][   T10] iowarrior 12-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  155.170011][ T5979] usb 12-1: USB disconnect, device number 5
[  156.729803][ T8606] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  156.957136][   T40] audit: type=1326 audit(1748832761.057:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8621 comm="syz.3.812" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ee579 code=0x0
[  160.254469][ T8638] overlayfs: failed to clone upperpath
[  160.484089][ T8651] netlink: 'syz.3.822': attribute type 1 has an invalid length.
[  160.509182][ T8651] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  160.512221][ T8651] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  160.515919][ T8651] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  160.518675][ T8651] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  160.524162][ T8651] bond1: (slave geneve2): making interface the new active one
[  160.527320][ T8651] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  160.564396][   T29] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  160.711303][ T8666] netlink: 4 bytes leftover after parsing attributes in process `syz.3.828'.
[  160.734368][   T29] usb 9-1: Using ep0 maxpacket: 8
[  160.739708][   T29] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  160.743091][   T29] usb 9-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  160.753252][   T29] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.757456][   T29] usb 9-1: config 0 descriptor??
[  160.810892][ T8673] netlink: 'syz.7.832': attribute type 1 has an invalid length.
[  160.823785][ T8673] 8021q: adding VLAN 0 to HW filter on device bond2
[  160.828112][ T8676] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  160.847902][ T8673] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  160.850562][ T8673] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  160.853279][ T8673] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  160.857618][ T8673] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  160.862051][ T8673] bond2: (slave geneve2): making interface the new active one
[  160.865723][ T8673] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  160.897332][ T8673] bond2: entered promiscuous mode
[  160.899109][ T8673] geneve2: entered promiscuous mode
[  160.903489][ T8681] netlink: 24 bytes leftover after parsing attributes in process `syz.3.842'.
[  160.995759][   T29] iowarrior 9-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  161.023835][   T40] audit: type=1326 audit(1748832765.117:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8682 comm="syz.7.835" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f81579 code=0x0
[  161.119557][   T40] audit: type=1800 audit(1748832765.217:173): pid=8691 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.837" name="nullb0" dev="tmpfs" ino=669 res=0 errno=0
[  161.240992][   T29] usb 9-1: USB disconnect, device number 6
[  161.737405][ T8695] netlink: 'syz.8.838': attribute type 1 has an invalid length.
[  161.774434][ T8695] bond1: (slave geneve2): Opening slave failed
[  161.889417][ T8705] overlayfs: failed to clone upperpath
[  161.996162][ T8710] netlink: 4 bytes leftover after parsing attributes in process `syz.4.845'.
[  162.001096][ T8710] netlink: 4 bytes leftover after parsing attributes in process `syz.4.845'.
[  162.006191][ T8710] netlink: 4 bytes leftover after parsing attributes in process `syz.4.845'.
[  162.068945][ T8713] netlink: 24 bytes leftover after parsing attributes in process `syz.4.846'.
[  162.761718][ T8734] netlink: 'syz.7.853': attribute type 1 has an invalid length.
[  162.791608][ T8734] netdevsim netdevsim7 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  162.794438][ T8734] netdevsim netdevsim7 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  162.797249][ T8734] netdevsim netdevsim7 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  162.800068][ T8734] netdevsim netdevsim7 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  162.805577][ T8734] bond3: (slave geneve3): making interface the new active one
[  162.809267][ T8734] bond3: (slave geneve3): Enslaving as an active interface with an up link
[  163.208561][ T8752] netlink: 24 bytes leftover after parsing attributes in process `syz.7.860'.
[  165.326869][   T34] usb 12-1: new high-speed USB device number 6 using dummy_hcd
[  165.504422][   T34] usb 12-1: Using ep0 maxpacket: 8
[  165.508042][   T34] usb 12-1: config 0 has an invalid interface number: 31 but max is 0
[  165.510838][   T34] usb 12-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  165.515842][   T34] usb 12-1: config 0 has no interface number 0
[  165.519566][   T34] usb 12-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[  165.522427][   T34] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  165.537650][   T34] usb 12-1: Product: syz
[  165.544410][   T34] usb 12-1: Manufacturer: syz
[  165.546007][   T34] usb 12-1: SerialNumber: syz
[  165.549537][   T34] usb 12-1: config 0 descriptor??
[  165.553435][   T34] usb 12-1: Found UVC 0.04 device syz (046d:08c3)
[  165.555704][   T34] usb 12-1: No valid video chain found.
[  166.330541][ T8818] overlayfs: failed to clone upperpath
[  166.707501][ T8837] tipc: Started in network mode
[  166.709556][ T8837] tipc: Node identity ac141425, cluster identity 4711
[  166.712269][ T8837] tipc: New replicast peer: 0.0.0.0
[  166.720242][ T8837] tipc: Enabled bearer <udp:syz2>, priority 10
[  166.724039][ T8837] tipc: New replicast peer: 10.1.1.0
[  167.222216][ T8841] netlink: 'syz.3.891': attribute type 12 has an invalid length.
[  167.258794][ T8843] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(4)
[  167.260846][ T8843] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  167.263294][ T8843] vhci_hcd vhci_hcd.0: Device attached
[  167.272121][ T8843] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(6)
[  167.274202][ T8843] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  167.277525][ T8843] vhci_hcd vhci_hcd.0: Device attached
[  167.281290][ T8843] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  167.290788][ T8843] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  167.296757][ T8846] vhci_hcd: connection closed
[  167.297400][ T8844] vhci_hcd: connection closed
[  167.299233][ T6866] vhci_hcd: stop threads
[  167.302533][ T6866] vhci_hcd: release socket
[  167.304238][ T6866] vhci_hcd: disconnect device
[  167.307658][ T6866] vhci_hcd: stop threads
[  167.309210][ T6866] vhci_hcd: release socket
[  167.310761][ T6866] vhci_hcd: disconnect device
[  167.715457][ T2287] tipc: Node number set to 2886997029
[  167.840637][ T8862] netlink: 4 bytes leftover after parsing attributes in process `syz.8.902'.
[  167.846179][ T8862] netlink: 12 bytes leftover after parsing attributes in process `syz.8.902'.
[  168.001732][   T40] audit: type=1326 audit(1748832772.097:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8867 comm="syz.8.904" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fc7579 code=0x0
[  168.064737][ T5979] usb 12-1: USB disconnect, device number 6
[  168.820133][ T8894] overlayfs: failed to clone upperpath
[  168.973005][ T8896] netlink: 4 bytes leftover after parsing attributes in process `syz.3.913'.
[  168.979019][ T8896] netlink: 12 bytes leftover after parsing attributes in process `syz.3.913'.
[  170.125626][ T8913] netlink: 'syz.7.921': attribute type 12 has an invalid length.
[  170.230969][ T5949] Bluetooth: hci1: command 0x0406 tx timeout
[  170.325211][ T8927] overlayfs: failed to clone upperpath
[  170.360416][ T8929] overlayfs: failed to clone upperpath
[  170.556093][   T10] usb 12-1: new high-speed USB device number 7 using dummy_hcd
[  170.697710][ T8947] netlink: 12 bytes leftover after parsing attributes in process `syz.3.933'.
[  170.704612][ T5950] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  170.708785][ T5950] Bluetooth: hci1: Injecting HCI hardware error event
[  170.712496][ T8949] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  170.714390][   T10] usb 12-1: Using ep0 maxpacket: 8
[  170.716182][ T5950] Bluetooth: hci1: hardware error 0x00
[  170.718131][ T8949] overlayfs: failed to set xattr on upper
[  170.718151][ T8949] overlayfs: ...falling back to redirect_dir=nofollow.
[  170.718159][ T8949] overlayfs: ...falling back to index=off.
[  170.718165][ T8949] overlayfs: ...falling back to uuid=null.
[  170.725789][   T10] usb 12-1: config 0 has no interfaces?
[  170.732245][   T10] usb 12-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  170.734877][ T8951] netlink: 'syz.8.932': attribute type 12 has an invalid length.
[  170.736340][   T10] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.749317][   T10] usb 12-1: config 0 descriptor??
[  170.888506][ T8959] overlayfs: failed to clone upperpath
[  171.116761][   T10] usb 12-1: USB disconnect, device number 7
[  171.344651][ T5949] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  171.348277][ T5949] Bluetooth: hci3: Injecting HCI hardware error event
[  171.353511][ T5939] Bluetooth: hci3: hardware error 0x00
[  171.682139][ T8984] overlayfs: failed to clone upperpath
[  172.728567][ T9006] netlink: 'syz.4.955': attribute type 12 has an invalid length.
[  172.784829][ T5950] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  173.096696][ T9012] syz_tun: entered allmulticast mode
[  173.100354][ T9010] syz_tun: left allmulticast mode
[  173.142399][ T9018] bond1: (slave erspan0): Releasing active interface
[  173.146461][ T9018] bridge_slave_0: left allmulticast mode
[  173.148168][ T9018] bridge_slave_0: left promiscuous mode
[  173.149928][ T9018] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.153356][ T9018] bridge_slave_1: left allmulticast mode
[  173.156442][ T9018] bridge_slave_1: left promiscuous mode
[  173.158963][ T9018] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.164803][ T9018] bond0: (slave bond_slave_0): Releasing backup interface
[  173.170433][ T9018] bond0: (slave bond_slave_1): Releasing backup interface
[  173.178408][ T9018] team0: Port device team_slave_0 removed
[  173.183680][ T9018] team0: Port device team_slave_1 removed
[  173.186527][ T9018] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.190084][ T9018] batman_adv: batadv0: Removing interface: batadv_slave_1
[  173.196367][ T9018] bond2: (slave geneve2): Releasing active interface
[  173.198434][ T9018] geneve2: left promiscuous mode
[  173.201047][ T9018] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.203836][ T9018] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.207785][ T9018] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.211147][ T9018] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  173.215357][ T9018] bond3: (slave geneve3): Releasing active interface
[  173.218572][ T9018] netdevsim netdevsim7 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  173.221370][ T9018] netdevsim netdevsim7 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  173.224183][ T9018] netdevsim netdevsim7 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  173.227962][ T9018] netdevsim netdevsim7 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  173.232186][ T9020] team0: Mode changed to "broadcast"
[  173.424412][ T5939] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  173.653634][ T9039] netlink: 24 bytes leftover after parsing attributes in process `syz.3.968'.
[  173.693420][ T9039] netlink: 4 bytes leftover after parsing attributes in process `syz.3.968'.
[  178.018420][ T9072] netlink: 24 bytes leftover after parsing attributes in process `syz.8.978'.
[  178.075882][ T9072] netlink: 4 bytes leftover after parsing attributes in process `syz.8.978'.
[  178.821612][ T9105] netlink: 'syz.7.992': attribute type 33 has an invalid length.
[  178.824072][ T9105] netlink: 152 bytes leftover after parsing attributes in process `syz.7.992'.
[  178.830037][ T9105] netlink: 4 bytes leftover after parsing attributes in process `syz.7.992'.
[  179.515554][ T9129] syz.3.1002: vmalloc error: size 2147483264, exceeds total pages, mode:0x400cc0(GFP_KERNEL_ACCOUNT), nodemask=(null),cpuset=/,mems_allowed=0-1
[  179.521650][ T9129] CPU: 1 UID: 0 PID: 9129 Comm: syz.3.1002 Not tainted 6.15.0-syzkaller-10820-gcd2e103d57e5 #0 PREEMPT(full) 
[  179.521674][ T9129] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  179.521687][ T9129] Call Trace:
[  179.521694][ T9129]  <TASK>
[  179.521701][ T9129]  dump_stack_lvl+0x16c/0x1f0
[  179.521753][ T9129]  warn_alloc+0x248/0x3a0
[  179.521781][ T9129]  ? __pfx_warn_alloc+0x10/0x10
[  179.521803][ T9129]  ? stack_trace_save+0x8e/0xc0
[  179.521831][ T9129]  ? __pfx_stack_trace_save+0x10/0x10
[  179.521872][ T9129]  ? do_replace+0x1c3/0x480
[  179.521893][ T9129]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  179.521922][ T9129]  ? do_replace+0x1c3/0x480
[  179.521946][ T9129]  ? find_held_lock+0x2b/0x80
[  179.521970][ T9129]  ? __might_fault+0xe3/0x190
[  179.521993][ T9129]  ? __might_fault+0x13b/0x190
[  179.522019][ T9129]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  179.522043][ T9129]  ? _copy_from_user+0x59/0xd0
[  179.522068][ T9129]  ? copy_from_sockptr_offset.constprop.0+0xe5/0x170
[  179.522091][ T9129]  ? do_replace+0x1c3/0x480
[  179.522110][ T9129]  __vmalloc_node_noprof+0xad/0xf0
[  179.522129][ T9129]  ? do_replace+0x1c3/0x480
[  179.522151][ T9129]  do_replace+0x1c3/0x480
[  179.522171][ T9129]  ? __pfx_do_replace+0x10/0x10
[  179.522204][ T9129]  ? __lock_acquire+0xb8a/0x1c90
[  179.522225][ T9129]  compat_do_replace+0x585/0x7c0
[  179.522249][ T9129]  ? __pfx_compat_do_replace+0x10/0x10
[  179.522268][ T9129]  ? aa_get_newest_label+0x375/0x680
[  179.522306][ T9129]  ? __pfx_aa_get_newest_label+0x10/0x10
[  179.522339][ T9129]  ? bpf_lsm_capable+0x9/0x10
[  179.522359][ T9129]  ? security_capable+0x7e/0x260
[  179.522382][ T9129]  do_ebt_set_ctl+0x2f5/0x3c0
[  179.522403][ T9129]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  179.522427][ T9129]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  179.522455][ T9129]  ? nf_sockopt_find.constprop.0+0x222/0x290
[  179.522478][ T9129]  nf_setsockopt+0x8d/0xf0
[  179.522497][ T9129]  ip_setsockopt+0xcb/0xf0
[  179.522538][ T9129]  tcp_setsockopt+0xa7/0x100
[  179.522568][ T9129]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  179.522599][ T9129]  do_sock_setsockopt+0x221/0x470
[  179.522626][ T9129]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  179.522670][ T9129]  __sys_setsockopt+0x120/0x1a0
[  179.522695][ T9129]  __ia32_sys_setsockopt+0xbc/0x160
[  179.522717][ T9129]  ? lockdep_hardirqs_on+0x7c/0x110
[  179.522741][ T9129]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  179.522764][ T9129]  __do_fast_syscall_32+0x7c/0x3a0
[  179.522812][ T9129]  do_fast_syscall_32+0x32/0x80
[  179.522837][ T9129]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  179.522860][ T9129] RIP: 0023:0xf70ee579
[  179.522876][ T9129] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  179.522893][ T9129] RSP: 002b:00000000f50de55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  179.522911][ T9129] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[  179.522922][ T9129] RDX: 0000000000000080 RSI: 0000000080000640 RDI: 00000000000001e8
[  179.522934][ T9129] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  179.522951][ T9129] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  179.522962][ T9129] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  179.522987][ T9129]  </TASK>
[  179.523126][ T9129] Mem-Info:
[  179.595380][ T9132] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci2/hci2:200/input8
[  179.604432][ T9129] active_anon:12130 inactive_anon:88 isolated_anon:0
[  179.604432][ T9129]  active_file:3751 inactive_file:29190 isolated_file:0
[  179.604432][ T9129]  unevictable:2093 dirty:378 writeback:0
[  179.604432][ T9129]  slab_reclaimable:7328 slab_unreclaimable:60180
[  179.604432][ T9129]  mapped:26109 shmem:9319 pagetables:1161
[  179.604432][ T9129]  sec_pagetables:314 bounce:0
[  179.604432][ T9129]  kernel_misc_reclaimable:0
[  179.604432][ T9129]  free:52121 free_pcp:11840 free_cma:0
[  179.666979][ T9129] Node 0 active_anon:2048kB inactive_anon:32kB active_file:1600kB inactive_file:164kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:11532kB dirty:12kB writeback:0kB shmem:3820kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8444kB pagetables:1376kB sec_pagetables:1180kB all_unreclaimable? yes Balloon:0kB
[  179.677329][ T9129] Node 1 active_anon:46672kB inactive_anon:320kB active_file:13404kB inactive_file:116596kB unevictable:17736kB isolated(anon):0kB isolated(file):0kB mapped:81504kB dirty:1500kB writeback:0kB shmem:33456kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:5528kB pagetables:3268kB sec_pagetables:76kB all_unreclaimable? no Balloon:0kB
[  179.690861][ T9129] Node 0 DMA free:2540kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:240kB local_pcp:8kB free_cma:0kB
[  179.701327][ T9129] lowmem_reserve[]: 0 289 289 289 289
[  179.703047][ T9129] Node 0 DMA32 free:23396kB boost:4096kB min:17428kB low:20760kB high:24092kB reserved_highatomic:4096KB free_highatomic:2828KB active_anon:2048kB inactive_anon:32kB active_file:1600kB inactive_file:164kB unevictable:3536kB writepending:12kB present:1032196kB managed:296860kB mlocked:0kB bounce:0kB free_pcp:10912kB local_pcp:3116kB free_cma:0kB
[  179.715794][ T9129] lowmem_reserve[]: 0 0 0 0 0
[  179.718073][ T9129] Node 1 DMA32 free:170884kB boost:2048kB min:49192kB low:60976kB high:72760kB reserved_highatomic:0KB free_highatomic:0KB active_anon:41276kB inactive_anon:320kB active_file:13404kB inactive_file:116596kB unevictable:22936kB writepending:1500kB present:1048432kB managed:948268kB mlocked:19400kB bounce:0kB free_pcp:35272kB local_pcp:7456kB free_cma:0kB
[  179.729087][ T9129] lowmem_reserve[]: 0 0 0 0 0
[  179.730776][ T9129] Node 0 DMA: 37*4kB (U) 13*8kB (U) 11*16kB (UM) 8*32kB (UM) 1*64kB (M) 0*128kB 1*256kB (M) 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 2540kB
[  179.736052][ T9129] Node 0 DMA32: 17*4kB (UMEH) 52*8kB (UEH) 46*16kB (MEH) 103*32kB (UEH) 75*64kB (UEH) 26*128kB (UMEH) 8*256kB (UME) 3*512kB (UM) 3*1024kB (U) 2*2048kB (M) 0*4096kB = 23396kB
[  179.741587][ T9129] Node 1 DMA32: 252*4kB (UME) 262*8kB (UME) 40*16kB (UME) 180*32kB (UME) 212*64kB (UME) 152*128kB (UME) 88*256kB (UME) 43*512kB (UME) 29*1024kB (UM) 25*2048kB (UM) 1*4096kB (M) = 172064kB
[  179.750567][ T9129] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  179.755045][ T9129] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  179.758998][ T9129] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  179.778599][ T9129] Node 1 hugepages_total=4 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  179.783177][ T9129] 39508 total pagecache pages
[  179.785567][ T9129] 98 pages in swap cache
[  179.787103][ T9129] Free swap  = 122712kB
[  179.788457][ T9129] Total swap = 124996kB
[  179.789830][ T9129] 524155 pages RAM
[  179.791048][ T9129] 0 pages HighMem/MovableOnly
[  179.792603][ T9129] 209033 pages reserved
[  179.793896][ T9129] 0 pages cma reserved
[  180.034437][ T5978] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  180.204460][ T5978] usb 9-1: Using ep0 maxpacket: 32
[  180.208330][ T5978] usb 9-1: config 0 has an invalid interface number: 247 but max is 0
[  180.211607][ T5978] usb 9-1: config 0 has no interface number 0
[  180.215825][ T5978] usb 9-1: New USB device found, idVendor=1d50, idProduct=60c6, bcdDevice=62.9b
[  180.219442][ T5978] usb 9-1: New USB device strings: Mfr=1, Product=3, SerialNumber=0
[  180.222599][ T5978] usb 9-1: Product: syz
[  180.224362][ T5978] usb 9-1: Manufacturer: syz
[  180.231266][ T5978] usb 9-1: config 0 descriptor??
[  180.245617][ T9145] netlink: 'syz.3.1008': attribute type 33 has an invalid length.
[  180.248323][ T9145] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1008'.
[  180.253319][ T9145] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1008'.
[  180.823467][ T9172] kvm: pic: non byte read
[  180.827726][ T9172] kvm: pic: non byte read
[  180.831129][ T9172] kvm: pic: non byte read
[  180.834544][ T9172] kvm: pic: non byte read
[  180.837829][ T9172] kvm: pic: non byte read
[  180.840846][ T9172] kvm: pic: level sensitive irq not supported
[  180.841150][ T9172] kvm: pic: non byte read
[  180.846997][ T9172] kvm: pic: non byte read
[  180.850581][ T9172] kvm: pic: non byte read
[  180.854035][ T9172] kvm: pic: non byte read
[  181.518783][   T29] usb 9-1: USB disconnect, device number 7
[  182.229951][ T9167] Set syz1 is full, maxelem 65536 reached
[  182.243881][ T9192] syz_tun: entered allmulticast mode
[  182.259811][ T9191] syz_tun: left allmulticast mode
[  182.513237][ T5978] IPVS: starting estimator thread 0...
[  182.517277][ T9213] IPVS: wrr: FWM 3 0x00000003 - no destination available
[  182.576101][ T9219] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1033'.
[  182.604805][ T9214] IPVS: using max 24 ests per chain, 57600 per kthread
[  183.140402][ T9246] IPVS: wrr: FWM 3 0x00000003 - no destination available
[  184.349049][ T9262] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1051'.
[  184.835750][   T40] audit: type=1804 audit(1748832788.937:175): pid=9276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.1055" name="file0" dev="tmpfs" ino=589 res=1 errno=0
[  184.835955][ T9276] ref_ctr increment failed for inode: 0x24d offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff888070420ac0
[  184.858058][ T9275] uprobe: syz.8.1055:9275 failed to unregister, leaking uprobe
[  185.681841][   T34] IPVS: starting estimator thread 0...
[  185.692425][   T40] audit: type=1804 audit(1748832789.787:176): pid=9296 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1067" name="file0" dev="tmpfs" ino=1826 res=1 errno=0
[  185.692769][ T9296] ref_ctr increment failed for inode: 0x722 offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88801b479580
[  185.714821][ T9295] uprobe: syz.3.1067:9295 failed to unregister, leaking uprobe
[  185.785305][ T9297] IPVS: using max 21 ests per chain, 50400 per kthread
[  185.929200][ T9300] overlayfs: failed to clone upperpath
[  185.982193][ T9304] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1068'.
[  186.451162][ T9330] overlayfs: failed to clone upperpath
[  186.577442][ T9338] netlink: 'syz.3.1084': attribute type 1 has an invalid length.
[  186.591825][ T9338] 8021q: adding VLAN 0 to HW filter on device bond2
[  186.612268][ T9338] 8021q: adding VLAN 0 to HW filter on device bond2
[  186.614778][ T9338] bond2: (slave vxcan1): The slave device specified does not support setting the MAC address
[  186.618929][ T9338] bond2: (slave vxcan1): Error -95 calling set_mac_address
[  186.679553][ T9345] erspan0: entered allmulticast mode
[  186.684961][ T9345] bond2: (slave erspan0): making interface the new active one
[  186.688628][ T9345] bond2: (slave erspan0): Enslaving as an active interface with an up link
[  186.942889][ T9361] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  186.947709][ T9360] tipc: Resetting bearer <eth:syzkaller0>
[  188.052607][ T9360] tipc: Disabling bearer <eth:syzkaller0>
[  188.133354][ T9382] netlink: 'syz.8.1095': attribute type 1 has an invalid length.
[  188.153774][ T9382] 8021q: adding VLAN 0 to HW filter on device bond2
[  188.189639][ T9391] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1099'.
[  188.212249][ T9382] 8021q: adding VLAN 0 to HW filter on device bond2
[  188.216012][ T9382] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[  188.220820][ T9382] bond2: (slave vxcan3): Error -95 calling set_mac_address
[  188.235234][ T9395] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1101'.
[  188.248531][ T9396] erspan0: entered allmulticast mode
[  188.258709][ T9396] bond2: (slave erspan0): making interface the new active one
[  188.261957][ T9396] bond2: (slave erspan0): Enslaving as an active interface with an up link
[  188.275721][ T9397] sch_tbf: burst 129 is lower than device bridge2 mtu (1514) !
[  189.105752][ T9431] overlayfs: failed to clone upperpath
[  189.116061][ T9433] netlink: 'syz.4.1112': attribute type 1 has an invalid length.
[  189.129695][ T9433] 8021q: adding VLAN 0 to HW filter on device bond1
[  189.182561][ T9433] 8021q: adding VLAN 0 to HW filter on device bond1
[  189.186270][ T9433] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  189.190797][ T9433] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  189.215808][ T9440] erspan0: entered allmulticast mode
[  189.226516][ T9440] bond1: (slave erspan0): making interface the new active one
[  189.229163][ T9440] bond1: (slave erspan0): Enslaving as an active interface with an up link
[  192.626610][ T9475] netlink: 'syz.3.1129': attribute type 1 has an invalid length.
[  192.643234][ T9475] 8021q: adding VLAN 0 to HW filter on device bond3
[  192.669059][ T9475] 8021q: adding VLAN 0 to HW filter on device bond3
[  192.672296][ T9475] bond3: (slave vxcan1): The slave device specified does not support setting the MAC address
[  192.680684][ T9475] bond3: (slave vxcan1): Error -95 calling set_mac_address
[  192.719007][ T9483] bond2: (slave erspan0): Releasing active interface
[  192.719954][ T9474] netfs: Couldn't get user pages (rc=-14)
[  192.728886][ T9483] bond3: (slave erspan0): making interface the new active one
[  192.732209][ T9483] bond3: (slave erspan0): Enslaving as an active interface with an up link
[  192.747433][ T9474] netfs: Couldn't get user pages (rc=-14)
[  192.877040][ T9495] overlayfs: failed to clone upperpath
[  192.924574][ T9502] overlayfs: failed to clone upperpath
[  192.929975][ T9504] syz_tun: entered allmulticast mode
[  192.935533][ T9503] syz_tun: left allmulticast mode
[  193.106567][ T9515] netlink: 'syz.8.1146': attribute type 1 has an invalid length.
[  193.120855][ T9515] 8021q: adding VLAN 0 to HW filter on device bond3
[  193.149659][ T9515] 8021q: adding VLAN 0 to HW filter on device bond3
[  193.152160][ T9515] bond3: (slave vxcan3): The slave device specified does not support setting the MAC address
[  193.156838][ T9515] bond3: (slave vxcan3): Error -95 calling set_mac_address
[  193.191192][ T9519] bond2: (slave erspan0): Releasing active interface
[  193.199586][ T9519] bond3: (slave erspan0): making interface the new active one
[  193.203267][ T9519] bond3: (slave erspan0): Enslaving as an active interface with an up link
[  193.748644][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  193.750704][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  194.824909][ T9539] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1153'.
[  195.078273][ T9544] vlan2: entered allmulticast mode
[  195.908515][ T9556] syz_tun: entered allmulticast mode
[  195.936011][ T9555] syz_tun: left allmulticast mode
[  196.031523][ T9565] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1163'.
[  198.944464][ T5950] Bluetooth: hci2: command 0x0406 tx timeout
[  208.168877][ T6866] smc: removing ib device syz1
[  208.188595][ T9589] capability: warning: `syz.3.1179' uses deprecated v2 capabilities in a way that may be insecure
[  208.227926][ T5950] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  208.231499][ T5950] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  208.238744][ T5950] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  208.244513][ T5950] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  208.248430][ T5950] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  208.460782][ T9592] chnl_net:caif_netlink_parms(): no params data found
[  208.581326][ T6866] ------------[ cut here ]------------
[  208.583324][ T6866] GID entry ref leak for dev syz1 index 2 ref=1
[  208.587194][ T6866] WARNING: CPU: 0 PID: 6866 at drivers/infiniband/core/cache.c:806 gid_table_release_one+0x387/0x4b0
[  208.590878][ T6866] Modules linked in:
[  208.592925][ T6866] CPU: 0 UID: 0 PID: 6866 Comm: kworker/u32:40 Not tainted 6.15.0-syzkaller-10820-gcd2e103d57e5 #0 PREEMPT(full) 
[  208.599448][ T6866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  208.603909][ T6866] Workqueue: ib-unreg-wq ib_unregister_work
[  208.606896][ T6866] RIP: 0010:gid_table_release_one+0x387/0x4b0
[  208.609513][ T6866] Code: 07 00 00 48 85 f6 74 2b 48 89 74 24 38 e8 d1 af 35 f9 48 8b 74 24 38 44 89 f1 44 89 ea 48 c7 c7 e0 77 98 8c e8 3a d3 f4 f8 90 <0f> 0b 90 90 e9 6e fe ff ff e8 ab af 35 f9 48 8d bd 48 07 00 00 48
[  208.617208][ T6866] RSP: 0018:ffffc900062afb50 EFLAGS: 00010286
[  208.619765][ T6866] RAX: 0000000000000000 RBX: ffff88806fc61000 RCX: ffffffff817a92c8
[  208.622397][ T6866] RDX: ffff88802396c880 RSI: ffffffff817a92d5 RDI: 0000000000000001
[  208.625774][ T6866] RBP: ffff888063878000 R08: 0000000000000001 R09: 0000000000000000
[  208.629318][ T6866] R10: 0000000000000001 R11: 0000000000000001 R12: ffffed100df8c21b
[  208.632582][ T6866] R13: 0000000000000002 R14: 0000000000000001 R15: dffffc0000000000
[  208.636185][ T6866] FS:  0000000000000000(0000) GS:ffff888097775000(0000) knlGS:0000000000000000
[  208.639842][ T6866] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  208.642885][ T6866] CR2: 00000000f7fc6e40 CR3: 00000000280eb000 CR4: 0000000000352ef0
[  208.646695][ T6866] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  208.649956][ T6866] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  208.653221][ T6866] Call Trace:
[  208.654837][ T6866]  <TASK>
[  208.656145][ T6866]  ib_device_release+0xef/0x1e0
[  208.658249][ T6866]  ? __pfx_ib_device_release+0x10/0x10
[  208.660571][ T6866]  device_release+0xa1/0x240
[  208.662564][ T6866]  kobject_put+0x1e7/0x5a0
[  208.664573][ T6866]  put_device+0x1f/0x30
[  208.666352][ T6866]  process_one_work+0x9cf/0x1b70
[  208.668467][ T6866]  ? __pfx_call_usermodehelper_exec_work+0x10/0x10
[  208.671170][ T6866]  ? __pfx_process_one_work+0x10/0x10
[  208.673409][ T6866]  ? assign_work+0x1a0/0x250
[  208.675554][ T6866]  worker_thread+0x6c8/0xf10
[  208.677514][ T6866]  ? __pfx_worker_thread+0x10/0x10
[  208.679392][ T6866]  kthread+0x3c2/0x780
[  208.680755][ T6866]  ? __pfx_kthread+0x10/0x10
[  208.682286][ T6866]  ? rcu_is_watching+0x12/0xc0
[  208.683815][ T6866]  ? __pfx_kthread+0x10/0x10
[  208.685350][ T6866]  ret_from_fork+0x5d4/0x6f0
[  208.686809][ T6866]  ? __pfx_kthread+0x10/0x10
[  208.688422][ T6866]  ret_from_fork_asm+0x1a/0x30
[  208.690384][ T6866]  </TASK>
[  208.691650][ T6866] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  208.694637][ T6866] CPU: 0 UID: 0 PID: 6866 Comm: kworker/u32:40 Not tainted 6.15.0-syzkaller-10820-gcd2e103d57e5 #0 PREEMPT(full) 
[  208.699342][ T6866] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  208.703302][ T6866] Workqueue: ib-unreg-wq ib_unregister_work
[  208.705796][ T6866] Call Trace:
[  208.707255][ T6866]  <TASK>
[  208.708540][ T6866]  dump_stack_lvl+0x3d/0x1f0
[  208.710493][ T6866]  panic+0x71c/0x800
[  208.712221][ T6866]  ? __pfx_panic+0x10/0x10
[  208.714103][ T6866]  ? show_trace_log_lvl+0x29b/0x3e0
[  208.716287][ T6866]  ? check_panic_on_warn+0x1f/0xb0
[  208.718450][ T6866]  ? gid_table_release_one+0x387/0x4b0
[  208.720738][ T6866]  check_panic_on_warn+0xab/0xb0
[  208.722822][ T6866]  __warn+0xf6/0x3c0
[  208.724448][ T6866]  ? preempt_schedule_notrace+0x62/0xe0
[  208.726676][ T6866]  ? gid_table_release_one+0x387/0x4b0
[  208.728913][ T6866]  report_bug+0x3c3/0x580
[  208.730683][ T6866]  ? gid_table_release_one+0x387/0x4b0
[  208.732861][ T6866]  handle_bug+0x184/0x210
[  208.734692][ T6866]  exc_invalid_op+0x17/0x50
[  208.736580][ T6866]  asm_exc_invalid_op+0x1a/0x20
[  208.738546][ T6866] RIP: 0010:gid_table_release_one+0x387/0x4b0
[  208.741025][ T6866] Code: 07 00 00 48 85 f6 74 2b 48 89 74 24 38 e8 d1 af 35 f9 48 8b 74 24 38 44 89 f1 44 89 ea 48 c7 c7 e0 77 98 8c e8 3a d3 f4 f8 90 <0f> 0b 90 90 e9 6e fe ff ff e8 ab af 35 f9 48 8d bd 48 07 00 00 48
[  208.748726][ T6866] RSP: 0018:ffffc900062afb50 EFLAGS: 00010286
[  208.751099][ T6866] RAX: 0000000000000000 RBX: ffff88806fc61000 RCX: ffffffff817a92c8
[  208.754248][ T6866] RDX: ffff88802396c880 RSI: ffffffff817a92d5 RDI: 0000000000000001
[  208.757428][ T6866] RBP: ffff888063878000 R08: 0000000000000001 R09: 0000000000000000
[  208.760576][ T6866] R10: 0000000000000001 R11: 0000000000000001 R12: ffffed100df8c21b
[  208.763720][ T6866] R13: 0000000000000002 R14: 0000000000000001 R15: dffffc0000000000
[  208.766919][ T6866]  ? __warn_printk+0x198/0x350
[  208.768955][ T6866]  ? __warn_printk+0x1a5/0x350
[  208.770921][ T6866]  ib_device_release+0xef/0x1e0
[  208.772921][ T6866]  ? __pfx_ib_device_release+0x10/0x10
[  208.775186][ T6866]  device_release+0xa1/0x240
[  208.777089][ T6866]  kobject_put+0x1e7/0x5a0
[  208.778983][ T6866]  put_device+0x1f/0x30
[  208.780553][ T6866]  process_one_work+0x9cf/0x1b70
[  208.782111][ T6866]  ? __pfx_call_usermodehelper_exec_work+0x10/0x10
[  208.784134][ T6866]  ? __pfx_process_one_work+0x10/0x10
[  208.785863][ T6866]  ? assign_work+0x1a0/0x250
[  208.787324][ T6866]  worker_thread+0x6c8/0xf10
[  208.788801][ T6866]  ? __pfx_worker_thread+0x10/0x10
[  208.790417][ T6866]  kthread+0x3c2/0x780
[  208.791712][ T6866]  ? __pfx_kthread+0x10/0x10
[  208.793159][ T6866]  ? rcu_is_watching+0x12/0xc0
[  208.794677][ T6866]  ? __pfx_kthread+0x10/0x10
[  208.796309][ T6866]  ret_from_fork+0x5d4/0x6f0
[  208.798119][ T6866]  ? __pfx_kthread+0x10/0x10
[  208.799941][ T6866]  ret_from_fork_asm+0x1a/0x30
[  208.801822][ T6866]  </TASK>
[  208.803700][ T6866] Kernel Offset: disabled
[  208.805412][ T6866] Rebooting in 86400 seconds..

VM DIAGNOSIS:
02:53:32  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff85562620 RDI=ffffffff9ae599c0 RBP=ffffffff9ae59980 RSP=ffffc900062af4c8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=ffffffff9ae599d0 R14=ffffffff9ae59980 R15=ffffffff9ae59c40
RIP=ffffffff85562647 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097775000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7fc6e40 CR3=00000000280eb000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080000010 Opmask01=0000000000021d1f Opmask02=00000000ffff1fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000007000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9700000010 000000003de00ec6
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff766662f8 00007fff76666330
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000649 00007f976979638d
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f9700000010 00007fff76666330
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff76666328 00007fff76666360
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f976962a025
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff76666360
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e6e6e6e6e6e6e6e 6e6e6e6e6e6e6e6e
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e6e6e6e6e6e6e6e 6e6e6e6e6e6e6e6e
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f72726520636269 6c67206c61746146 000000706d74752f 6e75722f7261762f
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 640065676175676e 616c5f626400656c 7075745f62640062 6f6c625f62640065
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4800494b4d594b42 4d405f4e48004940 5c59585f4e48004e 43404e5f4e480049
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 68637461772e6575 6575716b726f7720 35353d6873657268 745f676f64686374
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e2e65726f632e74 656e2e6c74637379 73203034313d6873 657268745f676f64
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 656c6f736e6f6320 6164732f7665642f 3d746f6f7220313d 6e7261775f6e6f5f
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 63696e6170203233 3d78616d5f736462 6e2032333d706f6f 6c5f78616d203233
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 7265747369676572 6e755f7665647465 6e2e65726f632e74 656e2e6c74637379
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2e2bdf3228df3822 282b2e2fdf37342d 280b0412bfc92435 283232282c31242f
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 24bf242d282b232c 22ee222e312feebf 222e312feebf2435 283232282c31242f
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000260a09 RBX=0000000000000001 RCX=ffffffff8b799c79 RDX=0000000000000000
RSI=ffffffff8dc02c0a RDI=ffffffff8bf52ee0 RBP=ffffed1003b5d488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed100566663d R10=ffff88802b3331eb R11=0000000000000001
R12=0000000000000001 R13=ffff88801daea440 R14=ffffffff9087ad50 R15=0000000000000000
RIP=ffffffff8b7987df RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097875000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71f5ce0 CR3=00000000673e6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 588e4828233bfebf 21c4cb0d259d528a
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e9591604421ebc59 c99e0c6b963296a2
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3b99247576f1a75d 02bd90d528fc0619
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ee7b2f7a6ce0049e 26bc2bc3de7e8af7
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000009600
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a6e42e007f83576f dc00000020000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f82aac67f83c6a0 7f86f1267f8489a6
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7f831d4de0000000 04000000c08b0184
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 3e000000d4000000 7f84015300007f81
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c629564b73334715 6d80dc42e9d2b629
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 d86bdb45b1133aae d3efb0f78434670e
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=ffffffff97453ca8 RBX=0000000000000241 RCX=0000000000000328 RDX=0000000000000111
RSI=0000000000000328 RDI=ffffffff973700b8 RBP=0000000000000030 RSP=ffffc9000386ebc0
R8 =ffffffff95b27e78 R9 =00000000000000e8 R10=ffffc9000386ed58 R11=0000000000000001
R12=ffffffff81977830 R13=ffffc9000386ec60 R14=ffffffff81978340 R15=ffffffff973700b8
RIP=ffffffff819798ea RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007fd6cd95b300 ffffffff 00c00000
GS =0000 ffff888097975000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000557454f7b000 CR3=000000004c5f3000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcffc200 Opmask01=000000000000ffff Opmask02=00000000ffffffff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000001df8a 0000002c00000012 0004000000080024 0000000000280030
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000049e 0000001000000000 0000000000000000 0000000000000015
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffc108 0003200800060800 20080006016fe814 000001b700000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0e80030e80021088 0302040010800304 80021882c2dc8008 0001000000080606
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0125a40000000000 0000000000fedeff f000000000006b86 2da7f50000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000fff4008048803 0208000480030004 00000800000201c7 0800080049ba0063
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e79735f77732f63 6e79732f67756265 642f6c656e72656b 2f7379732f01ffff
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0300000000000008 ffffffce00000000 0300000000000019 0000000cffffff9e
ZMM25=33ad72a833ad72a8 33ad72a833ad72a8 33ad72a833ad72a8 33ad72a833ad72a8 33ad72a833ad72a8 33ad72a833ad72a8 33ad72a833ad72a8 33ad72a833ad72a8
ZMM26=0ac72e080ac72e08 0ac72e080ac72e08 0ac72e080ac72e08 0ac72e080ac72e08 0ac72e080ac72e08 0ac72e080ac72e08 0ac72e080ac72e08 0ac72e080ac72e08
ZMM27=0ac449730ac44973 0ac449730ac44973 0ac449730ac44973 0ac449730ac44973 0ac449730ac44973 0ac449730ac44973 0ac449730ac44973 0ac449730ac44973
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=a6090000a6090000 a6090000a6090000 a6090000a6090000 a6090000a6090000 a6090000a6090000 a6090000a6090000 a6090000a6090000 a6090000a6090000
info registers vcpu 3

CPU#3
RAX=00000000001df68d RBX=0000000000000003 RCX=ffffffff8b799c79 RDX=0000000000000000
RSI=ffffffff8dc02c0a RDI=ffffffff8bf52ee0 RBP=ffffed10037e1000 RSP=ffffc9000048fdf8
R8 =0000000000000001 R9 =ffffed10056a663d R10=ffff88802b5331eb R11=0000000000000001
R12=0000000000000003 R13=ffff88801bf08000 R14=ffffffff9087ad50 R15=0000000000000000
RIP=ffffffff8b7987df RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a75000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f72c6744 CR3=0000000068fbe000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a800000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000