last executing test programs:

7m44.973108081s ago: executing program 2 (id=118):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x4009, &(0x7f0000000100)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f0000008340)={0x2020, 0x0, <r1=>0x0}, 0x2020)
llistxattr(&(0x7f0000000300)='./file0\x00', 0x0, 0x0)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x21, 0x3, 0x8000000}}, 0x50)
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r0, &(0x7f0000000080)={0x10, 0xffffffffffffffda, r2}, 0x10)

7m44.902081771s ago: executing program 2 (id=122):
r0 = syz_io_uring_setup(0x5ce, &(0x7f0000000480)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x82e, 0x0, 0x0, 0x4}]}, 0x10)
socket$vsock_stream(0x28, 0x1, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0xb2752a96f73d6e14, 0x0, 0x0, 0x0, 0x23456})
unshare(0x22020600)
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

7m44.751808373s ago: executing program 2 (id=126):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x81, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd2(0x5, 0x801)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000040)={0x800000000000a, 0x0, 0x0, r2})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000001000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

7m43.764822999s ago: executing program 2 (id=150):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x9b301a, 0x0)
mount$bind(&(0x7f00000004c0)='./file0/file0\x00', &(0x7f0000000500)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f00000003c0)='./file0\x00', 0xa)

7m43.702105344s ago: executing program 2 (id=152):
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0100000004000000e27f000001"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000002100)={0x0, 0x7735, 0x80, 0x0, 0x351}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

7m43.54362014s ago: executing program 2 (id=153):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
unshare(0x6a040000)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r1=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
syz_io_uring_setup(0x231, &(0x7f00000002c0)={0x0, 0x3d86, 0x10100}, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000340)={r1, @in6={{0xa, 0x3, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, &(0x7f0000000040)=0x84)

7m43.494695566s ago: executing program 32 (id=153):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
unshare(0x6a040000)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000200)={<r1=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
syz_io_uring_setup(0x231, &(0x7f00000002c0)={0x0, 0x3d86, 0x10100}, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r0, 0x84, 0x7a, &(0x7f0000000340)={r1, @in6={{0xa, 0x3, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, &(0x7f0000000040)=0x84)

7m5.123331979s ago: executing program 0 (id=516):
bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @sched_cls=0x37, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket(0x11, 0x2, 0x10001)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, 0x0)
write$binfmt_misc(0xffffffffffffffff, &(0x7f0000000300), 0x5b0)
r1 = syz_io_uring_setup(0x4175, &(0x7f0000000180)={0x0, 0xbf51, 0x10000, 0x4002, 0x2031f}, &(0x7f00000000c0), &(0x7f00000003c0))
io_uring_enter(r1, 0x3f84, 0xd9f9, 0x3, 0x0, 0x0)
io_uring_setup(0x3eae, &(0x7f0000000080))
io_uring_enter(r1, 0x5148, 0xe93c, 0x2, 0x0, 0x0)
io_uring_register$IORING_REGISTER_CLONE_BUFFERS(r1, 0x1e, 0x0, 0x1)

7m4.774177726s ago: executing program 0 (id=519):
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x8}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x34, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='vm_unmapped_area\x00', r2}, 0x10)
io_setup(0x3, &(0x7f0000000340))

7m4.630238163s ago: executing program 0 (id=520):
ioperm(0x9, 0x2, 0x8000000000000001)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
mknod(&(0x7f0000000000)='./file0\x00', 0x1000, 0x0)
open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
open(&(0x7f0000000140)='./file0\x00', 0x2, 0x0)

7m4.452728587s ago: executing program 0 (id=522):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000580)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x1b5008, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000540)='./file0\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x2145499, 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
mount$bind(&(0x7f0000000600)='./file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

7m4.402645751s ago: executing program 0 (id=525):
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ff)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x7}], 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000080)='veth0\x00', 0x10)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r2 = socket(0xa, 0x5, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3e, &(0x7f0000000100)=0x1fffff, 0x4)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0x4e23, 0x3, @private1, 0xf}, 0x1c)

7m4.124039749s ago: executing program 0 (id=530):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f00000008c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002cbd701004000000050000000600010005000000080009000200000008000b000000000008000c"], 0x40}, 0x1, 0x0, 0x0, 0x20008000}, 0x30)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x0, @loopback}, 0x4}}, 0x2e)

7m4.093038972s ago: executing program 33 (id=530):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f00000008c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01002cbd701004000000050000000600010005000000080009000200000008000b000000000008000c"], 0x40}, 0x1, 0x0, 0x0, 0x20008000}, 0x30)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
r5 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r5, &(0x7f0000000100)=@pppol2tpv3={0x18, 0x1, {0x0, r4, {0x2, 0x0, @loopback}, 0x4}}, 0x2e)

7m2.491147703s ago: executing program 3 (id=543):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, 0x0, 0x4000050)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=@base={0xe, 0x4, 0x4, 0x20002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x5}, 0x50)

7m1.649916042s ago: executing program 3 (id=548):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = syz_clone(0x88200200, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r0, 0x0)
setpgid(0x0, r0)
chroot(&(0x7f0000000240)='./file0\x00')
renameat2(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000480)='./file7\x00', 0x0)

7m0.769375219s ago: executing program 3 (id=553):
pipe(&(0x7f0000000d00)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
r3 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$inet6_udp_int(r3, 0x11, 0x67, &(0x7f0000000100)=0xa9b, 0x4)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x6}, 0x1c)
write$binfmt_misc(r1, &(0x7f00000003c0)="441750b10b6b1ddc39b82ab39d63732eeacd4f31c4e102c72454bd851f9f39185bdb9239ce8617d1694e6b0c156b3628a4d2a969b02ca31cc592c066a7b9d433c6cefd49478d216851302c8695a61d04358f086759c3c1505171ea4200c76bcd4c", 0x61)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
splice(r0, 0x0, r2, 0x0, 0x714f, 0x0)

7m0.7229133s ago: executing program 3 (id=555):
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
fallocate(0xffffffffffffffff, 0x38, 0x3, 0x5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
getsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
syz_open_dev$usbfs(0x0, 0x181fe, 0x600)

7m0.392942879s ago: executing program 3 (id=560):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x1010000, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x20)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x888000, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0}, './file0\x00'})

7m0.380294274s ago: executing program 3 (id=561):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c000000100003041b00"/20, @ANYRES32=0x0, @ANYBLOB="46060900000000001c00128009000100766c616e000000000c000280060001000400000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r4], 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0)

7m0.143466639s ago: executing program 5 (id=531):
creat(&(0x7f0000000100)='./file0\x00', 0x1c)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000300)={0x18, 0x0, 0x0, {0xfffffffffffffffa}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000002100)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000180)=ANY=[@ANYRES64=r2], 0x10)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@posixacl}]}})

7m0.066386783s ago: executing program 5 (id=564):
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000000c0)="d80000001c0081044e81f782db44b9040a1d080214000000020003a118000c000300000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5d", 0xc1}], 0x1, 0x0, 0x0, 0x7400}, 0x20000080)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='devpts\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))

6m59.211779192s ago: executing program 5 (id=572):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="0f198d5aa5caa1c55b84b414797cbdd4e8c576a921a070fc828060506683fd1106a961ac55b5b8ea3342ca7de5559ca2c14e05e42aed8ba14b2c78cb540f71a817d80fbf1945a046ebda494a8048a106a4d49d7f214735ada53397db3b203885ce39ee48d69465935eade21ce36e61826c52c82f038341d9bab5687c740ed3c18897094e7e1391eb84a4052e03c0c7c39ae86d454938f65e284620b99481c33d9f5e5b7a6c0d7548723f55b213c76be37f40c850c38e265758ebd8238257a146d6eced16fd658a784c928fea7a841db1a7fd6520442dae5fc0d3a3d3a5f16fcf6fe4f062ecdad7d0f3c6cd339339533c0ef28ad1e2729907094c3de93c1b1b00ad6df89507000000fb7565d3a8e9eaea020ed173c2179fb03e0944460989240a689c7fe795d310be4e7a6b778a903280dbf426b39c3603c49049980767e31edb997f59785184cbd7b9070400000073c745f71db0906cb51780f908fa61634af8ac85d9f04f3dff0a948e81cd3229a59aaeb00995358155343e3239588a0383e4df109d5ca24276d0d83a27d0e9bf681c1bbea12a6f3c20ad50f63430333bb327eb6ae32fe8809065bce26d2dc2fbb2b48d404637d61fd86852e0e1b6ccc6f75b1107aaa5f60ef45f94e953b3f213c3cb4ca4c716565078c666f84e1a99bb4cb5c7190648132f6ff1f6cb79b93f20752753c938da6241607a742361d995188b23cb4b8269e98e822585695962620673433748e476f7cc3e37db88639c525ff3a502c82c283b00aecfe7734ab369e1ed7c75e27a5a333641817baa3ea37844e20e6266c5095abf9d47ca5f8ad93f1a4d8795daec222ada00d65cf91425fae7939ceaa8d94ec1ab5082e1d251c27b3132119b350e81771f3733be232ffb90c03a818bf458aac3314007c3e35d5e4bed6b897608b01e7e26a54433e5f5c74a2ee3c2fc50067be05a677f122b7dba7010830b879a41b579d44158fb89ea05761d2d369853bea84dfb8081ed7b891dcb3bb3361534fdc5252e4964aed936ad2838e7af14fc65c7c1c6d44c6256f2462ae83cfd6a6b2651da607fe79d345e5080098e9e6e7482cc5c267e00d8d09dcde70b60fe6220fe9530547201664db91cf1885ecc2f106b66cd99131523c99f6102ddd7403791b3a7ac59b256cc4c938fe01740ae4f19b5204ca305b1666b0c2a7e5015d6d530995843adfbac3954306d4cd82257d4d2c3283d45dbae43548fed9879328f114f7c8238ac955391b24614d91be1701ae07c170a9c299fcf3d0ac4cea07e88fbf66b697883af17a06ac3f9954eb2fbd20f101802cd023fc48c5d464c16059cc9dce8558c5322ac7612db0e2725427628c2c41a21f0d2f3962e32f710bf9e216ff1694e8d88c8a81328744b36d9ef9f08c0ea3ccd4f8729e2f00a048162834a", 0x3f0}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a8532b82037b02c9e6045c361eb", 0x36}], 0x3}, 0x0)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000680)=0x1, 0x4)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[], 0x30}}, 0x40)
recvmmsg(r0, &(0x7f0000003ec0)=[{{&(0x7f00000005c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000000000)=[{&(0x7f00000012c0)=""/102, 0x66}, {&(0x7f0000001340)=""/212, 0xd4}], 0x2, &(0x7f0000001440)=""/71, 0x47}, 0x8000}, {{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f00000014c0)=""/181, 0xb5}, {&(0x7f0000001d80)=""/4096, 0x1000}, {&(0x7f0000001580)=""/107, 0x6b}, {&(0x7f0000001600)=""/123, 0x7b}, {&(0x7f0000001680)=""/135, 0x87}, {&(0x7f0000001740)=""/208, 0xd0}], 0x6, &(0x7f00000018c0)=""/127, 0x7f}, 0x1a83}], 0x2, 0x100, 0x0)

6m45.239708279s ago: executing program 34 (id=561):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r1)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4c000000100003041b00"/20, @ANYRES32=0x0, @ANYBLOB="46060900000000001c00128009000100766c616e000000000c000280060001000400000008000500", @ANYRES32=r6, @ANYBLOB='\b\x00\n\x00', @ANYRES32=r4], 0x4c}, 0x1, 0x0, 0x0, 0x600}, 0x0)

6m44.032265704s ago: executing program 35 (id=572):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f00000008c0)=0x2, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00006dbffc), 0x4)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000200)="0000000000aa303e97380e90231bdbdaf6a4bd866226b7cdb7c26858c4e4fd703be2f51ed6ddc4a47116ec2db75c7042a22491af0ffea4174a9de3350c0a498396b28c7d1784d04aa38922721cb7816094cb82950fd012efd26d", 0x5a}, {&(0x7f0000000900)="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", 0x3f0}, {&(0x7f00000003c0)="128b9306006d4810e5ac5040ad9201847839fc378469d5765b9cc241840896c1498194a7197b45d74a8532b82037b02c9e6045c361eb", 0x36}], 0x3}, 0x0)
setsockopt$RDS_CONG_MONITOR(r0, 0x114, 0x6, &(0x7f0000000680)=0x1, 0x4)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000240)=ANY=[], 0x30}}, 0x40)
recvmmsg(r0, &(0x7f0000003ec0)=[{{&(0x7f00000005c0)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, 0x80, &(0x7f0000000000)=[{&(0x7f00000012c0)=""/102, 0x66}, {&(0x7f0000001340)=""/212, 0xd4}], 0x2, &(0x7f0000001440)=""/71, 0x47}, 0x8000}, {{0x0, 0x0, &(0x7f0000001840)=[{&(0x7f00000014c0)=""/181, 0xb5}, {&(0x7f0000001d80)=""/4096, 0x1000}, {&(0x7f0000001580)=""/107, 0x6b}, {&(0x7f0000001600)=""/123, 0x7b}, {&(0x7f0000001680)=""/135, 0x87}, {&(0x7f0000001740)=""/208, 0xd0}], 0x6, &(0x7f00000018c0)=""/127, 0x7f}, 0x1a83}], 0x2, 0x100, 0x0)

6m10.605391019s ago: executing program 1 (id=1049):
creat(&(0x7f00000002c0)='./file0\x00', 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file8\x00', 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file6\x00', 0x4, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x0, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f00000008c0)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000900)='./file7\x00', 0x4)
renameat2(0xffffffffffffff9c, &(0x7f0000000b80)='./file6\x00', 0xffffffffffffff9c, &(0x7f0000000bc0)='./file7\x00', 0x2)

6m10.553595925s ago: executing program 1 (id=1050):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003200)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000053d11f1d8500000082"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r3}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='mm_lru_insertion\x00', r1}, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r4, &(0x7f0000000180), 0x40010)

6m10.509465501s ago: executing program 1 (id=1059):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x94)
pipe2$9p(&(0x7f0000001900)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r4}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r3}, 0x10)
r5 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r5}, 0x2c, {[], [], 0x6b}})

6m10.292875112s ago: executing program 1 (id=1061):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x888000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000280)='./file1/file0\x00', 0x0, 0x1085408, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f0000000100)={{0x1, 0x1, 0x18, r0, {0x2}}, './file0\x00'})

6m10.257309259s ago: executing program 1 (id=1053):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2, 0x1000000, &(0x7f0000000580)="b318"})

6m10.133320155s ago: executing program 1 (id=1054):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000180)={0x73622a85, 0x0, 0x3})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000002c0)={0x44, 0x0, &(0x7f0000000440)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x4, 0x1000000, &(0x7f0000000500)="7f67fece"})

6m10.059471355s ago: executing program 36 (id=1054):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000180)={0x73622a85, 0x0, 0x3})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000004a80)={0x73622a85, 0x100, 0x1})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000004c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f0000000300)={@flat=@weak_binder={0x77622a85, 0x100a, 0x8000000000}, @flat=@weak_binder={0x77622a85, 0x1100, 0x3}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000002c0)={0x44, 0x0, &(0x7f0000000440)=[@reply={0x40406301, {0x2, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x4, 0x1000000, &(0x7f0000000500)="7f67fece"})

2m31.8234053s ago: executing program 8 (id=2482):
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x4, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000000000000000000000000008500000018000000850000007d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet(0x2, 0x2, 0x6a113fc2)
r0 = socket$inet(0x2, 0x2, 0x1)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=ANY=[@ANYBLOB="4c00000002060108000034e40000000000000000050001000600000005000400000000000900020073797a3100000000050005000200000c12000300686173683a6e65742c706f7274"], 0x4c}}, 0x2)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=ANY=[@ANYBLOB="50000000090601020000000000000000020000000900020073797a31000000000500010007000000280007800c00018008000140ffffffff0500070084000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c000000070601080000001e000000000a0000040500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
openat$kvm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r4 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xf2, 0x30, 0x39, 0x20, 0x2c42, 0x1202, 0x8540, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xc, 0x2, 0x2, 0xc1, 0x7f, 0xc, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io(r4, 0x0, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
syz_usb_control_io$cdc_ncm(r4, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2m30.140633788s ago: executing program 8 (id=2480):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000480)={0x0, 0x9013, 0x100, 0x4, 0x165}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
ptrace$peeksig(0x4209, r0, &(0x7f00000000c0), 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd, 0x0, 0x0, 0x3, 0x8})
io_uring_enter(r3, 0x3517, 0x173d, 0x42, 0x0, 0x0)

2m29.1520714s ago: executing program 8 (id=2484):
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(0xffffffffffffffff, 0xc0c09425, &(0x7f0000000380)={"b8e50a31a002b94fcd8fc4db3056309d", 0x0, 0x0, {0x7, 0x100}, {0xffffffffffffff7f, 0x5}, 0x51, [0x7, 0x3, 0xe, 0x2, 0x9, 0x8, 0xd8e, 0x7fc0000, 0x5, 0x0, 0x6, 0x3, 0x5, 0x49, 0x1, 0xc]})
openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff7c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee7, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0xfffffffffffffeef, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)

2m28.071013442s ago: executing program 8 (id=2486):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x94)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000020000000000000f9ffff0b85000000ae000000850000000700000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000040)='sys_exit\x00', r0}, 0x90)
signalfd(0xffffffffffffffff, 0x0, 0x0)
read(r1, &(0x7f0000000140)=""/119, 0x77)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r2, 0x0)
setpgid(0x0, r2)
mount$cgroup(0x0, &(0x7f0000000100)='./file0\x00', 0x0, 0x10000, 0x0)
r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
chmod(&(0x7f00000001c0)='./file0\x00', 0x9)
ioctl$AUTOFS_IOC_CATATONIC(r3, 0x9362, 0x0)

2m27.892862049s ago: executing program 8 (id=2489):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, 0x0, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendmmsg$inet6(r2, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x70, &(0x7f0000000580)=[{&(0x7f0000001680)='\t', 0x1}], 0x1}}], 0x1, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x25dfdbfa, {0x0, 0x0, 0x0, 0x0, 0x40810}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x4008011}, 0x4004)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, &(0x7f00000001c0)={0x0, 0xffff}, 0x8)
close(r2)

2m27.831503353s ago: executing program 8 (id=2490):
r0 = socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x18, r4, 0x6a98047402e98331, 0x0, 0x0, {}, [@HEADER={0x4}]}, 0x18}}, 0x0)

2m27.744257952s ago: executing program 37 (id=2490):
r0 = socket(0x2, 0x2, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{}, 0x1}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)={0x18, r4, 0x6a98047402e98331, 0x0, 0x0, {}, [@HEADER={0x4}]}, 0x18}}, 0x0)

7.47442472s ago: executing program 6 (id=3032):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_open_dev$mouse(&(0x7f00000000c0), 0x0, 0x2042)
writev(r2, &(0x7f0000000040)=[{&(0x7f0000000640)="f3", 0x1}], 0x1)
read$msr(r2, 0x0, 0x0)
connect$can_bcm(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0xfbc6, 0x10100, 0x8000003}, &(0x7f0000000080)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
r6 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_RESET_ASSOC(r6, 0x84, 0x78, 0x0, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0xe)
pselect6(0x0, 0x0, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0x9, 0x4, 0x2, 0x0, 0x2, 0x7}, 0x0, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(0xffffffffffffffff, 0xc004500a, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
poll(0x0, 0x0, 0x800)

6.570482304s ago: executing program 6 (id=3035):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x6)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
setgroups(0x0, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r3, 0x560a, &(0x7f0000000040)={0x0, 0x8, 0x0, 0x4})

5.112103755s ago: executing program 4 (id=3041):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x44000)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb4b, 0x9, 0x8, 0x0, 0x400003}, 0x0)
write$6lowpan_control(0xffffffffffffffff, 0x0, 0x0)
inotify_init1(0x0)
ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b46, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
r3 = syz_io_uring_setup(0x10e, &(0x7f00000000c0)={0x0, 0x8d2dc, 0x0, 0xffffffff}, &(0x7f00000003c0)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
socket(0xf, 0x5, 0x10001)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x40, 0x5, r2, 0x0, 0x0, 0x0, 0x80000})
io_uring_enter(r3, 0x47f5, 0x0, 0x0, 0x0, 0x0)

4.448867308s ago: executing program 9 (id=3043):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r0, 0x0)
truncate(&(0x7f00000000c0)='./cgroup.cpu/cgroup.procs\x00', 0x7)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000140)=@urb_type_control={0x2, {}, 0x20000009, 0x0, &(0x7f0000000240)={0x0, 0x0, 0xfffc, 0x360}, 0x8, 0x9, 0x80, 0x0, 0x0, 0x101, 0x0})
getrandom(0x0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
mkdir(0x0, 0x8)
syz_clone(0x10eb22b000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x400000)=nil, 0x40001e, 0x15)
socket$inet_udplite(0x2, 0x2, 0x88)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000180)='syz_tun\x00', 0x10)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCDARP(r2, 0x8953, &(0x7f0000000300)={{0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}, 0x0, {0x2, 0x0, @private}, 'syz_tun\x00'})

4.396182484s ago: executing program 6 (id=3044):
fanotify_init(0x200, 0x40000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x7, 0xd, 0x5, 0x1, 0x6}, 0x0)
sendmsg$unix(r0, 0x0, 0x4000880)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
r3 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0xfffffffd, 0xb6, 0x0, r2}, &(0x7f0000000000)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
execve(&(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000780))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000040)=0xfffffffc, 0x0, 0x4)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x1)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r3, 0x47f6, 0x0, 0x4, 0x0, 0x0)

3.524517951s ago: executing program 6 (id=3046):
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xffffffffffffff64, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0xffffffffffffffff, 0x803, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x9)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x10000000000002)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x5c2, &(0x7f0000000280)={0x0, 0x0, 0x3080, 0x8003, 0x25f}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x68, 0x3, r3, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2}})
io_uring_enter(r3, 0x6e2, 0x620, 0x1, 0x0, 0x0)

3.519798151s ago: executing program 9 (id=3047):
openat$cdrom(0xffffff9c, &(0x7f0000000400), 0x101000, 0x0)
socket$kcm(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x6, 0x2}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x5}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r0, 0x0, 0x0, 0x2, 0x0)
r2 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_script(r2, &(0x7f0000001200)={'#! ', './file0', [{0x20, '\x98\xe1Cvg\x9cO\x16\xc0TC\xe8\xb8\x91W\xb8\x84\xdf\xbe\xbd\x8f\x81!\xf2V[\x03V\xba/\xb9+\xd2\x95\xe0t\x0f<}T\v\x0f\xe8\xae\x89\xfa^\xce\xae[t/\x12\x1f\x02\x85\xbd\xbc\r(\xfd\xf2\xeeB\x12\xdc\x06\x1d\xd8\x86g\xcf\xb6\xde\xeb\xfc\xfc~A\x95\x8a6'}, {0x20, '5\xed\xe9\xe8\f\xcb\x82;\xc5\x98\"\x1c\x8d\xbb,X}\xec\x9f\xe5\xf0\x1f\x02\a\x0e\xe09\x17\xa9\xdbXP\x94}L\x17WT\xc0Rc\xe5\xd3\x9a\xcfGr3\xbaf\x8aS\xc6Q\x16\xf4\x9f\x02u.\xaf\xf3\xb8\x0e\x85a8\x03\x02\xf4\xf1\\b\x1ew\xd4F\xf1\xf9I\xe4\xca\xb1\xa51Sk\xdf\xc7\xd2\x87.b\xb9|+\x9f3@\xdfs\xa0\x01\x8fV/0\x8bo\xccQ\x9c\x9e\xae!b\xa0 \xea\xa4(C\n\x96\xdf\xd2\xd6\x91\x90\x83 \xb2\xb4\xac{\x02\xde,Ff\x98\x84\x16\x1b\x96\xac\x9e\x17\xf0\x13\xfa\xd1+\xcc\x19\x81ZZ\xa0\xde\xeb\xf3`\x0e\x87:` \x1b\xec\xc81\xb7\x91\xfdcL\xdcH/<w\x83\xd4B\x1cd\x8e\x98\xabd\xbc\f#\x92\xaf\xe5/|\x15\xaf\x81\x81\xe2l\x91'}]}, 0x12d)
close(r2)
execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
execve(&(0x7f0000000300)='./file0\x00', &(0x7f0000002200)={[&(0x7f0000000340)='^-%-\\x\\$})\'!&}*', &(0x7f0000000440)='syz0']}, 0x0)

3.510175504s ago: executing program 4 (id=3048):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
mmap$dsp(&(0x7f0000ff9000/0x2000)=nil, 0x2000, 0x100000f, 0x11, 0xffffffffffffffff, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000740))
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r2 = syz_open_procfs(0x0, &(0x7f0000000200)='attr/current\x00')
readv(r2, &(0x7f0000001440)=[{0x0}], 0x1)
unshare(0x6a040000)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000000)={'lo\x00', {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0xa}}})
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000001040)={'lo\x00', {0x2, 0x4e21, @private=0xa010102}})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000080)={0x0, 0x3, r0, 0x5})
socket$nl_route(0x10, 0x3, 0x0)

2.572199474s ago: executing program 4 (id=3050):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x49a, &(0x7f0000000400)={0x0, 0xd175, 0x1, 0x8000, 0x400246}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000600)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_MSG_RING={0x28, 0x0, 0x0, r3, 0x1, 0x0, 0x0, 0x2})
io_uring_enter(r3, 0x4c6e, 0xc67a, 0xc, 0x0, 0x0)
io_uring_setup(0x5b42, 0x0)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000400)={'syztnl0\x00', &(0x7f0000000340)={'erspan0\x00', 0x0, 0x10, 0x1, 0xe45, 0x100, {{0x5, 0x4, 0x2, 0x8, 0x14, 0x64, 0x0, 0x40, 0x2f, 0x0, @multicast2, @multicast1}}}})
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)

2.420229649s ago: executing program 7 (id=3051):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000007100)=0x8, 0x4)
r1 = socket(0x2, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c0000001e00010000000000000000000200000001000007000000000800010000000000080005"], 0x2c}, 0x1, 0x0, 0x0, 0x2}, 0x0)
sendto$packet(r0, &(0x7f0000007080)="31e9200000007ef52f555f76c888", 0xe, 0x24000840, &(0x7f0000000040)={0x11, 0x86dd, r2, 0x1, 0xe2, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x33}}, 0x14)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r5 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_tcp_TCP_ZEROCOPY_RECEIVE(r5, 0x6, 0x23, 0x0, &(0x7f0000000040))
socket$nl_netfilter(0x10, 0x3, 0xc)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r8, 0x29, 0x23, &(0x7f00000002c0)={{{@in=@multicast2, @in=@empty, 0x4e21, 0x8000, 0x4e24, 0x9, 0xfcf8d278083eddec, 0xa0}, {0x5, 0x1000, 0x5, 0x8001, 0x7, 0x3, 0x98, 0x2}, {0x9, 0x0, 0x9, 0x73}, 0x10000, 0x0, 0x0, 0x0, 0x2}, {{@in6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, 0x4d6, 0xff}, 0xa, @in6=@ipv4={'\x00', '\xff\xff', @local}, 0x0, 0xf701a192b5f05b74, 0x3, 0x40, 0x9, 0x10001, 0x2}}, 0xe8)
sendmsg$NL80211_CMD_FRAME(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000004c0)=ANY=[@ANYBLOB='p\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010025bd5eccfddbdf253b00000008000300", @ANYRES32, @ANYBLOB="4b003300509c0600080211000001080211000001fffffffffffff3ff08004841940000000000000064000e0201000406b40a010006000602090072060303030303037107254c79370f04d0f20800"], 0x70}, 0x1, 0x0, 0x0, 0x40000}, 0x2000c000)
sendmsg$netlink(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000005d00)={0x114, 0x2e, 0x1, 0x0, 0x25dfdbfc, "", [@nested={0x104, 0xf2, 0x0, 0x1, [@typed={0xc, 0x18, 0x0, 0x0, @u64=0xfac08}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x16}}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a46cf26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f00ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82", @typed={0x4, 0xe9}]}]}, 0x114}], 0x1, 0x0, 0x0, 0x1}, 0x0)

2.34840623s ago: executing program 7 (id=3052):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mq_getsetattr(0xffffffffffffffff, &(0x7f0000000300)={0xb0000000, 0x6, 0x6, 0x8}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000340)=[{0x20, 0xc, 0x77, 0xfffff024}, {0x6, 0x0, 0x0, 0x2}]}, 0x8)
sendmmsg(r2, &(0x7f0000001c00), 0x400000000000159, 0x40840)

2.067228131s ago: executing program 9 (id=3053):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB="0f000000040000000800000002000000000000", @ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x50)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r1, 0x0, 0xd}, 0x18)
socket$inet(0x2, 0x4000000000000001, 0x0)
sendmsg$netlink(r0, &(0x7f0000007d80)={0x0, 0x0, 0x0}, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000280), 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), r2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c0260000410007010000000007000000017c00000400fc80a72601"], 0x26c0}}, 0x4010)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004a40)=ANY=[@ANYBLOB="c0260000410007010000000007000000027c00000400fc80a72601"], 0x26c0}}, 0x4010)

1.927166737s ago: executing program 9 (id=3055):
bpf$ITER_CREATE(0xb, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x3)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x2000000, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x25, &(0x7f0000000000)={0x1})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x7, &(0x7f00000003c0)={0x1, 0x0, 0xb, 0x0, 0xffffffffffffffff})
timer_create(0x8, &(0x7f00000002c0)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, &(0x7f0000000080)=0x4, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f0000001480)=[{{&(0x7f0000000340)=@un=@abs, 0x80, &(0x7f0000000140)=[{&(0x7f0000000640)=""/167, 0xa7}, {&(0x7f00000000c0)=""/19, 0x13}, {&(0x7f0000000700)=""/159, 0x9f}, {&(0x7f00000007c0)=""/198, 0xc6}], 0x4, &(0x7f0000000200)=""/6, 0x6}, 0xe}, {{&(0x7f0000000400)=@caif=@dgm, 0x80, &(0x7f00000009c0)=[{&(0x7f00000008c0)=""/48, 0x30}, {&(0x7f0000000900)=""/185, 0xb9}], 0x2, &(0x7f0000000a00)=""/64, 0x40}, 0x4}, {{&(0x7f0000000a40)=@nl=@proc, 0x80, &(0x7f0000000b40)=[{&(0x7f0000000ac0)=""/21, 0x15}, {&(0x7f0000000b00)=""/38, 0x26}], 0x2}}, {{&(0x7f0000000b80)=@alg, 0x80, &(0x7f0000000d00)=[{&(0x7f0000000c00)=""/167, 0xa7}, {&(0x7f0000000cc0)=""/5, 0x5}], 0x2, &(0x7f0000000d40)=""/51, 0x33}, 0x7fff}, {{&(0x7f0000000d80)=@tipc=@id, 0x80, &(0x7f0000000f00)=[{&(0x7f0000000e00)=""/27, 0x1b}, {&(0x7f0000000e40)=""/157, 0x9d}], 0x2, &(0x7f0000000f40)=""/6, 0x6}, 0x3cc3e0f9}, {{0x0, 0x0, &(0x7f0000001180)=[{&(0x7f0000000f80)=""/83, 0x53}, {&(0x7f0000001000)=""/70, 0x46}, {&(0x7f0000001080)=""/206, 0xce}], 0x3, &(0x7f00000011c0)=""/226, 0xe2}, 0x200}, {{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f00000012c0)=""/121, 0x79}], 0x1, &(0x7f0000001380)=""/205, 0xcd}, 0x1}], 0x7, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0500000005000000ff0100004000000042000000", @ANYRES32, @ANYBLOB="000000000000000000feffffffffffffff00000093f5d5acb6df043f58fe045c618e24c11bb430293911531de36de1aaff7160da9fc510962b7ab8acb1f2678f4eb35fe18c4488f2faa21a50686f3d9c7a01bf705b3cb18ada12fdfafb6c46489dacae737cdf4cc2d77ef93e50b814aaf9ec583439cf5d94264d0f901eb813e94e75c5491414de3884cd8e340a694cafec8d144b7f25e1c52251143fd416474b294b05a0fab8f15f30a15a434099646c2c2d764f6c6a0e304d0d00"/197, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)

1.908465422s ago: executing program 7 (id=3056):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r2, 0x11b, 0x2, &(0x7f00000002c0)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r4=>0x0})
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r5, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r5, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r6, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r7=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r5, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
bind$xdp(r5, &(0x7f0000000100)={0x2c, 0x0, r7}, 0x10)
bind$xdp(r2, &(0x7f0000000240)={0x2c, 0x1, r4, 0x0, r5}, 0x60)
sendmsg$nl_route_sched(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@getchain={0x24, 0x11, 0x43d, 0x0, 0x0, {0x0, 0x0, 0x0, r4, {0xe, 0xb}}}, 0x24}}, 0x800)

1.855796813s ago: executing program 6 (id=3057):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000240)={0x26, 'hash\x00', 0x0, 0x0, 'sm3\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x80000)
sendmsg$kcm(r3, &(0x7f0000001880)={0x0, 0xf5, &(0x7f0000001600)=[{&(0x7f0000001a00)="e8a472", 0x3}, {&(0x7f00000000c0)="bcc9b1557de1fad1f955144629ed4dcf3c33679ea22502e3cff8923bf5d43921bc111a262f295a8eb540", 0x7fffeffd}, {&(0x7f0000001680)="094fb143daa9baa36aaa2cca06886c533118e056", 0x14}], 0x3}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYBLOB="01000000000000001c0012000c"], 0x3c}}, 0x0)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
symlink(&(0x7f0000000040)='.\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@lowerdir={'lowerdir', 0x3d, './file0'}}]})
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
rename(0x0, 0x0)
open(&(0x7f0000000040)='./file0\x00', 0x40, 0x180)
sendmsg$NL80211_CMD_SET_REG(0xffffffffffffffff, &(0x7f0000000400)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x20000010}, 0x4004080)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40000}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

1.644039381s ago: executing program 7 (id=3058):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = socket(0x1e, 0x1, 0x0)
connect$tipc(r5, &(0x7f0000000000)=@name={0x1e, 0x2, 0x1, {{0x1, 0x1}}}, 0x10)
recvmmsg(r5, &(0x7f0000004b40)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000280)=""/154, 0x9a}], 0x1}, 0xa46}], 0x1, 0x2102, 0x0)
write$binfmt_misc(r5, &(0x7f0000000340), 0x2000011a)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
socket$can_bcm(0x1d, 0x2, 0x2)
socket$kcm(0x10, 0x2, 0x0)

1.622654092s ago: executing program 6 (id=3059):
socket$key(0xf, 0x3, 0x2)
socket$key(0xf, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg(r1, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb4b, 0x9, 0x8, 0x0, 0x400003}, 0x0)
getsockopt$CAN_RAW_LOOPBACK(0xffffffffffffffff, 0x65, 0x20, 0x0, &(0x7f0000001040)=0x5d)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = openat$6lowpan_control(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001400)=@newtaction={0x48, 0x30, 0x1, 0x70bd2b, 0x25dfdbfd, {}, [{0x34, 0x1, [@m_pedit={0x30, 0x1, 0x0, 0x0, {{0xa}, {0x4}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4081}, 0x2400c800)
write$6lowpan_control(r2, &(0x7f0000000180)='connect aa:aa:aa:aa:aa:11 0', 0x1b)

1.283985884s ago: executing program 4 (id=3060):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000008500000072000000180100002020782500000000f01f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r0}, 0xc)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
rt_sigaction(0x21, &(0x7f0000000280)={0x0, 0x0, 0x0, {[0x0, 0x2800000]}}, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x9, 0x2, 0x180, 0x4, 0x10, 0xf1, 0x50, 0x7fffffffffffe, 0x5, 0x0, 0x9, 0x0, 0x6, 0x0, 0xbdb], 0xffff1001, 0x120182})
r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000040)=[{0x40, 0x25, 0x2, 0x8}, {0x6, 0x0, 0x6, 0x1}]}, 0x8)
bind$bt_hci(r3, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r3, 0x0, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(0xffffffffffffffff, 0xc040564a, &(0x7f0000000200)={0x0, 0x0, 0x300f})
r4 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r2, 0x84, 0x15, &(0x7f0000000180)={0x1}, 0x1)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.264735698s ago: executing program 7 (id=3061):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180), &(0x7f00000001c0))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r2, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
write$P9_RGETLOCK(r3, &(0x7f0000000000)=ANY=[], 0x200002e6)
fcntl$setpipe(r3, 0x407, 0x7000000)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r2, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
bind$inet6(r2, &(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x4004)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r2, 0x84, 0x77, 0x0, 0x0)

1.064727115s ago: executing program 4 (id=3062):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x301, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x3}, @NFTA_CHAIN_HOOK={0x20, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8}, @NFTA_HOOK_DEV={0x14, 0x3, 'netdevsim0\x00'}]}]}], {0x14}}, 0x9c}}, 0x0)
write$tun(r0, &(0x7f0000001700)={@val={0x8, 0x800}, @val={0x7, 0x0, 0x1, 0x0, 0x14}, @ipv4=@generic={{0x6, 0x4, 0x2, 0x2, 0xbd6, 0x64, 0x0, 0xb, 0x88, 0x0, @private=0xa0100fe, @broadcast, {[@timestamp_prespec={0x44, 0x4, 0x51}]}}, "3297e3ba0fa8a2e71bd9fe1a399b5110420b70460c0dad392d66248a43540df968e7fcaab34569c0e36170578c0d3c546a98b26295e2592f360905866eb4720fed03a977a3df4224895629fd6ccec64f13a999f18f518e3ee28798381975e862f1db9dccdb2f1c1fb60f5ffc7a339d40a8bd1f24cede8a32f186f142e194d4fb48224759faf813ea80e6a853e79b4fe27fe3e1aec5897b314a7f0d515b07b1835986b4885e9826d902c40f16cd77c58b6433ab039955ce9db11f36f459e7114ace6c9989eecea80a81fd39f339356c7c3391af83da2486503a7973f6db4806cf3e5ca94cf7e1f79fd00decd76100c18251a59d1474caabf4d3ca6a9a9885df710e68c5b0dc11832dbb5eecb5c88c2f8f02bdbd88569ad4a740359cbca8c378118220d73bdd1e661c3a74f77aa931b11cd38119b0f084bb96e84803fca6566c33ee1e4e34ab0253fbf24f9f5974af5e1fc2a43a4ec9dd9928a8f38a128ea27c429300ae5a6bd7740471f973d8224b2b07879f4fbe7dcbed776a72ebdc713bcf1d7aa45b01c32a1003e6670d58510bd79ba2fde5cb2b82cef2cc315648f4e9d96d848ba327949b8926253cbdef6888a8982108b6ac7a1108533dd3fe125002e2e286362d1055082a9d73ec5ac3080f2a501ff27250b62c8965f371cf92b32d6422d79f66261eb08a2f8fe50049e102c69ce703d116d0834208cc957d0f1376457a90245816d7642412897fdd2f982fdfbc3af65aa0446b00c767b79aec40e460887ea02188e3a0960eea39b144859467b881978378c9fd593259e0f63148179fe2c2f6d40987b63a6e384e63027f03d8039d707522942d5dc88fd842524d006290b6a65e9cc86cc5b401a60ec4aedfb3bf4d0447bb681810a16b9684b72c2f4593ef834a0203e78cd1d9dbc978e9ae8f3ab62c07f1e41d59470decee7b0cc41ac49e4b75a9ab6da65849f62ec217bb39ed161e7d337822d96badbd74d66451ea9a74bed591dc9631bf639dcf7846ee428a9fa55bfceedf3b1c23642f3b58dd0a7273664c6c49c9160a4b9cc5b72d0210e305b94e2cb09ae1d4af9d365b5093851f229c8c30aef75d45ccdbab4b86d801a9ad3b27f26ba601d531c0743717aa7aae29d37f496fec7682c5a1abd321ad61941a2d23fcac6af1d1875e308c8d8c64a5152be47b59c09d293f46b857310a99f1885f0a49d432aa0d39a3e8fc885e75e66b63215133175a19267c8d0adf7d8f644e742ed5369d1405e99e63b78727f135e0243f24d9ce354a1562102ee8de4c191508343b86bf7e7519ddd770ce55e17e590561b2f437194c97ad46622a6ae3dd68d9993e6744954f4cd308bd6594fdccedc578e80aed274a65219697229059723ac37d535cca0e9c314e7941b4160bbd2ffba71f26ffe3228431bc81463078ad70583277ef18bce23ca2e5b9a00670956ea8e0e2c739c006106c8c9ee3f92ba728d8490742b74a9a18cbedfc4e69bb87e0da4c7dfb964374c28c837d4641fb99a19b233675f8526af395335e0185cf3934805442ac379980b687a7128e53284ba9e741b5fe9bc969bfbd55cbce76842915e076e2adf844338d16d3802c681bafdcc60465bd34dfc2d1c069ceee40060e0570fc1275ccabfe3f9be3e84ceedf72cd649c082232008e2b0c94594588c00e0fe911bbf1c12eb6c37ce05674a7597feecf27f5e051ffa824d9ff93638dfa9a84c77562aa2cf897f55a97b79c18544ad03480e1011b8f93e0ead9c2c6672448f585c5803ae99be777fbc662ef4450c1e936ed8b3c8047f00e72adc84561f417f8e5e1dde4967005d96a64fc75d9f486b3ebdb5904a0a56ec48542f0efce939f66fd69259e7376ad37e84434ea90f35b2d3bd63b5c36b267d8f2c7dc5a50b46e00ed086dff8b039e07b84c60611269d4f282ad04dc8e0b481eece2f8a614734be73617f0ad5be195446b09dca4cf1f32653dd3e188aece76f3014deb2ba61744835c0f735234b6a4637c948a7b4fd4203b286ca87d669e325d70277075b094f59eb1dff6c9c05c40d5e464c563df79486e1a32e6ed9bcf675aac7968b4e98dc4e210215b0d3b6a2525b2e3df11f3f1490eb39cabffbe32e23659121fde8e4e346e0f595aaf3666a5f6f118c1a1128039502ac04c40b85eb4c54e6c95b8d1c2aac74ae9e1c355ccde9d54d5d833293f5df09224482179e5bcd8e227c9eaacb5793498be490de32baba49172a6e14c2cd4e6462ceb0a905a1d64804840ce62e350c6efac10a7fcb029f84af64e2256d45afd3b3f59379895740e0cd2fd24c63264f785bb6e3f40ec72ed67d1a7d87dd264743d9c951cb5aa8bc6f1d1bc9b23303d5aa7f8f6f961326757456057000cb2bacf78cc229002777e932c2640b8dfa793846ca49fa93996db95104a8808a1906b19df17e754b90582b6c49efb3ddce067dd9292291cfd2bb0323ce8098f29e4fce0de31cf5c7e2e2da5d0d0996a8be776de8fecfd3ce68e80d21f1701f6b90ac51278abbd727d19411e0ebe001b990b177b8db0c592b18a4b5e4a6221902362e5b20e6e6f2131a5a5e03c1150b179ef40c933c2fef1b79de738652ec4c32565f5cf751a11db177099c4e2e5bd7616cd0dd501d5bfccf5691de3cca590365328648baf8a9487a3c212193c9bb837594460967e823067a9465eba7001eaf609a810488ef5c147aaa5e9e8c75b585ac3582b6915e20b5aa2f79b7a94857122988c56dbce1ea52de1a56652e839bb853be3ee16052b33fb83ca54d8e4e19440a5e81492107043a66286f63ca87a1f7b8a4e9547a7eb6005419cfd28cb37e9e374f4d0143973286e87070754025c1a6fccfdc6858eaca8c35ecb19584ce7141cc79a5bc813469161b87a19fc21f3373d1f25b3427916dd1be2a589b70ea3b39fcc7801e13beaf19b76164faf3dc4ab8faa5648d24eddd6caceaa0d5ac9cad633c19a4a4d059ee823a49b7cf82c5777d376c111f58ea8fd473429907852301a2c856f27bd0c687ab5be0e2bbef64ddee1601375a4440e3f59d60f57caebfe457f82432523ec4a61cdbb7f1e91e4b05fda892df131c274b19929d26f7a5a6d3ca487983f729601ed9bb4bf5c1cc3d453d406e9534688dec6a2dd0b9db149365c125a95e129565e62cc91f7d960abe1055b730ae0994e7eb08392d5745d0e4f529c4defc3d3e43d0815b0cc63effa88d20c13b14e780c2f6c89a1ee5e4db45a5c272186cc3e51b13dab3add5f467e8ca0f4c45a1fc76db2f0cbf794102946aafcd8cd8a3e935a606b9721645c4d550ae0907f345593736506efc626498c974753d474a73626041d3a54f8fb50de2a6335611a3779da3a02daceb2256d9b102d4d30dd3cd389a04b1a7a6076879f36534bb3379debb46ed1fa2c40096c752017dd024345c58313b43070ff7bef94dc3cafbe6ec20d59e5ea3c196ba3b783bfa87384407efc664cd350c80ac397516018e35371956e414755cde304d2a228c1540ba6fd6a7402d11c666964f024da4c016eb556ba2c5fab86c60c12efb1496295d80f0383526e8e0fc55a287bbd3cb966a916f57958d8b6ef97aa0c4b47f7746bab6b99698c1c96b25c4e2e084147866fe0970b109dd26984adc0758eb6442712cc46dcd8ed3038b0595252eed1b8a46525862662d1e67eba66ac341f8d27853eed54854f488f079bd48df6ce7a4be8b1b61fd23a2dc4d3ade0992011539cc63f80fcfc75008c20cb639348cb218f8f476a6d56917f4ca07e67fc20ea2e9642eaf2182b397e279f5f6c70438fb8aa39cba788588c181461ea7efe1a0dd5b95eb26f7158b91012f7ce0ee1b4e79ce4da377bea4551738a0f491a84f19b3be9827b4469c299527aa9c20b8bf12f919976a0356bba720fb97800763c79bcbb10d89280f0f97cdd19aa0d54828b308195fac170613cf4b515e340a9ef2c97f618a9f50b30ae34ebeed9a38b4c6969680accc740b154ecb014fb5d543a59ccb98a7de2823a2dec39f331cb503eb74fef61262c6d4050bc723caee834eb28c64ce007f6027375e936b62387cf1778970e88b0574a0106d4c855be7425767c551b2fa644d9d8a59f787e7610581b768057d229673344571c3d6e3f10975b2859f568398b1f38f89524d9ad0c1588617c3883a1227b714c81cdf28da54f33968c1c50f28da01c308eb31d319b3e77f96bec001c9300000000000000009cc0062283ac112868592619db14d629c47bfb793a723dcd2f7b07"}}, 0xbe4)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r3 = syz_open_dev$sndmidi(0x0, 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee4, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x8001}})
io_uring_enter(r4, 0x2b93, 0xf9d0, 0x22, 0x0, 0x0)

990.462166ms ago: executing program 9 (id=3063):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0x837, &(0x7f0000000180)={0x0, 0x679a, 0x80, 0x4, 0x3cc}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_SYMLINKAT={0x26, 0x8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="02000000040000"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f00000000c0)=0xa0000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
writev(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

818.996855ms ago: executing program 4 (id=3064):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$vcsa(&(0x7f0000000300), 0x1, 0x102)
write$P9_RLOPEN(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000740)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = syz_io_uring_setup(0x487, &(0x7f00000000c0)={0x0, 0x9010, 0x100, 0x4, 0x165}, &(0x7f0000000000)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x20, 0x10, r3, 0x0, 0x0, 0x0, 0x60, 0x1, {0x1}})
io_uring_enter(r4, 0x3517, 0x173d, 0x42, 0x0, 0x0)

5.586253ms ago: executing program 9 (id=3065):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x8, 0x0, 0x0, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
mq_getsetattr(0xffffffffffffffff, &(0x7f0000000300)={0xb0000000, 0x6, 0x6, 0x8}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000340)=[{0x20, 0xc, 0x77, 0xfffff024}, {0x6, 0x0, 0x0, 0x2}]}, 0x8)
sendmmsg(r2, &(0x7f0000001c00), 0x400000000000159, 0x40840)

0s ago: executing program 7 (id=3073):
socket$inet6_sctp(0xa, 0x1, 0x84)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
socket(0x10, 0x3, 0x0)
syz_usb_connect$hid(0x5, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f0000000300)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
ioctl$sock_proto_private(r3, 0x89e9, &(0x7f00000004c0)="ae87349028fafb5b9258e27a47a2f87a95de6532b5e46275090a69da406e68b2ef3c49247c88e77ab5dd88728df575f3cee80ed87d04958bf3145f5a703a088c60e6723e5424cab2ac0e5b943f960e3f516d6e561b141c83147a9d3a4cc26b6b9d8b800e2f93ef0173fc6561bc998bf7507db0b8db56394a8c26fa121af9df")
sendmsg$key(r3, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r2, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe8)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x1c)

kernel console output (not intermixed with test programs):

=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12144 comm="syz.6.1909" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf709e579 code=0x7ffc0000
[  285.031162][   T40] audit: type=1326 audit(1758533801.554:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12144 comm="syz.6.1909" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  285.040930][   T40] audit: type=1326 audit(1758533801.554:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12144 comm="syz.6.1909" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  285.056841][   T40] audit: type=1326 audit(1758533801.554:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12144 comm="syz.6.1909" exe="/syz-executor" sig=0 arch=40000003 syscall=170 compat=1 ip=0xf709e579 code=0x7ffc0000
[  285.248688][T12151] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1910'.
[  285.255986][T12151] dummy0: entered promiscuous mode
[  285.261514][T12151] dummy0: left promiscuous mode
[  285.661719][T12162] netlink: 'syz.7.1914': attribute type 1 has an invalid length.
[  285.683616][T12162] 8021q: adding VLAN 0 to HW filter on device bond3
[  285.721132][T12162] vlan2: entered promiscuous mode
[  285.723265][T12162] bond3: entered promiscuous mode
[  285.725480][T12162] vlan2: entered allmulticast mode
[  285.728083][T12162] bond3: entered allmulticast mode
[  285.754255][T12162] bond3: (slave gretap1): making interface the new active one
[  285.757713][T12162] gretap1: entered promiscuous mode
[  285.759988][T12162] gretap1: entered allmulticast mode
[  285.764603][T12162] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  286.058511][T12169] lo speed is unknown, defaulting to 1000
[  286.343488][T12173] binder: 12168:12173 ioctl c0306201 0 returned -14
[  286.534679][T12180] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  286.628076][T12183] netlink: 'syz.6.1920': attribute type 1 has an invalid length.
[  286.631410][T12183] netlink: 'syz.6.1920': attribute type 4 has an invalid length.
[  286.634786][T12183] netlink: 15334 bytes leftover after parsing attributes in process `syz.6.1920'.
[  287.125494][T12206] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1928'.
[  287.433732][ T5976] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  287.436505][ T5976] Bluetooth: hci1: Injecting HCI hardware error event
[  287.441635][ T5976] Bluetooth: hci1: hardware error 0x00
[  287.460604][T12211] netlink: 'syz.8.1930': attribute type 13 has an invalid length.
[  287.463215][T12211] netlink: 'syz.8.1930': attribute type 17 has an invalid length.
[  287.739263][T12217] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1932'.
[  287.845193][T12211] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  287.851056][  T840] lo speed is unknown, defaulting to 1000
[  287.907515][T12219] bridge10: port 1(bond8) entered blocking state
[  287.920190][T12219] bridge10: port 1(bond8) entered disabled state
[  287.926847][T12219] bond8: entered allmulticast mode
[  287.937038][T12219] bond8: entered promiscuous mode
[  287.943911][T12220] bridge10: port 2(geneve2) entered blocking state
[  287.946998][T12220] bridge10: port 2(geneve2) entered disabled state
[  287.949400][T12220] geneve2: entered allmulticast mode
[  287.951963][T12220] geneve2: entered promiscuous mode
[  288.306789][ T5982] Bluetooth: hci0: command 0x041b tx timeout
[  288.466826][ T5982] Bluetooth: hci4: command tx timeout
[  288.811696][T12239] MPI: mpi too large (124808 bits)
[  289.380867][T12246] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1941'.
[  289.526726][ T5976] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  289.578701][T12250] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  289.907784][T12258] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  289.912102][T12258] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  289.915151][T12258] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  289.920301][T12258] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  289.923391][T12258] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  289.926861][T12258] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  289.929889][T12258] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  289.933413][T12258] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  289.936030][T12258] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  289.938851][T12258] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  290.641871][T12271] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1949'.
[  290.811785][T12275] netlink: 'syz.7.1951': attribute type 3 has an invalid length.
[  290.816635][T12275] netlink: 'syz.7.1951': attribute type 3 has an invalid length.
[  290.924197][T12281] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1953'.
[  290.951685][T12281] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1953'.
[  291.253267][T12284] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1954'.
[  291.310497][T12286] netlink: 3 bytes leftover after parsing attributes in process `syz.7.1954'.
[  291.320879][T12286] batadv0: entered promiscuous mode
[  291.326171][T12286] batadv0: entered allmulticast mode
[  291.362533][T12287] netlink: 3 bytes leftover after parsing attributes in process `syz.7.1954'.
[  291.372422][T12287] batadv0: entered promiscuous mode
[  291.374268][T12287] batadv0: entered allmulticast mode
[  291.544506][T12289] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1955'.
[  291.548847][T12289] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1955'.
[  291.611382][T12294] dvmrp1: entered allmulticast mode
[  291.684273][T11025] syzkaller0: tun_net_xmit 76
[  291.687061][T11025] syzkaller0: tun_net_xmit 48
[  291.707252][T12297] syzkaller0: create flow: hash 2516469754 index 2
[  291.707476][ T6038] syzkaller0: tun_net_xmit 76
[  291.753676][T12297] syzkaller0: delete flow: hash 2516469754 index 2
[  291.996461][T12318] netlink: 'syz.8.1968': attribute type 1 has an invalid length.
[  293.093813][T12318] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  293.109486][T12323] workqueue: Failed to create a rescuer kthread for wq "bond3": -EINTR
[  294.466775][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  294.567249][T12366] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1982'.
[  294.777828][T12375] lo speed is unknown, defaulting to 1000
[  294.780169][T12375] lo speed is unknown, defaulting to 1000
[  294.783876][T12375] lo speed is unknown, defaulting to 1000
[  294.806368][T12375] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  294.835634][T12375] lo speed is unknown, defaulting to 1000
[  294.841320][T12375] lo speed is unknown, defaulting to 1000
[  294.846558][T12375] lo speed is unknown, defaulting to 1000
[  294.852805][T12375] lo speed is unknown, defaulting to 1000
[  294.858084][T12375] lo speed is unknown, defaulting to 1000
[  294.863716][T12375] lo speed is unknown, defaulting to 1000
[  295.846885][T12393] wireguard0: entered promiscuous mode
[  295.861753][T12393] wireguard0: entered allmulticast mode
[  295.872803][T12396] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1990'.
[  295.882877][T12396] tipc: Enabled bearer <udp:syz1>, priority 10
[  296.465063][T12405] lo speed is unknown, defaulting to 1000
[  296.470808][T12405] lo speed is unknown, defaulting to 1000
[  296.624108][T12410] cgroup: fork rejected by pids controller in /syz7
[  297.980230][T14915] netlink: 'syz.8.1996': attribute type 1 has an invalid length.
[  297.985584][T14914] bridge0: port 2(bridge_slave_1) entered disabled state
[  297.988183][T14914] bridge0: port 1(bridge_slave_0) entered disabled state
[  298.072501][T14914] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  298.081392][T14914] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  298.144839][ T1327] lo speed is unknown, defaulting to 1000
[  298.146985][ T1327] syz0: Port: 1 Link DOWN
[  298.163360][T14916] bond3: (slave geneve2): Opening slave failed
[  298.169700][T11018] netdevsim netdevsim8 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  298.172656][T11018] netdevsim netdevsim8 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  298.178944][T11018] netdevsim netdevsim8 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  298.181951][T11018] netdevsim netdevsim8 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  298.546006][T14938] ªªªªª»: renamed from hsr0
[  298.636790][T14941] netlink: 'syz.6.2006': attribute type 16 has an invalid length.
[  298.639378][T14941] netlink: 'syz.6.2006': attribute type 17 has an invalid length.
[  298.655854][T14941] bridge0: port 3(syz_tun) entered blocking state
[  298.658147][T14941] bridge0: port 3(syz_tun) entered forwarding state
[  298.664896][T14941] 8021q: adding VLAN 0 to HW filter on device bond0
[  298.668810][T14941] 8021q: adding VLAN 0 to HW filter on device team0
[  298.673058][T14941] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  298.855978][T14948] bridge0: port 3(syz_tun) entered disabled state
[  298.867252][T14948] wg2: left promiscuous mode
[  298.868861][T14948] wg2: left allmulticast mode
[  298.871429][T14948] xfrm0: left promiscuous mode
[  298.872957][T14948] xfrm0: left allmulticast mode
[  298.877032][T14948] bridge2: left allmulticast mode
[  299.889748][   T40] kauditd_printk_skb: 45 callbacks suppressed
[  299.889760][   T40] audit: type=1326 audit(1758533816.484:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14968 comm="syz.6.2015" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf709e579 code=0x0
[  300.306413][   T40] audit: type=1326 audit(1758533816.894:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14978 comm="syz.7.2018" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  300.313815][   T40] audit: type=1326 audit(1758533816.894:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14978 comm="syz.7.2018" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  300.320566][   T40] audit: type=1326 audit(1758533816.904:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14978 comm="syz.7.2018" exe="/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf70de579 code=0x7ffc0000
[  300.327294][   T40] audit: type=1326 audit(1758533816.904:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14978 comm="syz.7.2018" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  300.334154][   T40] audit: type=1326 audit(1758533816.904:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14978 comm="syz.7.2018" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  300.341795][   T40] audit: type=1326 audit(1758533816.904:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14978 comm="syz.7.2018" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf70de579 code=0x7ffc0000
[  300.350701][   T40] audit: type=1326 audit(1758533816.904:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14978 comm="syz.7.2018" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  300.357765][   T40] audit: type=1326 audit(1758533816.904:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14978 comm="syz.7.2018" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  300.364349][   T40] audit: type=1326 audit(1758533816.914:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14978 comm="syz.7.2018" exe="/syz-executor" sig=0 arch=40000003 syscall=270 compat=1 ip=0xf70de579 code=0x7ffc0000
[  300.968281][T15001] veth0_to_hsr: entered allmulticast mode
[  300.970765][T15000] veth0_to_hsr: left allmulticast mode
[  304.041343][T15057] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2037'.
[  304.044862][T15057] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2037'.
[  304.844978][T15065] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2041'.
[  305.677058][T15091] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  305.682942][T15091] syzkaller0: entered promiscuous mode
[  305.685298][T15091] syzkaller0: entered allmulticast mode
[  305.695529][T15091] tipc: Resetting bearer <eth:syzkaller0>
[  305.701334][T15090] tipc: Resetting bearer <eth:syzkaller0>
[  305.747758][T15090] tipc: Disabling bearer <eth:syzkaller0>
[  305.824729][   T40] kauditd_printk_skb: 29 callbacks suppressed
[  305.824745][   T40] audit: type=1326 audit(1758533822.414:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15094 comm="syz.6.2048" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x0
[  305.973025][T15099] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2050'.
[  308.011711][T15139] netlink: 'syz.4.2060': attribute type 2 has an invalid length.
[  308.014812][T15139] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2060'.
[  308.089121][T15139] : entered promiscuous mode
[  308.905848][T15158] 
: renamed from bond_slave_0 (while UP)
[  309.153661][T15162] cgroup: fork rejected by pids controller in /syz4
[  311.812984][T15349] binder: 15347:15349 ioctl 400454d4 80000180 returned -22
[  312.308011][T15356] syz.8.2085: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  312.312822][T15356] CPU: 1 UID: 0 PID: 15356 Comm: syz.8.2085 Not tainted syzkaller #0 PREEMPT(full) 
[  312.312839][T15356] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  312.312847][T15356] Call Trace:
[  312.312851][T15356]  <TASK>
[  312.312856][T15356]  dump_stack_lvl+0x16c/0x1f0
[  312.312898][T15356]  warn_alloc+0x248/0x3a0
[  312.312919][T15356]  ? __pfx_warn_alloc+0x10/0x10
[  312.312931][T15356]  ? __pfx_stack_trace_save+0x10/0x10
[  312.312966][T15356]  ? kasan_save_stack+0x42/0x60
[  312.312978][T15356]  ? kasan_save_stack+0x33/0x60
[  312.312989][T15356]  ? kasan_save_track+0x14/0x30
[  312.313002][T15356]  ? xskq_create+0x52/0x1d0
[  312.313015][T15356]  ? xsk_setsockopt+0x74e/0x9a0
[  312.313028][T15356]  ? do_sock_setsockopt+0xf3/0x1d0
[  312.313041][T15356]  ? xskq_create+0xfb/0x1d0
[  312.313056][T15356]  __vmalloc_node_range_noprof+0xff5/0x14b0
[  312.313072][T15356]  ? xskq_create+0xfb/0x1d0
[  312.313089][T15356]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  312.313104][T15356]  ? xskq_create+0xfb/0x1d0
[  312.313117][T15356]  vmalloc_user_noprof+0x9e/0xe0
[  312.313127][T15356]  ? xskq_create+0xfb/0x1d0
[  312.313141][T15356]  xskq_create+0xfb/0x1d0
[  312.313155][T15356]  xsk_setsockopt+0x74e/0x9a0
[  312.313167][T15356]  ? __pfx_aa_sk_perm+0x10/0x10
[  312.313182][T15356]  ? __pfx_xsk_setsockopt+0x10/0x10
[  312.313194][T15356]  ? find_held_lock+0x2b/0x80
[  312.313207][T15356]  ? aa_sock_opt_perm+0xfd/0x1c0
[  312.313218][T15356]  ? __pfx_xsk_setsockopt+0x10/0x10
[  312.313232][T15356]  do_sock_setsockopt+0xf3/0x1d0
[  312.313244][T15356]  __sys_setsockopt+0x120/0x1a0
[  312.313262][T15356]  __ia32_sys_setsockopt+0xbc/0x160
[  312.313277][T15356]  ? lockdep_hardirqs_on+0x7c/0x110
[  312.313298][T15356]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  312.313315][T15356]  __do_fast_syscall_32+0x7c/0x300
[  312.313334][T15356]  do_fast_syscall_32+0x32/0x80
[  312.313344][T15356]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  312.313359][T15356] RIP: 0023:0xf710e579
[  312.313368][T15356] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  312.313379][T15356] RSP: 002b:00000000f54fe55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  312.313388][T15356] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 000000000000011b
[  312.313395][T15356] RDX: 0000000000000006 RSI: 0000000080000000 RDI: 0000000000000004
[  312.313401][T15356] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  312.313407][T15356] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  312.313413][T15356] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  312.313426][T15356]  </TASK>
[  312.313430][T15356] Mem-Info:
[  312.397026][T15356] active_anon:8889 inactive_anon:15831 isolated_anon:0
[  312.397026][T15356]  active_file:3872 inactive_file:12449 isolated_file:0
[  312.397026][T15356]  unevictable:3816 dirty:389 writeback:2
[  312.397026][T15356]  slab_reclaimable:7086 slab_unreclaimable:69854
[  312.397026][T15356]  mapped:29735 shmem:26047 pagetables:1050
[  312.397026][T15356]  sec_pagetables:322 bounce:0
[  312.397026][T15356]  kernel_misc_reclaimable:0
[  312.397026][T15356]  free:39282 free_pcp:3569 free_cma:0
[  312.410810][T15356] Node 0 active_anon:328kB inactive_anon:264kB active_file:388kB inactive_file:4kB unevictable:3568kB isolated(anon):0kB isolated(file):0kB mapped:284kB dirty:4kB writeback:0kB shmem:3568kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8348kB pagetables:1488kB sec_pagetables:1144kB all_unreclaimable? yes Balloon:0kB
[  312.420193][T15356] Node 1 active_anon:35228kB inactive_anon:63060kB active_file:15100kB inactive_file:49792kB unevictable:11696kB isolated(anon):0kB isolated(file):0kB mapped:118956kB dirty:1552kB writeback:8kB shmem:100620kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11720kB pagetables:2712kB sec_pagetables:144kB all_unreclaimable? no Balloon:0kB
[  312.429686][T15356] Node 0 DMA free:2048kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:16kB inactive_file:0kB unevictable:32kB writepending:0kB present:15992kB managed:15360kB mlocked:32kB bounce:0kB free_pcp:116kB local_pcp:0kB free_cma:0kB
[  312.438335][T15356] lowmem_reserve[]: 0 288 288 288 288
[  312.440012][T15356] Node 0 DMA32 free:21384kB boost:4096kB min:17316kB low:20620kB high:23924kB reserved_highatomic:2048KB free_highatomic:800KB active_anon:308kB inactive_anon:264kB active_file:372kB inactive_file:4kB unevictable:3536kB writepending:4kB present:1032196kB managed:295080kB mlocked:0kB bounce:0kB free_pcp:868kB local_pcp:188kB free_cma:0kB
[  312.449406][T15356] lowmem_reserve[]: 0 0 0 0 0
[  312.451250][T15356] Node 1 DMA32 free:131756kB boost:0kB min:47140kB low:58924kB high:70708kB reserved_highatomic:2048KB free_highatomic:400KB active_anon:35328kB inactive_anon:63060kB active_file:15100kB inactive_file:49792kB unevictable:11696kB writepending:1560kB present:1048432kB managed:948220kB mlocked:8160kB bounce:0kB free_pcp:15400kB local_pcp:11800kB free_cma:0kB
[  312.461140][T15356] lowmem_reserve[]: 0 0 0 0 0
[  312.462634][T15356] Node 0 DMA: 30*4kB (U) 20*8kB (U) 14*16kB (UM) 4*32kB (UM) 4*64kB (M) 1*128kB (M) 0*256kB 0*512kB 1*1024kB (M) 0*2048kB 0*4096kB = 2040kB
[  312.467086][T15356] Node 0 DMA32: 1*4kB (E) 165*8kB (UMEH) 115*16kB (UM) 168*32kB (UMH) 95*64kB (UMH) 34*128kB (UMH) 7*256kB (UM) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 21276kB
[  312.472005][T15356] Node 1 DMA32: 129*4kB (UMEH) 599*8kB (UMEH) 376*16kB (UMEH) 508*32kB (UMEH) 292*64kB (UMEH) 89*128kB (UME) 67*256kB (UME) 41*512kB (UME) 27*1024kB (UM) 4*2048kB (UM) 0*4096kB = 131644kB
[  312.477839][T15356] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  312.480760][T15356] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  312.483611][T15356] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  312.486551][T15356] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  312.489500][T15356] 42844 total pagecache pages
[  312.490982][T15356] 479 pages in swap cache
[  312.492347][T15356] Free swap  = 74664kB
[  312.493633][T15356] Total swap = 124996kB
[  312.494956][T15356] 524155 pages RAM
[  312.496133][T15356] 0 pages HighMem/MovableOnly
[  312.497689][T15356] 209490 pages reserved
[  312.499012][T15356] 0 pages cma reserved
[  313.868555][T15395] netlink: 'syz.7.2094': attribute type 5 has an invalid length.
[  313.871896][T15395] netlink: 'syz.7.2094': attribute type 7 has an invalid length.
[  313.962273][T15395] : entered promiscuous mode
[  314.011343][T15397] kvm: faulting far call emulation tainted memory
[  314.014212][T15397] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  314.395713][T15405] netlink: 'syz.6.2099': attribute type 10 has an invalid length.
[  314.407266][T15405] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  316.869277][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  317.019038][T15453] tipc: Enabled bearer <udp:syz2>, priority 10
[  317.026198][T15453] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  317.029090][T15453] tipc: Enabled bearer <udp:syz0>, priority 10
[  317.368863][T15465] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2113'.
[  317.935865][T15470] netlink: 'syz.8.2118': attribute type 1 has an invalid length.
[  317.950191][T15470] 8021q: adding VLAN 0 to HW filter on device bond4
[  317.993403][T15470] bond4: (slave veth5): Enslaving as an active interface with a down link
[  318.018812][T15470] bond4: (slave veth0_to_bond): Enslaving as an active interface with a down link
[  318.033950][T15470] vlan3: entered allmulticast mode
[  318.035598][T15470] veth0_to_bond: entered allmulticast mode
[  318.037957][T15470] veth0_to_bond: entered promiscuous mode
[  318.040197][T15470] veth0_to_bond: left promiscuous mode
[  318.042080][T15470] veth0_to_bond: entered promiscuous mode
[  318.043990][T15470] bond4: (slave vlan3): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  318.051011][T15470] veth0_to_bond: left promiscuous mode
[  318.407683][T15478] geneve2: entered promiscuous mode
[  318.745021][T15486] netlink: 'syz.8.2123': attribute type 1 has an invalid length.
[  318.764769][T15486] 8021q: adding VLAN 0 to HW filter on device bond5
[  318.788789][T15486] 8021q: adding VLAN 0 to HW filter on device bond5
[  318.791628][T15486] bond5: (slave vxcan3): The slave device specified does not support setting the MAC address
[  318.797115][T15486] bond5: (slave vxcan3): Error -95 calling set_mac_address
[  318.835078][T15488] gretap1: entered promiscuous mode
[  318.839329][T15488] bond5: (slave gretap1): making interface the new active one
[  318.841920][T15488] bond5: (slave gretap1): Enslaving as an active interface with an up link
[  318.863178][T15488] macvlan2: entered promiscuous mode
[  318.865143][T15488] macvlan2: entered allmulticast mode
[  318.868442][T15488] bond5: entered promiscuous mode
[  318.871360][T15488] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  318.877183][T15488] bond5: (slave macvlan2): the slave hw address is in use by the bond; giving it the hw address of gretap1
[  318.882344][T15488] bond5: left promiscuous mode
[  319.460161][T15507] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2129'.
[  321.126776][ T5982] Bluetooth: hci0: command 0x041b tx timeout
[  321.628127][T15543] netlink: 'syz.4.2139': attribute type 1 has an invalid length.
[  321.682317][T15543] bond9: (slave vxcan3): The slave device specified does not support setting the MAC address
[  321.686305][T15543] bond9: (slave vxcan3): Error -95 calling set_mac_address
[  321.743411][T15547] gretap1: entered promiscuous mode
[  321.746825][T15547] bond9: (slave gretap1): making interface the new active one
[  321.757082][T15547] bond9: (slave gretap1): Enslaving as an active interface with an up link
[  321.847970][T15543] macvlan0: entered promiscuous mode
[  321.849735][T15543] macvlan0: entered allmulticast mode
[  321.851800][T15543] bond9: entered promiscuous mode
[  321.853798][T15543] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  321.936950][T15543] bond9: (slave macvlan0): the slave hw address is in use by the bond; giving it the hw address of gretap1
[  321.942665][T15543] bond9: left promiscuous mode
[  323.453884][T15591] blkio.reset_stats is deprecated
[  323.462329][T15591] netlink: 'syz.8.2153': attribute type 4 has an invalid length.
[  323.464849][T15591] netlink: 17 bytes leftover after parsing attributes in process `syz.8.2153'.
[  323.543567][T15595] lo speed is unknown, defaulting to 1000
[  323.546236][T15595] lo speed is unknown, defaulting to 1000
[  323.886180][T15595] netlink: 'syz.8.2155': attribute type 13 has an invalid length.
[  323.895233][T15595] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  323.906834][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  324.195576][T15602] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2157'.
[  324.347853][T15608] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2159'.
[  325.049491][T15617] netlink: 136784 bytes leftover after parsing attributes in process `syz.4.2162'.
[  325.053833][T15617] netlink: zone id is out of range
[  325.056009][T15617] netlink: zone id is out of range
[  325.058734][T15617] netlink: zone id is out of range
[  325.060979][T15617] netlink: zone id is out of range
[  325.063198][T15617] netlink: zone id is out of range
[  325.065435][T15617] netlink: zone id is out of range
[  325.068393][T15617] netlink: zone id is out of range
[  325.070695][T15617] netlink: zone id is out of range
[  325.072890][T15617] netlink: zone id is out of range
[  325.714528][T15629] netlink: 'syz.4.2166': attribute type 1 has an invalid length.
[  326.760837][T15647] netlink: 'syz.4.2172': attribute type 4 has an invalid length.
[  327.502229][T15660] netlink: 'syz.8.2176': attribute type 39 has an invalid length.
[  327.780636][T15669] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2179'.
[  328.668738][T15690] sp0: Synchronizing with TNC
[  328.882344][T15698] lo speed is unknown, defaulting to 1000
[  328.885208][T15698] lo speed is unknown, defaulting to 1000
[  329.183192][T15711] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2189'.
[  329.732288][T15723] tipc: Enabled bearer <udp:syz2>, priority 10
[  329.794238][T15725] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  330.102748][T15733] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  330.165814][T15739] lo speed is unknown, defaulting to 1000
[  330.168534][T15739] lo speed is unknown, defaulting to 1000
[  330.520379][T15755] delete_channel: no stack
[  330.681218][   T40] audit: type=1800 audit(1758533847.274:601): pid=15762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.2204" name="bus" dev="9p" ino=72095747 res=0 errno=0
[  331.186856][ T4207] usb 13-1: new high-speed USB device number 4 using dummy_hcd
[  331.356743][ T4207] usb 13-1: Using ep0 maxpacket: 16
[  331.359642][ T4207] usb 13-1: config 33 has 0 interfaces, different from the descriptor's value: 9
[  331.362492][ T4207] usb 13-1: New USB device found, idVendor=1fd2, idProduct=6006, bcdDevice= 0.00
[  331.365289][ T4207] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  331.593391][T15778] bridge0: port 2(syz_tun) entered disabled state
[  331.614177][ T6506] usb 13-1: USB disconnect, device number 4
[  331.630242][T15778] bridge0: port 1(bridge_slave_0) entered disabled state
[  331.660063][T15778] tipc: Resetting bearer <eth:team0>
[  331.758614][T15778] xfrm0: left promiscuous mode
[  331.763063][T15778] xfrm0: left allmulticast mode
[  331.931748][T15778] wlan1: deauthenticating from 08:02:11:00:00:00 by local choice (Reason: 3=DEAUTH_LEAVING)
[  331.995452][T15778] veth5: left promiscuous mode
[  332.112946][T15778] vlan0: left promiscuous mode
[  332.114614][T15778] vlan0: left allmulticast mode
[  332.116159][T15778] hsr_slave_1: left allmulticast mode
[  332.121419][T15778] vlan2: left promiscuous mode
[  332.122984][T15778] bond3: left promiscuous mode
[  332.124501][T15778] gretap1: left promiscuous mode
[  332.126192][T15778] vlan2: left allmulticast mode
[  332.127806][T15778] bond3: left allmulticast mode
[  332.129405][T15778] gretap1: left allmulticast mode
[  332.136377][T15778] geneve2: left promiscuous mode
[  332.140742][ T1250] netdevsim netdevsim7 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  332.143459][ T1250] netdevsim netdevsim7 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  332.146081][ T1250] netdevsim netdevsim7 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  332.151047][ T1250] netdevsim netdevsim7 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  332.525733][T15801] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  332.841447][T15814] netlink: 4400 bytes leftover after parsing attributes in process `syz.7.2215'.
[  333.928648][T15830] overlayfs: failed to clone upperpath
[  333.971140][   T40] audit: type=1800 audit(1758533850.564:602): pid=15832 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2218" name="bus" dev="9p" ino=72095747 res=0 errno=0
[  334.045234][   T40] audit: type=1804 audit(1758533850.634:603): pid=15834 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.2227" name="/newroot/252/bus" dev="tmpfs" ino=1388 res=1 errno=0
[  334.986208][T15853] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  335.164309][   T40] audit: type=1800 audit(1758533851.754:604): pid=15858 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.2223" name="bus" dev="ramfs" ino=45773 res=0 errno=0
[  338.012555][   T40] audit: type=1326 audit(1758533854.604:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.7.2253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  338.020597][   T40] audit: type=1326 audit(1758533854.604:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.7.2253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  338.029191][   T40] audit: type=1326 audit(1758533854.604:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.7.2253" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf70de579 code=0x7ffc0000
[  338.036954][   T40] audit: type=1326 audit(1758534083.615:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.7.2253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  338.044812][   T40] audit: type=1326 audit(1758534083.615:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.7.2253" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf70de579 code=0x7ffc0000
[  338.053450][   T40] audit: type=1326 audit(1758534083.615:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.7.2253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  338.061370][   T40] audit: type=1326 audit(1758534083.615:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.7.2253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  338.070691][   T40] audit: type=1326 audit(1758534083.615:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.7.2253" exe="/syz-executor" sig=0 arch=40000003 syscall=170 compat=1 ip=0xf70de579 code=0x7ffc0000
[  338.086787][   T40] audit: type=1326 audit(1758534083.615:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.7.2253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  338.094987][   T40] audit: type=1326 audit(1758534083.615:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15921 comm="syz.7.2253" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70de579 code=0x7ffc0000
[  338.974473][ T5976] Bluetooth: hci0: unexpected event for opcode 0x0411
[  339.277166][ T5976] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  339.281071][ T5976] Bluetooth: hci4: Injecting HCI hardware error event
[  339.286447][ T5976] Bluetooth: hci4: hardware error 0x00
[  340.362329][T15958] overlayfs: failed to clone upperpath
[  341.070193][T15970] netlink: 'syz.6.2255': attribute type 1 has an invalid length.
[  341.106689][T15970] 8021q: adding VLAN 0 to HW filter on device bond4
[  341.136382][T15970] vlan2: entered promiscuous mode
[  341.139052][T15970] bond4: entered promiscuous mode
[  341.140834][T15970] vlan2: entered allmulticast mode
[  341.142739][T15970] bond4: entered allmulticast mode
[  341.158631][T15970] bond4: (slave gretap3): making interface the new active one
[  341.161063][T15970] gretap3: entered promiscuous mode
[  341.162719][T15970] gretap3: entered allmulticast mode
[  341.165066][T15970] bond4: (slave gretap3): Enslaving as an active interface with an up link
[  341.336540][T15983] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(5)
[  341.338690][T15983] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  341.341775][T15983] vhci_hcd vhci_hcd.0: Device attached
[  341.376753][ T5976] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  341.679358][T15989] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2262'.
[  341.769918][ T6038] usb 54-1: SetAddress Request (2) to port 0
[  341.772716][ T6038] usb 54-1: new SuperSpeed USB device number 2 using vhci_hcd
[  341.909735][T15985] vhci_hcd: connection reset by peer
[  341.913041][T10980] vhci_hcd: stop threads
[  341.914474][T10980] vhci_hcd: release socket
[  341.917527][T10980] vhci_hcd: disconnect device
[  341.944428][T15997] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  342.043146][T16001] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  342.179058][T16008] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2268'.
[  342.257669][T16008] bridge8: port 1(bond4) entered blocking state
[  342.259783][T16008] bridge8: port 1(bond4) entered disabled state
[  342.262089][T16008] bond4: entered allmulticast mode
[  342.268156][T16008] bond4: entered promiscuous mode
[  342.793492][T16021] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2271'.
[  342.800709][T16021] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  343.026853][ T5976] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  343.030261][ T5976] Bluetooth: hci0: Injecting HCI hardware error event
[  343.034479][ T5982] Bluetooth: hci0: hardware error 0x00
[  344.260448][T16048] lo: entered allmulticast mode
[  344.262327][T16048] tunl0: entered allmulticast mode
[  344.264102][T16048] gre0: entered allmulticast mode
[  344.265910][T16048] gretap0: entered allmulticast mode
[  344.268153][T16048] erspan0: entered allmulticast mode
[  344.270565][T16048] ip_vti0: entered allmulticast mode
[  344.272525][T16048] ip6_vti0: entered allmulticast mode
[  344.274446][T16048] sit0: entered allmulticast mode
[  344.279122][T16048] ip6tnl0: entered allmulticast mode
[  344.280981][T16048] ip6gre0: entered allmulticast mode
[  344.282863][T16048] ip6gretap0: entered allmulticast mode
[  344.284786][T16048] bridge0: entered allmulticast mode
[  344.286578][T16048] bond0: entered allmulticast mode
[  344.288716][T16048] 
: entered allmulticast mode
[  344.290323][T16048] bond_slave_1: entered allmulticast mode
[  344.292228][T16048] team0: entered allmulticast mode
[  344.293970][T16048] team_slave_0: entered allmulticast mode
[  344.295865][T16048] team_slave_1: entered allmulticast mode
[  344.297980][T16048] dummy0: entered allmulticast mode
[  344.299775][T16048] nlmon0: entered allmulticast mode
[  344.301569][T16048] caif0: entered allmulticast mode
[  344.303292][T16048] vxcan0: entered allmulticast mode
[  344.305137][T16048] vxcan1: entered allmulticast mode
[  344.306926][T16048] veth0: entered allmulticast mode
[  344.308778][T16048] veth1: entered allmulticast mode
[  344.310534][T16048] wg0: entered allmulticast mode
[  344.312746][T16048] wg1: entered allmulticast mode
[  344.314503][T16048] wg2: entered allmulticast mode
[  344.316242][T16048] veth0_to_bridge: entered allmulticast mode
[  344.318482][T16048] veth0_to_bond: entered allmulticast mode
[  344.320522][T16048] veth1_to_bond: entered allmulticast mode
[  344.322563][T16048] veth0_to_team: entered allmulticast mode
[  344.324656][T16048] veth1_to_team: entered allmulticast mode
[  344.326725][T16048] veth0_to_batadv: entered allmulticast mode
[  344.328738][T16048] batadv_slave_0: entered allmulticast mode
[  344.330749][T16048] veth1_to_batadv: entered allmulticast mode
[  344.332778][T16048] batadv_slave_1: entered allmulticast mode
[  344.334838][T16048] xfrm0: entered allmulticast mode
[  344.336980][T16048] veth0_to_hsr: entered allmulticast mode
[  344.339057][T16048] hsr_slave_0: entered allmulticast mode
[  344.340969][T16048] veth1_to_hsr: entered allmulticast mode
[  344.342873][T16048] hsr_slave_1: entered allmulticast mode
[  344.344843][T16048] hsr0: entered allmulticast mode
[  344.346566][T16048] veth1_virt_wifi: entered allmulticast mode
[  344.348739][T16048] veth0_virt_wifi: entered allmulticast mode
[  344.350695][T16048] veth1_macvtap: entered allmulticast mode
[  344.352658][T16048] veth0_macvtap: entered allmulticast mode
[  344.354835][T16048] macvtap0: entered allmulticast mode
[  344.357158][T16048] macsec0: entered allmulticast mode
[  344.359013][T16048] geneve0: entered allmulticast mode
[  344.360916][T16048] geneve1: entered allmulticast mode
[  344.362758][T16048] mac80211_hwsim hwsim17 wlan0: entered allmulticast mode
[  344.365227][T16048] mac80211_hwsim hwsim18 wlan1: entered allmulticast mode
[  344.370401][T16048] bridge1: entered allmulticast mode
[  344.372685][T16048] veth2: entered allmulticast mode
[  344.374811][T16048] veth3: entered allmulticast mode
[  344.377197][T16048] bridge2: entered allmulticast mode
[  344.379133][T16048] bond1: entered allmulticast mode
[  344.380823][T16048] ip6gretap1: entered allmulticast mode
[  344.382840][T16048] veth4: entered allmulticast mode
[  344.384511][T16048] veth5: entered allmulticast mode
[  344.386558][T16048] netdevsim netdevsim7 eth0: entered allmulticast mode
[  344.390342][T16048] netdevsim netdevsim7 eth1: entered allmulticast mode
[  344.394325][T16048] netdevsim netdevsim7 eth2: entered allmulticast mode
[  344.397351][T16048] netdevsim netdevsim7 eth3: entered allmulticast mode
[  344.400314][T16048] bridge3: entered allmulticast mode
[  344.402706][T16048] gre1: entered allmulticast mode
[  344.405106][T16048] bridge4: entered allmulticast mode
[  344.407874][T16048] vxlan0: entered allmulticast mode
[  344.410170][T16048] bridge5: entered allmulticast mode
[  344.412493][T16048] syztnl2: entered allmulticast mode
[  344.414842][T16048] bond2: entered allmulticast mode
[  344.417231][T16048] macvlan0: entered allmulticast mode
[  344.419713][T16048] vlan0: entered allmulticast mode
[  344.422026][T16048] vlan1: entered allmulticast mode
[  344.424292][T16048] bond3: entered allmulticast mode
[  344.426448][T16048] gretap1: entered allmulticast mode
[  344.429020][T16048] vlan2: entered allmulticast mode
[  344.431021][T16048] bridge6: entered allmulticast mode
[  344.433090][T16048] bridge7: entered allmulticast mode
[  344.435411][T16048] : entered allmulticast mode
[  344.437600][T16048] geneve2: entered allmulticast mode
[  344.439805][T16048] mac80211_hwsim hwsim27 wlan2: entered allmulticast mode
[  344.447709][T16048] bridge8: entered allmulticast mode
[  344.504580][T16053] 8021q: VLANs not supported on ip6gre0
[  345.106844][ T5982] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  345.136138][T16071] loop8: detected capacity change from 0 to 7
[  345.148912][T16071] Dev loop8: unable to read RDB block 7
[  345.150825][T16071]  loop8: AHDI p1 p2 p3
[  345.152183][T16071] loop8: partition table partially beyond EOD, truncated
[  345.154647][T16071] loop8: p1 start 1601398130 is beyond EOD, truncated
[  345.157192][T16071] loop8: p2 start 1702059890 is beyond EOD, truncated
[  345.209565][T16071] Dev loop8: unable to read RDB block 7
[  345.211924][T16071]  loop8: AHDI p1 p2 p3
[  345.214632][T16071] loop8: partition table partially beyond EOD, truncated
[  345.220444][T16071] loop8: p1 start 1601398130 is beyond EOD, truncated
[  345.224123][T16071] loop8: p2 start 1702059890 is beyond EOD, truncated
[  345.929615][T16089] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2292'.
[  345.986032][T16090] vhci_hcd vhci_hcd.0: pdev(8) rhport(0) sockfd(8)
[  345.988183][T16090] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[  345.992025][T16090] vhci_hcd vhci_hcd.0: Device attached
[  346.565486][T16098] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2295'.
[  346.661416][T16084] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  346.665152][T16091] vhci_hcd: connection closed
[  346.668070][T10980] vhci_hcd: stop threads
[  346.670874][T10980] vhci_hcd: release socket
[  346.672841][T10980] vhci_hcd: disconnect device
[  346.876915][ T6038] usb 54-1: device descriptor read/8, error -110
[  347.107102][ T4207] vhci_hcd: vhci_device speed not set
[  347.454275][T16117] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  347.461119][T16117] syzkaller0: entered promiscuous mode
[  347.463463][T16117] syzkaller0: entered allmulticast mode
[  347.479289][T16117] syzkaller0: MTU too low for tipc bearer
[  347.481143][T16117] tipc: Disabling bearer <eth:syzkaller0>
[  348.003715][T16129] net_ratelimit: 4053 callbacks suppressed
[  348.003733][T16129] netlink: del zone limit has 4 unknown bytes
[  348.107766][ T6038] usb usb54-port1: attempt power cycle
[  348.595958][   T40] kauditd_printk_skb: 2141 callbacks suppressed
[  348.595988][   T40] audit: type=1326 audit(1758534094.185:2756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.8.2306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  348.611342][   T40] audit: type=1326 audit(1758534094.185:2757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.8.2306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  348.622470][   T40] audit: type=1326 audit(1758534094.195:2758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.8.2306" exe="/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf710e579 code=0x7ffc0000
[  348.632367][   T40] audit: type=1326 audit(1758534094.195:2759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.8.2306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  348.641534][   T40] audit: type=1326 audit(1758534094.195:2760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.8.2306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  348.651988][   T40] audit: type=1326 audit(1758534094.195:2761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.8.2306" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf710e579 code=0x7ffc0000
[  348.661061][   T40] audit: type=1326 audit(1758534094.195:2762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.8.2306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  348.669841][   T40] audit: type=1326 audit(1758534094.195:2763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.8.2306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  348.680847][   T40] audit: type=1326 audit(1758534094.195:2764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.8.2306" exe="/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf710e579 code=0x7ffc0000
[  348.690652][   T40] audit: type=1326 audit(1758534094.195:2765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16135 comm="syz.8.2306" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  348.719183][ T6038] usb usb54-port1: unable to enumerate USB device
[  348.775393][T16146] netlink: 'syz.6.2311': attribute type 3 has an invalid length.
[  348.782310][T16146] netlink: 'syz.6.2311': attribute type 3 has an invalid length.
[  348.853838][T16150] lo speed is unknown, defaulting to 1000
[  348.860625][T16150] lo speed is unknown, defaulting to 1000
[  348.952576][T16161] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2315'.
[  348.981252][T16161] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2315'.
[  349.185572][ T6038] libceph: connect (1)[c::]:6789 error -22
[  349.189006][ T6038] libceph: mon0 (1)[c::]:6789 connect error
[  349.385623][T16168] ceph: No mds server is up or the cluster is laggy
[  349.461129][T16178] syzkaller0: MTU too low for tipc bearer
[  349.462923][T16178] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  349.473752][T16178] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2320'.
[  349.478582][T16176] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  350.170179][T16191] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  351.483883][T16200] netlink: 'syz.7.2334': attribute type 1 has an invalid length.
[  351.505054][T16200] 8021q: adding VLAN 0 to HW filter on device bond5
[  351.555569][T16200] 8021q: adding VLAN 0 to HW filter on device bond5
[  351.557816][T16200] bond5: (slave vxcan3): The slave device specified does not support setting the MAC address
[  351.569052][T16200] bond5: (slave vxcan3): Error -95 calling set_mac_address
[  351.616617][T16205] bond6: entered promiscuous mode
[  351.619138][T16205] 8021q: adding VLAN 0 to HW filter on device bond6
[  351.622246][T16205] bond5: (slave bond6): Enslaving as an active interface with a down link
[  351.663350][T16200] macvlan1: entered promiscuous mode
[  351.665352][T16200] macvlan1: entered allmulticast mode
[  351.668450][T16200] bond5: entered promiscuous mode
[  351.670459][T16200] 8021q: adding VLAN 0 to HW filter on device macvlan1
[  351.673861][T16200] bond5: left promiscuous mode
[  351.739061][T16210] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2328'.
[  351.766435][T16210] netlink: 3 bytes leftover after parsing attributes in process `syz.8.2328'.
[  351.772479][T16210] batadv1: entered promiscuous mode
[  351.774337][T16210] batadv1: entered allmulticast mode
[  351.820528][T16214] netlink: 3 bytes leftover after parsing attributes in process `syz.8.2328'.
[  351.827672][T16214] batadv1: entered promiscuous mode
[  351.829392][T16214] batadv1: entered allmulticast mode
[  351.993975][T16220] lo speed is unknown, defaulting to 1000
[  351.997406][T16220] lo speed is unknown, defaulting to 1000
[  352.121714][T16220] binder: 16219:16220 ioctl c0306201 0 returned -14
[  352.133853][T16228] netlink: 'syz.4.2336': attribute type 3 has an invalid length.
[  352.145162][T16228] netlink: 'syz.4.2336': attribute type 3 has an invalid length.
[  352.219863][T16234] netlink: 'syz.4.2345': attribute type 1 has an invalid length.
[  353.317681][T16255] netlink: 20 bytes leftover after parsing attributes in process `syz.7.2341'.
[  353.949363][T16259] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  353.959261][T16259] tipc: Enabling of bearer <udp:syz0> rejected, already enabled
[  354.006300][T16263] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  354.223423][   T40] kauditd_printk_skb: 314 callbacks suppressed
[  354.223442][   T40] audit: type=1326 audit(1758534099.815:3080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16272 comm="syz.6.2350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  354.246904][   T40] audit: type=1326 audit(1758534099.815:3081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16272 comm="syz.6.2350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  354.257012][   T40] audit: type=1326 audit(1758534099.815:3082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16272 comm="syz.6.2350" exe="/syz-executor" sig=0 arch=40000003 syscall=321 compat=1 ip=0xf709e579 code=0x7ffc0000
[  354.265713][   T40] audit: type=1326 audit(1758534099.815:3083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16272 comm="syz.6.2350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  354.274981][   T40] audit: type=1326 audit(1758534099.815:3084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16272 comm="syz.6.2350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  354.285111][   T40] audit: type=1326 audit(1758534099.815:3085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16272 comm="syz.6.2350" exe="/syz-executor" sig=0 arch=40000003 syscall=8 compat=1 ip=0xf709e579 code=0x7ffc0000
[  354.295406][   T40] audit: type=1326 audit(1758534099.815:3086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16272 comm="syz.6.2350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  354.305020][   T40] audit: type=1326 audit(1758534099.815:3087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16272 comm="syz.6.2350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  354.306132][T16275] netlink: 'syz.7.2349': attribute type 10 has an invalid length.
[  354.315291][   T40] audit: type=1326 audit(1758534099.815:3088): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16272 comm="syz.6.2350" exe="/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf709e579 code=0x7ffc0000
[  354.319480][T16275] bridge0: left allmulticast mode
[  354.327673][   T40] audit: type=1326 audit(1758534099.815:3089): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16272 comm="syz.6.2350" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x7ffc0000
[  354.373646][T16275] bridge0: entered allmulticast mode
[  354.376207][T16275] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  355.420466][T16304] netlink: 56 bytes leftover after parsing attributes in process `syz.7.2356'.
[  356.828366][T16330] netlink: 'syz.8.2364': attribute type 1 has an invalid length.
[  356.831209][T16330] netlink: 'syz.8.2364': attribute type 4 has an invalid length.
[  356.834125][T16330] netlink: 15334 bytes leftover after parsing attributes in process `syz.8.2364'.
[  357.739188][T16346] netlink: 128 bytes leftover after parsing attributes in process `syz.4.2368'.
[  358.814375][T16362] lo: entered allmulticast mode
[  358.830410][T16362] dvmrp1: entered allmulticast mode
[  358.841873][T16361] lo: left allmulticast mode
[  359.049499][ T6040] IPVS: starting estimator thread 0...
[  359.136801][T16370] IPVS: using max 29 ests per chain, 69600 per kthread
[  359.256745][ T4207] usb 13-1: new high-speed USB device number 5 using dummy_hcd
[  359.416765][ T4207] usb 13-1: Using ep0 maxpacket: 8
[  359.420667][ T4207] usb 13-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  359.424692][ T4207] usb 13-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  359.430441][ T4207] usb 13-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 800
[  359.434521][ T4207] usb 13-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  359.440091][ T4207] usb 13-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  359.444240][ T4207] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  359.670506][ T4207] usb 13-1: usb_control_msg returned -32
[  359.672383][ T4207] usbtmc 13-1:16.0: can't read capabilities
[  359.816952][ T4207] usb 13-1: USB disconnect, device number 5
[  361.353029][T16389] netlink: 'syz.8.2390': attribute type 16 has an invalid length.
[  361.356851][T16389] netlink: 'syz.8.2390': attribute type 17 has an invalid length.
[  361.398879][T16389] 8021q: adding VLAN 0 to HW filter on device bond0
[  361.403679][T16389] 8021q: adding VLAN 0 to HW filter on device team0
[  361.411711][T16389] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  361.446986][ T1022] lo speed is unknown, defaulting to 1000
[  361.449033][ T1022] syz0: Port: 1 Link ACTIVE
[  361.670121][T16399] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  361.922847][T16410] netlink: 4 bytes leftover after parsing attributes in process `syz.8.2384'.
[  361.981279][T11028] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  361.984655][T11028] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  363.341362][T16432] netlink: 56 bytes leftover after parsing attributes in process `syz.8.2394'.
[  364.184739][T16440] dvmrp1: entered allmulticast mode
[  364.218456][T16442] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  364.697570][T16453] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2401'.
[  365.612852][   T40] kauditd_printk_skb: 48 callbacks suppressed
[  365.612865][   T40] audit: type=1326 audit(1758534340.204:3138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16466 comm="syz.4.2406" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7fa3579 code=0x0
[  366.678448][T16484] cgroup: fork rejected by pids controller in /syz6
[  368.651903][   T40] audit: type=1326 audit(1758534343.244:3139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18960 comm="syz.8.2421" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  368.662429][   T40] audit: type=1326 audit(1758534343.244:3140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18960 comm="syz.8.2421" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  368.670409][   T40] audit: type=1326 audit(1758534343.244:3141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18960 comm="syz.8.2421" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf710e579 code=0x7ffc0000
[  368.679444][   T40] audit: type=1326 audit(1758534343.244:3142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18960 comm="syz.8.2421" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  368.686237][   T40] audit: type=1326 audit(1758534343.244:3143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18960 comm="syz.8.2421" exe="/syz-executor" sig=0 arch=40000003 syscall=196 compat=1 ip=0xf710e579 code=0x7ffc0000
[  368.695051][   T40] audit: type=1326 audit(1758534343.244:3144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18960 comm="syz.8.2421" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  368.708882][   T40] audit: type=1326 audit(1758534343.254:3145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18960 comm="syz.8.2421" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf710e579 code=0x7ffc0000
[  369.531805][T18976] veth0_to_hsr: entered promiscuous mode
[  369.534098][T18976] veth0_to_hsr: entered allmulticast mode
[  369.536436][T18976] veth0_to_hsr: left allmulticast mode
[  369.541206][T18976] veth0_to_hsr: left promiscuous mode
[  370.006253][T18991] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  370.106796][T18997] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  370.165294][T19000] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2432'.
[  370.760183][T19012] veth0_to_hsr: entered allmulticast mode
[  370.762769][T19012] veth0_to_hsr: left allmulticast mode
[  370.880214][   T40] audit: type=1800 audit(1758534345.454:3146): pid=19016 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.2439" name="nullb0" dev="tmpfs" ino=1388 res=0 errno=0
[  370.981637][T19020] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  371.058365][T19024] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  372.510026][T19049] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  372.523614][T19048] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  373.857844][T19068] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2451'.
[  374.010138][   T40] audit: type=1326 audit(1758534348.604:3147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19072 comm="syz.6.2454" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x0
[  374.296164][T19084] netlink: 'syz.8.2456': attribute type 2 has an invalid length.
[  374.299541][T19084] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2456'.
[  374.319071][T19084] : entered promiscuous mode
[  374.460832][T19079] wg2: left promiscuous mode
[  374.462759][T19079] wg2: left allmulticast mode
[  374.489892][T19079] team_slave_0: left promiscuous mode
[  374.492106][T19079] team_slave_0: left allmulticast mode
[  374.640124][T19079] vlan2: left allmulticast mode
[  374.642325][T19079] bridge0: left allmulticast mode
[  374.652903][T19079] veth7: left promiscuous mode
[  374.665347][T19079] bond7: left allmulticast mode
[  374.673627][T19079] vlan0: left promiscuous mode
[  374.675775][T19079] vlan0: left allmulticast mode
[  374.677926][T19079] hsr_slave_1: left allmulticast mode
[  374.689571][T19079] wireguard0: left promiscuous mode
[  374.691700][T19079] wireguard0: left allmulticast mode
[  374.695617][T19079] gretap1: left promiscuous mode
[  374.701079][T19079] tipc: Resetting bearer <eth:syzkaller0>
[  374.703917][T19079] syzkaller0: left promiscuous mode
[  374.706120][T19079] syzkaller0: left allmulticast mode
[  374.711993][T10982] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.715662][T10982] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  374.728880][T10982] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  378.204905][T20090] netlink: 'syz.4.2473': attribute type 16 has an invalid length.
[  378.240730][T20090] netlink: 'syz.4.2473': attribute type 17 has an invalid length.
[  378.312565][T20090] 8021q: adding VLAN 0 to HW filter on device bond0
[  378.319151][T20090] 8021q: adding VLAN 0 to HW filter on device team0
[  378.333442][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  378.371426][T20090] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  378.656766][ T6038] usb 13-1: new high-speed USB device number 6 using dummy_hcd
[  378.811859][   T40] audit: type=1800 audit(1758534353.404:3148): pid=20105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.2476" name="nullb0" dev="tmpfs" ino=1344 res=0 errno=0
[  378.818392][ T6038] usb 13-1: Using ep0 maxpacket: 32
[  378.830923][ T6038] usb 13-1: config 0 has an invalid interface number: 12 but max is 0
[  378.834277][ T6038] usb 13-1: config 0 has no interface number 0
[  378.836588][ T6038] usb 13-1: config 0 interface 12 has no altsetting 0
[  378.843155][ T6038] usb 13-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  378.846923][ T6038] usb 13-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  378.850728][ T6038] usb 13-1: Product: syz
[  378.853955][ T6038] usb 13-1: Manufacturer: syz
[  378.857496][ T6038] usb 13-1: SerialNumber: syz
[  378.871716][ T6038] usb 13-1: config 0 descriptor??
[  379.338032][ T6038] f81534 13-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  379.340484][ T6038] f81534 13-1:0.12: f81534_find_config_idx: read failed: -71
[  379.342779][ T6038] f81534 13-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  379.345083][ T6038] f81534 13-1:0.12: probe with driver f81534 failed with error -71
[  379.349760][ T6038] usb 13-1: USB disconnect, device number 6
[  380.042611][T20121] cgroup: fork rejected by pids controller in /syz8
[  382.442213][ T5976] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  382.448890][ T5976] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  382.459226][ T5976] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  382.462311][ T5976] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  382.465101][ T5976] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  382.498521][T21416] lo speed is unknown, defaulting to 1000
[  382.501037][T21416] lo speed is unknown, defaulting to 1000
[  382.638417][T21420] block nbd0: server does not support multiple connections per device.
[  382.640459][T21416] chnl_net:caif_netlink_parms(): no params data found
[  382.642604][T21420] block nbd0: shutting down sockets
[  382.782540][T21416] bridge0: port 1(bridge_slave_0) entered blocking state
[  382.787046][T21416] bridge0: port 1(bridge_slave_0) entered disabled state
[  382.790182][T21416] bridge_slave_0: entered allmulticast mode
[  382.794095][T21416] bridge_slave_0: entered promiscuous mode
[  382.800271][T21416] bridge0: port 2(bridge_slave_1) entered blocking state
[  382.803864][T21416] bridge0: port 2(bridge_slave_1) entered disabled state
[  382.808879][T21416] bridge_slave_1: entered allmulticast mode
[  382.812685][T21416] bridge_slave_1: entered promiscuous mode
[  382.909183][T21416] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  382.914923][T21416] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  383.139636][T21416] team0: Port device team_slave_0 added
[  383.153988][T21416] team0: Port device team_slave_1 added
[  383.178691][T11752] bridge_slave_1: left allmulticast mode
[  383.181127][T11752] bridge_slave_1: left promiscuous mode
[  383.184307][T11752] bridge0: port 2(bridge_slave_1) entered disabled state
[  383.193859][T11752] bridge_slave_0: left allmulticast mode
[  383.196303][T11752] bridge_slave_0: left promiscuous mode
[  383.205323][T11752] bridge0: port 1(bridge_slave_0) entered disabled state
[  383.408565][T11752] bond5 (unregistering): (slave gretap1): Releasing active interface
[  383.439966][T11752] dvmrp1 (unregistering): left allmulticast mode
[  383.689224][T11752] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  383.694635][T11752] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  383.699856][T11752] bond0 (unregistering): Released all slaves
[  383.796959][T11752] bond1 (unregistering): Released all slaves
[  383.951537][T11752] bond2 (unregistering): (slave veth3): Releasing active interface
[  383.955612][T11752] bond2 (unregistering): Released all slaves
[  383.965211][T11752] bond3 (unregistering): Released all slaves
[  384.066069][T11752] bond4 (unregistering): (slave veth5): Releasing active interface
[  384.070452][T11752] bond4 (unregistering): (slave veth0_to_bond): Releasing active interface
[  384.074236][T11752] bond4 (unregistering): Released all slaves
[  384.149642][T11752] bond5 (unregistering): Released all slaves
[  384.156435][T21436] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[  384.212262][T21416] batman_adv: batadv0: Adding interface: batadv_slave_0
[  384.218410][T21416] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  384.228216][T21416] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  384.241406][T21416] batman_adv: batadv0: Adding interface: batadv_slave_1
[  384.244102][T21416] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  384.256110][T21416] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  384.304983][T11752] : left promiscuous mode
[  384.348913][T21416] hsr_slave_0: entered promiscuous mode
[  384.352082][T21416] hsr_slave_1: entered promiscuous mode
[  384.355011][T21416] debugfs: 'hsr0' already exists in 'hsr'
[  384.357559][T21416] Cannot create hsr debugfs directory
[  384.390765][T11752] tipc: Disabling bearer <udp:syz1>
[  384.393228][T11752] tipc: Disabling bearer <udp:syz2>
[  384.398067][T11752] tipc: Left network mode
[  384.551964][ T5982] Bluetooth: hci0: command tx timeout
[  384.613166][T21416] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  384.617821][T21416] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  384.621680][T21416] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  384.625589][T21416] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  384.704606][T11752] hsr_slave_0: left promiscuous mode
[  384.707661][T11752] hsr_slave_1: left promiscuous mode
[  384.710620][T11752] batman_adv: batadv0: Removing interface: batadv_slave_0
[  384.714139][T11752] batman_adv: batadv0: Removing interface: batadv_slave_1
[  385.506855][T11752] team0 (unregistering): Port device team_slave_1 removed
[  385.599313][T11752] team0 (unregistering): Port device team_slave_0 removed
[  386.184316][ T8301] lo speed is unknown, defaulting to 1000
[  386.186122][ T8301] syz0: Port: 1 Link DOWN
[  386.233481][T21416] 8021q: adding VLAN 0 to HW filter on device bond0
[  386.244764][T21416] 8021q: adding VLAN 0 to HW filter on device team0
[  386.251657][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state
[  386.254672][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state
[  386.262046][T10995] bridge0: port 2(bridge_slave_1) entered blocking state
[  386.265020][T10995] bridge0: port 2(bridge_slave_1) entered forwarding state
[  386.429996][T21416] 8021q: adding VLAN 0 to HW filter on device batadv0
[  386.627672][ T5982] Bluetooth: hci0: command tx timeout
[  386.629155][T21416] veth0_vlan: entered promiscuous mode
[  386.639602][T21416] veth1_vlan: entered promiscuous mode
[  386.656060][T21416] veth0_macvtap: entered promiscuous mode
[  386.662252][T21416] veth1_macvtap: entered promiscuous mode
[  386.675596][T21416] batman_adv: batadv0: Interface activated: batadv_slave_0
[  386.684735][T21416] batman_adv: batadv0: Interface activated: batadv_slave_1
[  386.693543][ T1250] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  386.696571][ T1250] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  386.702409][ T1250] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  386.705172][ T1250] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  386.773709][T11752] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.785031][T11021] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  386.790193][T11021] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  386.806035][T11021] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  386.809405][T11021] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  386.863852][T11752] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.448176][T11752] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.542143][T21469] bridge0: port 2(bridge_slave_1) entered disabled state
[  387.545725][T21469] bridge0: port 1(bridge_slave_0) entered disabled state
[  387.768697][T21469] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  387.792588][T21469] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  388.110340][T11752] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  388.160581][T10973] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.163422][T10973] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.170205][T10973] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.173614][T10995] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  388.244831][T11752] bridge_slave_1: left allmulticast mode
[  388.246780][T11752] bridge_slave_1: left promiscuous mode
[  388.250757][T11752] bridge0: port 2(bridge_slave_1) entered disabled state
[  388.256137][T11752] bridge_slave_0: left allmulticast mode
[  388.258427][T11752] bridge_slave_0: left promiscuous mode
[  388.260543][T11752] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.706841][ T5982] Bluetooth: hci0: command tx timeout
[  389.000258][T11752] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  389.005572][T11752] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  389.010015][T11752] bond0 (unregistering): Released all slaves
[  389.129422][T11752] IPVS: stopping master sync thread 7251 ...
[  389.132115][T11752] IPVS: stopping master sync thread 7250 ...
[  389.134752][T11752] IPVS: stopping master sync thread 7249 ...
[  389.137883][T11752] IPVS: stopping master sync thread 7248 ...
[  389.148090][T11752] IPVS: stopping master sync thread 7247 ...
[  389.150327][T11752] IPVS: stopping master sync thread 7246 ...
[  389.152590][T11752] IPVS: stopping master sync thread 7245 ...
[  389.154592][T11752] IPVS: stopping master sync thread 7244 ...
[  389.156715][T11752] IPVS: stopping master sync thread 7243 ...
[  389.158692][T11752] IPVS: stopping master sync thread 7242 ...
[  389.160667][T11752] IPVS: stopping master sync thread 7241 ...
[  389.162676][T11752] IPVS: stopping master sync thread 7240 ...
[  389.164859][T11752] IPVS: stopping master sync thread 7239 ...
[  389.169860][T11752] IPVS: stopping master sync thread 7238 ...
[  389.171902][T11752] IPVS: stopping master sync thread 7237 ...
[  389.173974][T11752] IPVS: stopping master sync thread 7236 ...
[  389.176028][T11752] IPVS: stopping master sync thread 7235 ...
[  389.178747][T11752] IPVS: stopping master sync thread 7234 ...
[  389.180910][T11752] IPVS: stopping master sync thread 7233 ...
[  389.182977][T11752] IPVS: stopping master sync thread 7232 ...
[  389.185026][T11752] IPVS: stopping master sync thread 7231 ...
[  389.188477][T11752] IPVS: stopping master sync thread 7230 ...
[  389.190488][T11752] IPVS: stopping master sync thread 7229 ...
[  389.192511][T11752] IPVS: stopping master sync thread 7228 ...
[  389.194496][T11752] IPVS: stopping master sync thread 7227 ...
[  389.196529][T11752] IPVS: stopping master sync thread 7226 ...
[  389.198930][T11752] IPVS: stopping master sync thread 7225 ...
[  389.201045][T11752] IPVS: stopping master sync thread 7224 ...
[  389.203132][T11752] IPVS: stopping master sync thread 7223 ...
[  389.205313][T11752] IPVS: stopping master sync thread 7221 ...
[  389.210534][T11752] IPVS: stopping master sync thread 7220 ...
[  389.212684][T11752] IPVS: stopping master sync thread 7219 ...
[  389.214682][T11752] IPVS: stopping master sync thread 7216 ...
[  389.216814][T11752] IPVS: stopping master sync thread 7215 ...
[  389.218838][T11752] IPVS: stopping master sync thread 7214 ...
[  389.221047][T11752] IPVS: stopping master sync thread 7212 ...
[  389.223153][T11752] IPVS: stopping master sync thread 7209 ...
[  389.225205][T11752] IPVS: stopping master sync thread 7208 ...
[  389.228190][T11752] IPVS: stopping master sync thread 7207 ...
[  389.230192][T11752] IPVS: stopping master sync thread 7206 ...
[  389.232350][T11752] IPVS: stopping master sync thread 7205 ...
[  389.234450][T11752] IPVS: stopping master sync thread 7204 ...
[  389.236595][T11752] IPVS: stopping master sync thread 7203 ...
[  389.238816][T11752] IPVS: stopping master sync thread 7202 ...
[  389.240867][T11752] IPVS: stopping master sync thread 7201 ...
[  389.242834][T11752] IPVS: stopping master sync thread 7200 ...
[  389.244894][T11752] IPVS: stopping master sync thread 7199 ...
[  389.247013][T11752] IPVS: stopping master sync thread 7198 ...
[  389.249034][T11752] IPVS: stopping master sync thread 7197 ...
[  389.252736][T11752] IPVS: stopping master sync thread 7196 ...
[  389.254976][T11752] IPVS: stopping master sync thread 7193 ...
[  389.257163][T11752] IPVS: stopping master sync thread 7192 ...
[  389.259170][T11752] IPVS: stopping master sync thread 7191 ...
[  389.261277][T11752] IPVS: stopping master sync thread 7190 ...
[  389.263253][T11752] IPVS: stopping master sync thread 7189 ...
[  389.265238][T11752] IPVS: stopping master sync thread 7187 ...
[  389.268772][T11752] IPVS: stopping master sync thread 7186 ...
[  389.274053][T11752] IPVS: stopping master sync thread 7185 ...
[  389.276185][T11752] IPVS: stopping master sync thread 7184 ...
[  389.278721][T11752] IPVS: stopping master sync thread 7183 ...
[  389.280931][T11752] IPVS: stopping master sync thread 7182 ...
[  389.283028][T11752] IPVS: stopping master sync thread 7181 ...
[  389.285115][T11752] IPVS: stopping master sync thread 7180 ...
[  389.287098][T11752] IPVS: stopping master sync thread 7179 ...
[  389.468691][T11752] hsr_slave_0: left promiscuous mode
[  389.471440][T11752] hsr_slave_1: left promiscuous mode
[  389.475542][T11752] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  389.478831][T11752] batman_adv: batadv0: Removing interface: batadv_slave_0
[  389.485707][T11752] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  389.490043][T11752] batman_adv: batadv0: Removing interface: batadv_slave_1
[  389.540853][T11752] veth1_macvtap: left promiscuous mode
[  389.543122][T11752] veth0_macvtap: left promiscuous mode
[  389.544927][T11752] veth1_vlan: left promiscuous mode
[  389.547433][T11752] veth0_vlan: left promiscuous mode
[  389.813084][T21503] netlink: 'syz.7.2500': attribute type 16 has an invalid length.
[  389.816233][T21503] netlink: 'syz.7.2500': attribute type 17 has an invalid length.
[  390.797057][ T5982] Bluetooth: hci0: command tx timeout
[  390.806964][T11752] team0 (unregistering): Port device team_slave_1 removed
[  390.937815][T11752] team0 (unregistering): Port device team_slave_0 removed
[  391.815076][T11752] lo (unregistering): left allmulticast mode
[  391.831915][T21503] lo: left allmulticast mode
[  391.835477][T21503] tunl0: left allmulticast mode
[  391.837948][T21503] gre0: left allmulticast mode
[  391.840890][T21503] gretap0: left allmulticast mode
[  391.843637][T21503] erspan0: left allmulticast mode
[  391.846247][T21503] ip_vti0: left allmulticast mode
[  391.848991][T21503] ip6_vti0: left allmulticast mode
[  391.851640][T21503] sit0: left allmulticast mode
[  391.855612][T21503] ip6tnl0: left allmulticast mode
[  391.859195][T21503] ip6gre0: left allmulticast mode
[  391.862758][T21503] bridge0: port 2(syz_tun) entered blocking state
[  391.865044][T21503] bridge0: port 2(syz_tun) entered forwarding state
[  391.868466][T21503] ip6gretap0: left allmulticast mode
[  391.871509][T21503] bond0: left allmulticast mode
[  391.873102][T21503] bridge0: left allmulticast mode
[  391.875156][T21503] 8021q: adding VLAN 0 to HW filter on device bond0
[  391.878711][T21503] team0: left allmulticast mode
[  391.881805][T21503] 8021q: adding VLAN 0 to HW filter on device team0
[  391.884956][T21503] tipc: Resetting bearer <eth:team0>
[  391.886906][T21503] tipc: Resetting bearer <eth:team0>
[  391.889399][T21503] nlmon0: left allmulticast mode
[  391.892416][T21503] caif0: left allmulticast mode
[  391.893978][T21503] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  391.910013][T21511] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  391.918233][ T4207] lo speed is unknown, defaulting to 1000
[  391.920438][ T4207] syz2: Port: 1 Link ACTIVE
[  392.014959][T21525] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2512'.
[  392.026818][T21532] netlink: 'syz.6.2521': attribute type 1 has an invalid length.
[  392.061206][T21525] netlink: 3 bytes leftover after parsing attributes in process `syz.4.2512'.
[  392.069681][T21525] batadv0: entered promiscuous mode
[  392.071359][T21525] batadv0: entered allmulticast mode
[  392.081787][T21532] bond5: (slave vxcan1): The slave device specified does not support setting the MAC address
[  392.085994][T21532] bond5: (slave vxcan1): Error -95 calling set_mac_address
[  392.119263][T21536] netlink: 3 bytes leftover after parsing attributes in process `syz.4.2512'.
[  392.135405][T21536] batadv0: entered promiscuous mode
[  392.137569][T21536] batadv0: entered allmulticast mode
[  392.156239][T21537] macvlan3: entered promiscuous mode
[  392.158452][T21537] macvlan3: entered allmulticast mode
[  392.161175][T21537] bond5: entered promiscuous mode
[  392.163165][T21537] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  392.170002][T21537] bond5: left promiscuous mode
[  392.978441][T21544] lo speed is unknown, defaulting to 1000
[  394.910538][T21577] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2524'.
[  394.947881][T21577] netlink: 3 bytes leftover after parsing attributes in process `syz.6.2524'.
[  394.966060][T21577] batadv1: entered promiscuous mode
[  394.968510][T21577] batadv1: entered allmulticast mode
[  395.011770][T21581] netlink: 3 bytes leftover after parsing attributes in process `syz.6.2524'.
[  395.019269][T21581] batadv1: entered promiscuous mode
[  395.021070][T21581] batadv1: entered allmulticast mode
[  397.939434][T21640] netlink: 'syz.4.2537': attribute type 1 has an invalid length.
[  397.964951][T21640] 8021q: adding VLAN 0 to HW filter on device bond10
[  398.011908][T21640] bond10: (slave veth17): Enslaving as an active interface with a down link
[  398.038158][T21640] bond10: (slave veth0_to_bond): Enslaving as an active interface with a down link
[  398.048322][T21640] vlan3: entered allmulticast mode
[  398.050516][T21640] veth0_to_bond: entered allmulticast mode
[  398.053586][T21640] veth0_to_bond: entered promiscuous mode
[  398.056514][T21640] veth0_to_bond: left promiscuous mode
[  398.059122][T21640] veth0_to_bond: entered promiscuous mode
[  398.061797][T21640] bond10: (slave vlan3): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  398.078606][T21640] veth0_to_bond: left promiscuous mode
[  398.260185][T21650] bridge0: port 2(syz_tun) entered disabled state
[  398.284698][T21650] tipc: Resetting bearer <eth:team0>
[  398.292217][T21650] vxcan0: left allmulticast mode
[  398.294918][T21650] vxcan1: left allmulticast mode
[  398.297691][T21650] veth0: left allmulticast mode
[  398.300496][T21650] veth1: left allmulticast mode
[  398.303312][T21650] wg0: left allmulticast mode
[  398.305925][T21650] wg1: left allmulticast mode
[  398.308555][T21650] wg2: left allmulticast mode
[  398.311108][T21650] veth0_to_bridge: left allmulticast mode
[  398.314471][T21650] veth0_to_bond: left allmulticast mode
[  398.317580][T21650] 
: left allmulticast mode
[  398.320320][T21650] veth1_to_bond: left allmulticast mode
[  398.323339][T21650] bond_slave_1: left allmulticast mode
[  398.326429][T21650] veth0_to_team: left allmulticast mode
[  398.329542][T21650] team_slave_0: left allmulticast mode
[  398.332710][T21650] veth1_to_team: left allmulticast mode
[  398.335769][T21650] team_slave_1: left allmulticast mode
[  398.338725][T21650] veth0_to_batadv: left allmulticast mode
[  398.341813][T21650] batadv_slave_0: left allmulticast mode
[  398.344807][T21650] veth1_to_batadv: left allmulticast mode
[  398.347887][T21650] batadv_slave_1: left allmulticast mode
[  398.350863][T21650] xfrm0: left allmulticast mode
[  398.353754][T21650] veth0_to_hsr: left allmulticast mode
[  398.357861][T21650] veth1_to_hsr: left allmulticast mode
[  398.360270][T21650] hsr0: left allmulticast mode
[  398.361865][T21650] hsr_slave_0: left allmulticast mode
[  398.363856][T21650] veth1_virt_wifi: left allmulticast mode
[  398.366048][T21650] veth0_virt_wifi: left allmulticast mode
[  398.368054][T21650] veth1_macvtap: left allmulticast mode
[  398.369944][T21650] veth0_macvtap: left allmulticast mode
[  398.371783][T21650] macvtap0: left allmulticast mode
[  398.373470][T21650] macsec0: left allmulticast mode
[  398.375156][T21650] geneve0: left allmulticast mode
[  398.376938][T21650] geneve1: left allmulticast mode
[  398.408461][T21650] mac80211_hwsim hwsim17 wlan0: left allmulticast mode
[  398.411813][T21650] mac80211_hwsim hwsim18 wlan1: left allmulticast mode
[  398.414046][T21650] bridge1: left allmulticast mode
[  398.415704][T21650] veth2: left allmulticast mode
[  398.417438][T21650] veth3: left allmulticast mode
[  398.419049][T21650] bridge2: left allmulticast mode
[  398.420762][T21650] bond1: left allmulticast mode
[  398.422463][T21650] ip6gretap1: left allmulticast mode
[  398.424303][T21650] veth4: left allmulticast mode
[  398.425905][T21650] veth5: left allmulticast mode
[  398.427572][T21650] netdevsim netdevsim7 eth0: left allmulticast mode
[  398.429984][T21650] netdevsim netdevsim7 eth1: left allmulticast mode
[  398.432528][T21650] netdevsim netdevsim7 eth2: left allmulticast mode
[  398.434914][T21650] netdevsim netdevsim7 eth3: left allmulticast mode
[  398.437350][T21650] bridge3: left allmulticast mode
[  398.439654][T21650] gre1: left allmulticast mode
[  398.441538][T21650] bridge4: left allmulticast mode
[  398.443360][T21650] vxlan0: left allmulticast mode
[  398.445098][T21650] bridge5: left allmulticast mode
[  398.446900][T21650] syztnl2: left allmulticast mode
[  398.448868][T21650] bond2: left allmulticast mode
[  398.450551][T21650] macvlan0: left allmulticast mode
[  398.452434][T21650] vlan0: left allmulticast mode
[  398.454029][T21650] vlan1: left allmulticast mode
[  398.455557][T21650] hsr_slave_1: left allmulticast mode
[  398.457611][T21650] vlan2: left allmulticast mode
[  398.459243][T21650] bond3: left allmulticast mode
[  398.461084][T21650] gretap1: left allmulticast mode
[  398.462800][T21650] bridge6: left allmulticast mode
[  398.464449][T21650] bridge7: left allmulticast mode
[  398.466078][T21650] : left allmulticast mode
[  398.467688][T21650] geneve2: left allmulticast mode
[  398.469334][T21650] mac80211_hwsim hwsim27 wlan2: left allmulticast mode
[  398.471533][T21650] bridge8: left allmulticast mode
[  398.474852][T21650] bond6: left promiscuous mode
[  398.507613][ T1327] lo speed is unknown, defaulting to 1000
[  398.509815][ T1327] syz2: Port: 1 Link DOWN
[  400.532312][T21682] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2548'.
[  400.585296][T21686] netlink: 'syz.6.2549': attribute type 1 has an invalid length.
[  400.615772][T21686] 8021q: adding VLAN 0 to HW filter on device bond6
[  400.654324][T21686] 8021q: adding VLAN 0 to HW filter on device bond6
[  400.657248][T21686] bond6: (slave vxcan1): The slave device specified does not support setting the MAC address
[  400.665796][T21686] bond6: (slave vxcan1): Error -95 calling set_mac_address
[  400.712097][T21690] bond7: entered promiscuous mode
[  400.719125][T21690] 8021q: adding VLAN 0 to HW filter on device bond7
[  400.722289][T21690] bond6: (slave bond7): Enslaving as an active interface with a down link
[  400.745524][T21690] macvlan3: entered promiscuous mode
[  400.749772][T21690] macvlan3: entered allmulticast mode
[  400.753723][T21690] bond6: entered promiscuous mode
[  400.756811][T21690] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  400.761491][T21690] bond6: left promiscuous mode
[  405.271273][T21742] netlink: 'syz.4.2561': attribute type 1 has an invalid length.
[  405.289113][T21742] 8021q: adding VLAN 0 to HW filter on device bond11
[  405.310297][T21742] 8021q: adding VLAN 0 to HW filter on device bond11
[  405.312628][T21742] bond11: (slave vxcan3): The slave device specified does not support setting the MAC address
[  405.317288][T21742] bond11: (slave vxcan3): Error -95 calling set_mac_address
[  405.384515][T21747] bond12: entered promiscuous mode
[  405.390226][T21747] 8021q: adding VLAN 0 to HW filter on device bond12
[  405.395957][T21747] bond11: (slave bond12): Enslaving as an active interface with a down link
[  405.446462][T21748] netlink: 'syz.6.2562': attribute type 2 has an invalid length.
[  405.450347][T21748] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2562'.
[  405.493278][T21748] : entered promiscuous mode
[  405.511639][T21742] macvlan0: entered promiscuous mode
[  405.513598][T21742] macvlan0: entered allmulticast mode
[  405.516451][T21742] bond11: entered promiscuous mode
[  405.520759][T21742] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  405.670846][T21742] bond11: left promiscuous mode
[  405.898107][ T6061] usb 14-1: new high-speed USB device number 2 using dummy_hcd
[  405.983621][T21758] netlink: 'syz.4.2564': attribute type 10 has an invalid length.
[  406.055800][T21760] tipc: Resetting bearer <eth:syzkaller0>
[  406.064458][ T6061] usb 14-1: Using ep0 maxpacket: 32
[  406.069966][ T6061] usb 14-1: config 0 has an invalid interface number: 12 but max is 0
[  406.076214][ T6061] usb 14-1: config 0 has no interface number 0
[  406.079295][ T6061] usb 14-1: config 0 interface 12 has no altsetting 0
[  406.085043][ T6061] usb 14-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  406.089529][ T6061] usb 14-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  406.093844][ T6061] usb 14-1: Product: syz
[  406.096000][ T6061] usb 14-1: Manufacturer: syz
[  406.100398][ T6061] usb 14-1: SerialNumber: syz
[  406.111821][ T6061] usb 14-1: config 0 descriptor??
[  406.580434][ T6061] f81534 14-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  406.584932][ T6061] f81534 14-1:0.12: f81534_find_config_idx: read failed: -71
[  406.588498][ T6061] f81534 14-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  406.591658][ T6061] f81534 14-1:0.12: probe with driver f81534 failed with error -71
[  406.599141][ T6061] usb 14-1: USB disconnect, device number 2
[  410.154856][T22079] netlink: 'syz.9.2574': attribute type 1 has an invalid length.
[  410.251852][T22079] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  410.257438][ T1250] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 20004 - 0
[  410.261309][ T1250] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 20004 - 0
[  410.264929][ T1250] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 20004 - 0
[  410.277776][ T1250] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 20004 - 0
[  410.372373][T22321] netlink: 'syz.9.2575': attribute type 1 has an invalid length.
[  410.392874][T22321] 8021q: adding VLAN 0 to HW filter on device bond2
[  410.533584][T22321] 8021q: adding VLAN 0 to HW filter on device bond2
[  410.537415][T22321] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[  410.548514][T22321] bond2: (slave vxcan3): Error -95 calling set_mac_address
[  410.586437][T22327] bond3: entered promiscuous mode
[  410.596893][T22327] 8021q: adding VLAN 0 to HW filter on device bond3
[  410.620586][T22327] bond2: (slave bond3): Enslaving as an active interface with a down link
[  410.650002][T22332] macvlan2: entered promiscuous mode
[  410.652324][T22332] macvlan2: entered allmulticast mode
[  410.655137][T22332] bond2: entered promiscuous mode
[  410.667250][T22332] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  410.680907][T22332] bond2: left promiscuous mode
[  411.015181][T22340] hsr_slave_0: left promiscuous mode
[  411.020523][T22340] hsr_slave_1: left promiscuous mode
[  411.989398][T22358] bochs-drm 0000:00:01.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  412.175550][T22364] netlink: 'syz.4.2589': attribute type 1 has an invalid length.
[  412.193985][T22361] tipc: Resetting bearer <eth:syzkaller0>
[  412.267633][T22361] bond13: (slave geneve3): Enslaving as an active interface with an up link
[  412.271047][ T1250] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 20004 - 0
[  412.283993][ T1250] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 20004 - 0
[  412.289197][ T1250] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 20004 - 0
[  412.950999][T22660] netlink: 'syz.9.2593': attribute type 1 has an invalid length.
[  413.015547][T22660] 8021q: adding VLAN 0 to HW filter on device bond4
[  413.035218][T22806] 8021q: adding VLAN 0 to HW filter on device bond4
[  413.039252][T22806] bond4: (slave vxcan3): The slave device specified does not support setting the MAC address
[  413.045002][T22806] bond4: (slave vxcan3): Error -95 calling set_mac_address
[  413.068930][T22730] lo speed is unknown, defaulting to 1000
[  413.113787][T22660] bond5: entered promiscuous mode
[  413.121231][T22660] 8021q: adding VLAN 0 to HW filter on device bond5
[  413.126397][T22660] bond4: (slave bond5): Enslaving as an active interface with a down link
[  413.193191][T22660] macvlan2: entered promiscuous mode
[  413.195104][T22660] macvlan2: entered allmulticast mode
[  413.197697][T22660] bond4: entered promiscuous mode
[  413.199627][T22660] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  413.208680][T22660] bond4: left promiscuous mode
[  414.738443][T25301] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  414.747132][T25301] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  415.908735][T25313] netlink: 'syz.4.2605': attribute type 1 has an invalid length.
[  415.922292][T25313] 8021q: adding VLAN 0 to HW filter on device bond14
[  415.958453][T25313] 8021q: adding VLAN 0 to HW filter on device bond14
[  415.961153][T25313] bond14: (slave vxcan3): The slave device specified does not support setting the MAC address
[  415.965496][T25313] bond14: (slave vxcan3): Error -95 calling set_mac_address
[  416.012340][T25316] bond15: entered promiscuous mode
[  416.016140][T25316] 8021q: adding VLAN 0 to HW filter on device bond15
[  416.019417][T25316] bond14: (slave bond15): Enslaving as an active interface with a down link
[  416.042938][T25316] macvlan0: entered promiscuous mode
[  416.044694][T25316] macvlan0: entered allmulticast mode
[  416.046986][T25316] bond14: entered promiscuous mode
[  416.049261][T25316] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  416.053144][T25316] bond14: left promiscuous mode
[  416.273129][T25324] netlink: 'syz.9.2615': attribute type 1 has an invalid length.
[  416.300470][T25324] 8021q: adding VLAN 0 to HW filter on device bond6
[  416.341450][T25324] 8021q: adding VLAN 0 to HW filter on device bond6
[  416.345050][T25324] bond6: (slave vxcan3): The slave device specified does not support setting the MAC address
[  416.350661][T25324] bond6: (slave vxcan3): Error -95 calling set_mac_address
[  416.392744][T25328] bond7: entered promiscuous mode
[  416.397972][T25328] 8021q: adding VLAN 0 to HW filter on device bond7
[  416.402376][T25328] bond6: (slave bond7): Enslaving as an active interface with a down link
[  416.445029][T25324] macvlan2: entered promiscuous mode
[  416.448011][T25324] macvlan2: entered allmulticast mode
[  416.450839][T25324] bond6: entered promiscuous mode
[  416.452985][T25324] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  416.459764][T25324] bond6: left promiscuous mode
[  419.568648][T25883] netlink: 'syz.7.2621': attribute type 1 has an invalid length.
[  419.583660][T25883] 8021q: adding VLAN 0 to HW filter on device bond7
[  419.616819][T25883] 8021q: adding VLAN 0 to HW filter on device bond7
[  419.620205][T25883] bond7: (slave vxcan3): The slave device specified does not support setting the MAC address
[  419.625793][T25883] bond7: (slave vxcan3): Error -95 calling set_mac_address
[  419.689208][T25886] bond8: entered promiscuous mode
[  419.692927][T25886] 8021q: adding VLAN 0 to HW filter on device bond8
[  419.696049][T25886] bond7: (slave bond8): Enslaving as an active interface with a down link
[  419.717091][T10982] bridge_slave_1: left allmulticast mode
[  419.719760][T10982] bridge0: port 2(bridge_slave_1) entered disabled state
[  419.723793][T10982] bridge_slave_0: left allmulticast mode
[  419.725702][T10982] bridge0: port 1(bridge_slave_0) entered disabled state
[  419.797250][T10982] bond1 (unregistering): (slave ip6gretap1): Releasing active interface
[  419.800358][T10982] bond1 (unregistering): (slave ip6gretap1): the permanent HWaddr of slave - ea:a5:bf:db:93:14 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  419.821666][T25890] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2622'.
[  420.672936][T10982] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  420.676741][T10982] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  420.679956][T10982] bond0 (unregistering): Released all slaves
[  420.767721][T10982] bond1 (unregistering): (slave veth5): Releasing active interface
[  420.772740][T10982] bond1 (unregistering): Released all slaves
[  420.787294][T25883] macvlan1: entered promiscuous mode
[  420.789536][T25883] macvlan1: entered allmulticast mode
[  420.792084][T25883] bond7: entered promiscuous mode
[  420.794019][T25883] 8021q: adding VLAN 0 to HW filter on device macvlan1
[  420.798595][T25883] bond7: left promiscuous mode
[  420.827726][T25892] lo speed is unknown, defaulting to 1000
[  420.858852][T10982] tipc: Left network mode
[  421.093915][T10982] batman_adv: batadv0: Removing interface: batadv_slave_0
[  421.096816][T10982] batman_adv: batadv0: Removing interface: batadv_slave_1
[  422.375319][T10982] team0 (unregistering): Port device team_slave_1 removed
[  422.512223][T10982] team0 (unregistering): Port device team_slave_0 removed
[  423.892678][T25938] overlayfs: failed to clone lowerpath
[  425.325668][T25965] tipc: Enabled bearer <udp:syz2>, priority 10
[  426.360055][T25982] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2648'.
[  426.865817][T25996] vlan2: left promiscuous mode
[  426.868284][T25996] bond4: left promiscuous mode
[  426.870021][T25996] gretap3: left promiscuous mode
[  426.873116][T25996] vlan2: left allmulticast mode
[  426.875171][T25996] bond4: left allmulticast mode
[  426.877432][T25996] gretap3: left allmulticast mode
[  426.882929][T25996] bond7: left promiscuous mode
[  427.640579][T26005] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2650'.
[  427.830178][T26009] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2653'.
[  428.997954][T26027] netlink: 4400 bytes leftover after parsing attributes in process `syz.4.2657'.
[  429.107788][T26027] debugfs: 'Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç' already exists in 'ieee80211'
[  429.926561][T26035] netlink: 136784 bytes leftover after parsing attributes in process `syz.7.2667'.
[  429.932419][T26035] netlink: zone id is out of range
[  429.935299][T26035] netlink: zone id is out of range
[  429.938669][T26035] netlink: zone id is out of range
[  429.942459][T26035] netlink: zone id is out of range
[  429.945657][T26035] netlink: zone id is out of range
[  429.951954][T26035] netlink: zone id is out of range
[  429.954233][T26035] netlink: zone id is out of range
[  429.956575][T26035] netlink: zone id is out of range
[  429.959275][T26035] netlink: zone id is out of range
[  429.961588][T26035] netlink: zone id is out of range
[  432.286209][T26080] netlink: 4400 bytes leftover after parsing attributes in process `syz.9.2669'.
[  432.335615][T26080] debugfs: 'Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç' already exists in 'ieee80211'
[  433.798006][T26093] lo speed is unknown, defaulting to 1000
[  434.212970][T26093] netlink: 'syz.7.2673': attribute type 13 has an invalid length.
[  434.468182][T26110] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2678'.
[  435.741004][T26128] bond3: left promiscuous mode
[  435.745499][T26128] bond5: left promiscuous mode
[  435.810899][T26128] bond7: left promiscuous mode
[  435.813838][   T41] netdevsim netdevsim9 netdevsim0: unset [1, 0] type 2 family 0 port 20004 - 0
[  435.817452][T10984] netdevsim netdevsim9 netdevsim1: unset [1, 0] type 2 family 0 port 20004 - 0
[  435.826837][   T41] netdevsim netdevsim9 netdevsim2: unset [1, 0] type 2 family 0 port 20004 - 0
[  435.836792][   T41] netdevsim netdevsim9 netdevsim3: unset [1, 0] type 2 family 0 port 20004 - 0
[  437.088052][T26139] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[  437.091999][T26139] syzkaller0: entered promiscuous mode
[  437.093730][T26139] syzkaller0: entered allmulticast mode
[  437.095935][T26139] tipc: Resetting bearer <eth:syzkaller0>
[  437.750658][T26155] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2690'.
[  438.448010][T26163] netlink: 'syz.6.2694': attribute type 1 has an invalid length.
[  438.474825][T26163] 8021q: adding VLAN 0 to HW filter on device bond8
[  438.502159][T26163] 8021q: adding VLAN 0 to HW filter on device bond8
[  438.505355][T26163] bond8: (slave vxcan1): The slave device specified does not support setting the MAC address
[  438.520266][T26163] bond8: (slave vxcan1): Error -95 calling set_mac_address
[  438.568876][T26168] bond9: entered promiscuous mode
[  438.573233][T26168] 8021q: adding VLAN 0 to HW filter on device bond9
[  438.576427][T26168] bond8: (slave bond9): Enslaving as an active interface with a down link
[  438.596332][T26168] macvlan3: entered promiscuous mode
[  438.598724][T26168] macvlan3: entered allmulticast mode
[  438.601267][T26168] bond8: entered promiscuous mode
[  438.604309][T26168] 8021q: adding VLAN 0 to HW filter on device macvlan3
[  438.615009][T26168] bond8: left promiscuous mode
[  439.579080][T26177] tipc: Resetting bearer <eth:syzkaller0>
[  439.583527][T26177] syzkaller0: left promiscuous mode
[  439.585703][T26177] syzkaller0: left allmulticast mode
[  439.592416][T26177] bond12: left promiscuous mode
[  439.618742][T26177] bond15: left promiscuous mode
[  439.634806][T10988] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 20004 - 0
[  439.640213][T10988] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 20004 - 0
[  439.643935][T10988] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 20004 - 0
[  439.751270][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  440.331110][T26191] netlink: 136784 bytes leftover after parsing attributes in process `syz.6.2700'.
[  440.338212][T26191] net_ratelimit: 4053 callbacks suppressed
[  440.338230][T26191] netlink: zone id is out of range
[  440.342806][T26191] netlink: zone id is out of range
[  440.344962][T26191] netlink: zone id is out of range
[  440.347318][T26191] netlink: zone id is out of range
[  440.349481][T26191] netlink: zone id is out of range
[  440.351655][T26191] netlink: zone id is out of range
[  440.353516][T26191] netlink: zone id is out of range
[  440.355642][T26191] netlink: zone id is out of range
[  440.360245][T26191] netlink: zone id is out of range
[  440.362115][T26191] netlink: zone id is out of range
[  440.464874][T26197] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2701'.
[  441.211402][T26210] netlink: 4400 bytes leftover after parsing attributes in process `syz.6.2702'.
[  441.220961][T26210] debugfs: 'Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç' already exists in 'ieee80211'
[  445.713535][T26265] loop8: detected capacity change from 0 to 7
[  445.784156][T26265] Dev loop8: unable to read RDB block 7
[  445.786027][T26265]  loop8: AHDI p1 p2 p3
[  445.787985][T26265] loop8: partition table partially beyond EOD, truncated
[  445.790615][T26265] loop8: p1 start 1601398130 is beyond EOD, truncated
[  445.799787][T26265] loop8: p2 start 1702059890 is beyond EOD, truncated
[  445.907595][T26270] Dev loop8: unable to read RDB block 7
[  445.910699][T26270]  loop8: AHDI p1 p2 p3
[  445.912426][T26270] loop8: partition table partially beyond EOD, truncated
[  445.915285][T26270] loop8: p1 start 1601398130 is beyond EOD, truncated
[  445.917880][T26270] loop8: p2 start 1702059890 is beyond EOD, truncated
[  445.975614][T26278] netlink: 60 bytes leftover after parsing attributes in process `syz.7.2723'.
[  447.669106][   T40] audit: type=1800 audit(1758534422.264:3149): pid=26311 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2730" name="bus" dev="ramfs" ino=60597 res=0 errno=0
[  449.352643][T26317] net_ratelimit: 4052 callbacks suppressed
[  449.352655][T26317] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  451.030124][T26350] netlink: 4400 bytes leftover after parsing attributes in process `syz.7.2743'.
[  451.043005][T26350] sysfs: cannot create duplicate filename '/class/ieee80211/Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç'
[  451.047208][T26350] CPU: 2 UID: 0 PID: 26350 Comm: syz.7.2743 Not tainted syzkaller #0 PREEMPT(full) 
[  451.047234][T26350] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  451.047246][T26350] Call Trace:
[  451.047253][T26350]  <TASK>
[  451.047261][T26350]  dump_stack_lvl+0x16c/0x1f0
[  451.047291][T26350]  sysfs_warn_dup+0x7f/0xa0
[  451.047321][T26350]  sysfs_do_create_link_sd+0x124/0x140
[  451.047345][T26350]  sysfs_create_link+0x61/0xc0
[  451.047368][T26350]  device_add+0x62c/0x1aa0
[  451.047391][T26350]  ? __pfx_device_add+0x10/0x10
[  451.047409][T26350]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  451.047436][T26350]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  451.047464][T26350]  wiphy_register+0x1df4/0x29f0
[  451.047490][T26350]  ? __pfx_wiphy_register+0x10/0x10
[  451.047516][T26350]  ? ieee80211_register_hw+0x2520/0x4120
[  451.047545][T26350]  ieee80211_register_hw+0x2546/0x4120
[  451.047581][T26350]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  451.047613][T26350]  ? find_held_lock+0x2b/0x80
[  451.047631][T26350]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  451.047682][T26350]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  451.047722][T26350]  ? __hrtimer_setup+0x176/0x280
[  451.047754][T26350]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  451.047791][T26350]  ? trace_kmalloc+0x2b/0xd0
[  451.047812][T26350]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  451.047834][T26350]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  451.047853][T26350]  ? hwsim_new_radio_nl+0xa0e/0x12c0
[  451.047873][T26350]  ? __asan_memcpy+0x3c/0x60
[  451.047895][T26350]  hwsim_new_radio_nl+0xb51/0x12c0
[  451.047918][T26350]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  451.047947][T26350]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  451.047967][T26350]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  451.047992][T26350]  genl_family_rcv_msg_doit+0x209/0x2f0
[  451.048012][T26350]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  451.048040][T26350]  ? bpf_lsm_capable+0x9/0x10
[  451.048055][T26350]  ? security_capable+0x7e/0x260
[  451.048075][T26350]  ? ns_capable+0xd7/0x110
[  451.048096][T26350]  genl_rcv_msg+0x55c/0x800
[  451.048118][T26350]  ? __pfx_genl_rcv_msg+0x10/0x10
[  451.048137][T26350]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  451.048159][T26350]  ? __lock_acquire+0x62e/0x1ce0
[  451.048185][T26350]  netlink_rcv_skb+0x155/0x420
[  451.048209][T26350]  ? __pfx_genl_rcv_msg+0x10/0x10
[  451.048229][T26350]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  451.048264][T26350]  ? netlink_deliver_tap+0x1ae/0xd30
[  451.048307][T26350]  ? is_vmalloc_addr+0x86/0xa0
[  451.048330][T26350]  genl_rcv+0x28/0x40
[  451.048345][T26350]  netlink_unicast+0x5aa/0x870
[  451.048377][T26350]  ? __pfx_netlink_unicast+0x10/0x10
[  451.048402][T26350]  ? __asan_memset+0x23/0x50
[  451.048420][T26350]  ? __build_skb_around+0x278/0x3b0
[  451.048444][T26350]  ? is_vmalloc_addr+0x86/0xa0
[  451.048470][T26350]  netlink_sendmsg+0x8d1/0xdd0
[  451.048502][T26350]  ? __pfx_netlink_sendmsg+0x10/0x10
[  451.048534][T26350]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  451.048560][T26350]  ____sys_sendmsg+0xa95/0xc70
[  451.048582][T26350]  ? __pfx_____sys_sendmsg+0x10/0x10
[  451.048599][T26350]  ? get_compat_msghdr+0x11a/0x170
[  451.048629][T26350]  ? __pfx_futex_wake_mark+0x10/0x10
[  451.048658][T26350]  ___sys_sendmsg+0x134/0x1d0
[  451.048687][T26350]  ? __pfx____sys_sendmsg+0x10/0x10
[  451.048727][T26350]  ? find_held_lock+0x2b/0x80
[  451.048762][T26350]  __sys_sendmsg+0x16d/0x220
[  451.048788][T26350]  ? __pfx___sys_sendmsg+0x10/0x10
[  451.048812][T26350]  ? __ia32_sys_futex_time32+0x1d9/0x460
[  451.048846][T26350]  ? rcu_is_watching+0x12/0xc0
[  451.048867][T26350]  __do_fast_syscall_32+0x7c/0x300
[  451.048895][T26350]  do_fast_syscall_32+0x32/0x80
[  451.048911][T26350]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  451.048931][T26350] RIP: 0023:0xf70de579
[  451.048945][T26350] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  451.048961][T26350] RSP: 002b:00000000f4c4655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  451.048978][T26350] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000100
[  451.048988][T26350] RDX: 0000000000000084 RSI: 0000000000000000 RDI: 0000000000000000
[  451.048999][T26350] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  451.049008][T26350] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  451.049019][T26350] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  451.049043][T26350]  </TASK>
[  451.148589][T26351] tipc: Started in network mode
[  451.210519][T26351] tipc: Node identity f2ad52cb86c8, cluster identity 4711
[  451.213079][T26351] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  451.215496][T26352] syzkaller0: entered promiscuous mode
[  451.218128][T26352] syzkaller0: entered allmulticast mode
[  451.251708][T26351] tipc: Resetting bearer <eth:syzkaller0>
[  451.262713][T26348] tipc: Resetting bearer <eth:syzkaller0>
[  451.510560][T26348] tipc: Disabling bearer <eth:syzkaller0>
[  451.641880][T26355] lo speed is unknown, defaulting to 1000
[  452.190778][T26355] netlink: 'syz.6.2738': attribute type 13 has an invalid length.
[  452.230999][T26355] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  452.935775][T26380] netlink: 'syz.6.2742': attribute type 5 has an invalid length.
[  452.938444][T26380] netlink: 'syz.6.2742': attribute type 7 has an invalid length.
[  454.998959][T26406] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2749'.
[  457.136893][T26433] netlink: 'syz.4.2755': attribute type 5 has an invalid length.
[  457.139752][T26433] netlink: 'syz.4.2755': attribute type 7 has an invalid length.
[  457.226773][T26437] netlink: 128 bytes leftover after parsing attributes in process `syz.9.2757'.
[  458.735942][T26455] tipc: Enabling of bearer <eth:syzkaller0> rejected, max 3 bearers permitted
[  460.381717][   T40] audit: type=1800 audit(1758534434.974:3150): pid=26483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.2769" name="bus" dev="ramfs" ino=60289 res=0 errno=0
[  460.879465][   T40] audit: type=1800 audit(1758534435.474:3151): pid=26495 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.2781" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[  460.903271][T26494] bridge0: port 3(erspan0) entered blocking state
[  460.906937][T26494] bridge0: port 3(erspan0) entered disabled state
[  460.909382][T26494] erspan0: entered allmulticast mode
[  460.912630][T26494] erspan0: entered promiscuous mode
[  462.933390][T26536] lo speed is unknown, defaulting to 1000
[  463.225444][T26546] netlink: 4400 bytes leftover after parsing attributes in process `syz.6.2786'.
[  463.231296][T26546] sysfs: cannot create duplicate filename '/class/ieee80211/Ç`]Š•Iöq¯!¾>Ýsó³Îú*Š®!)\Ç'
[  463.235568][T26546] CPU: 1 UID: 0 PID: 26546 Comm: syz.6.2786 Not tainted syzkaller #0 PREEMPT(full) 
[  463.235592][T26546] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  463.235603][T26546] Call Trace:
[  463.235609][T26546]  <TASK>
[  463.235618][T26546]  dump_stack_lvl+0x16c/0x1f0
[  463.235653][T26546]  sysfs_warn_dup+0x7f/0xa0
[  463.235677][T26546]  sysfs_do_create_link_sd+0x124/0x140
[  463.235702][T26546]  sysfs_create_link+0x61/0xc0
[  463.235724][T26546]  device_add+0x62c/0x1aa0
[  463.235747][T26546]  ? __pfx_device_add+0x10/0x10
[  463.235764][T26546]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  463.235794][T26546]  ? ieee80211_set_bitrate_flags+0x243/0x6b0
[  463.235826][T26546]  wiphy_register+0x1df4/0x29f0
[  463.235844][T26546]  ? netdev_run_todo+0x864/0x1320
[  463.235860][T26546]  ? __dev_printk+0x270/0x270
[  463.235891][T26546]  ? __pfx_wiphy_register+0x10/0x10
[  463.235917][T26546]  ? ieee80211_init_rate_ctrl_alg+0x125/0x6b0
[  463.235956][T26546]  ieee80211_register_hw+0x2546/0x4120
[  463.235996][T26546]  ? __pfx_ieee80211_register_hw+0x10/0x10
[  463.236027][T26546]  ? find_held_lock+0x2b/0x80
[  463.236048][T26546]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  463.236077][T26546]  ? __pfx_mac80211_hwsim_beacon+0x10/0x10
[  463.236103][T26546]  ? __hrtimer_setup+0x176/0x280
[  463.236134][T26546]  mac80211_hwsim_new_radio+0x3034/0x54d0
[  463.236171][T26546]  ? trace_kmalloc+0x2b/0xd0
[  463.236195][T26546]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  463.236220][T26546]  ? __pfx_mac80211_hwsim_new_radio+0x10/0x10
[  463.236238][T26546]  ? hwsim_new_radio_nl+0xa0e/0x12c0
[  463.236260][T26546]  ? __asan_memcpy+0x3c/0x60
[  463.236283][T26546]  hwsim_new_radio_nl+0xb51/0x12c0
[  463.236308][T26546]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  463.236339][T26546]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[  463.236361][T26546]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[  463.236388][T26546]  genl_family_rcv_msg_doit+0x209/0x2f0
[  463.236410][T26546]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  463.236440][T26546]  ? bpf_lsm_capable+0x9/0x10
[  463.236457][T26546]  ? security_capable+0x7e/0x260
[  463.236478][T26546]  ? ns_capable+0xd7/0x110
[  463.236502][T26546]  genl_rcv_msg+0x55c/0x800
[  463.236526][T26546]  ? __pfx_genl_rcv_msg+0x10/0x10
[  463.236546][T26546]  ? __pfx_hwsim_new_radio_nl+0x10/0x10
[  463.236571][T26546]  ? __lock_acquire+0x62e/0x1ce0
[  463.236602][T26546]  netlink_rcv_skb+0x155/0x420
[  463.236630][T26546]  ? __pfx_genl_rcv_msg+0x10/0x10
[  463.236670][T26546]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  463.236712][T26546]  ? netlink_deliver_tap+0x1ae/0xd30
[  463.236754][T26546]  ? is_vmalloc_addr+0x86/0xa0
[  463.236779][T26546]  genl_rcv+0x28/0x40
[  463.236796][T26546]  netlink_unicast+0x5aa/0x870
[  463.236830][T26546]  ? __pfx_netlink_unicast+0x10/0x10
[  463.236856][T26546]  ? __asan_memset+0x23/0x50
[  463.236875][T26546]  ? __build_skb_around+0x278/0x3b0
[  463.236900][T26546]  ? is_vmalloc_addr+0x86/0xa0
[  463.236926][T26546]  netlink_sendmsg+0x8d1/0xdd0
[  463.236968][T26546]  ? __pfx_netlink_sendmsg+0x10/0x10
[  463.237003][T26546]  ? aa_sock_msg_perm.constprop.0+0x100/0x1d0
[  463.237029][T26546]  ____sys_sendmsg+0xa95/0xc70
[  463.237054][T26546]  ? __pfx_____sys_sendmsg+0x10/0x10
[  463.237073][T26546]  ? get_compat_msghdr+0x11a/0x170
[  463.237106][T26546]  ? __pfx_futex_wake_mark+0x10/0x10
[  463.237139][T26546]  ___sys_sendmsg+0x134/0x1d0
[  463.237169][T26546]  ? __pfx____sys_sendmsg+0x10/0x10
[  463.237209][T26546]  ? find_held_lock+0x2b/0x80
[  463.237247][T26546]  __sys_sendmsg+0x16d/0x220
[  463.237276][T26546]  ? __pfx___sys_sendmsg+0x10/0x10
[  463.237304][T26546]  ? __ia32_sys_futex_time32+0x1d9/0x460
[  463.237341][T26546]  ? rcu_is_watching+0x12/0xc0
[  463.237360][T26546]  __do_fast_syscall_32+0x7c/0x300
[  463.237390][T26546]  do_fast_syscall_32+0x32/0x80
[  463.237408][T26546]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  463.237429][T26546] RIP: 0023:0xf709e579
[  463.237444][T26546] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  463.237461][T26546] RSP: 002b:00000000f4c0655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  463.237480][T26546] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 0000000080000100
[  463.237492][T26546] RDX: 0000000000000084 RSI: 0000000000000000 RDI: 0000000000000000
[  463.237505][T26546] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  463.237516][T26546] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  463.237527][T26546] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  463.237551][T26546]  </TASK>
[  464.530376][T26572] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2794'.
[  465.028893][  T840] IPVS: starting estimator thread 0...
[  465.146808][T26591] IPVS: using max 45 ests per chain, 108000 per kthread
[  467.597362][T26627] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2805'.
[  467.601613][T26627] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2805'.
[  468.736828][   T40] audit: type=1800 audit(1758534443.324:3152): pid=26643 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.2809" name="bus" dev="ramfs" ino=62279 res=0 errno=0
[  470.537193][T26674] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(12)
[  470.539361][T26674] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  470.541928][T26674] vhci_hcd vhci_hcd.0: Device attached
[  470.547640][T26674] vhci_hcd vhci_hcd.0: pdev(4) rhport(1) sockfd(15)
[  470.550302][T26674] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  470.553349][T26674] vhci_hcd vhci_hcd.0: Device attached
[  470.564827][T26677] vhci_hcd: connection closed
[  470.564989][T11022] vhci_hcd: stop threads
[  470.565907][T26675] vhci_hcd: connection closed
[  470.570501][T11022] vhci_hcd: release socket
[  470.575677][T11022] vhci_hcd: disconnect device
[  470.583298][T11022] vhci_hcd: stop threads
[  470.584760][T11022] vhci_hcd: release socket
[  470.587003][T11022] vhci_hcd: disconnect device
[  470.673398][T26682] netlink: 'syz.9.2818': attribute type 5 has an invalid length.
[  470.676877][T26682] netlink: 'syz.9.2818': attribute type 7 has an invalid length.
[  470.724656][T26682] : entered promiscuous mode
[  470.751746][   T40] audit: type=1800 audit(1758534445.344:3153): pid=26683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.2821" name="bus" dev="ramfs" ino=62330 res=0 errno=0
[  476.300500][T26758] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2839'.
[  476.377457][T26759] netlink: 'syz.4.2838': attribute type 33 has an invalid length.
[  476.380054][T26759] netlink: 152 bytes leftover after parsing attributes in process `syz.4.2838'.
[  476.400184][T26759] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2838'.
[  478.436961][T26788] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  479.066801][    T9] usb 14-1: new high-speed USB device number 3 using dummy_hcd
[  479.125372][T26805] syz.7.2851 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  479.336732][    T9] usb 14-1: Using ep0 maxpacket: 8
[  479.339758][    T9] usb 14-1: config 0 interface 0 has no altsetting 0
[  479.341856][    T9] usb 14-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  479.344683][    T9] usb 14-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  479.348466][    T9] usb 14-1: config 0 descriptor??
[  479.761785][    T9] mcp2221 0003:04D8:00DD.0005: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.9-1/input0
[  480.206092][T26819] team0: Port device team_slave_0 removed
[  480.267315][   T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  480.270877][   T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  480.522907][ T4207] usb 14-1: USB disconnect, device number 3
[  484.176559][T26880] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  484.416618][T26882] netlink: 14 bytes leftover after parsing attributes in process `syz.6.2872'.
[  484.509233][T26882] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  484.513557][T26882] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  484.520172][T26882] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  484.523747][T26882] bond0 (unregistering): Released all slaves
[  486.004323][T26910] netlink: 'syz.9.2881': attribute type 33 has an invalid length.
[  486.007780][T26910] netlink: 152 bytes leftover after parsing attributes in process `syz.9.2881'.
[  486.012542][T26910] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2881'.
[  489.651980][T26972] netlink: 240 bytes leftover after parsing attributes in process `syz.7.2897'.
[  490.036781][T26976] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2899'.
[  490.181740][T26976] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  490.187165][T26976] bond0 (unregistering): Released all slaves
[  490.221858][T26980] lo speed is unknown, defaulting to 1000
[  492.830233][T27039] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2915'.
[  493.287021][T27043] netlink: 136784 bytes leftover after parsing attributes in process `syz.7.2917'.
[  493.296987][T27043] netlink: zone id is out of range
[  493.299007][T27043] netlink: zone id is out of range
[  493.301047][T27043] netlink: zone id is out of range
[  493.303166][T27043] netlink: zone id is out of range
[  493.305292][T27043] netlink: zone id is out of range
[  493.310922][T27043] netlink: zone id is out of range
[  493.313441][T27043] netlink: zone id is out of range
[  493.315659][T27043] netlink: zone id is out of range
[  493.320083][T27043] netlink: zone id is out of range
[  493.322477][T27043] netlink: zone id is out of range
[  494.104570][T27055] vhci_hcd vhci_hcd.0: pdev(9) rhport(0) sockfd(5)
[  494.106739][T27055] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  494.110128][T27055] vhci_hcd vhci_hcd.0: Device attached
[  494.793382][T27056] vhci_hcd: connection closed
[  494.794870][T10996] vhci_hcd: stop threads
[  494.798501][T10996] vhci_hcd: release socket
[  494.800417][T10996] vhci_hcd: disconnect device
[  497.695648][T27100] 8021q: adding VLAN 0 to HW filter on device bond9
[  497.740052][T27100] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  497.744804][T27100] bond9: (slave macvlan2): Enslaving as a backup interface with an up link
[  497.791551][T27100] bridge_slave_0: left allmulticast mode
[  497.794132][T27100] bridge_slave_0: left promiscuous mode
[  497.799166][T27100] bridge0: port 1(bridge_slave_0) entered disabled state
[  497.804777][T27100] bridge_slave_1: left allmulticast mode
[  497.807392][T27100] bridge_slave_1: left promiscuous mode
[  497.810240][T27100] bridge0: port 2(bridge_slave_1) entered disabled state
[  497.822188][T27100] bond0: (slave bond_slave_0): Releasing backup interface
[  497.827301][T27100] bond0: (slave bond_slave_1): Releasing backup interface
[  497.843017][T27100] team0: Port device team_slave_0 removed
[  497.847659][T27100] team0: Port device team_slave_1 removed
[  497.850478][T27100] batman_adv: batadv0: Removing interface: batadv_slave_0
[  497.865280][T27100] batman_adv: batadv0: Removing interface: batadv_slave_1
[  497.877560][T27100] bond1: (slave geneve2): Releasing backup interface
[  497.885161][T27100] bond2: (slave bond3): Releasing active interface
[  497.901143][T27100] bond4: (slave bond5): Releasing active interface
[  497.918022][T27100] bond6: (slave bond7): Releasing active interface
[  497.933164][T27100] bond9: (slave macvlan2): Removing an active aggregator
[  497.955075][T27100] bond9: (slave macvlan2): Releasing backup interface
[  497.974025][T27113] lo speed is unknown, defaulting to 1000
[  500.392679][T27149] lo speed is unknown, defaulting to 1000
[  500.471670][T27153] 8021q: adding VLAN 0 to HW filter on device bond0
[  500.652667][T27153] bridge_slave_0: left allmulticast mode
[  500.654794][T27153] bridge_slave_0: left promiscuous mode
[  500.664668][T27153] bridge0: port 1(bridge_slave_0) entered disabled state
[  500.677245][T27153] bridge_slave_1: left allmulticast mode
[  500.681498][T27153] bridge_slave_1: left promiscuous mode
[  500.684146][T27153] bridge0: port 2(bridge_slave_1) entered disabled state
[  500.699797][T27153] bond10: (slave veth0_to_bond): Releasing active interface
[  500.705715][T27153] team0: Port device team_slave_0 removed
[  500.714513][T27153] team0: Port device team_slave_1 removed
[  500.724638][T27153] bond2: (slave bond3): Releasing backup interface
[  500.747057][T27153] bond4: (slave vlan2): Releasing backup interface
[  500.789672][T27153] bond5: (slave ip6gretap1): Releasing active interface
[  500.796593][T27153] bond5: (slave ip6gretap1): the permanent HWaddr of slave - d6:58:27:6c:a6:9c - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  500.807394][T27153] bond5: (slave veth7): Releasing active interface
[  500.822087][T27153] bond6: (slave veth13): Releasing active interface
[  500.840636][T27153] bond8: left allmulticast mode
[  500.842602][T27153] bond8: left promiscuous mode
[  500.844675][T27153] bridge10: port 1(bond8) entered disabled state
[  500.877285][T27153] geneve2: left allmulticast mode
[  500.879470][T27153] geneve2: left promiscuous mode
[  500.881798][T27153] bridge10: port 2(geneve2) entered disabled state
[  500.905456][T27153] bond9: (slave gretap1): Releasing active interface
[  500.912582][T27153] bond10: (slave veth17): Releasing active interface
[  500.925765][T27153] bond11: (slave bond12): Releasing active interface
[  500.930910][T27153] bond13: (slave geneve3): Releasing backup interface
[  500.937117][T27153] bond14: (slave bond15): Releasing active interface
[  501.204553][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  503.208912][   T40] audit: type=1804 audit(1758534477.804:3154): pid=27200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.9.2955" name="/newroot/113/bus" dev="tmpfs" ino=599 res=1 errno=0
[  504.228084][T27207] bond2: option mode: unable to set because the bond device has slaves
[  504.251479][T27207] 8021q: adding VLAN 0 to HW filter on device macvlan1
[  504.258468][T27207] bond2: (slave macvlan1): Enslaving as an active interface with an up link
[  504.316884][T27207] erspan0: left allmulticast mode
[  504.319074][T27207] erspan0: left promiscuous mode
[  504.321205][T27207] bridge0: port 3(erspan0) entered disabled state
[  504.357511][T27207] syz_tun: left allmulticast mode
[  504.359271][T27207] syz_tun: left promiscuous mode
[  504.361197][T27207] bridge0: port 2(syz_tun) entered disabled state
[  504.394928][T27207] bond0: (slave bridge0): Releasing backup interface
[  504.402685][   T40] audit: type=1804 audit(1758534478.994:3155): pid=27211 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.2958" name="/newroot/721/bus" dev="tmpfs" ino=3941 res=1 errno=0
[  504.413092][T27213] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2959'.
[  504.422845][T27207] bridge_slave_0: left allmulticast mode
[  504.425444][T27207] bridge_slave_0: left promiscuous mode
[  504.428458][T27207] bridge0: port 1(bridge_slave_0) entered disabled state
[  504.444155][T27207] bond0: (slave 
3
0
): Releasing backup interface
[  504.456413][T27207] bond0: (slave bond_slave_1): Releasing backup interface
[  504.461555][T27207] team0: Port device team_slave_1 removed
[  504.464743][T27207] bond1: (slave ip6gretap1): Releasing active interface
[  504.469460][T27207] bond1: (slave ip6gretap1): the permanent HWaddr of slave - 76:f0:02:77:f1:bb - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  504.487343][T27207] bond1: (slave veth5): Releasing active interface
[  504.494335][T27207] bond2: (slave macvlan0): Releasing active interface
[  504.499718][T27207] bond2: (slave macvlan0): the permanent HWaddr of slave - 4a:88:81:fc:01:25 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  504.506764][T27207] bond2: (slave macvlan1): making interface the new active one
[  504.520066][T27207] bond3: (slave gretap1): Releasing active interface
[  504.534878][T27207] bond4: left allmulticast mode
[  504.539717][T27207] bond4: left promiscuous mode
[  504.545482][T27207] bridge8: port 1(bond4) entered disabled state
[  504.584463][T27207] bond5: (slave bond6): Releasing active interface
[  504.594263][T27207] bond7: (slave bond8): Releasing active interface
[  504.612163][T27207] bond2: (slave macvlan1): Releasing active interface
[  505.326136][T27222] net_ratelimit: 4062 callbacks suppressed
[  505.326150][T27222] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  505.896229][T27225] syz.7.2962 (27225) used greatest stack depth: 17752 bytes left
[  506.608839][T27247] overlayfs: missing 'lowerdir'
[  508.839719][T27278] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  509.140541][T27288] lo speed is unknown, defaulting to 1000
[  512.771410][T27340] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  512.774155][T27339] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2990'.
[  512.777820][T27339] batman_adv: batadv0: Removing interface: batadv_slave_0
[  512.781036][T27339] batman_adv: batadv0: Removing interface: batadv_slave_1
[  512.866314][T27342] overlayfs: failed to clone upperpath
[  517.178130][T27418] netlink: 'syz.6.3012': attribute type 4 has an invalid length.
[  523.801225][   T40] audit: type=1800 audit(1758534498.394:3156): pid=27516 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.3037" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  525.643566][T27544] lo speed is unknown, defaulting to 1000
[  526.623240][T27564] lo speed is unknown, defaulting to 1000
[  527.591245][T27580] netlink: 'syz.7.3051': attribute type 5 has an invalid length.
[  527.962666][T27587] netlink: zone id is out of range
[  527.965159][T27587] netlink: zone id is out of range
[  527.968285][T27587] netlink: zone id is out of range
[  527.971684][T27587] netlink: zone id is out of range
[  527.997797][T27587] netlink: set zone limit has 4 unknown bytes
[  528.019568][T27587] netlink: del zone limit has 4 unknown bytes
[  528.152429][T27595] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3056'.
[  528.225004][T27599] netlink: 16 bytes leftover after parsing attributes in process `syz.6.3057'.
[  529.003097][T27619] syzkaller1: entered promiscuous mode
[  529.005568][T27619] syzkaller1: entered allmulticast mode
[  529.306816][   T40] audit: type=1326 audit(1758534503.874:3157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27620 comm="syz.9.3063" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x0
[  530.337216][   T12] ------------[ cut here ]------------
[  530.339349][   T12] WARNING: CPU: 0 PID: 12 at io_uring/io_uring.c:2980 io_ring_exit_work+0x3fc/0x10f0
[  530.342506][   T12] Modules linked in:
[  530.344156][   T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u32:0 Not tainted syzkaller #0 PREEMPT(full) 
[  530.348674][   T12] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  530.352614][   T12] Workqueue: iou_exit io_ring_exit_work
[  530.354590][   T12] RIP: 0010:io_ring_exit_work+0x3fc/0x10f0
[  530.356590][   T12] Code: 0f 85 0a 0b 00 00 48 8b 05 e1 67 4b 09 4c 8b 74 24 68 31 ff 49 29 c6 4c 89 f6 e8 5f 5b e5 fc 4d 85 f6 79 12 e8 e5 5f e5 fc 90 <0f> 0b 90 48 c7 44 24 60 70 17 00 00 e8 d3 5f e5 fc 48 8b 74 24 60
[  530.362962][   T12] RSP: 0000:ffffc900001e7a90 EFLAGS: 00010293
[  530.364986][   T12] RAX: 0000000000000000 RBX: ffff888023b1c6c8 RCX: ffffffff84d5aa31
[  530.367647][   T12] RDX: ffff88801dafc880 RSI: ffffffff84d5aa3b RDI: 0000000000000007
[  530.370227][   T12] RBP: ffffc900001e7c50 R08: 0000000000000007 R09: 0000000000000000
[  530.372951][   T12] R10: ffffffffffffffff R11: 0000000000000000 R12: ffff888023b1c000
[  530.375613][   T12] R13: dffffc0000000000 R14: ffffffffffffffff R15: ffff888023b1c040
[  530.378223][   T12] FS:  0000000000000000(0000) GS:ffff8880974ba000(0000) knlGS:0000000000000000
[  530.381228][   T12] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  530.383415][   T12] CR2: 000000002f90bff8 CR3: 000000005c5ea000 CR4: 0000000000352ef0
[  530.386246][   T12] Call Trace:
[  530.387537][   T12]  <TASK>
[  530.388623][   T12]  ? do_raw_spin_lock+0x12c/0x2b0
[  530.390280][   T12]  ? __pfx_io_ring_exit_work+0x10/0x10
[  530.392135][   T12]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  530.394125][   T12]  ? debug_object_deactivate+0x1ec/0x3a0
[  530.396890][   T12]  ? rcu_is_watching+0x12/0xc0
[  530.399026][   T12]  process_one_work+0x9cf/0x1b70
[  530.401334][   T12]  ? __pfx_bond_mii_monitor+0x10/0x10
[  530.403282][   T12]  ? __pfx_process_one_work+0x10/0x10
[  530.405318][   T12]  ? assign_work+0x1a0/0x250
[  530.407710][   T12]  worker_thread+0x6c8/0xf10
[  530.409834][   T12]  ? __pfx_worker_thread+0x10/0x10
[  530.412249][   T12]  kthread+0x3c5/0x780
[  530.414101][   T12]  ? __pfx_kthread+0x10/0x10
[  530.416318][   T12]  ? rcu_is_watching+0x12/0xc0
[  530.418347][   T12]  ? __pfx_kthread+0x10/0x10
[  530.419910][   T12]  ret_from_fork+0x56d/0x730
[  530.421532][   T12]  ? __pfx_kthread+0x10/0x10
[  530.423084][   T12]  ret_from_fork_asm+0x1a/0x30
[  530.424691][   T12]  </TASK>
[  530.425824][   T12] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  530.428667][   T12] CPU: 0 UID: 0 PID: 12 Comm: kworker/u32:0 Not tainted syzkaller #0 PREEMPT(full) 
[  530.432169][   T12] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  530.436698][   T12] Workqueue: iou_exit io_ring_exit_work
[  530.438547][   T12] Call Trace:
[  530.439723][   T12]  <TASK>
[  530.440883][   T12]  dump_stack_lvl+0x3d/0x1f0
[  530.443266][   T12]  vpanic+0x6e8/0x7a0
[  530.445225][   T12]  ? __pfx_vpanic+0x10/0x10
[  530.447098][   T12]  ? io_ring_exit_work+0x3fc/0x10f0
[  530.449503][   T12]  panic+0xca/0xd0
[  530.450953][   T12]  ? __pfx_panic+0x10/0x10
[  530.452458][   T12]  ? check_panic_on_warn+0x1f/0xb0
[  530.454183][   T12]  check_panic_on_warn+0xab/0xb0
[  530.455847][   T12]  __warn+0xf6/0x3c0
[  530.457385][   T12]  ? io_ring_exit_work+0x3fc/0x10f0
[  530.459178][   T12]  report_bug+0x3c3/0x580
[  530.460682][   T12]  ? io_ring_exit_work+0x3fc/0x10f0
[  530.462873][   T12]  handle_bug+0x184/0x210
[  530.464664][   T12]  exc_invalid_op+0x17/0x50
[  530.466775][   T12]  asm_exc_invalid_op+0x1a/0x20
[  530.469018][   T12] RIP: 0010:io_ring_exit_work+0x3fc/0x10f0
[  530.471539][   T12] Code: 0f 85 0a 0b 00 00 48 8b 05 e1 67 4b 09 4c 8b 74 24 68 31 ff 49 29 c6 4c 89 f6 e8 5f 5b e5 fc 4d 85 f6 79 12 e8 e5 5f e5 fc 90 <0f> 0b 90 48 c7 44 24 60 70 17 00 00 e8 d3 5f e5 fc 48 8b 74 24 60
[  530.478158][   T12] RSP: 0000:ffffc900001e7a90 EFLAGS: 00010293
[  530.480236][   T12] RAX: 0000000000000000 RBX: ffff888023b1c6c8 RCX: ffffffff84d5aa31
[  530.483038][   T12] RDX: ffff88801dafc880 RSI: ffffffff84d5aa3b RDI: 0000000000000007
[  530.485877][   T12] RBP: ffffc900001e7c50 R08: 0000000000000007 R09: 0000000000000000
[  530.488633][   T12] R10: ffffffffffffffff R11: 0000000000000000 R12: ffff888023b1c000
[  530.491275][   T12] R13: dffffc0000000000 R14: ffffffffffffffff R15: ffff888023b1c040
[  530.493867][   T12]  ? io_ring_exit_work+0x3f1/0x10f0
[  530.495603][   T12]  ? io_ring_exit_work+0x3fb/0x10f0
[  530.497328][   T12]  ? do_raw_spin_lock+0x12c/0x2b0
[  530.499027][   T12]  ? __pfx_io_ring_exit_work+0x10/0x10
[  530.500944][   T12]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  530.502936][   T12]  ? debug_object_deactivate+0x1ec/0x3a0
[  530.505002][   T12]  ? rcu_is_watching+0x12/0xc0
[  530.506653][   T12]  process_one_work+0x9cf/0x1b70
[  530.508258][   T12]  ? __pfx_bond_mii_monitor+0x10/0x10
[  530.510124][   T12]  ? __pfx_process_one_work+0x10/0x10
[  530.512105][   T12]  ? assign_work+0x1a0/0x250
[  530.513613][   T12]  worker_thread+0x6c8/0xf10
[  530.515169][   T12]  ? __pfx_worker_thread+0x10/0x10
[  530.516859][   T12]  kthread+0x3c5/0x780
[  530.518198][   T12]  ? __pfx_kthread+0x10/0x10
[  530.519839][   T12]  ? rcu_is_watching+0x12/0xc0
[  530.521670][   T12]  ? __pfx_kthread+0x10/0x10
[  530.523890][   T12]  ret_from_fork+0x56d/0x730
[  530.525871][   T12]  ? __pfx_kthread+0x10/0x10
[  530.527447][   T12]  ret_from_fork_asm+0x1a/0x30
[  530.529041][   T12]  </TASK>
[  530.531011][   T12] Kernel Offset: disabled
[  530.532448][   T12] Rebooting in 86400 seconds..

VM DIAGNOSIS:
09:36:58  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8561e695 RDI=ffffffff9b102780 RBP=ffffffff9b102740 RSP=ffffc900001e7400
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9b102740 R15=ffffffff8561e630
RIP=ffffffff8561e6bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974ba000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002f90bff8 CR3=000000005c5ea000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffff888025d78000 RBX=ffffffff8e5c1420 RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8df42bc4 RDI=ffffffff8c163800 RBP=0000000000000002 RSP=ffffc90003b87548
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000003 R11=000000000003d5a9
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8b91b2b8 RFL=00000096 [--S-AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880975ba000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000005c5ea000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000001 RBX=ffff8880248ca440 RCX=ffffc9000c7c0000 RDX=ffffc9000c7be9f8
RSI=ffff8880248ca440 RDI=ffffc9000c7be9a8 RBP=ffffc9000c7be9f8 RSP=ffffc9000c7be978
R8 =0000000000000001 R9 =0000000000000000 R10=ffffc9000c7be9f8 R11=0000000000000000
R12=ffffc9000c7be9a8 R13=ffffc9000c7bea18 R14=ffffc9000c7be9f8 R15=ffffc9000c7bea20
RIP=ffffffff8b94a060 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880976ba000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002f90dff8 CR3=000000006002b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000004000008fd RBX=ffff8880248ca440 RCX=0000000000000830 RDX=0000000000000004
RSI=00000000000000fd RDI=0000000000000004 RBP=0000000000000008 RSP=ffffc9000c8cf3c0
R8 =0000000000000000 R9 =fffffbfff2157592 R10=ffffffff90abac97 R11=0000000000000001
R12=1ffff92001919e79 R13=0000000000000003 R14=0000000000000002 R15=ffffc9000c8cf3e8
RIP=ffffffff81695748 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977ba000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080076018 CR3=000000006002b000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000