last executing test programs:

5m22.747835598s ago: executing program 1 (id=2):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
r2 = socket$inet(0x2, 0x3, 0x6)
shutdown(r2, 0x0)
recvmmsg(r2, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x0)
setgroups(0x352, &(0x7f0000000080)=[0x0, 0xee00])
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = syz_open_dev$sg(0x0, 0x0, 0x8002)
r4 = fcntl$dupfd(r3, 0x0, r3)
write$sndseq(r4, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

5m22.39818606s ago: executing program 1 (id=6):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffff}, 0x0)
socket$inet6(0xa, 0x80002, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x1c, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0x6, 0x1, 0x0, 0x0, @str='\x17\x00'}]}, 0x1c}}, 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$fou(&(0x7f00000000c0), r2)
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x4ffe6, 0x0)

5m21.527487103s ago: executing program 1 (id=14):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
sendmsg$netlink(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)=[{&(0x7f0000002540)=ANY=[], 0x1f88}], 0x1}, 0x0)
pipe2$9p(&(0x7f0000000140)={<r3=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000540)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000a40)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), r2)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448e0, 0x0)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$sock_int(r6, 0x1, 0x8, &(0x7f0000000080), 0xfd32)
ioctl$sock_bt_hci(r4, 0x400448e7, 0x0)
bind$bt_hci(r6, &(0x7f0000000040)={0x1f, 0xffffffffffffffff, 0x2}, 0x6)

5m20.65352959s ago: executing program 1 (id=18):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
accept4(r1, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@xino_on}]})
chdir(&(0x7f0000000140)='./bus\x00')
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r2 = open(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000000180)=""/98, 0x62)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_misc(r3, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r3, 0x1000, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}})

5m20.524161999s ago: executing program 1 (id=21):
openat$drirender128(0xffffff9c, &(0x7f0000000080), 0x400800, 0x0)
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000540)=ANY=[], 0x54}}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0}}, 0x0)
sendmsg$NL80211_CMD_REQ_SET_REG(r0, &(0x7f0000000540)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000240)={&(0x7f0000000440)={0xd0, 0x0, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NL80211_ATTR_SOCKET_OWNER={0x4}, @NL80211_ATTR_REG_RULES={0x9c, 0x22, 0x0, 0x1, [{0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0xe9}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x7645}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x2636}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x5}]}, {0xc, 0x0, 0x0, 0x1, [@NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x8}]}, {0x2c, 0x0, 0x0, 0x1, [@NL80211_ATTR_DFS_CAC_TIME={0x8, 0x7, 0x9}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0xf}, @NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0x8}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x8}, @NL80211_ATTR_FREQ_RANGE_MAX_BW={0x8, 0x4, 0x5}]}, {0x14, 0x0, 0x0, 0x1, [@NL80211_ATTR_FREQ_RANGE_END={0x8, 0x3, 0x4}, @NL80211_ATTR_FREQ_RANGE_END={0x8}]}, {0x24, 0x0, 0x0, 0x1, [@NL80211_ATTR_POWER_RULE_MAX_EIRP={0x8, 0x6, 0xc}, @NL80211_ATTR_FREQ_RANGE_START={0x8, 0x2, 0x15}, @NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN={0x8, 0x5, 0x2}, @NL80211_ATTR_REG_RULE_FLAGS={0x8, 0x1, 0x2}]}, {0x4}]}, @NL80211_ATTR_WIPHY={0x8, 0x1, 0x5}, @NL80211_ATTR_REG_ALPHA2={0x7, 0x21, 'bb\x00'}, @NL80211_ATTR_DFS_REGION={0x5, 0x92, 0x4}, @NL80211_ATTR_SOCKET_OWNER={0x4}]}, 0xd0}, 0x1, 0x0, 0x0, 0x80c1}, 0x40080c4)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0xfffffffffffffffe]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

5m18.616272175s ago: executing program 1 (id=31):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3d, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
r1 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x2200)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r1, 0xc0f85403, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket$nl_generic(0x11, 0x3, 0x10)
socket(0xa, 0x40000000002, 0x0)
sendmsg(r2, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000100)=ANY=[@ANYBLOB="dc01c6ba1cdcc12519250000000000007f007101001300000000000000000000000000000000000000000000000000000000000000dce600000000000000", @ANYRES32=0x0, @ANYBLOB="200100000000000000000000000000020000000032000000fe8000000000000000000000000000bb000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080"], 0x1dc}}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @empty}}}, 0x9c)
r3 = syz_io_uring_setup(0x466c, &(0x7f0000000280)={0x0, 0x0, 0x10100}, &(0x7f0000001340)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f00000001c0)=ANY=[@ANYBLOB='3'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

5m18.58011151s ago: executing program 32 (id=31):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3d, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r0}, 0x18)
r1 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x2200)
ioctl$SNDRV_TIMER_IOCTL_GINFO(r1, 0xc0f85403, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = socket$nl_generic(0x11, 0x3, 0x10)
socket(0xa, 0x40000000002, 0x0)
sendmsg(r2, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11000000}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000100)=ANY=[@ANYBLOB="dc01c6ba1cdcc12519250000000000007f007101001300000000000000000000000000000000000000000000000000000000000000dce600000000000000", @ANYRES32=0x0, @ANYBLOB="200100000000000000000000000000020000000032000000fe8000000000000000000000000000bb000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080"], 0x1dc}}, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f00000001c0)={0x0, @in={{0x2, 0x0, @empty}}}, 0x9c)
r3 = syz_io_uring_setup(0x466c, &(0x7f0000000280)={0x0, 0x0, 0x10100}, &(0x7f0000001340)=<r4=>0x0, &(0x7f0000000140)=<r5=>0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f00000001c0)=ANY=[@ANYBLOB='3'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r3, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

4m32.941939275s ago: executing program 2 (id=331):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0x1, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

4m32.883790373s ago: executing program 2 (id=342):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x4663, &(0x7f0000000240)={0x0, 0x1ffefe, 0x10, 0x7ffff, 0x0, 0x0, r1}, 0x0, &(0x7f00000001c0)=<r2=>0x0)
syz_io_uring_submit(0x0, r2, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {}, 0x1})
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, 0x0)
openat$sw_sync(0xffffffffffffff9c, 0x0, 0x101802, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x1, 0x0, 0x2000, &(0x7f0000002000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r5, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000034d564b0000000001"])
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

4m31.913731646s ago: executing program 2 (id=336):
seccomp$SECCOMP_GET_ACTION_AVAIL(0x2, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x20051, 0xffffffffffffffff, 0xce9e1000)
r1 = fsopen(&(0x7f0000000080)='binder\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r1, 0x6, 0x0, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_REGISTER_FRAME(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000580)={0x0, 0x28}}, 0x4000000)
bind$inet(r2, &(0x7f0000000280)={0x2, 0x4e21, @local}, 0x10)
socket$inet6(0x10, 0x3, 0x0)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r2, &(0x7f00000007c0)="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", 0x219, 0x0, 0x0, 0x0)

4m30.487022398s ago: executing program 2 (id=350):
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x0, 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
accept4(r1, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@xino_on}]})
chdir(&(0x7f0000000140)='./bus\x00')
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r2 = open(&(0x7f0000000380)='./file0\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000000180)=""/98, 0x62)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_misc(r3, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r3, 0x1000, {0x2a00, 0x80010000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}})

4m30.399015394s ago: executing program 2 (id=352):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r5)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r6 = inotify_init1(0x0)
fcntl$setown(r6, 0x8, 0xffffffffffffffff)
fcntl$getownex(r6, 0x10, &(0x7f0000000140)={0x0, <r7=>0x0})
r8 = syz_open_procfs(r7, &(0x7f0000000040)='fd/4\x00')
syz_fuse_handle_req(r8, &(0x7f00000005c0)="b16fc5a22a1bad83bb41ef022e0d96dd5b5e26b4403e3310bfc50c58074bd7d8928df19ff1f9209b3a1cc183011e5eace11bae0ce277a35ec47a1b137340720b72a20c43daa7ef20a98a62c247b8078f71fc7cc4577e374343d5c23efe37e1efc6d3e09dd992591e4e07f32cee73079d90e18dfd7dc3cec82b92df2e6b42032d094f8377248ca54815385f763a2ca5e3310edd37d6129e6eb47187b7d839ad1c11499633ab0e730aab71077b81fe3242b3209925034910b916463f3137bd97042a3813b2201b9eac316c56e3457e0867d9e6601bcd8f0cc12e6a3aed8b2f6bbddf2701ec6ff9dfe91bf7e7564d937f59af4a0a0214cbfe85133adb0cb239efd43fa1cd70e66f89d6088458911743c8bc4114316ce623fc0f25d23828cd29f6ff8586d5067f11d85b8f42d7a4b157e72936b03001875e6a52f2f74af474c975b14f67492ec6ec05c7cc1239781fa36eace172391aa20e292e20c899a2b9c39526c5a74cf3723d6ee0f294e8b417470190c901375359eeb32eb74f73cca084988d286642c9f28367c962493d46cef29f6d3560169036c5e5ac2402378e9d2ec23feda256fb08e98db83e3f170e74bb3ba5ca50c1b23dab222437df3d044c1588728f390f9456f1eb3255aed6507a53b5cb38d0c1a181b3cbce23c8faf7dff4ae57da3d1d4cc413db53c216ce0bc4c512eef400abdb84f8e0e9f6a24495d00cbc0278861050e64b502ffaa20ba5864854ee43d0c322a28de604c9a8920932b5b0e31718c067c1d1d4a01bf50caeb4fed5a27c2f3f55670cd83577d10e13d6e3d28ae293367e917e02cab5b436e44a10469caa0ce7240e885d7e99b50a85504aea1f1ca61564364f92e56f0fcac8b050a0f084eb5c8d31a64d2ea5ffedf0ffef20941dbba1294d7a8aee4a78d375eaff307aa9d773254096e22b437e5cb18641fd111041a3f13826e58f3786c57e47a5bd343b6966ad7a3f2dd08e017e164555ab0279abed9b4497c9702b2a0b2b7854b219541c368d5724ba16c535dc42937e80be1abc48e62d26fbe106833e342484d8df65b775f45f628290c54acda64572e223378a3457eaf7028b5bfe1dc594034e6f2211ac1499f70466753ad443621d4d7e275682e33e413918711f8cd8883b1c8aca78348ef7cd93030b55e298de20bbb4ca7e1caf4f46f6f32c5f275ba7563c82d4ed954a499003150491c1e81d3ae4863e777ccd94985f6503f14721c919062b344e13fb88335fb7b7a83798f1a65025765af1db9f0a02dd707da39f47e71857444dbc2888b7cc7de6956c473f60b080e2f3053911465daf3e7cf67c54f4eede844a5c450062540657d1297f42dccb82db885cd9ebe81f1f6576b6965d46e67404b1ff4789f8c680c09ff7acaf11e2db8097e62911beee1d60037bab3432ecb51f314d7eab13d320e43e12db63e6c4c581bcb37dddec1bc1d0dc5841628017ac73f83d72020c1c3a6b98036adb1d75dda832a50206842a5a154c8b4f9618e9864fe9f70397090f5de06b176bcc3693f6c8e8c5f9a2d3215619d961a75df00fafb5765aa1a72f30ed9671f4f8686358b409e53e7c9699c0feb81036473071282856019a1f5b7a9c280e96fb7ad679fc1e44f5b5d4cd5dd47aadc457ec97c649cc55b6af59e8774079ae7e917a821a71fbea7bcc4ea68a8182311c7ab75885fd5a8cc91714c26ec5f664480146c63f140a8599af93959247c4152299d9cfe3cc506e38168e7f3916c51e5266b5857eda042fa5db4cc114e711f89314e2abe08b8bb2f3bc27c0f3e9319bbcb402ed3144fcf7c22386a591a20ba7a9bd5981211b002ee76a2dbc0abcaac34ef29e970d83915761938109cb7c476576c37bbe8e36cafadfbffc27c19bef8ff18e1ece17d7034397cf252a93ea16e11ea03bf0a515f8ae3ddc245b2463e6a0e780a71a3f13463ae9cd4499aabb8bebb43689fbb6d37ac5b5fad7739a0035388d5399647ef04f7ed9e5d86095930e489a6e83b5f304c7977983aca26060dfd0905d350d537b134b7265ff9fde6a6dd8d6da38d0bf9d46e97fc616dfaaa08613f20598f13d0b3bd20997abac22d4c8e8ac69cb60cd6b4958989537c6f44aff6d4dbb8b801f0842aa6013b59881168742c2f2ae9c9ed51f51eccd63038e91cea665db53425b616e7eb82dcd6d1da227ae923909f6db10c946540824e8fa97fadcd028ff364ca3f7888bc15516dc2a212079e550e57e82874357a81d7acf4c3de65c22738da069b661e008d0bb15defbf30b9dc250baccf63590167a39feb3ce55f3fa0322b46a97b562baba1077e633c3f929e32831ec873f775bcf50b5e42623ee1e12a671947cad6bb7005b9df51581c3dde9b24d043f3876dd7de170f274795f063bb948eaccaf5c72257fc3b67ab93238bb251c033189a5130d2fd0cb00decdcf429c2874a62b27fc5cb09fa858964a3a360a1a65623d6c28f226494be25ee32640445cecaf3e0e6d63959a6ff8c4c43a5251c9ec5ef95ab9fb2cd9fbc505d33c75c90e9abf9b1e3b74ed8510c3eb211c33d840b5ee3896ccf03b3214076fb0d900480ae69662f6e79db730bfac1c76aaf8e2039d122f9f19408f2da14874872f6bcec082b12c1ea3693161e145d0fa3ecd54192c1caa1d07c8c4a5467ab8a80d8af495b7c4b95916bc0bdb095a77124d7b253db5997f1f8f77c4cd21a982b597c1f1abc344e8d3f9659bcdfc499de76adda0dd3b8f5b6d67dec1f78d850710e1ab00895147d7089c0710cc87d3931a9af7e0cf4198098c81ce4ae3a9576139d952fa39633d1a56eaacb7ea5bb7b51557caf86fa33a5b25fe6ff6b0d5e1e6e9e39fb4fa6ae43b23448987ba57937dcd67db3348238329c2bb0fc4f57a408921f948a5cddd38d15e5958d99746d49be00c0d346654833f61341a1e8e0b24b6f0b90e70e47b88f7cf4279120ffafdb3d97b39cdb3543e2ff82dad92022f2cfad7012b17eb4648724254b2c1a5b4e30b6736cc09a4e0d49dfa81a6f8c33087aaac4e8128b587abd4d7ea74e666cdf50cf2b10465055efe18c17effb6a2d6e62ba01283c8c8343e244074a653eeef422268067d3f7332069b90f07435e80be2a6bf5af77e0a949c70643e23f3a0f38090a5d23266cd8087d8ed82d506c49adcc78d1ebdab4a67f6fbc346924630176c508a1d0184e7c0a2b576263b619c117fa5d327fd3c8deb50a513265a0decc656a4c3d395edb839a35b18a125f97a2ed0f2840820241d15d3df9be73ad27b6f3372c1dc1f64a8fe66dee56c8829a59824a26a22a835a80c80ab3cbde4bac6e7a26ef026c329d646b9f420c269c25df259e1d919c096b963924d9c5bc34802faf4f0342a53f5044a3fa22b3e808bbd6abab748dcffdaa3637bf2d86e6f2c08861ba9c7df26c1dea3bf41a1c826a7fb6d3ca5e6f2f90e4b9bc1f4ff5f352f754ff25dd698f48766db63dd3e8003d3f53764ca51d3d53ec1255f243efa22d5162ddbdde58daf10aa273eb9772d02c83a1aab299e2fc7c71d9239e1eea98eb1101f12ee140943fa61e4e6158b3b0b5f68d99a22e84b0ead472ca875afdcc2095ee6ae660fb1c8db771c46be0df2e8529b71ce66866ed41f3f0010abf720b1f2814ec1eb8d7be8f065b61e5f606a311e7bd2d16d4c14d758c8e619bdc8912373845c4d3af9351b17d9e268a6aaacb4958fa7cd8c528fdabd93ba81dd38aa4a2319f1702648b54d09ba3d8c5408ab20b9c2428316ea7cd020d23c1b9efc841817d191069ac45511652f27a3dc27f38dfd372d3c0b62d6500b3d679b8f831adb36a1f92116201fc0ac638acab922adf2375fa14aca5e02b0e0cdae4da631f142a987d843cb011ddc791e95c35aa6e5f2e6069ed7882b66b5649855fc16a4ec1469952f269ddaa295cc261baafb5fee603187f74ab20098d20c2f9f08278a318ef94fabfb0228668b82e04ec739662312aa14408c6ec1072fd26f138cabfc30e688451c027339b9d5a29fc6d8fe2ecd26768c5d154f094a2733575cb1e2a5f3b06135e8235c8a4e98bf196a9c90e404f3c08503012061f771a80329887bcc04b9a05ce64c915fe77c93f736159a7e5ea4c452eae3f42f69d96b1e8d1d283c427e9b28f5b545f20ae1791e391a000a85adbdb0f63370bc6c8aba72afd3df9a0cad53e5da9c2d3225ff2651f75bbc51ecdc3929fbdafa30e1b57a10f5d76715e5f5f43153927ff4b2f8b52a0c5179e4b17d001442908ba800f780dd9a889bc81612fb6c21479e675228940858979ddecb940fd7d2d50d90d3b1e168e710aa5b941dd5807a54214bf51f38e7937c47a78e048331b3754cd5fea44da74073063489f928d8f01e72fb7018dafaadcd04d8fef820a2f045a1a30181f234d9a8c7a8bc7f37959f4b29594c4588173e723c1db052183acf0a0ba899fbe0ebc1e04c6ca70d51a7336a11d22ad2e8c54ae7956db45654122a4cd3ff3407bb9308e20dba3050251213d5716f185a3f213cec7d936e61fa6dfa620259ca63a95f38f7e3922ef9321afd302da6d784639dda567d8b4ea23cfbb266eebc0de392e1d3d494669b10f62a992223b07dea6fb79d4adf12359eb737b5697dfcc4d2cbf146aa4dfefdc94e911adc54e0b96627a88177b08f56144a29a92da975b85d65fba4e71bb8b9023508f8e8f62c5080146c33a132574ecc7d77cb44b324fbd5ece73539ad38ea378c5c757f776ab278c3e26a9a19ec276fffc7af7849d8b0d5b030f6c472f1ec688e50c98e1f4438cea70edfd507b508ed062ee0524cc22b5874272065fc6eacaaa2c336d13371331bdc2fb3fb466f7e52229234a12b1901fd42fc52f5e4c5533d9c70149e868dd5d6a6826c0710dbe1a6dd822862debc964bb19cd31e927043cf96e29156ed50f2897c14fcc8dce786ee7e351c1e92241780878d2556238245eefe224843c6d639a1dac9f66d53f30a6062e00e8d518c89e808fdd4c6872291d1c7adedfa5c87de3df1040c47b4d3abba7a45c58b99c16b74d8d67b6111bc3da9f924c5d660cf74deae5c5760390895f32b31e3f319d7e2ca900a439ab7174d43fed10a4a39651cb000f938ae1e5fb5eb4cceed0027786232555d6b06632ffe22db210e4ee09b0045dd08c793a23e85fc3f6025d61ef2f51a368f1e89309cd3de6e8082019d41e1644007a3670d8a7230dc553983a7321680c31ca2b92fcf68a72a12b1a69c9b31dcf7efca56cee3bd74df8db5b641870ec70b802b33afcc5a183b7cce52bc2b011f63f00e103c43c35c0a66ed9cff864cd3743ef5483484f5d895b19f2df0bcf70046d175bac3d8d89901296f1c43faddf535e2ac042783442f7376b57ffd69e6c90a45ea5259f5848b3fc110ef5427ea879d29fcf0d9e2ccded57776f3317145cf11b32df8ec5f5e7aa5ac8ab4936db207bf8131ebc6d5188b1dc55306a396c152822e5523adedb6047ab33b8746fe37e7a247a486ad1b29047c66ab42e1e1de89dad7d41b96b943484c854eb8c398f8664181efe24c5c41bb0538491c036f730a86693050e17e68505639c535259917ce4c754151a0f8c2ff8c51d4b1ed59aad9632eb7bca6563f686eda8bfa7e4d70e10cedb43d48bb4b4cc5a81bd4fa7a56b6d6ea5532e8b8ba60461bcf1b14e883764684550a7ee8ed65204138200e33a2290227393bb8b3d6176bc953cb46f2b939fd98c75a7f1715750a15c7f6a919d18478a1eabcdf092a21b29bd9943b93b59865dd637cc39dc41a6dd018fd4046b0679c9af1d9d760d14a14f196081749f1cd5d3609507a324e5d9ceef0518acc0f8dd1b6ee84dfd0357b6b2b53a5922d7fca4f57f4dc463ebe7db267ae970f243c28ecaf8e595959d6a34a42f244034d55b7605638e5d8d3633d6d115baf883776a7c298e229eae14f6cece82b62f3e53a0315ca04e7682ec166216084ff9b424a18c8842460b156e30ece7a52fc294f8bff37cf341aeca5791b897d296b967f934eead481577bceb78aacea7f3ac7ef948c45f47485cfbb9728e1c91d6d5df64dc37eeaec6394f118cabb5ac4df5225b36645a5e1690b215b012a1c6ff06778ceb029c8ef963d3d8cf402c0cb097eb8e0dc05a3d499893921669e80ed95bf3db3198873eea0bf87facf815a6d18848c1925a591e3265dcd3867fcb41f87c50f4a389fd3f1cd2853cb4f860c0a344b68c244707dba16082300a9f121ab500f79f6890f39a94dd2cac9fd3fc25702bffaacda51e89f683c2637ab1bc03524b5491c666a8d4e2445364d08e9f7c5ef1d3b3f3629f384a8fe036c6d3240eecef8b437bc326bedb1d41e333c1a5de8cafed229ed5f6d0bd17cda5a607579bc34dd08d866d70ceacad330eec5a0d836ec038fe5d4d0d9b7cdb3bc89bdc2f50682aa3afa1bf675455604380ced61a7ff430674c59939bf3c8c5b57f1a51c900cb238fcff1794fc6188bf4b8acadcb516ee3dd759db9edd0538518889519d1d94c584d46eb7c75ad6bd52439a68826e9c017d42b3f99ede7e6c88adec1a10b97b7b4b27b51c4ddecd9cd934e5a3314f7f66797e4847d0672d71e53ec8d6654e03b44d1ded3ae55a3a991f3245b244cab5e7e4c4115c6773b66dea97e537cd57bf97486f61497543c277c80e704b9cb2c84d6da7177a9d74ddc9569394eaf7d94950bb2cc810ec18786379347ed89885e581fb787f8713264834f0939be6a4c8f5f7ef3afb159ceec6642a527ea4a367bdc08132bf39bd0ff1c39e366d5bd6fc87bf247a37a86db203a2ae032976a5ee58fa67e43e10e5fb5dad85c69f2e4de5a79a85518d8d1e5d20ede23f65bf1f6f8c3502c4fc36e6c9174d2d396613470521ad6ed12643b01f3481060913363c1c585cb51861b3ac3ce0a578ea6c7b32a0dbf9f8ca0631e48a41135ea078a875d599cea1fe8dfbc12f48d9bd34360fbfa13fe6de482f710fc0fd6aae7132ca963058816d2efaf2ddbaf4c4d34198e433315f742497de9ad0551376f4e46666923b704424629507da58691f4401756cffbc398d5cb7dfb64d8e41061c22e31af6020d94b87e70388ea72e80877add6ff944d5f4faf2018ec1bd731afeb990daa8fbcab4f29c154dfe3c56028a61fe9965d88b720a9e992ac60b3437f9eb3f56539ceba5fa63b0609cf15b01a51a705cb693bc51af9fa1707bd3ac32ccb902b98b35b0a56daf3eecfa292e9cc83d9fdb38dca3693ddb2bd342d193ea7d1bfe06ec7ef1243c53a5f71d67ece83e8fc6d62c439e0296b0345829f193e4de85d7ce2332e3e16dbd643ff121179d6a4f4694388187d1caa01621f823b7072447ff12c5d68f7dbe3824cd4f15f84ef338c2d0e82bf6dc56dbe5c24cb37746086daa1b52cf33ddb7d7917c784ec29b24e1ff771f0eb7bb6bd97fe3e6a8f443542aa4a6bc7e22b30ca5ffb01d7bff2744e5f94869fab75bb1a5b85692c8404eb3cc2d2139af2bbab90b4f6801772a5eb1e4f15e326893132454e58a91c0b31f11fbac9b4b2d26f9192119379fa4d48bcb8ed537309ceca7d1c2749d781455d53524f209e19b14b8c92e26b596c3089cc5689fa782802da0e069c4dbdbc18e59ee46e24242f69d259cfd14e8e334953221eb76d502743d169f73fc13aa200a9aeb68056bc4843d06e7d5c01a53879f18aa7db325b4cacd6933fb4a829d110ef9dcd00e6603c4b78a96c7d6fdea0f71e4408a5b4717e683fe4ee47bd4ed8496fe57066fffed4187acf5b78f91fe2c59f03074e8ddbb2dc92ca7be097606ba61203c9c89754db9dc58b9f8d541122e81b2788b3a6447fc6400fb3c170f701ae5ae9877b08f79c17b2489ab979610868c14904cb1615399234f5197a51fbd14ee1e43174a8499a2acb776b95bc0e3fae0f8208668ab5785bb83b1f9d866c5e1aaf1adaea8cc393e30a42541fb0244a794dc4f1294ec4db7900eabcabce8720add0656564247a24c34203df5b7c21731c419baece0471bce69a7c33628daf4176b8e1d6141c971ee19387a50d498040522b0b55cc4bcff81d6eca588453cedffb96cd1ad373e5b646f3a1872e745abccadd7377cab4742a62ef465c29b19cf7ef9efff3f9148c5090bc052f4db993cd96cd48e1edd9b428b431e5d290fb9839211387508420c0f9f0f37e90bfefa971d58cb708230c1f6d58aa7f8d01acd64ca35a5fa779dff3bd77a2338200966246869d9e75b4898ba709dd2ff6f6de44a88cd95813b6703308776db27e2141e6d80b012ff438f6a92515d1790f59d4268d83d3422c52d252a7938c828b0a9f6e1c508efd6a6f612c6f099e24ade988ecb85f647a97d34cd9b7871491afa33be5f9d698eeb47b575b03660587522804882ca51d51467882c7542c882c9dc6dc77ec9a2361cf39872665d95eafbefed4cac5adb57d4a865a658133a9f1acc3ddcfff59c7fd47054b9be880550a4dd4dc30639259c1d1abfee3de0cccbf279ab7e4d64b01bda761493bd0320aa344e0785ba4674583d9389a2207f922bf31d43624023aabcb5282df6d6dc084232348e9b0ca517349c7fe93386ad5f216ecfcd04dcd6ae763056beb5e6bed6c907b4f5f6ebba67c1df565a35da411c92898f016c11a478fe096a182231f9b31e9a31581bd8cea0ecae89b8dc236ea917106636b070ea8bb6c05c2a75218f7934043fbf1911c773a16786366fd44214228ee274a915589987935ade8767bfc8c3e1bf19f1d24ebcaca635cb4f185cedd612d0e3634262c3725b7c13dfb131c5797ca24333a829ba50e5c5bfd1b09702bb2cf6f132f441362a6a6894b35de822e66ad6b4b0e7ddfcf2d617b8f706f3a942465b9f65f4ca52df89fe62dabda6888f021a539f95b9f3cd7c1c408582d63c9afa08e60c8bdcf629b501508923f66b38b339593162fa907c69ed67885b461721b51a793a67b97c4fb147c62cdab5a2c4e40ae89d83d6c5aeb5c19f84bff17f28bee34e31d0578ff5dfbdf29dc11e6079bc994885fe22dcee064b7627c140309d2a982bf039309a106fdf4bafb1ae15a2e82a339b7aa690852d5d5c654c9cb2b2540ea6e3827aa05bfdaf1ff0e072141492fcc6be31e2ed1bc2fb5d0e0edd9befa6f6de87718360bcf035a05ea076747eccaf134c3b8097e53788a23d58e9f9ed29259825f8b11991f7dbd886c249794d99c584bdb8eb88dfa79e362f2bcf323de09e95144e506be73a8c8d682d674c1e65c6a42230469f6747112ad81c8529516c6fe1d26938f010c1148ea6e317c13789e85493666634cbd21ba7a89d5e968504f1165927fe7a64edbda726116096bbfe03dd80738c559a697036040ca681943d8f89360133f19f25ca555c88df9bb377c669087844b0cc89695f121c5349539700fc89a8a9de921733424d03ca8363d1b83437965065368f5912d15c10d08471b52f0f71291cc0dcec1342242365ba674905919ee93b80b158e4f932fc049ea49369d862aae0f685da1d8e08c2fc3520ff11b65612700f45a812c3cc4a8e84e403608336c636584161fdc3cdd21dfe2de93fa9ed6c5280182d4bacc9d66c08300d6e991552721c3a86259deff39213fdfa8f67620afd121d06dba6c51a3e5eef4829e685f3b8fbe45af0db09e2fea6f3b0a28afc2388d5d680e63e3de6d3ee2e7b1b49d49d919e3366ce0590bf44015cb9a2fd3624f1517ba6b5ad19baa3dc179e68d24bc66cde98cb4af3ab943683af912f1feff5016dbb6550d732c47a96bb5dd3f5e56e6e65ced9f28309878bfc8df1315e843826477f7ebc9d931beb397d4bf29cf112a0167e5685ed87ffd4b48e5a53b2e537d8d2817b70d233a34b249eb57bd5e92ede1b3da3f5a5179376c138ec1868fa3e99e742fc02dfcf395f26ce4cef4ae6f022dfee9057c372e1ec76af179eda29c74c64b59ec64a607f85720cd4cdc1248dc74f2f371e2b1edeebfe04f7cca07c036d34179795347b8ae33809db8100ebc3c6ed48bd647c1c39980a0e029565671dd9ef84869849c503cf28cb8bd59b3b15b580b0ae07a888b7346cb3b238d3345d7d393c6996fad4c2fd259ff1cdf04ea20c2bdd080ee21565d808a3bbc09918eb2eb3efc2a36778d5e6a3f290649857e005c2824a0b33eff4fb047f10f13a5c1a3a418075818fe1a00d8feea34a585dfe9d140526a4cdfe2ad7ea3c5acb662946ad0a86b45b919408931244179054e5d6d6fd9cd7d7f8b2cf57c2ea07bdf31a99fb68849db611f860e70ec13476c112d8d0b01a854906a9539d31df0284859b4c27b2390162b4d442665e2cde27100446872850c9e0eb6dc53aecbb11656caa5f0e79a813315128237d8f926ecf2e4a5dfaf30f35269df778bf04371b91d7135bd30b965a8130c6abbe7d0d6f85cc2b9e751b51824a651be201fd120a35c2078d96cdaefc5bd17ff5bf647a214c4e26a67ab7bf620786ee66d6fa1f2f5930fa4bb42932b9aed4fd53c4c851cca2458cd0e6120ee09ead49777bd953951b60bce0b5db436989491ac2e2297f9a59c5d7edb86da84f7b124f25a16a4990a1817c4e5018babbd4bd87a107ef89a42c172d962545d6d1a80626ca8b42a373378049e7449263edae0abc2c651220bdfda36289ffc9417620c099845d7400f293fafa3820502ed722dd21958c1a7cd19f75983b62a609beefe9b3a9f7f5b87f900c47dc1909a4c09b138eb9e9d8a136e74f9a897b4c1d9db948e49fe5b57caad6c96de3443cef1114f6d7569e8e51266678c8353bc19cee1ef312b2226d94ac49af9378022bb918ccaae5a0550dd1dfcb5950cfddc505cc277aaf6af4c45b46c1c95193db924f54978210d29ee0d5a13045f4c039fde79636cb0d965dd3cae6320a6366c06b98a62963b0199f4765293056767160668a4a1211004f2f96dcb86e8d235527f5d73f494fd54c4a415c1680ef23887a2d21c99ee92360a9aaaa493e45025b4915087a3920dc0c6e7ed3070b8e604fa9c7dd6f219effb830e42211f759bd9cca803fc3050160a7144b184a4bf1f9974c2676d3a42108f880c8754838c8bc4546e95b644f83f247bb3b0c49d475e31edab6e07cb94ee2e57bd4e05f2902e995f1ffe9d4afb2a9cbada6e9f26be8a23e945fc23817be4974887e91d5ab01c4f0e874c3ffa2f23678104f4bbcbc4df61aa153f499033a701f8d101f374b76b95f4885d9361e509e2cfa86322a750c264b86eac776f28efad0d6d5fb667943a0c7cccf5769c7fc77cc136b4250b25ea8d88112ede30c4446b116b1519bec38e40c3e0e62e61c9107c0b3aab8290694349d0de758dec538b5ab466a70b6477b3ad8b2ace7d09d9b3ce829fb774d8fcb15e96e58f5a627839857e6c114ef68c86e162aed3066b83b60e2e1b07f7cd7cf47760972cfbad6552702115ddcb9ccc83f4aaf07e24b902cc20fe8096da15f655ee18b1cbb036b764e7e8a5eaf43ca1e5d28b13da38f87767a48f89c91dd038c8be85e33750a9448360640ad997ded6521c38ec236e5163953d68f044f304b433d2796f232b2e9569b2d6dc9cfdbc9042a0f24451490ac92f45af82e470786e50034ac6623937e02ef83e1763109f4e3f06b8876fcdc6ccae5995e27fc61df4179db8969", 0x2000, &(0x7f00000055c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000027c0)={0x18, 0xffffffffffffffda, 0x7, {0x7}}, 0x0, 0x0, 0x0, &(0x7f0000002c40)={0x90, 0x0, 0x3ff, {0x0, 0x3, 0x100, 0x3071, 0xff, 0xfffffffa, {0x6, 0x8, 0x2, 0x2, 0x7f, 0xffffffff7ffffffd, 0xc, 0x1051eaee, 0x73e0, 0x8000, 0x1, 0x0, 0x0, 0x8, 0x3}}}, 0x0, 0x0, 0x0, 0x0})

4m30.112753494s ago: executing program 2 (id=354):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
chdir(&(0x7f0000000140)='./file1\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
syz_open_dev$video(&(0x7f0000000000), 0x80, 0x8000)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000004200)={0x50, 0x0, 0x0, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000042c0)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00(`qH\x00', 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_OPEN(0xffffffffffffffff, &(0x7f0000000080)={0x20, 0x0, 0x0, {0x0, 0x10}}, 0x20)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x14, 0x3b, 0x10f, 0x0, 0x0, {0x1, 0x7c}}, 0x14}}, 0x0)
futex(&(0x7f0000000b40)=0x1, 0xb, 0x1, 0x0, &(0x7f0000000bc0), 0x0)

4m30.089820603s ago: executing program 33 (id=354):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
chdir(&(0x7f0000000140)='./file1\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
syz_open_dev$video(&(0x7f0000000000), 0x80, 0x8000)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000004200)={0x50, 0x0, 0x0, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000042c0)='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00(`qH\x00', 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_OPEN(0xffffffffffffffff, &(0x7f0000000080)={0x20, 0x0, 0x0, {0x0, 0x10}}, 0x20)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000380)={0x14, 0x3b, 0x10f, 0x0, 0x0, {0x1, 0x7c}}, 0x14}}, 0x0)
futex(&(0x7f0000000b40)=0x1, 0xb, 0x1, 0x0, &(0x7f0000000bc0), 0x0)

5.371836405s ago: executing program 0 (id=1552):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/meminfo\x00', 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)

4.518195702s ago: executing program 4 (id=1559):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r2, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, 0x0)
r3 = socket$inet(0x2, 0x3, 0x1)
setsockopt$inet_msfilter(r3, 0x0, 0x8, &(0x7f0000000100)=ANY=[], 0x1)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000080)={<r4=>0x0, @local, @local}, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@private0, 0x78, r4})
r5 = socket(0xa, 0x1, 0x0)
ioctl(r5, 0x8916, &(0x7f0000000000))
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000c00000/0x1000)=nil, 0x1000, 0x16)
munmap(&(0x7f0000800000/0x800000)=nil, 0x800000)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r6, 0x560a, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x20})

4.449907605s ago: executing program 0 (id=1560):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f00000000c0)={0x1, 0x0, 0x6, &(0x7f0000000080)={0xc, "df1e970974a75196eeb58543bd9d2ba55aeacc9859bdc9f2472342370527626623"}})
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x54}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x104}}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x84000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0xfffffffffffffffe]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4.309572692s ago: executing program 4 (id=1561):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f00000000c0)={0x1, 0x0, 0x6, &(0x7f0000000080)={0xc, "df1e970974a75196eeb58543bd9d2ba55aeacc9859bdc9f2472342370527626623"}})
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x54}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x104}}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x84000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0xfffffffffffffffe]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4.309166306s ago: executing program 0 (id=1562):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'dummy0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0)

4.258279199s ago: executing program 0 (id=1563):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'dummy0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0)

4.19547698s ago: executing program 4 (id=1565):
r0 = socket$netlink(0x10, 0x3, 0x15)
recvmmsg(r0, &(0x7f0000007e00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000000)="3900000013000b4700bb65e1c3e4ffff0100000035000000560000022500000019000a00100000ad07fd17", 0x2b}], 0x1)

3.65025497s ago: executing program 0 (id=1568):
timer_create(0x0, 0x0, &(0x7f0000000180))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305829, 0x0)
r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='contention_begin\x00'}, 0x10)
syz_usb_connect$hid(0xf63067478e218e8, 0x36, &(0x7f00000000c0)=ANY=[], 0x0)
ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r3, 0x3304, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
r4 = syz_io_uring_setup(0x3678, &(0x7f0000000080)={0x0, 0x1ffffd, 0x100, 0x40000020, 0x0, 0x0, r1}, &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000200)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r4, 0xa3d, 0x0, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000240)={0x0, 0xffffffffffff4ef3, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x1, 0x3}, 0x0, &(0x7f0000000140)={0x1ff, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x200}, 0x0, 0x0)

3.339533769s ago: executing program 4 (id=1570):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/meminfo\x00', 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x117, &(0x7f0000000100), &(0x7f0000000280)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)

2.570099739s ago: executing program 3 (id=1577):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
r2 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r2, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x7})
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, 0x0)
r3 = socket$inet(0x2, 0x3, 0x1)
setsockopt$inet_msfilter(r3, 0x0, 0x8, &(0x7f0000000100)=ANY=[], 0x1)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f0000000080)={<r4=>0x0, @local, @local}, 0x0)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@private0, 0x78, r4})
r5 = socket(0xa, 0x1, 0x0)
ioctl(r5, 0x8916, &(0x7f0000000000))
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000c00000/0x1000)=nil, 0x1000, 0x16)
munmap(&(0x7f0000800000/0x800000)=nil, 0x800000)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r6, 0x560a, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x20})

2.466959905s ago: executing program 5 (id=1579):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'dummy0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0)

2.464889238s ago: executing program 4 (id=1587):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, 0x0)
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x54}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x104}}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x84000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0xfffffffffffffffe]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.719783643s ago: executing program 5 (id=1580):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000280)='./file0\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_serviced\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ftruncate(r0, 0xc17c)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
syz_emit_ethernet(0x76, &(0x7f0000000140)=ANY=[@ANYBLOB="ffffffffffffaaaaaaaaaabb86dd602e5cea00403c0020010000000000000000000000000000ff0200000000000000000000000000010004000000000000c9"], 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x145842, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
copy_file_range(r2, &(0x7f00000001c0), r1, 0x0, 0xa78, 0x10000000000000)
io_uring_setup(0x5237, &(0x7f0000009a80)={0x0, 0x25d1, 0x400, 0x0, 0x20e})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r3, 0x0)

1.719506873s ago: executing program 3 (id=1581):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0)

1.712347842s ago: executing program 4 (id=1589):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'dummy0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0)

1.61403942s ago: executing program 5 (id=1582):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f00000000c0)={0x1, 0x0, 0x6, &(0x7f0000000080)={0xc, "df1e970974a75196eeb58543bd9d2ba55aeacc9859bdc9f2472342370527626623"}})
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x54}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x104}}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x84000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0xfffffffffffffffe]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.330221957s ago: executing program 5 (id=1583):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, &(0x7f00000000c0)={0x1, 0x0, 0x6, &(0x7f0000000080)={0xc, "df1e970974a75196eeb58543bd9d2ba55aeacc9859bdc9f2472342370527626623"}})
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x54}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x104}}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x84000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0xfffffffffffffffe]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

977.732445ms ago: executing program 3 (id=1584):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)
r0 = openat$vsock(0xffffff9c, &(0x7f00000001c0), 0x40101, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x54}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x104}}, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sendmsg$RDMA_NLDEV_CMD_GET(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x84000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r3, 0xae9a)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000380)={[0x0, 0x100000000, 0x0, 0x0, 0x0, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0xfffffffffffffffe]})
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x400000000000002, 0x5, 0xfffffffffffffffe, 0x4, 0x2, 0x0, 0xefffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x3], 0x0, 0x41901})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

977.033919ms ago: executing program 5 (id=1585):
socket$packet(0x11, 0x2, 0x300)
socket$inet_smc(0x2b, 0x1, 0x0)
r0 = getpid()
syz_pidfd_open(r0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
socket$alg(0x26, 0x5, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
pselect6(0x40, &(0x7f0000000600), 0x0, &(0x7f0000000680)={0x7ff}, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
r5 = socket$packet(0x11, 0x2, 0x300)
setsockopt$sock_int(r5, 0x1, 0x28, &(0x7f0000000080)=0xffff, 0x4)
sendmsg$nl_xfrm(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)=@allocspi={0x120, 0x16, 0x1, 0x0, 0x0, {{{@in=@broadcast, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {@in6=@private0, 0x0, 0x32}, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, 0x0, 0xd1}, [@address_filter={0x28, 0x1a, {@in=@rand_addr=0x64010102, @in=@dev={0xac, 0x14, 0x14, 0x16}, 0x2, 0x6, 0x7}}]}, 0x120}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4}, 0x20044010)

880.256057ms ago: executing program 3 (id=1586):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000200)={'dummy0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newqdisc={0x40, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}]}, 0x40}}, 0x0)

787.809917ms ago: executing program 3 (id=1588):
membarrier(0x1, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x79, 0x0)
ioctl$DRM_IOCTL_SET_MASTER(r0, 0x641e)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="9feb01001800000000000000340000003400000002000000000000000000000d03000000000000000000000110000000800000000000000000000003000000000200000002"], 0x0, 0x4e, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r1 = socket(0x10, 0x803, 0x0)
write$binfmt_script(r1, 0x0, 0x0)
accept4$llc(r1, &(0x7f0000000080)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, &(0x7f0000000180)=0x10, 0x80800)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x15)
recvmmsg(r2, &(0x7f0000007e00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0)
writev(r2, &(0x7f0000000140)=[{&(0x7f0000000000)="3900000013000b4700bb65e1c3e4ffff0100000035000000560000022500000019000a00100000ad07fd17e5ffff080c38000000000000000a", 0x39}], 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFNL_MSG_ACCT_GET(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[@ANYBLOB], 0x28}}, 0x0)

690.055195ms ago: executing program 3 (id=1590):
r0 = msgget$private(0x0, 0xfffffffffffffffd)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fchdir(0xffffffffffffffff)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000000202010100100000000000"], 0x14}}, 0x0)
msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000100)=""/250)
msgctl$MSG_STAT_ANY(r0, 0xd, &(0x7f0000000000)=""/225)

652.171508ms ago: executing program 0 (id=1591):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x18, 0x2000000000000019, &(0x7f00000000c0)=ANY=[@ANYRES8=0x0], &(0x7f0000000300)='syzkaller\x00', 0x8, 0xb1, &(0x7f0000000140)=""/177, 0x41000, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f00000002c0)={0x8, 0x5}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x5, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x34, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xb, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9, 0x0, 0x0, 0x3}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0x50}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0x6, 0x0}, {0x18, 0x9, 0x2, 0x0, r4}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x6, 0x1, 0x5, 0x2}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0xd, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

0s ago: executing program 5 (id=1592):
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0)
ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, 0x0)
r0 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4001c00)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r2 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r2, 0xab00, r3)
r4 = syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x0)
ioctl$NBD_SET_FLAGS(r4, 0xab0a, 0x1000001000104)
ioctl$NBD_SET_SOCK(r4, 0xab00, r3)
ioctl$NBD_DO_IT(r2, 0xab03)
close_range(r1, 0xffffffffffffffff, 0x0)
openat$vimc2(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)

kernel console output (not intermixed with test programs):

] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   38.921406][ T5959] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   38.944674][ T5961] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   38.948837][ T5961] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   38.951912][ T5961] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   38.955198][ T5961] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   38.993091][ T5956] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   38.997144][ T5956] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   39.001229][ T5956] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   39.004974][ T5956] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   39.018245][ T5952] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.044122][ T5952] 8021q: adding VLAN 0 to HW filter on device team0
[   39.050426][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.053277][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.067369][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.069487][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.093334][ T5959] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.108988][ T5961] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.118966][ T5952] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   39.122230][ T5952] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   39.133731][ T5956] 8021q: adding VLAN 0 to HW filter on device bond0
[   39.139775][ T5959] 8021q: adding VLAN 0 to HW filter on device team0
[   39.144345][ T5956] 8021q: adding VLAN 0 to HW filter on device team0
[   39.149470][ T5961] 8021q: adding VLAN 0 to HW filter on device team0
[   39.153964][   T69] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.155913][   T69] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.160463][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.162326][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.178450][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.180974][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.184233][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   39.186705][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   39.190325][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.192770][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.195879][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   39.198339][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   39.223160][ T5959] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   39.225901][ T5959] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   39.250372][ T5952] 8021q: adding VLAN 0 to HW filter on device batadv0
[   39.275186][ T5952] veth0_vlan: entered promiscuous mode
[   39.282458][ T5952] veth1_vlan: entered promiscuous mode
[   39.297299][ T5952] veth0_macvtap: entered promiscuous mode
[   39.300730][ T5952] veth1_macvtap: entered promiscuous mode
[   39.307648][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.313263][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.318979][ T5952] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.321424][ T5952] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.323675][ T5952] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.326029][ T5952] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.346145][ T5959] 8021q: adding VLAN 0 to HW filter on device batadv0
[   39.362911][ T5956] 8021q: adding VLAN 0 to HW filter on device batadv0
[   39.383679][   T74] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.383984][ T5959] veth0_vlan: entered promiscuous mode
[   39.385828][   T74] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.395319][ T5961] 8021q: adding VLAN 0 to HW filter on device batadv0
[   39.398244][ T5959] veth1_vlan: entered promiscuous mode
[   39.408620][   T74] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.411251][   T74] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.414935][ T5956] veth0_vlan: entered promiscuous mode
[   39.420077][ T5956] veth1_vlan: entered promiscuous mode
[   39.426238][ T5959] veth0_macvtap: entered promiscuous mode
[   39.430959][ T5959] veth1_macvtap: entered promiscuous mode
[   39.436774][ T5952] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   39.454203][ T5959] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.457272][ T5959] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.460313][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.472044][ T5956] veth0_macvtap: entered promiscuous mode
[   39.474952][ T5959] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.478343][ T5959] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.481439][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.490904][ T5956] veth1_macvtap: entered promiscuous mode
[   39.493504][ T5961] veth0_vlan: entered promiscuous mode
[   39.495993][ T5959] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.498555][ T5959] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.500834][ T5959] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.503068][ T5959] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.513191][ T5961] veth1_vlan: entered promiscuous mode
[   39.522073][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.525018][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.528015][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.531336][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.534571][ T5956] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.539736][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.542430][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.544933][ T5956] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.547926][ T5956] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.551082][ T5956] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.556634][ T5956] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.558890][ T5956] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.561129][ T5956] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.563385][ T5956] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.574652][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.577246][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.603806][ T5961] veth0_macvtap: entered promiscuous mode
[   39.607044][ T5961] veth1_macvtap: entered promiscuous mode
[   39.607193][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.607251][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.607262][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.614975][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.625506][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.628794][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.632248][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.636009][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.641091][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.644453][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.647282][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   39.649949][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.653204][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_0
[   39.657873][ T5309] Bluetooth: hci1: command tx timeout
[   39.657879][ T5968] Bluetooth: hci0: command tx timeout
[   39.659064][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.659090][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.659099][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.659111][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.659120][ T5961] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   39.659131][ T5961] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   39.660038][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_1
[   39.660055][ T5309] Bluetooth: hci2: command tx timeout
[   39.660151][ T5309] Bluetooth: hci3: command tx timeout
[   39.690905][ T5961] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   39.693357][ T5961] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   39.695611][ T5961] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   39.698282][ T5961] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   39.726937][ T5995] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   39.733790][   T69] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.735919][   T69] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.758713][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   39.760827][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.845537][ T6015] libceph: connect (1)[c::]:6789 error -101
[   39.847746][ T6015] libceph: mon0 (1)[c::]:6789 connect error
[   39.876650][ T5995] usb 5-1: Using ep0 maxpacket: 8
[   39.880520][ T5995] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   39.883083][ T5995] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[   39.885708][ T5995] usb 5-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[   39.889108][ T5995] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   39.893279][ T5995] usb 5-1: config 0 descriptor??
[   40.118659][ T5995] libceph: connect (1)[c::]:6789 error -101
[   40.120280][ T5995] libceph: mon0 (1)[c::]:6789 connect error
[   40.260774][   T56] usb 5-1: USB disconnect, device number 2
[   40.636909][ T5995] libceph: connect (1)[c::]:6789 error -101
[   40.638597][ T5995] libceph: mon0 (1)[c::]:6789 connect error
[   40.665899][ T6029] ceph: No mds server is up or the cluster is laggy
[   40.766195][ T6053] netlink: 392 bytes leftover after parsing attributes in process `syz.3.9'.
[   40.773428][ T6050] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   40.799189][ T6050] kvm: pic: single mode not supported
[   40.806422][ T6050] kvm: pic: single mode not supported
[   40.808127][ T6050] kvm: pic: level sensitive irq not supported
[   40.811403][ T6050] kvm: pic: non byte write
[   40.814512][ T6050] kvm: pic: single mode not supported
[   40.815230][ T6050] kvm: pic: single mode not supported
[   40.921858][ T6062] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12'.
[   41.076755][   T56] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   41.190657][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   41.206625][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   41.267200][   T56] usb 5-1: too many configurations: 9, using maximum allowed: 8
[   41.273823][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   41.279094][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   41.282171][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[   41.285178][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   41.291041][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   41.294687][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[   41.298345][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   41.302260][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   41.305314][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[   41.310891][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   41.313377][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   41.316693][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[   41.319974][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   41.322358][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   41.325271][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[   41.332224][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   41.334476][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   41.337711][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[   41.340425][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   41.342900][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   41.345852][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[   41.350580][   T56] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   41.353061][   T56] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   41.356016][   T56] usb 5-1: config 0 interface 0 has no altsetting 0
[   41.360697][   T56] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   41.363269][   T56] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   41.365537][   T56] usb 5-1: Product: syz
[   41.368602][   T56] usb 5-1: Manufacturer: syz
[   41.369923][   T56] usb 5-1: SerialNumber: syz
[   41.388483][   T56] usb 5-1: config 0 descriptor??
[   41.402193][   T56] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0
[   41.722019][    C1] usb 5-1: yurex_control_callback - control failed: -71
[   41.722730][    T9] usb 5-1: USB disconnect, device number 3
[   41.724589][ T6081] yurex 5-1:0.0: yurex_write - failed to send bulk msg, error -19
[   41.729006][ T5968] Bluetooth: hci0: command tx timeout
[   41.730399][    T9] yurex 5-1:0.0: USB YUREX #0 now disconnected
[   41.736673][ T5968] Bluetooth: hci3: command tx timeout
[   41.737218][ T5955] Bluetooth: hci2: command tx timeout
[   41.788609][ T6014] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   41.791353][ T6014] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   41.797432][ T6014] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   41.894996][ T6087] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   41.900332][ T6087] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   41.916035][ T6087] loop0: detected capacity change from 0 to 7
[   41.918578][ T6087] Buffer I/O error on dev loop0, logical block 0, async page read
[   41.920806][ T6087] Buffer I/O error on dev loop0, logical block 0, async page read
[   41.924968][ T6087] Buffer I/O error on dev loop0, logical block 0, async page read
[   41.932217][ T6087] Buffer I/O error on dev loop0, logical block 0, async page read
[   41.935745][ T6087] Buffer I/O error on dev loop0, logical block 0, async page read
[   41.939539][ T6087] Buffer I/O error on dev loop0, logical block 0, async page read
[   41.942445][ T6087] Buffer I/O error on dev loop0, logical block 0, async page read
[   41.946679][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   41.949904][ T6087] ldm_validate_partition_table(): Disk read failed.
[   41.952226][ T6087] Buffer I/O error on dev loop0, logical block 0, async page read
[   41.954462][ T6087] Buffer I/O error on dev loop0, logical block 0, async page read
[   41.956660][ T6087] Buffer I/O error on dev loop0, logical block 0, async page read
[   41.965775][ T6087] Dev loop0: unable to read RDB block 0
[   41.968880][ T6087]  loop0: unable to read partition table
[   41.970861][ T6087] loop0: partition table beyond EOD, truncated
[   41.972531][ T6087] loop_reread_partitions: partition scan of loop0 (�被x������ڬ��dƤ����ݡ�����
[   41.972531][ T6087] 
) failed (rc=-5)
[   42.022145][ T6091] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   42.234642][ T6095] netlink: 4 bytes leftover after parsing attributes in process `syz.2.22'.
[   42.240148][ T6095] netlink: 4 bytes leftover after parsing attributes in process `syz.2.22'.
[   42.786661][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   42.931481][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   43.136366][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   43.176608][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[   43.809164][ T5955] Bluetooth: hci0: command tx timeout
[   43.811151][ T5955] Bluetooth: hci2: command tx timeout
[   43.879756][   T74] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   43.995628][   T74] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.003205][ T6121] kvm: pic: level sensitive irq not supported
[   44.003560][ T6121] kvm: pic: non byte read
[   44.007310][ T6121] kvm: pic: level sensitive irq not supported
[   44.007566][ T6121] kvm: pic: non byte read
[   44.042084][ T5955] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   44.047989][ T5955] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   44.051487][ T5955] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   44.054622][ T5955] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   44.057274][ T5955] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   44.059490][ T5955] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   44.096851][   T74] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.119223][ T6130] netlink: 28 bytes leftover after parsing attributes in process `syz.2.33'.
[   44.175033][ T6127] chnl_net:caif_netlink_parms(): no params data found
[   44.201645][   T74] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   44.247135][ T6127] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.249007][ T6127] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.250884][ T6127] bridge_slave_0: entered allmulticast mode
[   44.252932][ T6127] bridge_slave_0: entered promiscuous mode
[   44.255663][ T6127] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.257939][ T6127] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.259937][ T6127] bridge_slave_1: entered allmulticast mode
[   44.262048][ T6127] bridge_slave_1: entered promiscuous mode
[   44.292996][ T6127] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   44.299761][ T6127] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   44.340330][ T6127] team0: Port device team_slave_0 added
[   44.344673][ T6127] team0: Port device team_slave_1 added
[   44.430425][ T6127] batman_adv: batadv0: Adding interface: batadv_slave_0
[   44.432657][ T6127] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   44.439486][ T6127] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   44.443725][ T6127] batman_adv: batadv0: Adding interface: batadv_slave_1
[   44.445562][ T6127] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   44.452291][ T6127] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   44.487360][ T6127] hsr_slave_0: entered promiscuous mode
[   44.490170][ T6127] hsr_slave_1: entered promiscuous mode
[   44.492094][ T6127] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   44.494078][ T6127] Cannot create hsr debugfs directory
[   44.537003][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   44.545940][   T74] bridge_slave_1: left allmulticast mode
[   44.548833][   T74] bridge_slave_1: left promiscuous mode
[   44.551234][   T74] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.563067][   T74] bridge_slave_0: left allmulticast mode
[   44.564898][   T74] bridge_slave_0: left promiscuous mode
[   44.567173][   T74] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.777182][ T5968] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   44.779639][ T5968] Bluetooth: hci1: Injecting HCI hardware error event
[   44.782969][ T6155] netlink: 112 bytes leftover after parsing attributes in process `syz.0.37'.
[   44.786314][ T5968] Bluetooth: hci1: hardware error 0x00
[   44.854858][   T74] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   44.865506][   T74] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   44.870277][   T74] bond0 (unregistering): Released all slaves
[   44.963929][ T6127] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   44.968030][ T6127] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   44.972292][ T6127] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   44.975763][ T6127] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   45.061391][ T6127] 8021q: adding VLAN 0 to HW filter on device bond0
[   45.071056][ T6127] 8021q: adding VLAN 0 to HW filter on device team0
[   45.076052][ T1145] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.078331][ T1145] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.084261][ T1145] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.086210][ T1145] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.266663][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   45.296797][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[   45.337042][   T57] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   45.379309][   T74] hsr_slave_0: left promiscuous mode
[   45.382002][   T74] hsr_slave_1: left promiscuous mode
[   45.384765][   T74] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   45.386747][   T74] batman_adv: batadv0: Removing interface: batadv_slave_0
[   45.395544][   T74] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   45.397578][   T74] batman_adv: batadv0: Removing interface: batadv_slave_1
[   45.411833][   T74] veth1_macvtap: left promiscuous mode
[   45.414404][   T74] veth0_macvtap: left promiscuous mode
[   45.416469][   T74] veth1_vlan: left promiscuous mode
[   45.422516][   T74] veth0_vlan: left promiscuous mode
[   45.888681][ T5955] Bluetooth: hci2: command tx timeout
[   45.888765][ T5309] Bluetooth: hci0: command tx timeout
[   46.110882][   T74] team0 (unregistering): Port device team_slave_1 removed
[   46.127231][ T5309] Bluetooth: hci3: command tx timeout
[   46.194481][   T74] team0 (unregistering): Port device team_slave_0 removed
[   46.791438][ T6186] syzkaller0: entered promiscuous mode
[   46.793484][ T6186] syzkaller0: entered allmulticast mode
[   46.858201][ T5968] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[   47.842344][ T6127] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.997391][ T6127] veth0_vlan: entered promiscuous mode
[   48.006296][ T6127] veth1_vlan: entered promiscuous mode
[   48.015764][ T6127] veth0_macvtap: entered promiscuous mode
[   48.040928][ T6127] veth1_macvtap: entered promiscuous mode
[   48.049725][ T6127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.052839][ T6127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.055485][ T6127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.058964][ T6127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.061669][ T6127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.064412][ T6127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.068948][ T6127] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.073359][ T6127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.077793][ T6127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.080316][ T6127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.082986][ T6127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.085522][ T6127] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.096870][ T6127] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.100199][ T6127] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.104552][ T6127] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.111103][ T6127] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.113835][ T6127] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.116418][ T6127] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.175412][ T6233] evm: overlay not supported
[   48.182158][ T1145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.184374][ T1145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.206951][ T5968] Bluetooth: hci3: command tx timeout
[   48.209444][ T1167] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.211576][ T1167] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.420007][ T1145] Bluetooth: hci4: Frame reassembly failed (-84)
[   48.673971][ T6264] 8021q: adding VLAN 0 to HW filter on device bond1
[   48.696785][ T6108] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   48.856928][ T6108] usb 8-1: Using ep0 maxpacket: 32
[   48.860358][ T6108] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[   48.863976][ T6108] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[   48.869521][ T6108] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[   48.873130][ T6108] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[   48.876065][ T6108] usb 8-1: Product: syz
[   48.878012][ T6108] usb 8-1: Manufacturer: syz
[   48.879715][ T6108] usb 8-1: SerialNumber: syz
[   48.883313][ T6108] usb 8-1: config 0 descriptor??
[   49.091112][ T6108] usb 8-1: USB disconnect, device number 2
[   49.591826][ T6223] bridge0: port 2(bridge_slave_1) entered disabled state
[   49.800985][   T39] audit: type=1800 audit(1732084077.258:2): pid=6289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.56" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[   50.290901][ T5309] Bluetooth: hci3: command tx timeout
[   50.446616][ T5968] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[   51.037086][ T6322] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   51.095552][ T6322] kvm: pic: level sensitive irq not supported
[   51.116165][ T6322] kvm: pic: level sensitive irq not supported
[   51.122707][ T6322] kvm: pic: level sensitive irq not supported
[   51.167585][ T6322] kvm: pic: level sensitive irq not supported
[   51.187075][ T6322] kvm: pic: level sensitive irq not supported
[   51.207727][ T6322] kvm: pic: level sensitive irq not supported
[   51.215115][ T6322] kvm: pic: level sensitive irq not supported
[   51.223495][ T6322] kvm: pic: level sensitive irq not supported
[   51.227685][ T6322] kvm: pic: level sensitive irq not supported
[   51.234819][ T6322] kvm: pic: level sensitive irq not supported
[   51.740106][ T6325] syz.0.63 (6325): drop_caches: 2
[   52.211903][   T39] audit: type=1326 audit(1732084079.668:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6344 comm="syz.4.71" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x0
[   52.366745][ T5968] Bluetooth: hci3: command tx timeout
[   52.765239][ T6353] warning: `syz.2.73' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   52.845595][ T6364] netlink: 'syz.3.76': attribute type 10 has an invalid length.
[   52.857455][ T6364] 8021q: adding VLAN 0 to HW filter on device batadv0
[   52.863212][ T6364] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   52.893750][ T6364] bond0: entered promiscuous mode
[   52.895267][ T6364] bond_slave_0: entered promiscuous mode
[   52.897344][ T6364] bond_slave_1: entered promiscuous mode
[   52.899134][ T6364] batadv0: entered promiscuous mode
[   52.960204][ T6364] syz.3.76 (6364) used greatest stack depth: 20880 bytes left
[   53.531001][ T6393] netlink: 4 bytes leftover after parsing attributes in process `syz.2.82'.
[   54.927358][ T6455] Zero length message leads to an empty skb
[   55.885065][   T39] audit: type=1800 audit(1732084083.338:4): pid=6469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.103" name="/" dev="9p" ino=2 res=0 errno=0
[   55.920920][ T6472] fuse: Unknown parameter 'grou00000000000000000000'
[   55.939546][ T6471] Process accounting resumed
[   56.140230][   T39] audit: type=1800 audit(1732084083.598:5): pid=6483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.105" name="/" dev="fuse" ino=1 res=0 errno=0
[   56.150070][ T6485] netlink: 'syz.0.109': attribute type 10 has an invalid length.
[   56.164621][ T6485] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   56.302572][ T6490] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   56.766627][   T57] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   56.926597][   T57] usb 7-1: Using ep0 maxpacket: 8
[   56.930724][   T57] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   56.934207][   T57] usb 7-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[   56.937678][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   56.942386][   T57] usb 7-1: config 0 descriptor??
[   56.947630][   T57] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[   57.238205][   T57] usb 7-1: USB disconnect, device number 2
[   57.824818][ T6513] netlink: 28 bytes leftover after parsing attributes in process `syz.4.120'.
[   57.828050][ T6513] netlink: 8 bytes leftover after parsing attributes in process `syz.4.120'.
[   57.834408][ T6513] bridge0: port 3(syz_tun) entered blocking state
[   57.836378][ T6513] bridge0: port 3(syz_tun) entered disabled state
[   57.841493][ T6513] syz_tun: entered allmulticast mode
[   57.844552][ T6513] syz_tun: entered promiscuous mode
[   57.847594][ T6513] bridge0: port 3(syz_tun) entered blocking state
[   57.849464][ T6513] bridge0: port 3(syz_tun) entered forwarding state
[   57.992552][ T6518] netlink: 8 bytes leftover after parsing attributes in process `syz.3.122'.
[   57.996025][ T6518] netlink: 4 bytes leftover after parsing attributes in process `syz.3.122'.
[   58.000419][ T6518] netlink: 32 bytes leftover after parsing attributes in process `syz.3.122'.
[   58.060192][ T5968] block nbd0: Receive control failed (result -107)
[   58.078490][ T6519] Illegal XDP return value 4294967274 on prog  (id 22) dev N/A, expect packet loss!
[   59.460114][ T5968] Bluetooth: unknown link type 8
[   59.462261][ T5968] Bluetooth: hci2: connection err: -111
[   61.284514][   T39] audit: type=1326 audit(1732084088.738:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.0.142" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fa8579 code=0x0
[   61.636662][ T1478] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   61.710364][ T6646] /dev/sr0: Can't open blockdev
[   61.786772][ T1478] usb 8-1: Using ep0 maxpacket: 8
[   61.789348][ T1478] usb 8-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   61.792208][ T1478] usb 8-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[   61.794586][ T1478] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   61.798933][ T1478] usb 8-1: config 0 descriptor??
[   61.802417][ T1478] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[   61.818396][ T6648] /dev/sr0: Can't open blockdev
[   61.886765][   T57] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   62.036659][   T57] usb 7-1: Using ep0 maxpacket: 8
[   62.040900][   T57] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   62.044713][   T57] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   62.048356][   T57] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[   62.051433][   T57] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[   62.055449][   T57] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   62.060501][   T57] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   62.063827][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.072328][   T57] usbtmc 7-1:16.0: probe with driver usbtmc failed with error -22
[   62.108066][    T9] usb 8-1: USB disconnect, device number 3
[   62.731650][ T6684] syzkaller0: entered promiscuous mode
[   62.733381][ T6684] syzkaller0: entered allmulticast mode
[   63.095413][ T6665] delete_channel: no stack
[   63.763289][ T6700] netlink: 4 bytes leftover after parsing attributes in process `syz.4.161'.
[   63.867708][ T6700] team0 (unregistering): Port device team_slave_0 removed
[   63.876825][ T6700] team0 (unregistering): Port device team_slave_1 removed
[   64.602870][    T9] usb 7-1: USB disconnect, device number 3
[   65.896721][ T5968] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[   65.899491][ T5968] Bluetooth: hci3: Injecting HCI hardware error event
[   65.902380][ T5968] Bluetooth: hci3: hardware error 0x00
[   66.000097][ T6719] syz.4.167 (6719) used greatest stack depth: 20448 bytes left
[   66.070843][ T6728] netlink: 12 bytes leftover after parsing attributes in process `syz.4.169'.
[   66.077416][ T6728] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:1)
[   66.180189][ T6729] dccp_close: ABORT with 32 bytes unread
[   66.337647][ T6735] kvm: pic: non byte read
[   66.339546][ T6735] kvm: pic: non byte read
[   66.341219][ T6735] kvm: pic: single mode not supported
[   66.341418][ T6735] kvm: pic: non byte read
[   66.344561][ T6735] pic_ioport_write: 191 callbacks suppressed
[   66.344569][ T6735] kvm: pic: level sensitive irq not supported
[   66.346379][ T6735] kvm: pic: non byte read
[   66.351016][ T6735] kvm: pic: single mode not supported
[   66.351025][ T6735] kvm: pic: level sensitive irq not supported
[   66.352709][ T6735] kvm: pic: non byte read
[   66.356165][ T6735] kvm: pic: non byte read
[   66.358302][ T6735] kvm: pic: non byte read
[   66.359947][ T6735] kvm: pic: level sensitive irq not supported
[   66.360143][ T6735] kvm: pic: non byte read
[   66.363598][ T6735] kvm: pic: non byte read
[   66.365482][ T6735] kvm: pic: non byte read
[   66.367234][ T6735] kvm: pic: level sensitive irq not supported
[   66.369227][ T6735] kvm: pic: level sensitive irq not supported
[   66.374169][ T6735] kvm: pic: level sensitive irq not supported
[   66.398188][ T6735] kvm: pic: level sensitive irq not supported
[   66.402466][ T6735] kvm: pic: level sensitive irq not supported
[   66.409424][ T6735] kvm: pic: level sensitive irq not supported
[   66.417483][ T6735] kvm: pic: level sensitive irq not supported
[   66.896066][ T6751] netlink: 36 bytes leftover after parsing attributes in process `syz.2.178'.
[   66.900475][ T6751] netlink: 16 bytes leftover after parsing attributes in process `syz.2.178'.
[   66.903520][ T6751] netlink: 36 bytes leftover after parsing attributes in process `syz.2.178'.
[   66.906307][ T6751] netlink: 36 bytes leftover after parsing attributes in process `syz.2.178'.
[   67.616102][ T6762] overlayfs: failed to get inode (-116)
[   67.619400][ T6762] overlayfs: failed to get inode (-116)
[   67.967048][ T5968] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[   69.081106][ T6801] Bluetooth: MGMT ver 1.23
[   69.170495][   T39] audit: type=1326 audit(1732084096.628:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.193" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f35579 code=0x0
[   69.365957][ T6814] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[   69.369079][ T6814] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[   69.371869][ T6814] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[   69.374457][ T6814] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[   69.382048][ T6814] team0: Port device vxlan0 added
[   70.266646][ T5996] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   70.450590][ T5996] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   70.454117][ T5996] usb 7-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   70.458091][ T5996] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   70.470342][ T5996] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   70.473567][ T5996] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   70.476257][ T5996] usb 7-1: Product: syz
[   70.478193][ T5996] usb 7-1: Manufacturer: syz
[   70.479889][ T5996] usb 7-1: SerialNumber: syz
[   70.693811][ T5996] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 4 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   70.781330][ T1410] ieee802154 phy0 wpan0: encryption failed: -22
[   70.783675][ T1410] ieee802154 phy1 wpan1: encryption failed: -22
[   70.895397][   T57] usb 7-1: USB disconnect, device number 4
[   71.099471][ T6820] usblp0: removed
[   71.724426][ T6841] process 'syz.2.206' launched '/dev/fd/3' with NULL argv: empty string added
[   71.792988][ T6844] netlink: 4 bytes leftover after parsing attributes in process `syz.2.207'.
[   71.798933][ T6844] netlink: 12 bytes leftover after parsing attributes in process `syz.2.207'.
[   71.828994][ T6844] netlink: 4 bytes leftover after parsing attributes in process `syz.2.207'.
[   72.317731][ T6857] netlink: 4 bytes leftover after parsing attributes in process `syz.0.212'.
[   72.549962][ T6867] netlink: 100 bytes leftover after parsing attributes in process `syz.0.215'.
[   72.856560][ T5996] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   73.067224][ T5996] usb 5-1: config 0 has no interfaces?
[   73.077247][ T5996] usb 5-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[   73.087152][ T5996] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.097917][ T5996] usb 5-1: config 0 descriptor??
[   73.363101][ T6878] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   73.365954][ T6878] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   73.373153][ T6878] usb usb9: usbfs: process 6878 (syz.0.216) did not claim interface 0 before use
[   73.452222][   T30] usb 5-1: USB disconnect, device number 4
[   75.219134][ T6917] trusted_key: syz.2.228 sent an empty control message without MSG_MORE.
[   75.241973][ T6915] ALSA: mixer_oss: invalid OSS volume 'PHONEI�'
[   75.249274][ T6915] ALSA: mixer_oss: invalid OSS volume '����L�����XTp0�����'
[   75.606644][ T5996] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   75.756550][ T5996] usb 7-1: Using ep0 maxpacket: 32
[   75.759347][ T5996] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   75.762126][ T5996] usb 7-1: config 0 has no interfaces?
[   75.763569][ T5996] usb 7-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[   75.765964][ T5996] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.777246][ T5996] usb 7-1: config 0 descriptor??
[   75.889849][ T1012] cfg80211: failed to load regulatory.db
[   76.112682][ T5997] usb 7-1: USB disconnect, device number 5
[   76.718196][ T6956] Bluetooth: MGMT ver 1.23
[   77.061152][ T6963] REISERFS warning (device nullb0): super-6502 reiserfs_getopt: unknown mount option "�b�_v-f`��"
[   77.208379][ T6968] netlink: 12 bytes leftover after parsing attributes in process `syz.0.246'.
[   77.362813][ T6973] syz.0.248 uses obsolete (PF_INET,SOCK_PACKET)
[   77.598464][   T39] audit: type=1804 audit(1732084105.058:8): pid=6981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.251" name="/newroot/55/file0/file0" dev="9p" ino=36833490 res=1 errno=0
[   78.026667][ T5997] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   78.179608][ T5997] usb 9-1: Using ep0 maxpacket: 32
[   78.183223][ T5997] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   78.186247][ T5997] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   78.189733][ T5997] usb 9-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   78.194836][ T5997] usb 9-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[   78.200655][ T5997] usb 9-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[   78.202859][ T5997] usb 9-1: Product: syz
[   78.204261][ T5997] usb 9-1: Manufacturer: syz
[   78.205937][ T5997] usb 9-1: SerialNumber: syz
[   78.216967][ T5997] input: appletouch as /devices/platform/dummy_hcd.4/usb9/9-1/9-1:1.0/input/input5
[   78.605143][ T5996] usb 9-1: USB disconnect, device number 2
[   78.613623][ T5996] appletouch 9-1:1.0: input: appletouch disconnected
[   78.708924][ T6998] netlink: 88 bytes leftover after parsing attributes in process `syz.0.256'.
[   78.767636][ T5968] Bluetooth: hci0: Opcode 0x1407 failed: -110
[   78.767675][ T5309] Bluetooth: hci0: command 0x1407 tx timeout
[   79.211358][   T39] audit: type=1326 audit(1732084106.668:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.4.262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[   79.218844][   T39] audit: type=1326 audit(1732084106.668:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.4.262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[   79.226436][   T39] audit: type=1326 audit(1732084106.668:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.4.262" exe="/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f32579 code=0x7ffc0000
[   79.239053][   T39] audit: type=1326 audit(1732084106.668:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.4.262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[   79.247234][   T39] audit: type=1326 audit(1732084106.668:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.4.262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[   79.255005][   T39] audit: type=1326 audit(1732084106.668:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.4.262" exe="/syz-executor" sig=0 arch=40000003 syscall=449 compat=1 ip=0xf7f32579 code=0x7ffc0000
[   79.267330][   T39] audit: type=1326 audit(1732084106.728:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.4.262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[   79.273048][   T39] audit: type=1326 audit(1732084106.728:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.4.262" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7ffc0000
[   79.282077][   T39] audit: type=1326 audit(1732084106.728:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7017 comm="syz.4.262" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7f32579 code=0x7ffc0000
[   80.084483][ T7037] netlink: 40 bytes leftover after parsing attributes in process `syz.3.266'.
[   80.112431][ T7037] netlink: 'syz.3.266': attribute type 10 has an invalid length.
[   80.117580][ T7037] syz_tun: entered promiscuous mode
[   80.149258][ T7037] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   80.252621][ T7047] netlink: 'syz.0.268': attribute type 1 has an invalid length.
[   80.334161][ T7050] kernel read not supported for file /rmdF�� (pid: 7050 comm: syz.4.271)
[   80.443577][ T7053] syz.3.270 (7053): drop_caches: 2
[   82.077768][ T7081] syzkaller1: entered promiscuous mode
[   82.079355][ T7081] syzkaller1: entered allmulticast mode
[   82.486625][ T5996] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   82.646618][ T5996] usb 5-1: Using ep0 maxpacket: 8
[   82.649318][ T5996] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   82.651935][ T5996] usb 5-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[   82.654381][ T5996] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.658921][ T5996] usb 5-1: config 0 descriptor??
[   82.661725][ T5996] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[   82.902025][ T7093] block nbd2: shutting down sockets
[   82.990554][ T5996] usb 5-1: USB disconnect, device number 5
[   83.305208][ T7113] =======================================================
[   83.305208][ T7113] WARNING: The mand mount option has been deprecated and
[   83.305208][ T7113]          and is ignored by this kernel. Remove the mand
[   83.305208][ T7113]          option from the mount to silence this warning.
[   83.305208][ T7113] =======================================================
[   83.969407][ T7129] can0: slcan on ttyS3.
[   84.027512][ T7129] can0 (unregistered): slcan off ttyS3.
[   84.416594][ T6015] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[   84.567108][ T6015] usb 5-1: too many configurations: 9, using maximum allowed: 8
[   84.571890][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   84.574475][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   84.577614][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0
[   84.580219][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   84.582768][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   84.586593][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0
[   84.589211][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   84.591626][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   84.594416][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0
[   84.597041][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   84.599589][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   84.603494][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0
[   84.606564][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   84.609139][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   84.612054][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0
[   84.615347][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   84.618781][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   84.622112][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0
[   84.624694][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   84.627077][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   84.629945][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0
[   84.632664][ T6015] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[   84.635068][ T6015] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[   84.637998][ T6015] usb 5-1: config 0 interface 0 has no altsetting 0
[   84.642021][ T6015] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[   84.645447][ T6015] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[   84.647986][ T6015] usb 5-1: Product: syz
[   84.649170][ T6015] usb 5-1: Manufacturer: syz
[   84.650742][ T6015] usb 5-1: SerialNumber: syz
[   84.655343][ T6015] usb 5-1: config 0 descriptor??
[   84.663125][ T6015] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0
[   84.796775][ T7158] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   84.805219][ T7158] picdev_read: 42 callbacks suppressed
[   84.805233][ T7158] kvm: pic: non byte read
[   84.809227][ T7158] pic_ioport_write: 3 callbacks suppressed
[   84.809235][ T7158] kvm: pic: level sensitive irq not supported
[   84.811082][ T7158] kvm: pic: non byte read
[   85.312358][ T7182] can0: slcan on ttyS3.
[   85.403624][ T7182] can0 (unregistered): slcan off ttyS3.
[   86.446592][ T1012] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   86.596681][ T1012] usb 7-1: Using ep0 maxpacket: 8
[   86.599938][ T1012] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   86.603297][ T1012] usb 7-1: New USB device found, idVendor=6666, idProduct=8804, bcdDevice= 0.00
[   86.606670][ T1012] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.610962][ T1012] usb 7-1: config 0 descriptor??
[   86.616169][ T1012] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[   86.903807][ T5997] usb 7-1: USB disconnect, device number 6
[   86.928412][    C2] usb 5-1: yurex_control_callback - control failed: -2
[   86.932660][ T1012] usb 5-1: USB disconnect, device number 6
[   86.936597][ T1012] yurex 5-1:0.0: USB YUREX #0 now disconnected
[   87.033922][ T7229] qnx6: Unknown parameter 'trans'
[   87.038227][ T7229] netlink: 244 bytes leftover after parsing attributes in process `syz.3.314'.
[   87.075603][ T7231] can0: slcan on ttyS3.
[   87.147276][ T7231] can0 (unregistered): slcan off ttyS3.
[   91.165479][   T39] kauditd_printk_skb: 27 callbacks suppressed
[   91.165491][   T39] audit: type=1326 audit(1732084118.618:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7330 comm="syz.3.340" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x0
[   91.613361][ T7338] netlink: 36 bytes leftover after parsing attributes in process `syz.0.345'.
[   91.615690][ T7338] netlink: 16 bytes leftover after parsing attributes in process `syz.0.345'.
[   91.618614][ T7338] netlink: 36 bytes leftover after parsing attributes in process `syz.0.345'.
[   91.620902][ T7338] netlink: 36 bytes leftover after parsing attributes in process `syz.0.345'.
[   92.045451][ T7351] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   92.051365][ T7351] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   92.062539][ T7351] loop0: detected capacity change from 0 to 7
[   92.064925][ T7351] buffer_io_error: 4 callbacks suppressed
[   92.064933][ T7351] Buffer I/O error on dev loop0, logical block 0, async page read
[   92.068578][ T7351] Buffer I/O error on dev loop0, logical block 0, async page read
[   92.070636][ T7351] Buffer I/O error on dev loop0, logical block 0, async page read
[   92.072836][ T7351] Buffer I/O error on dev loop0, logical block 0, async page read
[   92.074925][ T7351] Buffer I/O error on dev loop0, logical block 0, async page read
[   92.077090][ T7351] Buffer I/O error on dev loop0, logical block 0, async page read
[   92.079046][ T7351] Buffer I/O error on dev loop0, logical block 0, async page read
[   92.081095][ T7351] ldm_validate_partition_table(): Disk read failed.
[   92.083200][ T7351] Buffer I/O error on dev loop0, logical block 0, async page read
[   92.085595][ T7351] Buffer I/O error on dev loop0, logical block 0, async page read
[   92.088033][ T7351] Buffer I/O error on dev loop0, logical block 0, async page read
[   92.090105][ T7351] Dev loop0: unable to read RDB block 0
[   92.091626][ T7351]  loop0: unable to read partition table
[   92.093476][ T7351] loop0: partition table beyond EOD, truncated
[   92.095113][ T7351] loop_reread_partitions: partition scan of loop0 (�被x������ڬ��dƤ����ݡ�����
[   92.095113][ T7351] 
) failed (rc=-5)
[   92.462531][   T12] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.534213][   T12] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.549996][ T5309] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   92.554395][ T5309] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   92.557635][ T5309] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   92.562607][ T5309] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   92.565056][ T5309] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   92.567154][ T5309] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   92.635202][   T12] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.685798][ T7364] chnl_net:caif_netlink_parms(): no params data found
[   92.752168][   T12] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   92.796877][ T7364] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.799017][ T7364] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.802415][ T7364] bridge_slave_0: entered allmulticast mode
[   92.805529][ T7364] bridge_slave_0: entered promiscuous mode
[   92.809152][ T7364] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.811177][ T7364] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.813182][ T7364] bridge_slave_1: entered allmulticast mode
[   92.816381][ T7364] bridge_slave_1: entered promiscuous mode
[   92.859439][ T7364] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   92.866297][ T7364] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   92.910383][ T7364] team0: Port device team_slave_0 added
[   92.914076][ T7364] team0: Port device team_slave_1 added
[   92.974962][   T12] bridge_slave_1: left allmulticast mode
[   92.977008][   T12] bridge_slave_1: left promiscuous mode
[   92.978632][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.981654][   T12] bridge_slave_0: left allmulticast mode
[   92.983173][   T12] bridge_slave_0: left promiscuous mode
[   92.984723][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.337454][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   93.350577][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   93.358775][   T12] bond0 (unregistering): Released all slaves
[   93.434768][   T12] bond1 (unregistering): Released all slaves
[   93.441003][ T7364] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.442918][ T7364] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.450919][ T7364] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.455535][ T7364] batman_adv: batadv0: Adding interface: batadv_slave_1
[   93.458465][ T7364] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.466227][ T7364] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   93.536665][ T7364] hsr_slave_0: entered promiscuous mode
[   93.541389][ T7364] hsr_slave_1: entered promiscuous mode
[   93.698340][ T7364] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   93.704412][ T7364] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   93.711796][ T7364] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   93.716462][ T7364] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   93.752338][ T7364] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.775602][ T7364] 8021q: adding VLAN 0 to HW filter on device team0
[   93.780956][   T12] hsr_slave_0: left promiscuous mode
[   93.782919][   T12] hsr_slave_1: left promiscuous mode
[   93.784996][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   93.787509][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[   93.789856][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   93.791764][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[   93.807930][   T12] veth1_macvtap: left promiscuous mode
[   93.809408][   T12] veth0_macvtap: left promiscuous mode
[   93.810856][   T12] veth1_vlan: left promiscuous mode
[   93.812231][   T12] veth0_vlan: left promiscuous mode
[   94.359007][   T39] audit: type=1326 audit(1732084121.808:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7391 comm="syz.4.357" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x0
[   94.432525][   T12] team0 (unregistering): Port device team_slave_1 removed
[   94.523866][   T12] team0 (unregistering): Port device team_slave_0 removed
[   94.618623][ T5968] Bluetooth: hci2: command tx timeout
[   94.764626][ T7409] Bluetooth: hci0: Opcode 0x0401 failed: -112
[   95.115248][ T1167] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.119055][ T1167] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.129898][   T69] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.131892][   T69] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.184313][ T7364] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   95.190458][ T7364] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   95.281077][ T7364] 8021q: adding VLAN 0 to HW filter on device batadv0
[   95.378363][ T7364] veth0_vlan: entered promiscuous mode
[   95.383207][ T7364] veth1_vlan: entered promiscuous mode
[   95.394149][ T7364] veth0_macvtap: entered promiscuous mode
[   95.397395][ T7364] veth1_macvtap: entered promiscuous mode
[   95.404625][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   95.407568][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   95.410110][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   95.412702][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   95.415148][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   95.418858][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   95.422209][ T7364] batman_adv: batadv0: Interface activated: batadv_slave_0
[   95.431377][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   95.434178][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   95.437098][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   95.439826][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   95.442380][ T7364] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   95.445106][ T7364] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   95.448460][ T7364] batman_adv: batadv0: Interface activated: batadv_slave_1
[   95.453932][ T7364] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   95.456182][ T7364] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.458662][ T7364] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.460861][ T7364] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.487132][   T74] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.489176][   T74] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.493978][   T69] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.496037][   T69] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   96.686792][ T5309] Bluetooth: hci2: command tx timeout
[   96.777384][ T5309] Bluetooth: hci0: command 0x1407 tx timeout
[   96.780751][ T5968] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[   98.778470][ T5968] Bluetooth: hci2: command tx timeout
[   98.846661][ T5968] Bluetooth: hci0: command 0x1407 tx timeout
[  100.916622][ T5968] Bluetooth: hci2: command tx timeout
[  102.771045][   T39] audit: type=1804 audit(1732084130.228:47): pid=7634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.401" name="/newroot/90/file0/file0" dev="9p" ino=36833490 res=1 errno=0
[  102.840219][   T39] audit: type=1804 audit(1732084130.298:48): pid=7640 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.401" name="/newroot/90/file0/file0" dev="9p" ino=36833490 res=1 errno=0
[  104.887523][ T7679] netlink: 'syz.4.413': attribute type 4 has an invalid length.
[  105.389853][ T7693] netlink: 4 bytes leftover after parsing attributes in process `syz.5.418'.
[  105.643201][ T7702] 
[  106.236722][ T6108] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  106.386579][ T6108] usb 5-1: Using ep0 maxpacket: 32
[  106.389494][ T6108] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.393018][ T6108] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  106.395991][ T6108] usb 5-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  106.398772][ T6108] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.401605][ T6108] usb 5-1: config 0 descriptor??
[  106.638473][ T7735] Cannot find del_set index 4 as target
[  106.645361][ T7735] ipvlan2: entered promiscuous mode
[  106.647834][ T7735] 8021q: adding VLAN 0 to HW filter on device ipvlan2
[  106.650701][ T7735] team0: Device ipvlan2 is already an upper device of the team interface
[  106.790506][ T7746] sch_fq: defrate 0 ignored.
[  106.799261][ T6108] usbhid 5-1:0.0: can't add hid device: -71
[  106.800904][ T6108] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  106.807380][ T6108] usb 5-1: USB disconnect, device number 7
[  107.247016][   T45] wlan1: Trigger new scan to find an IBSS to join
[  107.441879][ T5968] Bluetooth: unknown link type 8
[  107.443338][ T5968] Bluetooth: hci0: connection err: -111
[  108.299256][ T7820] syz.5.437 (7820): drop_caches: 2
[  112.207542][   T74] wlan1: Trigger new scan to find an IBSS to join
[  112.679757][ T7895] syz.3.452 (7895): drop_caches: 2
[  113.129922][   T69] wlan1: Creating new IBSS network, BSSID 56:75:8d:a5:ba:0a
[  114.712312][ T7925] wireguard0: entered promiscuous mode
[  114.714620][ T7925] wireguard0: entered allmulticast mode
[  117.744143][ T7974] syz.4.472 (7974): drop_caches: 2
[  118.834703][ T7991] syz.0.485 (7991): drop_caches: 2
[  120.026352][ T8011] syz.0.492 (8011): drop_caches: 2
[  123.932208][ T8071] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  123.980368][ T8071] kvm: pic: level sensitive irq not supported
[  123.981099][ T8071] kvm: pic: level sensitive irq not supported
[  123.983993][ T8071] kvm: pic: level sensitive irq not supported
[  123.987274][ T8071] kvm: pic: level sensitive irq not supported
[  123.992453][ T8071] kvm: pic: level sensitive irq not supported
[  123.995479][ T8071] kvm: pic: level sensitive irq not supported
[  124.001106][ T8071] kvm: pic: level sensitive irq not supported
[  124.004426][ T8071] kvm: pic: level sensitive irq not supported
[  124.007777][ T8071] kvm: pic: level sensitive irq not supported
[  124.013010][ T8071] kvm: pic: level sensitive irq not supported
[  126.208491][ T8105] syz.3.513 (8105): drop_caches: 2
[  127.363217][ T8122] netlink: 'syz.5.519': attribute type 10 has an invalid length.
[  127.365315][ T8122] netlink: 40 bytes leftover after parsing attributes in process `syz.5.519'.
[  127.370627][ T8122] team0: entered promiscuous mode
[  127.371983][ T8122] team_slave_0: entered promiscuous mode
[  127.373690][ T8122] team_slave_1: entered promiscuous mode
[  127.375190][ T8122] team0: entered allmulticast mode
[  127.377109][ T8122] team_slave_0: entered allmulticast mode
[  127.379144][ T8122] team_slave_1: entered allmulticast mode
[  127.381951][ T8122] bridge0: port 3(team0) entered blocking state
[  127.383803][ T8122] bridge0: port 3(team0) entered disabled state
[  127.388092][ T8122] bridge0: port 3(team0) entered blocking state
[  127.391660][ T8122] bridge0: port 3(team0) entered forwarding state
[  128.703725][ T5968] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[  128.706754][ T5968] CPU: 2 UID: 0 PID: 5968 Comm: kworker/u33:8 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  128.709421][ T5968] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  128.712177][ T5968] Workqueue: hci0 hci_rx_work
[  128.713444][ T5968] Call Trace:
[  128.714339][ T5968]  <TASK>
[  128.715151][ T5968]  dump_stack_lvl+0x16c/0x1f0
[  128.716379][ T5968]  sysfs_warn_dup+0x7f/0xa0
[  128.717581][ T5968]  sysfs_create_dir_ns+0x24d/0x2b0
[  128.718930][ T5968]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  128.720391][ T5968]  ? kobject_add_internal+0x288/0x990
[  128.721780][ T5968]  ? __sanitizer_cov_trace_pc+0x62/0x70
[  128.723214][ T5968]  kobject_add_internal+0x2c8/0x990
[  128.725051][ T5968]  kobject_add+0x16f/0x240
[  128.726620][ T5968]  ? __pfx_kobject_add+0x10/0x10
[  128.728342][ T5968]  ? class_to_subsys+0x3e/0x160
[  128.730091][ T5968]  ? do_raw_spin_unlock+0x172/0x230
[  128.731971][ T5968]  ? kobject_put+0xab/0x5a0
[  128.733614][ T5968]  device_add+0x289/0x1a70
[  128.735188][ T5968]  ? __pfx_dev_set_name+0x10/0x10
[  128.736940][ T5968]  ? __pfx_device_add+0x10/0x10
[  128.738633][ T5968]  ? mgmt_send_event_skb+0x2f2/0x460
[  128.740456][ T5968]  hci_conn_add_sysfs+0x17e/0x230
[  128.742250][ T5968]  le_conn_complete_evt+0xfc7/0x1cf0
[  128.744129][ T5968]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  128.746137][ T5968]  ? __mutex_lock+0x1cc/0xa60
[  128.747867][ T5968]  hci_le_conn_complete_evt+0x23c/0x370
[  128.749849][ T5968]  hci_le_meta_evt+0x2e2/0x5d0
[  128.751563][ T5968]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  128.753712][ T5968]  hci_event_packet+0x666/0x1190
[  128.755494][ T5968]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  128.757376][ T5968]  ? __pfx_hci_event_packet+0x10/0x10
[  128.759247][ T5968]  ? kcov_remote_start+0x3df/0x6e0
[  128.761084][ T5968]  hci_rx_work+0x2c6/0x1610
[  128.762695][ T5968]  ? lock_acquire+0x2f/0xb0
[  128.764274][ T5968]  ? process_one_work+0x8bb/0x1b30
[  128.766071][ T5968]  process_one_work+0x958/0x1b30
[  128.767812][ T5968]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  128.769731][ T5968]  ? __pfx_process_one_work+0x10/0x10
[  128.771627][ T5968]  ? assign_work+0x1a0/0x250
[  128.773217][ T5968]  worker_thread+0x6c8/0xf00
[  128.774817][ T5968]  ? __kthread_parkme+0x148/0x220
[  128.776533][ T5968]  ? __pfx_worker_thread+0x10/0x10
[  128.778302][ T5968]  kthread+0x2c1/0x3a0
[  128.779744][ T5968]  ? _raw_spin_unlock_irq+0x23/0x50
[  128.781580][ T5968]  ? __pfx_kthread+0x10/0x10
[  128.783162][ T5968]  ret_from_fork+0x45/0x80
[  128.784711][ T5968]  ? __pfx_kthread+0x10/0x10
[  128.786328][ T5968]  ret_from_fork_asm+0x1a/0x30
[  128.787973][ T5968]  </TASK>
[  128.791158][ T5968] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  128.797339][ T5968] Bluetooth: hci0: failed to register connection device
[  130.071034][ T8168] syz.0.532 (8168): drop_caches: 2
[  131.417104][ T8187] syz.0.543 (8187): drop_caches: 2
[  132.209083][ T1410] ieee802154 phy0 wpan0: encryption failed: -22
[  132.210765][ T1410] ieee802154 phy1 wpan1: encryption failed: -22
[  134.377802][ T8235] netlink: 4 bytes leftover after parsing attributes in process `syz.0.551'.
[  134.637595][ T8245] syz.3.554 (8245): drop_caches: 2
[  140.005313][   T39] audit: type=1326 audit(1732084167.458:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8311 comm="syz.3.582" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x0
[  140.100544][ T8316] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  140.112251][ T8316] pic_ioport_write: 679 callbacks suppressed
[  140.112262][ T8316] kvm: pic: level sensitive irq not supported
[  140.115917][ T8316] kvm: pic: level sensitive irq not supported
[  140.119419][ T8316] kvm: pic: level sensitive irq not supported
[  140.123091][ T8316] kvm: pic: level sensitive irq not supported
[  140.125815][ T8316] kvm: pic: level sensitive irq not supported
[  140.129702][ T8316] kvm: pic: level sensitive irq not supported
[  140.132293][ T8316] kvm: pic: level sensitive irq not supported
[  140.134826][ T8316] kvm: pic: level sensitive irq not supported
[  140.137873][ T8316] kvm: pic: level sensitive irq not supported
[  140.140361][ T8316] kvm: pic: level sensitive irq not supported
[  143.184890][   T11] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  144.715452][ T8382] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  145.117528][ T8382] pic_ioport_write: 1431 callbacks suppressed
[  145.117541][ T8382] kvm: pic: level sensitive irq not supported
[  145.123004][ T8382] kvm: pic: level sensitive irq not supported
[  145.127289][ T8382] kvm: pic: level sensitive irq not supported
[  145.133348][ T8382] kvm: pic: level sensitive irq not supported
[  145.138507][ T8382] kvm: pic: level sensitive irq not supported
[  145.143012][ T8382] kvm: pic: level sensitive irq not supported
[  145.146688][ T8382] kvm: pic: level sensitive irq not supported
[  145.150276][ T8382] kvm: pic: level sensitive irq not supported
[  145.153809][ T8382] kvm: pic: level sensitive irq not supported
[  145.156369][ T8382] kvm: pic: level sensitive irq not supported
[  146.904477][ T8427] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  146.920059][ T8427] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  147.029349][ T8432] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  147.031732][ T8432] overlayfs: failed to set xattr on upper
[  147.033819][ T8432] overlayfs: ...falling back to redirect_dir=nofollow.
[  147.036327][ T8432] overlayfs: ...falling back to index=off.
[  147.039607][ T8432] overlayfs: ...falling back to uuid=null.
[  147.607910][ T8446] vim2m vim2m.0: vidioc_s_fmt queue busy
[  147.927089][ T8465] netlink: 'syz.3.616': attribute type 10 has an invalid length.
[  149.610924][ T8511] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  149.622997][ T8511] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  152.872099][ T8635] ieee802154 phy0 wpan0: encryption failed: -22
[  153.359973][ T8660] netlink: 24 bytes leftover after parsing attributes in process `syz.0.675'.
[  153.373436][ T8660] netlink: 8 bytes leftover after parsing attributes in process `syz.0.675'.
[  153.375805][ T8660] nbd: nbd0 already in use
[  156.093443][ T8741] netlink: 40 bytes leftover after parsing attributes in process `syz.5.701'.
[  156.114206][ T8741] netlink: 'syz.5.701': attribute type 10 has an invalid length.
[  156.118628][ T8741] syz_tun: entered promiscuous mode
[  156.124405][ T8741] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  156.267014][ T6015] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  157.819010][   T39] audit: type=1326 audit(1732084185.278:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  157.828310][   T39] audit: type=1326 audit(1732084185.278:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  157.835136][   T39] audit: type=1326 audit(1732084185.278:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.712" exe="/syz-executor" sig=0 arch=40000003 syscall=81 compat=1 ip=0xf747e579 code=0x7ffc0000
[  157.841432][   T39] audit: type=1326 audit(1732084185.278:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  157.847469][   T39] audit: type=1326 audit(1732084185.278:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  157.853378][   T39] audit: type=1326 audit(1732084185.278:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.712" exe="/syz-executor" sig=0 arch=40000003 syscall=152 compat=1 ip=0xf747e579 code=0x7ffc0000
[  158.269928][   T39] audit: type=1326 audit(1732084185.728:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  158.276406][   T39] audit: type=1326 audit(1732084185.728:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  158.645666][   T39] audit: type=1326 audit(1732084186.098:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.712" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf747e579 code=0x7ffc0000
[  158.655903][   T39] audit: type=1326 audit(1732084186.108:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8777 comm="syz.3.712" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf747e579 code=0x7ffc0000
[  158.717060][ T6015] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  160.808228][ T8826] Bluetooth: hci0: Opcode 0x0401 failed: -22
[  161.396590][  T830] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  161.546644][  T830] usb 5-1: Using ep0 maxpacket: 8
[  161.549655][  T830] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  161.552512][  T830] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  161.555599][  T830] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  161.559159][  T830] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  161.562330][  T830] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  161.567080][  T830] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  161.569990][  T830] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.574674][  T830] usbtmc 5-1:16.0: probe with driver usbtmc failed with error -22
[  162.846624][ T5968] Bluetooth: hci0: command tx timeout
[  164.040629][ T6015] usb 5-1: USB disconnect, device number 8
[  165.926660][ T2054] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  166.086586][ T2054] usb 9-1: Using ep0 maxpacket: 8
[  166.089262][ T2054] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  166.091863][ T2054] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  166.094621][ T2054] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  166.097775][ T2054] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  166.101376][ T2054] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  166.105302][ T2054] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  166.108342][ T2054] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.113567][ T2054] usbtmc 9-1:16.0: probe with driver usbtmc failed with error -22
[  166.676444][ T8905] Cannot find del_set index 4 as target
[  166.684012][ T8905] ipvlan8: entered promiscuous mode
[  166.685948][ T8905] 8021q: adding VLAN 0 to HW filter on device ipvlan8
[  166.689811][ T8905] team0: Device ipvlan8 is already an upper device of the team interface
[  166.736156][ T8906] netlink: 112 bytes leftover after parsing attributes in process `syz.5.754'.
[  166.819017][ T8908] netlink: 4 bytes leftover after parsing attributes in process `syz.3.747'.
[  168.603785][ T5996] usb 9-1: USB disconnect, device number 3
[  168.875668][ T8933] netlink: 'syz.0.756': attribute type 10 has an invalid length.
[  168.878958][ T8933] netlink: 40 bytes leftover after parsing attributes in process `syz.0.756'.
[  168.882167][ T8933] team0: entered promiscuous mode
[  168.884446][ T8933] team_slave_0: entered promiscuous mode
[  168.887365][ T8933] team_slave_1: entered promiscuous mode
[  168.889653][ T8933] vxlan0: entered promiscuous mode
[  168.891705][ T8933] team0: entered allmulticast mode
[  168.893569][ T8933] team_slave_0: entered allmulticast mode
[  168.895819][ T8933] team_slave_1: entered allmulticast mode
[  168.898261][ T8933] vxlan0: entered allmulticast mode
[  168.900838][ T8933] bridge0: port 3(team0) entered blocking state
[  168.904211][ T8933] bridge0: port 3(team0) entered disabled state
[  168.908483][ T8933] bridge0: port 3(team0) entered blocking state
[  168.910861][ T8933] bridge0: port 3(team0) entered forwarding state
[  169.257854][   T74] wlan1: Trigger new scan to find an IBSS to join
[  169.860774][   T74] Bluetooth: hci4: Frame reassembly failed (-84)
[  169.863008][ T1131] Bluetooth: hci4: Frame reassembly failed (-84)
[  169.972380][ T8963] netlink: 112 bytes leftover after parsing attributes in process `syz.3.765'.
[  170.096723][    T8] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  170.256595][    T8] usb 10-1: Using ep0 maxpacket: 32
[  170.260119][    T8] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  170.263386][    T8] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  170.274156][    T8] usb 10-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  170.283325][    T8] usb 10-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  170.285484][    T8] usb 10-1: Product: syz
[  170.296231][    T8] usb 10-1: Manufacturer: syz
[  170.301027][    T8] usb 10-1: SerialNumber: syz
[  170.309415][    T8] usb 10-1: config 0 descriptor??
[  170.526126][ T5997] usb 10-1: USB disconnect, device number 2
[  170.812469][ T8976] wireguard0: entered promiscuous mode
[  170.815280][ T8976] wireguard0: entered allmulticast mode
[  171.067678][   T39] kauditd_printk_skb: 22 callbacks suppressed
[  171.067690][   T39] audit: type=1804 audit(1732084198.528:82): pid=8983 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.771" name="/newroot/184/file0/file0" dev="9p" ino=36833490 res=1 errno=0
[  171.896902][ T5968] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  172.216721][   T74] wlan1: Trigger new scan to find an IBSS to join
[  172.217068][ T1167] wlan1: Trigger new scan to find an IBSS to join
[  172.842242][ T9011] netlink: 112 bytes leftover after parsing attributes in process `syz.4.775'.
[  173.809264][ T9039] wireguard0: entered promiscuous mode
[  173.811720][ T9039] wireguard0: entered allmulticast mode
[  174.208477][ T1131] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  174.707081][ T1478] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  175.167993][   T69] wlan1: Trigger new scan to find an IBSS to join
[  175.169788][   T69] wlan1: Trigger new scan to find an IBSS to join
[  175.298217][ T9083] netlink: 112 bytes leftover after parsing attributes in process `syz.0.793'.
[  176.088970][   T74] wlan1: Creating new IBSS network, BSSID e6:42:64:c9:61:24
[  178.206787][   T45] wlan1: Trigger new scan to find an IBSS to join
[  179.096723][ T1167] wlan1: Creating new IBSS network, BSSID 46:4f:77:46:45:43
[  181.517175][ T9119] usb usb8: check_ctrlrecip: process 9119 (syz.5.799) requesting ep 01 but needs 81
[  181.520550][ T9119] usb usb8: usbfs: process 9119 (syz.5.799) did not claim interface 0 before use
[  181.553466][ T9119] can0: slcan on pts0.
[  181.628471][ T9119] can0 (unregistered): slcan off pts0.
[  182.069519][ T9145] wireguard0: entered promiscuous mode
[  182.086672][ T9145] wireguard0: entered allmulticast mode
[  183.112456][ T9167] netlink: 112 bytes leftover after parsing attributes in process `syz.4.808'.
[  183.746570][  T830] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  183.906752][  T830] usb 10-1: Using ep0 maxpacket: 8
[  183.909680][  T830] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  183.912394][  T830] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  183.915029][  T830] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  183.918144][  T830] usb 10-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  183.920802][  T830] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  183.924166][  T830] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  183.926613][  T830] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.932768][  T830] usbtmc 10-1:16.0: probe with driver usbtmc failed with error -22
[  186.379164][ T1478] usb 10-1: USB disconnect, device number 3
[  190.772943][ T9306] REISERFS warning (device nullb0): super-6502 reiserfs_getopt: unknown mount option "�b�_v-f`��"
[  192.533281][   T57] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  192.883601][   T39] audit: type=1804 audit(1732084220.338:83): pid=9358 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.864" name="/newroot/124/file0/file0" dev="9p" ino=36833490 res=1 errno=0
[  192.929471][ T9357] wireguard1: entered promiscuous mode
[  192.931150][ T9357] wireguard1: entered allmulticast mode
[  193.226407][ T9374] netlink: 112 bytes leftover after parsing attributes in process `syz.0.867'.
[  193.651777][ T1410] ieee802154 phy0 wpan0: encryption failed: -22
[  193.653559][ T1410] ieee802154 phy1 wpan1: encryption failed: -22
[  203.178896][ T9403] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  203.189414][ T9403] pic_ioport_write: 409 callbacks suppressed
[  203.189430][ T9403] kvm: pic: level sensitive irq not supported
[  203.192551][ T9403] kvm: pic: non byte read
[  203.291465][ T9412] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  203.302373][ T9412] kvm: pic: non byte read
[  203.305454][ T9412] kvm: pic: level sensitive irq not supported
[  203.306053][ T9412] kvm: pic: non byte read
[  203.310865][ T9412] kvm: pic: level sensitive irq not supported
[  203.311263][ T9412] kvm: pic: non byte read
[  203.316463][ T9412] kvm: pic: level sensitive irq not supported
[  203.316920][ T9412] kvm: pic: non byte read
[  203.547945][ T9422] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  203.550104][ T9422] UDF-fs: Scanning with blocksize 512 failed
[  203.552717][ T9422] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  203.554952][ T9422] UDF-fs: Scanning with blocksize 1024 failed
[  203.557935][ T9422] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  203.559992][ T9422] UDF-fs: Scanning with blocksize 2048 failed
[  203.562244][ T9422] UDF-fs: warning (device nullb0): udf_load_vrs: No VRS found
[  203.564298][ T9422] UDF-fs: Scanning with blocksize 4096 failed
[  204.665223][ T9450] netlink: 112 bytes leftover after parsing attributes in process `syz.3.886'.
[  205.133327][   T69] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  206.066566][ T2054] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  206.148493][ T9481] input: syz0 as /devices/virtual/input/input6
[  206.157141][ T1145] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  206.237577][ T2054] usb 10-1: config 108 has an invalid interface number: 85 but max is 0
[  206.239896][ T2054] usb 10-1: config 108 has no interface number 0
[  206.241548][ T2054] usb 10-1: config 108 interface 85 has no altsetting 0
[  206.245579][ T2054] usb 10-1: language id specifier not provided by device, defaulting to English
[  206.249910][ T2054] usb 10-1: New USB device found, idVendor=12d1, idProduct=c187, bcdDevice=2b.99
[  206.253127][ T2054] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.255499][ T2054] usb 10-1: Product: syz
[  206.256866][ T2054] usb 10-1: Manufacturer: syz
[  206.258110][ T2054] usb 10-1: SerialNumber: syz
[  206.523085][ T2054] option 10-1:108.85: GSM modem (1-port) converter detected
[  206.531315][ T2054] usb 10-1: USB disconnect, device number 4
[  206.538265][ T2054] option 10-1:108.85: device disconnected
[  206.569928][ T9485] netlink: 4 bytes leftover after parsing attributes in process `syz.0.896'.
[  207.610943][ T9506] syz.3.902: attempt to access beyond end of device
[  207.610943][ T9506] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[  207.616410][ T9506] FAT-fs (nbd3): unable to read boot sector
[  209.126772][   T69] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  212.268848][ T9575] netlink: 112 bytes leftover after parsing attributes in process `syz.0.926'.
[  214.921451][   T39] audit: type=1804 audit(1732084242.378:84): pid=9628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.935" name="/newroot/225/file0/file0" dev="9p" ino=36833490 res=1 errno=0
[  217.041768][ T9658] input: syz1 as /devices/virtual/input/input7
[  217.466713][  T830] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  217.494321][   T39] audit: type=1804 audit(1732084244.948:85): pid=9679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.950" name="/newroot/144/file0/file0" dev="9p" ino=36833490 res=1 errno=0
[  217.646554][  T830] usb 5-1: Using ep0 maxpacket: 8
[  217.650071][  T830] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  217.652249][  T830] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  217.654811][  T830] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  217.665963][  T830] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  217.671661][  T830] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  217.675736][  T830] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  217.680313][  T830] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.906590][  T830] usb 5-1: GET_CAPABILITIES returned 0
[  217.912449][  T830] usbtmc 5-1:16.0: can't read capabilities
[  218.186708][ T9675] usbtmc 5-1:16.0: INITIATE_ABORT_BULK_OUT returned 0
[  220.187756][ T6015] usb 5-1: USB disconnect, device number 9
[  221.582062][ T9722] netlink: 209852 bytes leftover after parsing attributes in process `syz.5.961'.
[  221.906645][ T9728] capability: warning: `syz.0.962' uses 32-bit capabilities (legacy support in use)
[  221.918069][ T9728] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  222.196614][ T5997] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  222.356583][ T5997] usb 5-1: Using ep0 maxpacket: 8
[  222.359877][ T5997] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 1536, setting to 1024
[  222.363432][ T5997] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  222.376653][ T5997] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  222.380042][ T5997] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  222.384440][ T5997] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  222.396889][ T5997] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.614224][ T5997] usb 5-1: usb_control_msg returned -32
[  222.615752][ T5997] usbtmc 5-1:16.0: can't read capabilities
[  222.972119][ T9751] usbtmc 5-1:16.0: INDICATOR_PULSE returned 0
[  223.175095][ T6015] usb 5-1: USB disconnect, device number 10
[  229.163090][ T9859] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1000'.
[  229.232258][ T9861] vivid-001: disconnect
[  229.452984][ T9857] vivid-001: reconnect
[  229.580335][ T9866] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1003'.
[  229.591330][ T9866] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1003'.
[  229.614988][ T9866] bridge0: port 3(team0) entered disabled state
[  229.616826][ T9866] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.618730][ T9866] bridge0: port 1(bridge_slave_0) entered disabled state
[  230.216575][ T6015] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  230.386541][ T6015] usb 9-1: Using ep0 maxpacket: 16
[  230.389324][ T6015] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  230.391832][ T6015] usb 9-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  230.394186][ T6015] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  230.402740][ T6015] usb 9-1: config 0 descriptor??
[  230.611254][ T6015] usbhid 9-1:0.0: can't add hid device: -71
[  230.612904][ T6015] usbhid 9-1:0.0: probe with driver usbhid failed with error -71
[  230.617327][ T6015] usb 9-1: USB disconnect, device number 4
[  230.625088][ T9754] udevd[9754]: setting owner of /dev/bus/usb/009/004 to uid=0, gid=0 failed: No such file or directory
[  232.480673][ T9946] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1021'.
[  233.067143][   T39] audit: type=1326 audit(1732084260.528:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9955 comm="syz.4.1026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7fc00000
[  233.072702][   T39] audit: type=1326 audit(1732084260.528:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9955 comm="syz.4.1026" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f32579 code=0x7fc00000
[  233.078321][   T39] audit: type=1326 audit(1732084260.528:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9955 comm="syz.4.1026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7fc00000
[  233.089281][   T39] audit: type=1326 audit(1732084260.528:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9955 comm="syz.4.1026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7fc00000
[  233.095567][   T39] audit: type=1326 audit(1732084260.528:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9955 comm="syz.4.1026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7fc00000
[  233.106751][   T39] audit: type=1326 audit(1732084260.528:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9955 comm="syz.4.1026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7fc00000
[  233.128108][   T39] audit: type=1326 audit(1732084260.528:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9955 comm="syz.4.1026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7fc00000
[  233.135692][   T39] audit: type=1326 audit(1732084260.528:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9955 comm="syz.4.1026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7fc00000
[  233.156858][   T39] audit: type=1326 audit(1732084260.528:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9955 comm="syz.4.1026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7fc00000
[  233.169530][   T39] audit: type=1326 audit(1732084260.528:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9955 comm="syz.4.1026" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32579 code=0x7fc00000
[  233.178797][ T9962] siw: device registration error -23
[  236.058530][   T69] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  236.246598][ T6015] usb 10-1: new high-speed USB device number 5 using dummy_hcd
[  236.416783][ T6015] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  236.419703][ T6015] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  236.422310][ T6015] usb 10-1: New USB device found, idVendor=0458, idProduct=0153, bcdDevice= 0.00
[  236.424698][ T6015] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  236.435528][ T6015] usb 10-1: config 0 descriptor??
[  236.521793][T10020] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1043'.
[  236.532404][T10020] macsec1: entered allmulticast mode
[  236.534840][T10020] veth1_macvtap: entered allmulticast mode
[  236.560566][T10020] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1043'.
[  236.613794][T10020] veth1_macvtap (unregistering): left allmulticast mode
[  236.882434][T10011] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1040'.
[  236.884990][T10011] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1040'.
[  236.888526][T10011] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1040'.
[  236.891146][T10011] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1040'.
[  236.945752][ T6015] usbhid 10-1:0.0: can't add hid device: -71
[  236.949614][ T6015] usbhid 10-1:0.0: probe with driver usbhid failed with error -71
[  236.954814][ T6015] usb 10-1: USB disconnect, device number 5
[  237.082163][   T12] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  240.109575][T10076] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1061'.
[  240.266729][ T1167] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  241.323418][T10099] random: crng reseeded on system resumption
[  242.276588][ T2054] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  242.448344][ T2054] usb 9-1: Using ep0 maxpacket: 32
[  242.450861][ T2054] usb 9-1: config 0 has no interfaces?
[  242.453719][ T2054] usb 9-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  242.457219][ T2054] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  242.459571][ T2054] usb 9-1: Product: syz
[  242.460661][ T2054] usb 9-1: Manufacturer: syz
[  242.461924][ T2054] usb 9-1: SerialNumber: syz
[  242.465675][ T2054] usb 9-1: config 0 descriptor??
[  242.681853][T10106] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1071'.
[  242.835485][   T30] usb 9-1: USB disconnect, device number 5
[  243.597123][ T1478] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  244.131782][T10155] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1077'.
[  245.078000][T10172] syz.5.1083: attempt to access beyond end of device
[  245.078000][T10172] nbd5: rw=0, sector=0, nr_sectors = 1 limit=0
[  245.091808][T10172] FAT-fs (nbd5): unable to read boot sector
[  245.136429][T10174] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1080'.
[  245.286601][ T2054] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  245.436629][ T2054] usb 9-1: Using ep0 maxpacket: 8
[  245.439692][ T2054] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[  245.441847][ T2054] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  245.444341][ T2054] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  245.448576][ T2054] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  245.451143][ T2054] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  245.454629][ T2054] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  245.457055][ T2054] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  245.670828][ T2054] usb 9-1: GET_CAPABILITIES returned 0
[  245.672925][ T2054] usbtmc 9-1:16.0: can't read capabilities
[  245.932813][T10171] usbtmc 9-1:16.0: INITIATE_ABORT_BULK_OUT returned 0
[  248.011648][  T830] usb 9-1: USB disconnect, device number 6
[  254.797147][ T6015] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  255.089491][ T1410] ieee802154 phy0 wpan0: encryption failed: -22
[  255.091298][ T1410] ieee802154 phy1 wpan1: encryption failed: -22
[  267.085532][ T1133] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  268.006930][ T1167] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  268.711894][T10291] befs: Unknown parameter 'b�Fs	���'
[  268.774896][T10298] netlink: 201392 bytes leftover after parsing attributes in process `syz.3.1104'.
[  268.779422][T10298] netlink: zone id is out of range
[  268.780774][T10298] netlink: zone id is out of range
[  268.782118][T10298] netlink: zone id is out of range
[  268.783498][T10298] netlink: zone id is out of range
[  268.785002][T10298] netlink: zone id is out of range
[  268.786347][T10298] netlink: zone id is out of range
[  268.787826][T10298] netlink: zone id is out of range
[  268.789166][T10298] netlink: zone id is out of range
[  268.792454][T10298] netlink: zone id is out of range
[  268.793866][T10298] netlink: zone id is out of range
[  268.827244][ T5995] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  269.476685][ T1012] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  269.627684][ T1012] usb 10-1: Using ep0 maxpacket: 8
[  269.631093][ T1012] usb 10-1: config index 0 descriptor too short (expected 5924, got 36)
[  269.633359][ T1012] usb 10-1: config 250 has an invalid interface number: 228 but max is -1
[  269.635599][ T1012] usb 10-1: config 250 has 1 interface, different from the descriptor's value: 0
[  269.639064][ T1012] usb 10-1: config 250 has no interface number 0
[  269.640779][ T1012] usb 10-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  269.643729][ T1012] usb 10-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  269.647304][ T1012] usb 10-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  269.650200][ T1012] usb 10-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  269.652932][ T1012] usb 10-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  269.656398][ T1012] usb 10-1: config 250 interface 228 has no altsetting 0
[  269.660425][ T1012] usb 10-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  269.662852][ T1012] usb 10-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  269.665007][ T1012] usb 10-1: Product: syz
[  269.666800][ T1012] usb 10-1: SerialNumber: syz
[  269.680309][ T1012] hub 10-1:250.228: bad descriptor, ignoring hub
[  269.682010][ T1012] hub 10-1:250.228: probe with driver hub failed with error -5
[  269.887139][ T1012] usblp 10-1:250.228: usblp0: USB Bidirectional printer dev 6 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  270.803597][T10330] usb 10-1: reset high-speed USB device number 6 using dummy_hcd
[  270.807680][T10330] usb 10-1: device reset changed ep0 maxpacket size!
[  270.811701][ T6154] usb 10-1: USB disconnect, device number 6
[  270.817172][ T6154] usblp0: removed
[  270.946634][ T6154] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  271.096581][ T6154] usb 10-1: Using ep0 maxpacket: 16
[  271.099296][ T6154] usb 10-1: config 0 has no interfaces?
[  271.103059][ T6154] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  271.105409][ T6154] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  271.107579][ T6154] usb 10-1: Product: syz
[  271.108689][ T6154] usb 10-1: Manufacturer: syz
[  271.109912][ T6154] usb 10-1: SerialNumber: syz
[  271.115736][ T6154] usb 10-1: config 0 descriptor??
[  271.330595][ T5996] usb 10-1: USB disconnect, device number 7
[  271.385958][ T1133] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  280.309843][T10378] netlink: 'syz.3.1117': attribute type 10 has an invalid length.
[  280.323194][T10378] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.325994][T10378] bridge0: port 1(bridge_slave_0) entered disabled state
[  280.359159][T10378] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1117'.
[  280.361567][T10378] bridge_slave_1: left allmulticast mode
[  280.363032][T10378] bridge_slave_1: left promiscuous mode
[  280.364595][T10378] bridge0: port 2(bridge_slave_1) entered disabled state
[  280.367822][T10378] bridge_slave_0: left allmulticast mode
[  280.369330][T10378] bridge_slave_0: left promiscuous mode
[  280.370884][T10378] bridge0: port 1(bridge_slave_0) entered disabled state
[  281.027012][ T1478] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  282.076583][  T830] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  282.238278][  T830] usb 5-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  282.241402][  T830] usb 5-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[  282.243858][  T830] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  282.246297][  T830] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.498980][  T830] usb 5-1: USB disconnect, device number 11
[  283.208806][T10435] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  283.210529][T10435] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  283.278177][T10435] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  283.393537][T10442] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1131'.
[  283.916931][ T5995] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  285.165368][ T5995] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  285.246656][ T5309] Bluetooth: hci2: command 0x0c1a tx timeout
[  285.328176][ T5995] usb 9-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  285.331942][ T5995] usb 9-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[  285.335258][ T5995] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  285.338571][ T5995] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  285.609198][  T830] usb 9-1: USB disconnect, device number 7
[  287.326814][ T5309] Bluetooth: hci2: command 0x0c1a tx timeout
[  289.406702][ T5309] Bluetooth: hci2: command 0x0c1a tx timeout
[  292.050418][T10529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1146'.
[  292.077242][ T5995] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  293.067983][T10563] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1156'.
[  293.070444][T10563] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  293.136056][T10563] batman_adv: batadv0: Removing interface: batadv_slave_0
[  293.276565][   T30] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  293.428771][   T30] usb 10-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  293.431775][   T30] usb 10-1: config 27 has 0 interfaces, different from the descriptor's value: 1
[  293.434233][   T30] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  293.436753][   T30] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  293.651176][   T30] usb 10-1: USB disconnect, device number 8
[  298.010371][   T12] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  298.931646][ T1167] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  302.310999][ T1172] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  302.958624][T10599] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[  302.962443][T10599] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[  302.967735][T10599] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[  302.973530][T10599] syz.0.1162: attempt to access beyond end of device
[  302.973530][T10599] nbd0: rw=0, sector=64, nr_sectors = 2 limit=0
[  302.984426][T10599] syz.0.1162: attempt to access beyond end of device
[  302.984426][T10599] nbd0: rw=0, sector=512, nr_sectors = 2 limit=0
[  302.988380][T10599] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  302.991251][T10599] syz.0.1162: attempt to access beyond end of device
[  302.991251][T10599] nbd0: rw=0, sector=1024, nr_sectors = 2 limit=0
[  302.997720][T10599] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  303.000541][T10599] syz.0.1162: attempt to access beyond end of device
[  303.000541][T10599] nbd0: rw=0, sector=64, nr_sectors = 4 limit=0
[  303.003935][T10599] syz.0.1162: attempt to access beyond end of device
[  303.003935][T10599] nbd0: rw=0, sector=1024, nr_sectors = 4 limit=0
[  303.009035][T10599] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  303.011711][T10599] syz.0.1162: attempt to access beyond end of device
[  303.011711][T10599] nbd0: rw=0, sector=2048, nr_sectors = 4 limit=0
[  303.018479][T10599] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  303.021579][T10599] syz.0.1162: attempt to access beyond end of device
[  303.021579][T10599] nbd0: rw=0, sector=64, nr_sectors = 8 limit=0
[  303.026439][T10599] syz.0.1162: attempt to access beyond end of device
[  303.026439][T10599] nbd0: rw=0, sector=2048, nr_sectors = 8 limit=0
[  303.031097][T10599] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=256, location=256
[  303.033808][T10599] syz.0.1162: attempt to access beyond end of device
[  303.033808][T10599] nbd0: rw=0, sector=4096, nr_sectors = 8 limit=0
[  303.037496][T10599] UDF-fs: error (device nbd0): udf_read_tagged: read failed, block=512, location=512
[  303.040136][T10599] UDF-fs: warning (device nbd0): udf_fill_super: No partition found (1)
[  304.858573][T10642] random: crng reseeded on system resumption
[  305.212812][T10648] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1176'.
[  305.395830][T10656] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1177'.
[  306.141112][T10661] overlay: ./file0 is not a directory
[  306.154553][   T39] kauditd_printk_skb: 938 callbacks suppressed
[  306.154569][   T39] audit: type=1800 audit(1732084333.608:1034): pid=10661 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1179" name="bus" dev="9p" ino=36972373 res=0 errno=0
[  308.112598][T10694] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1189'.
[  310.259389][T10736] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  310.285792][T10736] option changes via remount are deprecated (pid=10735 comm=syz.4.1201)
[  311.076715][ T2054] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  311.229888][ T2054] usb 9-1: Using ep0 maxpacket: 8
[  311.233611][ T2054] usb 9-1: config index 0 descriptor too short (expected 5924, got 36)
[  311.235822][ T2054] usb 9-1: config 250 has an invalid interface number: 228 but max is -1
[  311.238830][ T2054] usb 9-1: config 250 has 1 interface, different from the descriptor's value: 0
[  311.241277][ T2054] usb 9-1: config 250 has no interface number 0
[  311.243310][ T2054] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  311.246358][ T2054] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  311.251221][ T2054] usb 9-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  311.253942][ T2054] usb 9-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  311.256932][ T2054] usb 9-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  311.260538][ T2054] usb 9-1: config 250 interface 228 has no altsetting 0
[  311.263977][ T2054] usb 9-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  311.266410][ T2054] usb 9-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  311.269723][ T2054] usb 9-1: Product: syz
[  311.271781][ T2054] usb 9-1: SerialNumber: syz
[  311.278168][ T2054] hub 9-1:250.228: bad descriptor, ignoring hub
[  311.279872][ T2054] hub 9-1:250.228: probe with driver hub failed with error -5
[  311.490065][ T2054] usblp 9-1:250.228: usblp0: USB Bidirectional printer dev 8 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  311.931176][T10769] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1211'.
[  312.559442][T10754] usb 9-1: reset high-speed USB device number 8 using dummy_hcd
[  312.596939][T10754] usb 9-1: device reset changed ep0 maxpacket size!
[  312.601131][ T1012] usb 9-1: USB disconnect, device number 8
[  312.607440][ T1012] usblp0: removed
[  312.736637][ T1012] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  312.886638][ T1012] usb 9-1: Using ep0 maxpacket: 16
[  312.889999][ T1012] usb 9-1: config 0 has no interfaces?
[  312.892964][ T1012] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  312.895450][ T1012] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.898249][ T1012] usb 9-1: Product: syz
[  312.899387][ T1012] usb 9-1: Manufacturer: syz
[  312.900631][ T1012] usb 9-1: SerialNumber: syz
[  312.906989][ T1012] usb 9-1: config 0 descriptor??
[  313.119163][ T1478] usb 9-1: USB disconnect, device number 9
[  313.737644][T10797] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  313.749275][T10797] option changes via remount are deprecated (pid=10796 comm=syz.0.1217)
[  314.276760][T10806] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1220'.
[  315.438509][ T2054] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  315.596581][ T2054] usb 5-1: Using ep0 maxpacket: 8
[  315.599194][ T2054] usb 5-1: config index 0 descriptor too short (expected 5924, got 36)
[  315.601372][ T2054] usb 5-1: config 250 has an invalid interface number: 228 but max is -1
[  315.603575][ T2054] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0
[  315.605922][ T2054] usb 5-1: config 250 has no interface number 0
[  315.616624][ T2054] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  315.619711][ T2054] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  315.622879][ T2054] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  315.625807][ T2054] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  315.628544][ T2054] usb 5-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  315.632043][ T2054] usb 5-1: config 250 interface 228 has no altsetting 0
[  315.635078][ T2054] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  315.640749][ T2054] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  315.646724][ T2054] usb 5-1: Product: syz
[  315.647951][ T2054] usb 5-1: SerialNumber: syz
[  315.659758][ T2054] hub 5-1:250.228: bad descriptor, ignoring hub
[  315.661476][ T2054] hub 5-1:250.228: probe with driver hub failed with error -5
[  315.868493][ T2054] usblp 5-1:250.228: usblp0: USB Bidirectional printer dev 12 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  315.923082][T10839] random: crng reseeded on system resumption
[  315.933714][T10839] loop9: detected capacity change from 0 to 6
[  315.939744][T10839] Dev loop9: unable to read RDB block 6
[  315.941224][T10839]  loop9: unable to read partition table
[  315.943030][T10839] loop9: partition table beyond EOD, truncated
[  315.944617][T10839] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  315.944617][T10839] 
) failed (rc=-5)
[  315.999249][T10839] Dev loop9: unable to read RDB block 6
[  316.000815][T10839]  loop9: unable to read partition table
[  316.002401][T10839] loop9: partition table beyond EOD, truncated
[  316.004014][T10839] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  316.004014][T10839] 
) failed (rc=-5)
[  316.031747][T10845] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1232'.
[  316.532129][ T1410] ieee802154 phy0 wpan0: encryption failed: -22
[  316.533989][ T1410] ieee802154 phy1 wpan1: encryption failed: -22
[  316.538860][T10829] usb 5-1: reset high-speed USB device number 12 using dummy_hcd
[  316.541399][T10829] usb 5-1: device reset changed ep0 maxpacket size!
[  316.546638][ T1478] usb 5-1: USB disconnect, device number 12
[  316.554241][ T1478] usblp0: removed
[  316.696588][ T1478] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  316.846655][ T1478] usb 5-1: Using ep0 maxpacket: 16
[  316.849330][ T1478] usb 5-1: config 0 has no interfaces?
[  316.853867][ T1478] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  316.856260][ T1478] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  316.862310][ T1478] usb 5-1: Product: syz
[  316.866859][ T1478] usb 5-1: Manufacturer: syz
[  316.868032][ T1478] usb 5-1: SerialNumber: syz
[  316.871157][ T1478] usb 5-1: config 0 descriptor??
[  317.084640][ T1478] usb 5-1: USB disconnect, device number 13
[  318.611848][T10880] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1242'.
[  320.518276][T10914] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1252'.
[  323.403535][T10964] random: crng reseeded on system resumption
[  324.291451][T10986] netdevsim netdevsim5 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  324.293982][T10986] netdevsim netdevsim5 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  324.296156][T10986] netdevsim netdevsim5 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  324.298474][T10986] netdevsim netdevsim5 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  325.730128][T11011] netlink: 'syz.0.1281': attribute type 10 has an invalid length.
[  325.735987][T11011] bridge0: port 3(team0) entered disabled state
[  325.737856][T11011] bridge0: port 1(bridge_slave_0) entered disabled state
[  325.755298][T11011] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1281'.
[  325.758283][T11011] bridge0: port 3(team0) entered disabled state
[  325.764267][T11011] bridge_slave_1: left allmulticast mode
[  325.767043][T11011] bridge_slave_1: left promiscuous mode
[  325.768634][T11011] bridge0: port 2(bridge_slave_1) entered disabled state
[  325.771879][T11011] bridge_slave_0: left allmulticast mode
[  325.773356][T11011] bridge_slave_0: left promiscuous mode
[  325.774952][T11011] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.649058][T11025] overlay: ./file0 is not a directory
[  326.653830][   T39] audit: type=1800 audit(1732084354.108:1035): pid=11025 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1293" name="bus" dev="9p" ino=36972373 res=0 errno=0
[  327.120067][T11043] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1286'.
[  327.466564][T11052] nbd5: detected capacity change from 0 to 20
[  327.481321][T10590] block nbd5: Send control failed (result -89)
[  327.486644][T10590] block nbd5: Request send failed, requeueing
[  327.490309][ T5309] block nbd5: Receive control failed (result -32)
[  327.495398][   T70] block nbd5: Dead connection, failed to find a fallback
[  327.498065][   T70] block nbd5: shutting down sockets
[  327.500180][   T70] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  327.503246][   T70] buffer_io_error: 4 callbacks suppressed
[  327.503254][   T70] Buffer I/O error on dev nbd5, logical block 0, async page read
[  327.507537][T10590] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  327.509942][T10590] Buffer I/O error on dev nbd5, logical block 0, async page read
[  327.512933][T10590] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  327.515200][T10590] Buffer I/O error on dev nbd5, logical block 0, async page read
[  327.517305][T10590] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  327.519709][T10590] Buffer I/O error on dev nbd5, logical block 0, async page read
[  327.521717][T10590] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  327.524070][T10590] Buffer I/O error on dev nbd5, logical block 0, async page read
[  327.526111][T10590] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  327.528546][T10590] Buffer I/O error on dev nbd5, logical block 0, async page read
[  327.530627][T10590] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  327.532947][T10590] Buffer I/O error on dev nbd5, logical block 0, async page read
[  327.535058][T10590] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  327.537386][T10590] Buffer I/O error on dev nbd5, logical block 0, async page read
[  327.539359][T10590] ldm_validate_partition_table(): Disk read failed.
[  327.541117][T10590] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  327.543481][T10590] Buffer I/O error on dev nbd5, logical block 0, async page read
[  327.545627][T10590] I/O error, dev nbd5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  327.548046][T10590] Buffer I/O error on dev nbd5, logical block 0, async page read
[  327.550230][T10590] Dev nbd5: unable to read RDB block 0
[  327.551796][T10590]  nbd5: unable to read partition table
[  327.553341][T10590] nbd5: partition table beyond EOD, truncated
[  327.737486][T10590] ldm_validate_partition_table(): Disk read failed.
[  327.748809][T10590] Dev nbd5: unable to read RDB block 0
[  327.750790][T10590]  nbd5: unable to read partition table
[  327.755314][T10590] nbd5: partition table beyond EOD, truncated
[  327.776147][T11048] ldm_validate_partition_table(): Disk read failed.
[  327.781202][T11048] Dev nbd5: unable to read RDB block 0
[  327.783121][T11048]  nbd5: unable to read partition table
[  327.785047][T11048] nbd5: partition table beyond EOD, truncated
[  327.793327][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  327.804202][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=9, location=9
[  327.807005][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=8, location=8
[  327.809899][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=7, location=7
[  327.812362][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  327.815502][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  327.822098][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=4, location=4
[  327.826241][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=3, location=3
[  327.837584][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=2, location=2
[  327.847088][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  327.850588][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=256, location=256
[  327.858451][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=1, location=1
[  327.863153][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=0, location=0
[  327.865485][T11048] UDF-fs: error (device nbd5): udf_read_tagged: read failed, block=512, location=512
[  327.867906][T11048] UDF-fs: warning (device nbd5): udf_fill_super: No partition found (1)
[  328.935196][ T1167] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  329.439039][T11106] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1312'.
[  329.856610][   T11] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  330.999188][T11153] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1327'.
[  331.881500][T11193] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1340'.
[  333.338239][   T11] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  333.946588][T11255] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1362'.
[  335.603944][T11305] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1379'.
[  336.822560][T11338] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1389'.
[  338.436409][T11386] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1404'.
[  339.809969][T11430] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1418'.
[  341.069366][T11468] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1431'.
[  343.523300][T11525] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1449'.
[  344.589927][T11561] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1460'.
[  346.148921][T11607] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1477'.
[  346.301020][T11619] random: crng reseeded on system resumption
[  347.412138][T11642] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1488'.
[  348.978402][T11672] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1498'.
[  350.359662][T11702] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1507'.
[  350.854564][T11718] random: crng reseeded on system resumption
[  351.753383][T11734] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1518'.
[  353.049898][T11761] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1527'.
[  354.758934][T11791] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1537'.
[  355.048589][T11801] random: crng reseeded on system resumption
[  356.105476][T11820] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1547'.
[  357.690087][T11851] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1556'.
[  358.736301][T11883] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1567'.
[  358.911836][T11889] random: crng reseeded on system resumption
[  358.999847][T11891] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1569'.
[  359.859855][   T12] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  359.968331][T11915] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1578'.
[  360.781319][ T1133] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  360.844930][T11927] overlay: ./file0 is not a directory
[  360.850965][   T39] audit: type=1800 audit(1732084388.308:1036): pid=11927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1580" name="bus" dev="9p" ino=36972373 res=0 errno=0
[  361.651139][T11947] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1585'.
[  362.647266][T11960] 
[  362.647968][T11960] ======================================================
[  362.649813][T11960] WARNING: possible circular locking dependency detected
[  362.651653][T11960] 6.12.0-syzkaller-01782-gbf9aa14fc523 #0 Not tainted
[  362.654163][T11960] ------------------------------------------------------
[  362.656880][T11960] syz.5.1592/11960 is trying to acquire lock:
[  362.658481][T11960] ffff8880433936c0 (&q->sysfs_lock){+.+.}-{4:4}, at: __blk_mq_update_nr_hw_queues+0x446/0x1460
[  362.661852][T11960] 
[  362.661852][T11960] but task is already holding lock:
[  362.663969][T11960] ffff888043393190 (&q->q_usage_counter(io)#54){++++}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460
[  362.667078][T11960] 
[  362.667078][T11960] which lock already depends on the new lock.
[  362.667078][T11960] 
[  362.669833][T11960] 
[  362.669833][T11960] the existing dependency chain (in reverse order) is:
[  362.672197][T11960] 
[  362.672197][T11960] -> #4 (&q->q_usage_counter(io)#54){++++}-{0:0}:
[  362.674451][T11960]        blk_mq_submit_bio+0x1fc4/0x24c0
[  362.675953][T11960]        __submit_bio+0x384/0x540
[  362.677287][T11960]        submit_bio_noacct_nocheck+0x6fb/0xd70
[  362.678902][T11960]        submit_bio_noacct+0x93a/0x1e10
[  362.680396][T11960]        block_read_full_folio+0x812/0xa50
[  362.681943][T11960]        filemap_read_folio+0xc6/0x2a0
[  362.683485][T11960]        filemap_get_pages+0x1560/0x1be0
[  362.684977][T11960]        filemap_read+0x3ca/0xd70
[  362.686317][T11960]        blkdev_read_iter+0x187/0x480
[  362.687726][T11960]        vfs_read+0x87f/0xbe0
[  362.688968][T11960]        ksys_read+0x12b/0x250
[  362.690462][T11960]        do_syscall_64+0xcd/0x250
[  362.691820][T11960]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  362.693520][T11960] 
[  362.693520][T11960] -> #3 (mapping.invalidate_lock#2){++++}-{4:4}:
[  362.695732][T11960]        down_read+0x9a/0x330
[  362.696961][T11960]        page_cache_ra_unbounded+0x173/0x6c0
[  362.698534][T11960]        page_cache_ra_order+0x7d9/0xc90
[  362.700196][T11960]        filemap_fault+0x148d/0x2820
[  362.701696][T11960]        __do_fault+0x10a/0x490
[  362.702966][T11960]        do_pte_missing+0x9a7/0x3e70
[  362.704339][T11960]        __handle_mm_fault+0x100a/0x2a10
[  362.705820][T11960]        handle_mm_fault+0x3fa/0xaa0
[  362.707209][T11960]        __get_user_pages+0x8d9/0x3b50
[  362.708634][T11960]        __gup_longterm_locked+0x5ff/0x1870
[  362.710370][T11960]        pin_user_pages+0x13f/0x160
[  362.711726][T11960]        xdp_umem_create+0x73c/0x1270
[  362.713144][T11960]        xsk_setsockopt+0x7e7/0xac0
[  362.714503][T11960]        do_sock_setsockopt+0x222/0x480
[  362.715944][T11960]        __sys_setsockopt+0x1a0/0x230
[  362.717319][T11960]        __ia32_sys_setsockopt+0xbc/0x160
[  362.718698][T11960]        __do_fast_syscall_32+0x73/0x120
[  362.720368][T11960]        do_fast_syscall_32+0x32/0x80
[  362.721751][T11960]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  362.723426][T11960] 
[  362.723426][T11960] -> #2 (&mm->mmap_lock){++++}-{4:4}:
[  362.725383][T11960]        __might_fault+0x11b/0x190
[  362.726724][T11960]        _copy_from_user+0x29/0xd0
[  362.728279][T11960]        compat_blk_trace_setup+0xc9/0x200
[  362.729924][T11960]        blk_trace_ioctl+0x24a/0x290
[  362.731817][T11960]        compat_blkdev_ioctl+0x13c/0x750
[  362.733778][T11960]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  362.735312][T11960]        __do_fast_syscall_32+0x73/0x120
[  362.736774][T11960]        do_fast_syscall_32+0x32/0x80
[  362.738187][T11960]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  362.739988][T11960] 
[  362.739988][T11960] -> #1 (&q->debugfs_mutex){+.+.}-{4:4}:
[  362.742014][T11960]        __mutex_lock+0x19b/0xa60
[  362.743415][T11960]        blk_register_queue+0x13c/0x550
[  362.744682][T11960]        add_disk_fwnode+0x785/0x1300
[  362.746053][T11960]        brd_alloc.isra.0+0x50a/0x7c0
[  362.747564][T11960]        brd_init+0x12b/0x1d0
[  362.748780][T11960]        do_one_initcall+0x128/0x630
[  362.750202][T11960]        kernel_init_freeable+0x58f/0x8b0
[  362.751677][T11960]        kernel_init+0x1c/0x2b0
[  362.752970][T11960]        ret_from_fork+0x45/0x80
[  362.754270][T11960]        ret_from_fork_asm+0x1a/0x30
[  362.755642][T11960] 
[  362.755642][T11960] -> #0 (&q->sysfs_lock){+.+.}-{4:4}:
[  362.757621][T11960]        __lock_acquire+0x249e/0x3c40
[  362.758893][T11960]        lock_acquire.part.0+0x11b/0x380
[  362.760366][T11960]        __mutex_lock+0x19b/0xa60
[  362.761934][T11960]        __blk_mq_update_nr_hw_queues+0x446/0x1460
[  362.764010][T11960]        blk_mq_update_nr_hw_queues+0x2a/0x40
[  362.765635][T11960]        nbd_start_device+0x15b/0xd70
[  362.767685][T11960]        nbd_ioctl+0x21a/0xfd0
[  362.769002][T11960]        compat_blkdev_ioctl+0x2f7/0x750
[  362.770619][T11960]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  362.772185][T11960]        __do_fast_syscall_32+0x73/0x120
[  362.773745][T11960]        do_fast_syscall_32+0x32/0x80
[  362.775170][T11960]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  362.776966][T11960] 
[  362.776966][T11960] other info that might help us debug this:
[  362.776966][T11960] 
[  362.779634][T11960] Chain exists of:
[  362.779634][T11960]   &q->sysfs_lock --> mapping.invalidate_lock#2 --> &q->q_usage_counter(io)#54
[  362.779634][T11960] 
[  362.783460][T11960]  Possible unsafe locking scenario:
[  362.783460][T11960] 
[  362.785320][T11960]        CPU0                    CPU1
[  362.786724][T11960]        ----                    ----
[  362.788098][T11960]   lock(&q->q_usage_counter(io)#54);
[  362.789441][T11960]                                lock(mapping.invalidate_lock#2);
[  362.791495][T11960]                                lock(&q->q_usage_counter(io)#54);
[  362.793544][T11960]   lock(&q->sysfs_lock);
[  362.794688][T11960] 
[  362.794688][T11960]  *** DEADLOCK ***
[  362.794688][T11960] 
[  362.796767][T11960] 4 locks held by syz.5.1592/11960:
[  362.798134][T11960]  #0: ffff888023f7b198 (&nbd->config_lock){+.+.}-{4:4}, at: nbd_ioctl+0x151/0xfd0
[  362.800558][T11960]  #1: ffff888023f7b0d8 (&set->tag_list_lock){+.+.}-{4:4}, at: blk_mq_update_nr_hw_queues+0x20/0x40
[  362.803308][T11960]  #2: ffff888043393190 (&q->q_usage_counter(io)#54){++++}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460
[  362.806370][T11960]  #3: ffff8880433931c8 (&q->q_usage_counter(queue)#38){+.+.}-{0:0}, at: __blk_mq_update_nr_hw_queues+0x1fc/0x1460
[  362.809472][T11960] 
[  362.809472][T11960] stack backtrace:
[  362.811067][T11960] CPU: 2 UID: 0 PID: 11960 Comm: syz.5.1592 Not tainted 6.12.0-syzkaller-01782-gbf9aa14fc523 #0
[  362.813762][T11960] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  362.816485][T11960] Call Trace:
[  362.817342][T11960]  <TASK>
[  362.818100][T11960]  dump_stack_lvl+0x116/0x1f0
[  362.819293][T11960]  print_circular_bug+0x41c/0x610
[  362.820661][T11960]  check_noncircular+0x31a/0x400
[  362.821879][T11960]  ? __pfx_check_noncircular+0x10/0x10
[  362.823316][T11960]  ? save_trace+0x42/0xa10
[  362.824470][T11960]  ? add_lock_to_list+0x17d/0x390
[  362.825767][T11960]  __lock_acquire+0x249e/0x3c40
[  362.826986][T11960]  ? __pfx___lock_acquire+0x10/0x10
[  362.828350][T11960]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  362.830029][T11960]  ? stack_depot_save_flags+0x31b/0x900
[  362.831798][T11960]  lock_acquire.part.0+0x11b/0x380
[  362.833176][T11960]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  362.834808][T11960]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  362.836296][T11960]  ? rcu_is_watching+0x12/0xc0
[  362.837575][T11960]  ? trace_lock_acquire+0x14a/0x1d0
[  362.838941][T11960]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  362.840473][T11960]  ? lock_acquire+0x2f/0xb0
[  362.841631][T11960]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  362.843297][T11960]  __mutex_lock+0x19b/0xa60
[  362.844481][T11960]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  362.846039][T11960]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  362.847620][T11960]  ? __pfx___mutex_lock+0x10/0x10
[  362.848868][T11960]  ? __blk_mq_update_nr_hw_queues+0x446/0x1460
[  362.850476][T11960]  __blk_mq_update_nr_hw_queues+0x446/0x1460
[  362.851969][T11960]  ? lock_acquire.part.0+0x11b/0x380
[  362.853357][T11960]  ? __mutex_trylock_common+0xea/0x250
[  362.854748][T11960]  ? __pfx___mutex_trylock_common+0x10/0x10
[  362.856175][T11960]  ? blk_mq_update_nr_hw_queues+0x20/0x40
[  362.857641][T11960]  ? rcu_is_watching+0x12/0xc0
[  362.858885][T11960]  ? __pfx___blk_mq_update_nr_hw_queues+0x10/0x10
[  362.860541][T11960]  ? blk_mq_update_nr_hw_queues+0x20/0x40
[  362.862017][T11960]  ? __pfx___mutex_lock+0x10/0x10
[  362.863269][T11960]  ? lockdep_hardirqs_on+0x7c/0x110
[  362.864619][T11960]  ? __mutex_lock+0x1cc/0xa60
[  362.865873][T11960]  ? nbd_ioctl+0x151/0xfd0
[  362.867035][T11960]  ? __pfx___mutex_lock+0x10/0x10
[  362.868350][T11960]  blk_mq_update_nr_hw_queues+0x2a/0x40
[  362.869794][T11960]  nbd_start_device+0x15b/0xd70
[  362.871064][T11960]  ? bpf_lsm_capable+0x9/0x10
[  362.872384][T11960]  nbd_ioctl+0x21a/0xfd0
[  362.873493][T11960]  ? __pfx_nbd_ioctl+0x10/0x10
[  362.874744][T11960]  ? __pfx_lock_release+0x10/0x10
[  362.875996][T11960]  ? trace_lock_acquire+0x14a/0x1d0
[  362.877359][T11960]  ? __pfx_lock_release+0x10/0x10
[  362.878684][T11960]  ? __pfx_nbd_ioctl+0x10/0x10
[  362.879929][T11960]  compat_blkdev_ioctl+0x2f7/0x750
[  362.881294][T11960]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  362.883293][T11960]  ? __fget_files+0x206/0x3a0
[  362.884859][T11960]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  362.886324][T11960]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  362.887688][T11960]  __do_fast_syscall_32+0x73/0x120
[  362.889019][T11960]  do_fast_syscall_32+0x32/0x80
[  362.890291][T11960]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  362.891815][T11960] RIP: 0023:0xf7f44579
[  362.892901][T11960] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  362.897895][T11960] RSP: 002b:00000000f56a555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  362.900046][T11960] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000000000ab03
[  362.902106][T11960] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  362.904149][T11960] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  362.906190][T11960] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  362.908258][T11960] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  362.910304][T11960]  </TASK>
[  362.941447][ T5309] block nbd5: Receive control failed (result -32)
[  362.943357][ T5309] block nbd5: Receive control failed (result -32)
[  362.977361][T11960] block nbd5: shutting down sockets
[  364.365348][ T1172] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)

VM DIAGNOSIS:
06:33:10  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000000 RBX=0000000000000000 RCX=ffffffff8180d5a9 RDX=0000000000000000
RSI=0000000000000008 RDI=ffffffff901d8d90 RBP=fffffbfff203b1b2 RSP=ffffc90000007f70
R8 =0000000000000000 R9 =fffffbfff203b1b2 R10=ffffffff901d8d97 R11=ffffc90000007ff8
R12=0000000000000001 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81ee75b7 RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000030112ff8 CR3=000000002698a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=fffffbfff34b7aaf RBX=fffffbfff34b7ab0 RCX=ffffffff816abc8e RDX=fffffbfff34b7ab0
RSI=0000000000000004 RDI=ffffffff9a5bd578 RBP=fffffbfff34b7aaf RSP=ffffc90026b87248
R8 =0000000000000001 R9 =fffffbfff34b7aaf R10=ffffffff9a5bd57b R11=000000000006c80d
R12=ffffffff9a5bd580 R13=ffffffff9a5bd588 R14=ffff88802b53f900 R15=1ffff92004d70e66
RIP=ffffffff81ee75c1 RFL=00000086 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002002f000 CR3=000000002698a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff850626c5 RDI=ffffffff9a65aae0 RBP=ffffffff9a65aaa0 RSP=ffffc90026c8f000
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000020 R14=ffffffff85062660 R15=0000000000000000
RIP=ffffffff850626ef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f56a5da4 CR3=000000001f6b8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000028000000000 0000000800000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000040000 RBX=ffffc90025e47898 RCX=ffffc9000c533000 RDX=0000000000040000
RSI=ffffffff88ef19e6 RDI=0000000000000005 RBP=0000000000000002 RSP=ffffc90025e476c0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000002 R11=0000000000000000
R12=ffff88805dbe00e8 R13=ffff888069cb5e00 R14=ffffc90025e47868 R15=ffffc90025e47898
RIP=ffffffff818ccbe6 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=000000002698a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000