last executing test programs:

8.36601015s ago: executing program 1 (id=2050):
socket(0x22, 0x2, 0x4)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="d002000020336b8b4844d745f5015a08ea24ff42cbb11607e2062c3d785e64854ac144dc4895f4490696cc665d92c28772607f356e362b373942f67261fb0f5e365ab059e795614576ea5cf6502871b6f6b862057773b5e7e4d646eb98f94c2694c0892c10b8c36045b209a376dd68f627ee3facc9467bc46b745d6480688933df7cbbd36dd9614f9bf7a7d10193e72709c176d69f5bbdde63083530cab14309e1942232f5a146ae", @ANYBLOB], 0x2d0}, 0x1, 0x0, 0x0, 0x4048850}, 0x40)
syz_open_dev$mouse(0x0, 0x0, 0x8042)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x4e21, @multicast2}], 0x10)
sendto$inet6(r2, &(0x7f0000000480), 0x0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0x8b}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, 0x0, 0xed)
socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000240), &(0x7f0000000280)=0x30)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r3 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)
getdents64(r3, &(0x7f0000000300)=""/154, 0x9a)

7.620251999s ago: executing program 0 (id=2052):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r2, 0x1, 0x1, &(0x7f0000000080)=0x5, 0x4)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x6, 0x8, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz0\x00', {0x7, 0x3, 0x6, 0xfffa}, 0x1d, [0x8000, 0xc95a, 0xf, 0x9, 0x80, 0x2, 0x3, 0x7f, 0x6, 0x4d, 0x39cc191a, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x6, 0x3, 0x0, 0x5, 0x4, 0x7, 0x4, 0x3c5b, 0x1, 0x24, 0x809, 0x1, 0x1f461e2c, 0x2, 0xe661, 0x4, 0x7e6b, 0x3, 0x7fff, 0x4c74, 0x80000000, 0x242, 0x3, 0xe, 0x8, 0x71, 0x7, 0x7, 0x1, 0x7, 0x5, 0x3e, 0x8f, 0x6, 0x8, 0x0, 0x5, 0x4, 0x8, 0x0, 0x80, 0x0, 0x5, 0x6, 0x8, 0x4, 0x3, 0x40], [0x10000007, 0xffff, 0x8000012f, 0x8000, 0x10, 0xfffffff3, 0x129432e6, 0xcb, 0xf9, 0xd, 0x2bf, 0x6c9, 0x9, 0xfffffffc, 0x3, 0x0, 0x7, 0x5, 0x2f, 0xe, 0x312, 0x78, 0xea4, 0x0, 0x4, 0x4, 0x8000, 0x9, 0x400, 0x401, 0x6, 0x1, 0xff, 0x5, 0x5, 0x5f31, 0x4, 0x0, 0x2, 0x2, 0x9, 0x4, 0x9, 0x8, 0x9, 0x6, 0x7, 0x0, 0x1, 0xfe000000, 0xffff, 0x2, 0x7f, 0x9, 0x3, 0x3, 0x9, 0x1, 0x7, 0x3, 0x9, 0x48c93690, 0x42, 0x2], [0x7, 0x4, 0x0, 0x5, 0xfffffffe, 0x100, 0x8d2, 0x9, 0x5, 0x7fff, 0x0, 0x5, 0xb, 0x4, 0x5, 0x5, 0x0, 0x1ec, 0x5, 0x8, 0x86, 0x3, 0x9, 0x3e7, 0x9, 0x5, 0x2, 0x2, 0x3, 0x8, 0x4, 0x6d01, 0x5, 0x38, 0x800003, 0x200, 0x80, 0x3, 0x4, 0x2950bfaf, 0x1000, 0xa2, 0x7, 0x5, 0x6, 0x6, 0xac8, 0xbf, 0x2, 0x3, 0x7ff, 0xfffffff9, 0x0, 0x1, 0xffff, 0xfffffffd, 0x6, 0x1c, 0x120000, 0x3, 0x6, 0xa2ed, 0x4, 0x25], [0x9, 0xbb31, 0x7, 0x2, 0x5, 0x938, 0x3, 0x6, 0x0, 0x5, 0xce7, 0x1ff, 0x2, 0x7, 0x5, 0x2, 0x101, 0x10000, 0x6, 0x7fff, 0xffff, 0xa620, 0x2, 0x5, 0x1, 0x2, 0x14c, 0x60a7, 0x6, 0x6, 0xffffffff, 0x80000000, 0x5, 0x8, 0xc8, 0xee1, 0xfffff000, 0x1ffff, 0x3, 0x7e, 0x100, 0x9602, 0x7, 0x2, 0x4, 0x6, 0x1, 0x10080, 0x5, 0x8, 0x30b1d693, 0xa1f, 0xc, 0x7, 0x1, 0x6c1b, 0x0, 0x4, 0x5, 0xb1e, 0x1, 0x200, 0xffff3441, 0x7]}, 0x45c)
r4 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000ac0), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r1, 0xc0285700, 0x0)
ioctl$SW_SYNC_IOC_INC(r4, 0x40045701, &(0x7f0000000480)=0x6)
ppoll(&(0x7f00000000c0)=[{r4, 0x8206}, {}], 0x2, 0x0, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil)
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00')
preadv(r5, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0)
r6 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
writev(r6, &(0x7f0000000000)=[{&(0x7f00000000c0)='0', 0x1}], 0x2000000000000123)
openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)

7.596897153s ago: executing program 1 (id=2053):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="4c00000010001fff0d00"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000240012800b000100697036746e6c000014000280050009000400000008000100", @ANYRES32, @ANYBLOB="080004"], 0x4c}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
r2 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000840), 0x20042, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000000400)={0x1, 0x5, 0x8, &(0x7f0000000300)={0x20, "33e1bcc8514934e94b17e9a46de77c36d2712c0e2401a00505e49c1df7c1853cfb"}})
write$UHID_INPUT(r4, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f00000000c0)='rpc_request\x00', r3, 0x0, 0x5}, 0x18)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
recvfrom$inet_nvme(0xffffffffffffffff, &(0x7f0000000640)=""/4096, 0x1000, 0x2000, &(0x7f0000000380)=@generic={0x11, "d71d9c1bf36be386b8195be2f96732daece168ab8c4756fcaaaaa57ab4d9fa9c5e136c872457faea878081b25c7ac9863e328325d3608f7b92b91789fb2322981d60e78ecebc51a8a848ac66a135cbf9adb555f5fff1d2552ce4b120288f1c606bebc17e3b75c547a1c41ac89d1be3f0e179d586d665ef8397dfdbdaa865"}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = openat$vim2m(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(r8, 0xc0cc5640, &(0x7f0000000540)={0x1, @sliced={0x0, [0x12a9, 0x400, 0x200, 0x8, 0xffff, 0x3, 0x6, 0x8, 0x83, 0x1, 0xe3c7, 0x8005, 0x6, 0x8, 0xc000, 0x200, 0x7, 0x9, 0x5, 0x3, 0x1ff, 0xad3f, 0x5, 0x4, 0x0, 0x7, 0x6, 0x8, 0x101, 0x515, 0x7, 0x2, 0x5, 0x9, 0x3, 0xfc00, 0x10, 0xfff, 0x9, 0x23, 0x38, 0x4, 0xfff4, 0x675, 0xa, 0x6, 0x6, 0x8], 0x3}})
sendmsg$netlink(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000002580)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="140000002500010000000000f100000006"], 0x14}], 0x1, 0x0, 0x0, 0x400048c0}, 0x0)
writev(r1, &(0x7f0000000140)=[{&(0x7f00000000c0)="580000001500add427323b472545b4560a117fff0b0082001b59000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee0000000000000000020000", 0x56}, {&(0x7f0000000000)="abd9", 0x2}], 0x2)

6.91129081s ago: executing program 2 (id=2055):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_emit_vhci(&(0x7f00000001c0)=ANY=[], 0xd)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
ioctl$TIOCGPGRP(r4, 0x540f, &(0x7f0000000100)=<r5=>0x0)
ioprio_set$pid(0x2, r5, 0x4007)
r6 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r6, &(0x7f0000000200)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
r8 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000140)={'lo\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000002fc0)=@newqdisc={0x34, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@newtfilter={0x54, 0x2c, 0xd2f, 0x287, 0xfffffffc, {0x0, 0x0, 0x0, r7, {}, {}, {0x2, 0xf}}, [@TCA_CHAIN={0x8, 0xb, 0x3e4}, @filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_SCTP_SRC_MASK={0x6}, @TCA_FLOWER_KEY_ICMPV4_TYPE={0x5}, @TCA_FLOWER_KEY_ENC_UDP_SRC_PORT={0x6}]}}]}, 0x54}}, 0x0)

6.859712803s ago: executing program 0 (id=2056):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x30313953, 0x0, 0xa, [{}, {0x10}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setaffinity(0x0, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x4, 0x6, @broadcast}, 0x14)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x401c2, 0x0)
ftruncate(r2, 0x8800000)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f00000034c0)=[{{0x0, 0x0, &(0x7f0000001e40)=[{&(0x7f0000000b80)=""/4096, 0x20001b80}, {&(0x7f0000001b80)=""/112, 0x70}], 0x2, 0x0, 0xa0028cb4}}], 0x40000000000013c, 0x700, 0x0)
renameat2(r2, &(0x7f0000000000)='./file1\x00', r2, 0x0, 0x4)
sendfile(r3, r2, 0x0, 0x578410eb)
sendfile(r3, r2, 0x0, 0x100000000)
eventfd(0x0)

6.184646456s ago: executing program 1 (id=2059):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x8000001, 0x0, 0x3, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r3}, 0x10)
r4 = syz_open_dev$vim2m(&(0x7f0000000400), 0x6, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r4, 0xc0f8565c, &(0x7f0000000540)={0x81, 0x9, 0x4, {0x1, @win={{0x1, 0x8, 0x10001, 0xe21b}, 0x1, 0xe, 0x0, 0x3, 0x0}}, 0x8})
r5 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f0000000140)={0x19})
ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f00000000c0)={0x19, 0x1})
process_vm_readv(r2, &(0x7f0000008400), 0x0, 0x0, 0x0, 0x0)
r6 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r6, &(0x7f00000002c0), 0x1c)

6.162876098s ago: executing program 2 (id=2060):
socket(0xa, 0x3, 0x3a)
setsockopt$bt_BT_POWER(0xffffffffffffffff, 0x112, 0x9, 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, 0x0, 0x1a01, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000080)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000000c0)={@local, 0x0, 0x0, 0x1, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000380)={@initdev={0xfe, 0x88, '\x00', 0xfe, 0x0}, 0x800, 0x1, 0x1, 0xb, 0x0, 0x100}, 0x20)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = userfaultfd(0x80001)
ioctl$EVIOCSMASK(0xffffffffffffffff, 0x40104593, 0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f0000000080)={&(0x7f0000000000)=""/59, 0x325000, 0x800}, 0x1c)
ioctl$UFFDIO_COPY(r2, 0xc028aa05, 0x0)

6.080250897s ago: executing program 3 (id=2061):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xc2)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000080)=<r1=>0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x440, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000200), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
syz_fuse_handle_req(r2, &(0x7f0000006380)="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", 0x2000, &(0x7f0000000980)={0x0, &(0x7f0000000140)={0x18, 0xfffffffffffffffe, 0x0, {0x5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
lseek(r4, 0x0, 0x4)
read$FUSE(r0, &(0x7f0000000180)={0x2020}, 0x2020)
fcntl$getown(0xffffffffffffffff, 0x9)
r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0x4, 0x183000)
ioctl$EVIOCSKEYCODE_V2(r5, 0x40284504, &(0x7f0000000180)={0x0, 0x8, 0x0, 0x5, "d88fd87f1ad6eeb75a957fe0213b2e100af028f0030b2eff0b61e6e66b8f37ff"})
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='attr/sockcreate\x00')
write$tcp_mem(r6, 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000004, 0x13, r6, 0xb4bc4000)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000100)=<r7=>0x0)
kcmp$KCMP_EPOLL_TFD(r1, r7, 0x7, r0, &(0x7f00000021c0)={r0, r5, 0x4})
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x190d404, 0x0)
r8 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
ioctl$NBD_CLEAR_SOCK(r8, 0xab04)

5.780160123s ago: executing program 0 (id=2062):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r1, 0x29, 0x36, 0x0, 0xc0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = shmget$private(0x0, 0x2000, 0x800, &(0x7f0000ffd000/0x2000)=nil)
shmat(r4, &(0x7f00003e8000/0x1000)=nil, 0x4000)
socket$tipc(0x1e, 0x5, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b19, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
ioctl$IOC_PR_RESERVE(0xffffffffffffffff, 0x401070c9, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="11000000040000000400000002"], 0x48)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000080)={r5, 0x58, &(0x7f0000000140)}, 0x10)
unshare(0x62040200)

2.984507815s ago: executing program 3 (id=2064):
socket(0x22, 0x2, 0x4)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="d002000020336b8b4844d745f5015a08ea24ff42cbb11607e2062c3d785e64854ac144dc4895f4490696cc665d92c28772607f356e362b373942f67261fb0f5e365ab059e795614576ea5cf6502871b6f6b862057773b5e7e4d646eb98f94c2694c0892c10b8c36045b209a376dd68f627ee3facc9467bc46b745d6480688933df7cbbd36dd9614f9bf7a7d10193e72709c176d69f5bbdde63083530cab14309e1942232f5a146ae", @ANYBLOB], 0x2d0}, 0x1, 0x0, 0x0, 0x4048850}, 0x40)
syz_open_dev$mouse(0x0, 0x0, 0x8042)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x4e21, @multicast2}], 0x10)
sendto$inet6(r2, &(0x7f0000000480), 0x0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0x8b}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, 0x0, 0xed)
socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000240), &(0x7f0000000280)=0x30)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r3 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)
getdents64(r3, &(0x7f0000000300)=""/154, 0x9a)

2.980117423s ago: executing program 0 (id=2072):
socket$inet_mptcp(0x2, 0x1, 0x106)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ff5000/0x8000)=nil, 0x8000, 0x6000006, 0x1fd832, 0xffffffffffffffff, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f00000001c0)=@ipv6_newrule={0x30, 0x20, 0x1, 0xffffffff, 0x0, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x8}, [@FRA_SRC={0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0xb9, 0x0}}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_dev$tty20(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
process_vm_readv(r2, 0x0, 0x0, &(0x7f0000008640)=[{0x0}], 0x1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f0000000400)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
preadv(r4, &(0x7f0000000480)=[{&(0x7f0000000080)=""/38, 0x26}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_EXPRESSIONS={0x24, 0x4, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @counter={{0xc}, @void}}, {0x10, 0x1, 0x0, 0x1, @redir={{0xa}, @void}}]}]}], {0x14}}, 0xd4}}, 0x0)

2.97837358s ago: executing program 1 (id=2065):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000080)={<r2=>0x0, @broadcast, @private}, &(0x7f00000000c0)=0xc)
r3 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r3, &(0x7f0000000040)={0x2a, 0x1, 0x3fff}, 0xc)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000003c0)={0x74, r5, 0x1, 0x0, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_FRAME={0x52, 0x33, @probe_response={{{0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1}, {}, @device_b, @device_a, @initial, {0xb}}, 0x0, @random=0x3d, 0x10, @val={0x0, 0x6, @default_ibss_ssid}, @val, @void, @void, @val={0x6, 0x2, 0x7}, @val={0x2d, 0x1a, {0x8, 0x3, 0x2, 0x0, {0x6, 0xf, 0x0, 0xe, 0x0, 0x0, 0x0, 0x2}, 0x1, 0x3, 0x2}}, @void, @void}}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x74}, 0x1, 0x0, 0x0, 0xba4820d6e6815606}, 0x0)
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
write$binfmt_script(r3, 0x0, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f0000000100)={@remote, @empty, r2}, 0xc)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
io_uring_register$IORING_UNREGISTER_EVENTFD(r1, 0x5, 0x0, 0x0)
syz_clone3(&(0x7f0000001240)={0x2d000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
socket$inet_sctp(0x2, 0x1, 0x84)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

2.977970625s ago: executing program 2 (id=2066):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r2, 0x0, 0x1a, 0x0, &(0x7f0000000040))
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x3b53, &(0x7f0000006180)={0x0, 0x1ffffc, 0x10100, 0x3, 0x40000000}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
fchdir(0xffffffffffffffff)
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x4380000, @remote}, 0x1c)
sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x8854)
fcntl$setown(0xffffffffffffffff, 0x8, 0xffffffffffffffff)
write$RDMA_USER_CM_CMD_GET_EVENT(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r6 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00'}, 0x10)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r6, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r6, &(0x7f0000002140)={0x2020, 0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r6, &(0x7f0000004180)="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", 0x2000, &(0x7f0000000580)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0xffffffffffffffff, 0x1, 0x0, 0x8, 0x100, 0x0, {0x0, 0x0, 0x0, 0xffff, 0x36c, 0x0, 0x4, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r6, &(0x7f0000000440)={0x50, 0x0, r7}, 0x50)
r8 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r8, 0x922, 0x0)

2.623098515s ago: executing program 2 (id=2067):
r0 = socket(0x10, 0x80803, 0x0)
bind$llc(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x6, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x739d, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x7, 0x2, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
write(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e27, 0xffffffff, @mcast2, 0x5}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4001c00)

2.336707877s ago: executing program 3 (id=2068):
socket$l2tp6(0xa, 0x2, 0x73)
r0 = socket(0x15, 0x5, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x2)
r2 = dup(r1)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x20b42, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000500)=ANY=[@ANYBLOB="5800000002060102000034e40000000000b27b448d985acf1bfc000000050001000700000005000400000000000900020073797a320000000005000500020000000c000780080012407fffffff11000300686173683a69702c706f727400000000358577fc52977f7010bea1c4d652ddd5de938c091a79653893fa67032ef06614b10a6f4fd557119c5af0b40e17d382e71b715a3b253bb294d0385824da8190bdba90ab3c2333dd5aeced11d2f3eee402dc44bc9ebe10d50720442be34b2920e1f38c096f0625c4f476aa4c3d77ab04e7cf93792dd23b"], 0x58}}, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000040)=0x11)
pread64(r5, &(0x7f0000000180)=""/89, 0x59, 0xffffffff)
socket$netlink(0x10, 0x3, 0x0)
ioctl$USBDEVFS_CONTROL(r2, 0xc0185500, &(0x7f0000000040)={0x23, 0x1, 0x11, 0x1, 0x0, 0x0, 0x0})
getsockopt(r0, 0x200000000114, 0x271d, 0x0, &(0x7f0000000000))

1.652176061s ago: executing program 0 (id=2069):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x0)
writev(r1, &(0x7f0000000100)=[{&(0x7f00000001c0)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000d00000000000006040000000000f93132", 0x39}], 0x1)
r3 = socket$inet(0x2, 0x2, 0x0)
mq_getsetattr(0xffffffffffffffff, &(0x7f0000000040)={0xa2d5, 0xff, 0x7a, 0x6}, 0x0)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r4, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r4, 0x84, 0x17, &(0x7f00000001c0)={0x0, 0x5, 0x1, "fd"}, 0x9)
sendto$inet6(r4, &(0x7f00000000c0)="eb", 0x1, 0x0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r4, 0x84, 0x18, &(0x7f0000000340)={0x0, 0x5}, 0x8)
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x0)
sendmsg$NL80211_CMD_TESTMODE(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x57)
setsockopt$inet_mreqsrc(r0, 0x0, 0x24, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

1.511464001s ago: executing program 1 (id=2070):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0x19, 0x20000000, 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'syz_tun\x00', <r1=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r0, r1}, 0x10)
syz_emit_ethernet(0xfdef, 0x0, 0x0)
r2 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r3, &(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x0, &(0x7f0000000140)='grpquota')
syz_emit_ethernet(0x4a, &(0x7f0000000280)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x20}}, 0x0)
lseek(r2, 0x400, 0x0)

1.413015986s ago: executing program 3 (id=2071):
r0 = socket$alg(0x26, 0x5, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, 0x14000012)
recvmsg$qrtr(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000180)=""/227, 0xe3}, {&(0x7f00000005c0)=""/130, 0x82}, {&(0x7f00000007c0)=""/242, 0xf2}], 0x3}, 0x1c, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x10)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000008f80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4000050)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000000000000000000004b64ffed850000006d000000a50000000500000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6f7, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r7, 0xc04064a0, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000480)=[<r8=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r7, 0xc05064a7, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000002c0)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000300), 0x22, 0x5, 0x0, 0x0, r8})
sendmsg$nl_route(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00'], 0x30}}, 0x0)

1.342310001s ago: executing program 1 (id=2073):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xc2)
ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000080)=<r1=>0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x440, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000200), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000000040)={0x50, 0x0, r3, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
syz_fuse_handle_req(r2, &(0x7f0000006380)="04d448d829c0b8966b1e65f549e6292080189f3e0063444b6409a217ba8d2c26530ad7c56c61722dd029b382eea25d902d57dcaf27f4a518e596a93a0343f0849351c076d7208588719807a2ea87487d87cec21e18b28c2cdb6b672362245201f74931b56e5361029c43e742fb56f2fb02f15bb29913c5596e07b1c5ad4546f647c6bdd8731875cd4c99c45fd383ee904816aecaf4d88a717f2c961c2539eadd5bd8d011c276e3b47bd10f571a4e55814ba1c811639bfd8d081b0c679147e1e993362369ae7f322b5e1ffc33532512b2be164094bc00a3dc8ba5ce897756174e3b8df30eb6830379e16e0fe9388d0964c37f3f1bf030baee3544d41b4a64470131f29ab5b7fce57acf68534a63bf2a7fda67dd079757ed928b83b84c5a3917bdae4983f2b01aed37dd77408ce26a30b7a818d52cfba0491d26486aa8ee7e1dd1db66a7e226191af3ae999b4f91d2c70a5da82938824bc5c4b55e8c7a76a0b557c4afab06b62d8eed72230d918992d45a347afe509fc0174c430a463cc881025ec1871f80e5279d3b46fc30ee7541667d38a71feddbda3e60bd629b1c6c85560f820f6b53322f9c0db651d5cd3869c305bf5816a6f083e95a1ab85d6eb53e1f8d4846aaa4da575ded999ee8f6bf0c220866cca10e9db089d871ad2f99e9e05820251a896913e1c5e82b54547433ce3bc109ff556c05d5c38babbb6d649c7fa3501bfaa805f58631847848e38be70b2ef5b80d8f258e73e7e3b4dfeeda6cedd634c743080f92788e44653f6948cff928c1329cc3d5837dead7d1f41abbc36b5bae488b286335a12d189c5e23b0160e6e6b5454384db3339a021c917d148ee256ccdfa68052f83be230e31a54d5619fc0357064eeac69fa78f3f6143ac81eb5b927640b406ab112eee775f78c35de251230b69e3746758b4082d1f037343166c5facef81ef60d6063b0f8c50585a4b402ddde442e8305be5c78781d7438f28b6aba4ef00d85f95185869e02fb59c5a73a227fa3f844b89fb1cbf54a63963c050269ce24a51426127ed672350d031dd870a136d3e47e419e524414c1717aad1dab9699da1018e3e9893e5cba1287b2f101eff1e40b0ba0f3133aa084b074d3c9f4c22bdb773ea4c09f4602b01341ff7fa0954a07d8c41036541aea34c9e19ee747644e26aa795986f7cc46e0dd5348cdcf1f2d88a61893ef8f635c717a6d145e10a05eef09ef4a99ae696b6fdce1d4b8623033bcad18aae6cd6db49b67ae0f785d6f7ff3569ec65732566a36a11d324f6d61403a383b0bfa2f1430df9f7ab3fcf7ed975e815e5f8f7fee1c6d3fc906f87023a2f830a142d325180f853f7b26590cc78d8a4be4b194acce9b85affdcbc6e69e354d40ad45119dc990e43ec3dac806fcaa9e24de6b55dbf7c82539d8d8a2833b11ee1180ef65733b390d527a8873e8f2b1a22617aedeab0996ea8faae471236aefb081009bcc43a4f7ba29c7c6d27e49359c88e562fde0add9887b6f81f5d15b8ecdea14ef2e9910f43249fd22589fc5b0d471eba5d51e806e3ea9fcafd9a85163a493af4e1c12a287b34579d2eb1deb19d58d9c9fc57408ab40fc61794354c8aded159763317d6249594948cfaaed2a743bcc4090392a33ad1de337a837398f0b42c9da1cb12f034a85f265888efdb5ed689d6ddd3913cc73538fb68922684c41cfab3491f9919b809a82ceab5cc450c9234a29dc24030833635ba01ae68f7c2b7c36b5df2a87a2e3d64eceb384ee4baa75b8f2bf33f812c11d1a1de9edf8bc9ae1e49969acd8ade8ff596a3f9d9c51342fe41fe152156c013f93f72f8a51c637df252cd60a5723260b2282354f2b725bfd357a522153e1a6f213ee6f00f4feec2ee0408513c8d5f73c1eb774845f9f7f33e210276d050b46023567d693f9d5999552b389f81a3342e0b9571a5b70422c73bd7698d75b6e5d9a3bf76ad3da0fcf24e12d8fb300148d5bb5cf2b6d0580a4252cb958037880125c9b49c76f4038314c00dc77e553156876fe821ef09b88b6b5bb2261147e76e428d83a3358ad2b3e9481305d6d9c703dedc1a41499c2c63b4bbef6ce4063fd0a5c7c56860e8cf80c773bf40faa92b7a49a126a1978560e70821bfd0d1280f2d985f4811d20e62f85e2b1c3ecee4828f26097cd19e0da8f1a1b404328e99af51a27c85f63b0c13e4965d127f2076b24f140bab9503b51de5083c4d6c082d9f2a9d609ee491ced61bf9caa7b8befebe4c6e4b6edb675fc9e9c100d4c96610b90fb3115f659f8c0718d91b3d1769ba93e19997cbddabe86aa77c0ac01923501b11ed28a9dc83dc55ff2ad745843dc7c5228866202cae91c10ab580a442b7060d99c08ca36c5fcc9934d8e3a1be8f1146db35c5abda16635f00ca337a5b29665c2541173ad5bc741ff2c49650a3f73b6062929a1ab255043c601cb3021f6d17548b03a4e3ae7686170b450e222284ca2ac5754a54b0173380033d8b8cb2e3ade3fd588d1baa252086151395c38af3c16cb77cbeb7d0f1bd6d39722508ffc00bbbb7c811620f0822d1c5ec650d13dba841b8f9df574bc28008b61948fad4cf6109e884de1d5a0dfb77c5b8738a4014725bcc9f7a4bd72376798d7778e69ae8402ac01e001a0dbae32978081aa77f86e0ef390559b5494f549f4a172b095248b07aa7eac90ab482c84be8a9dec820be95828bd4054c0ecf3b0215c2828c67a97bd22453b74d203bee8093e8c989058f3465815bbbf3fbb259c48c62f9f6188edfd5a6fe9c330519b3cce855f56c19dccc9a8a30d688d08cc0a6e72e9c0fee29ae114a065210c7f006013eae2f9bfd4f6e602a3650a79a8ede80595e00a3a25a0ccb509f29d6dbb41ab6a4c33b52fb1825046b5d30af0aa3edbbe170d5cbe4c2db2fbf450061ed5bd4615671953adfc9870f8a83e262ab9b24868681dbc1e12a0b88e780bf37c8249200d029d899e58dfadb4399bb7fb4df6ed28ff768445b6813aff42bd79c2de5967ed7b883b7b58f7adf40c98ad1b80b53e4db2c0c5d3609363281b58b5ff0556349359729aa29c8fb0f9eb3865e1e7990bd5414f74ac05e4db02fec62f9ddcda546fbd06a3b4b5667b8306fb292a48ff5d851a4bd82ff1638441892bb219377b962ad97a0015fc322c16f4eca79eeed746b48f3160e8f69f7ee87a2dab30cbce2bfc1ce74204da5eec0a9a0367ebf69b100b6bf426252f34cf830a6e9ccf7671803594cffcf22b390d801263b03fd4f031b80e84d967c51745a457298166b8ec3d08087d179b310333dc2495fb2c6f198347e0973b497f71e12033f7790d931b23fcb94a3fe46ab54d0fe31d57f4f0bb4a54e6bb69b7d9361e833c0b555a4e56583f615cae3382cd4db2cb2d3a88ddb42dfe10cb18377b13b2297623b99e9daed29d130292038ee4aef3c511cc712805e39628e820e799ac2e3946cd0e05c09f16665c7af375f42aa1a5faa383a1d544722be74b705238b8127c64089c04d97a97dd06c4c3d19dff5714962580470f8170379d8a1025a104dcaac38598efcb7395d0527bb46cd14fc83b28cfed97247bf0882544adbd9b978031460ed56aaadea54f9704857f18768ce53ecaae57f513ba4765333184e029947d69d69302da11bfb717644677348fbfe8b1c0b68a32c25bb0f2c97bf9351317d44146a27a2cd02c6e29da570f40657484853d7121fb7c21b9ddc4856585376a5602808b12359c2697889bea1a39297cd45747fb00982914704cbd1afa6035c84102d14c104523c99418647914d0eb0c5b689c4e7250e6163abad021a4a3467326ffb98e4fbb4912e433b18778c6466167d4fec85cfcaec716dce1bfaaf72f2ae363736661fb3c32edb423c7c949e5ac1f1412241dba17c7499ecc9823640128726d4b24859d4315c9aa382dacb452fec8e328667f89d649d720c728ba50ad52c602576dca7279ebad8fc8f86323161b872d70391d6a0863c09b703376e29db71511f1e4e6d28b3d94c166492eb70c3f8969107581d920c54ee9784d3d17b27739155df182595ebf779735cd5558211eb1d7a93298163ddb976350ff87430fe97ff3210ce7937bb2b588d9b7b19e93b77cb9b3c05f026754341b6102b0317eced4fdd8adb3edd6321ded63584cfd9411edd7fdfdbc29c96baa2c53aef886b10c3f52e1aae18e73e3d085fab48c59f156564456ad7e0b059df89f9d6861aee5ca9e722a5817b254ed29728a14427745e1f5119efc4416283b42b9cc5a42dcfc0f2343ceb0c2cb8db4db4c30cf260813f5ee843abd4d8b7eda3db2ca1fc659e28b4595f12e261fa03da651133c1de5f1534c6a85f9420ee5a5d3f9001a301b36927f90c975139801e56a845e41d1763ab24e3a9138f36742c3da1ed18bea3393b7020e01ff40f56ff118ca9de41f8ddfeea00902f515fe49e6e4bb45f268edd85365c0ad13dc77bc8c739ce8cf18fdd0f5284aa27901fb4ec217e9ba5e97da321020534cb59a70c21e6c9962d9363ff0667f95b463df76488624e6685d8e60156853337a782a8c563795858463ee5efa36917dc302a55daf2cc0940a603ac4c44758d7d068e31b319c269389b7a28b2ab921e56d2bf141c7c43ae68c8575774086e3c75eae4268e0bd54a732e12b2ee95777c0914000a9e2c86fac6ed5726c7b3af4a7128a78969e620eee3a42e60dba4a60435e4d2bd5e6b6198711be344c0fd5b6c0d1e7f57f41d359f6c0c96416c856a791b5e7302a604b84361d81a6d39eac209a5f17d6377d0c6d134b7e3f3d315c9a2b748188173e4712dff25735cddfa6f0f876cd678ee9f776adb3a8167f096081d5facb7ee4db7c27e4cf5eb2b6b5e606192e884c8d38e2847d32e815a419bb7931c8ce8fbb361007e5e69ff0e8b72a7cdc8637bd3e35c01e59b3beb6b07ec740fc66138e6768ee9ae5850ba7fe487a2ab38aab96210f64b5994bbbfecd7c41000c972f6b4b6f65b8889639e82059ffb7fa922119c773e4b19e3fd88309882d5ee1c41ad80bd38ae9a8552b67dd3a29a9586b73cf748cb24d6a61fb2e64c2d27f4a5591957d349602ab579cf0cbd758bc8b9c75007fc20f28a49c5336792d05e754bd15fd1dbb848c265103a66025ec99754277b2bddf3c98b4054389b9c88c315a58aca25411babf383211d822c976f28c5a9ba02854e598251c0f3d27202c1075f2b9dc4c34bdf076c7e4c44d1288f14b4a0d637fca45018526a0d4ec690420985221f08e51130156091d1ba95b1cca7b3009c4ffad4fdaa5ca062ccfd657347fd29b3507251a7b634c1cab8f03e387ed10428a4af3dc8a82b59e0877f370c4cc2c8ca6e4e4274d70f7e39531dd9d944dc132a02d6adcfe1a61cc79d987d9946c5d7298624d97cb1afbcd389872dc61d859eea72e4368106d0b438a6214cca66d5b10d17ea14c4757ca9bbff2ab1ba94fb339acc61a5a2a8b62f9271b85f83e2ab78db6c744fcf6b42a12ca760010cc4502ff7dddda102bbf087d328fb79dac2bb6422194854fe8078978b005f3bc3443e4d04340b720a8fa7a181e936c29ba50d9857186de6e6ca9e4505b4cfcd6ece15de7391d208eb4b13f2bfb8ca3ba1aa6327a38c3cb4f7b1e07cc737399899e80af28586d9bbf264cd5485a4d05f6483ffcb9200346bf2eccfdffd30c75c74faa4c392a1ffe9bc72f0c639cb4ef85b881b88e2765c71bc059e16854be5df989f3557819dfc769a580590d87afed57ce5c1c51eed73e72c2e5ba52b5300403b61aa31bb0ce226cf17ed8b17eb75fb2d8c7ebe8560f1cde4e9579b342d2dd3e7f3019f132e1e357e69313c9683b33ac27417e1e851c2bd2e2c1c54b19811a3cf2d04cd0542aacf69a368dad1c53a45ef19060da0b5068c4b880eb6f5a6cb861f5179e85b7ad47d3ba4902b8dc73d772078ad4794e77d7b9cb00966be4f5ec29b556c6da053396071309fd1ac98851e42aaaf75b04f4a1acb405b5e58b20793d2f5c1ee43818ff6403816191853b00cbe3f72d527d6a275bf7595ead6b23c3f782a2db9ce274e8dfe54adc3a26f338863d426328865edcef118e14d0b0ae3de0d0038f1c0ef2abc8a0e6fab655bdc27e91dc1445076bf3c8c0ae9d75b6e3ccb7d2fe65e0509c2618178cebe7218c88388288b6d822d5e89ed03e9b8340819ae7a0e90a763349eca7600434822a3543a10bacbcc0d6160830c7de76a9fa45d9c8f9e9731f4ceff82aed448d3f25a05aafa85043e432a2c277119604c6468e2f06364b7f07094eb97832c4c475d26e395fce50286f0459fa8e2b84e4c2ab888e81c1bac3804068d202452ef9bd8669ee2a536ce37da14a308cbc3d1bc891ca991d2a2ca97438df04cc6cbc83e77543bd2568e69f3f79be67e76b8df9119679f8340ec8c77093358ad05572727d40d84d7d485c284c23c1e35489ca9b378723ca254d9a299c45a6ec90a151ba0f5d54685887027ec7dfda4127e6a8b36e29ef4661fe41046db3a32a191595f7f8c2bbd914f7cfb886e3975c54e5158cbff39653d8e3cec1e1f72071afcedca2373830065369597732dcfa64ad01426c8840882fcd946025d6a09e80adb121ebfe58e89da725163a62f68a61bb0fa89642702aa410c94c6bf3b2550eb3f5e948827ea64108ce2233d517262c070eab770648afadb98fe8425a50e7b0e0223e4e4cfedf34b6c240d9489c6c3bb5c30b79123ea1a6e0fa9f3c38a74d41cbc24aeb371b35288bae8a07b5c5a1a3bd4d572cde542ea4b33d066c57ecc09121306e46d6856eeb00bfe34116e76aef56d0ebdd56732d0102d40e362e80b9c8f65d86e464c0d807f4cf5ff52e91e653a19656374630d69198b4a5e7b6dfdf3e45a8483938aa29ba2a582b9382d8dbfe22727443621c86b35bb7d26b9afbcb76419fc14fb2b22c1d901a46f6483fd310833ee2ad53e57511d757f875862487c20594fbf8c2460307c1a9a9a62c419366405b4f96a1e124a06fa68bf68bfe1ca37847fb8fb7cff862269880248dc99bf3def2916d8903198de1f1d898661f03cd8d0c422ea23c8b51b8654ba91971581878be99e74992d7a72e9f365f2638959629f9514a9fb399514f303e846fdb69c45262c61031c54b3b5fd62e9211047e1ad68211cdff4d8d8d7203657670b0e64fbca61530f15e13efadbb8363817fba6d3484caa964bf6157546eb88cd779b0458434794e752e5af6322179d42e0d96b3bf5e193ead89eefcfa7e54e4607547c6a9d3a259d0b1a25ec9f2209c26b763ab5494e4f2843a6904fbb7e01e8e5cde20ff0b3af9d6d67c51852b43e33cee2c64b1d4f9f20ba74ecd98d9d5c0556066aea8ad476922b18d640602ae1759d06cac7cd55247595cba39973e5e11da225a71888dd3ba834e22d146f45a611cae3a4ac2bb94c8a5ba0a6cf73b690b746083b0cfd079cb6e2b6c58e6198a2249b7f206c999a99840312f7ecd44d99855b09950a6d19093bbc957a91a9b9b3237c4e91dba3bab488fd7075309810903a93731862982f91815affa461c5b46c0c65761c771fbf4612ed192c9b1ed95cb00eebb6f3140fedce806664152f4abf03425ba7c08ce1fb06aab57e5a4bc282f99d0b15400168af792db2da13901eaabd1210669f7171978df3e9da21eac34368391a6b97c40723b65b13c6cd809ed0e9e4824d57e86f09fbaafde7121e52071752341cefb070c3f22e239e6823dc18c9f349fab57f0e77f134c6cb8bd329630ef34cf8e1ff118b563df0f16f06aaaf90ca6989c114add866daf6cb3eb8ceba2a1f0bebe89a568e7ae1bcbe1c4efb0f030fb228944cac83b1272322e0290bfb763dc1e326218304b7965d19f25583a649672541298a2614862b42c7d429bbf29fbd2b8c80f4ca9344ca865e844e2196f23ad05bf936bb09c55a100b3ac68045f321f6fda860be33df30679c069e74dbb049584e468828b9d908257b57290791acc9dea0cdecfdf5176b5e7b6bbd34e3a3318ea87d612e38a442068a0a59e775b5cb870c30f0c480bd7f22d4b5ea10fb6b63dffdb3d46ead7fac70891db9096c5874f8ea909f7d466ce14a510929bb94f7f0bd6002c1545bac910de3465d7222201e7fb497ff94ab731b6ab35aaddcebde853e0232304e39cf0cde30bcdd0883955ebc697a84b44b45dea00f1de2f702791ce5470938297738ffce963bb9ab0055196aacb378c34ebeda0d63830b0a71887cf899a08b46089a8349e69dd83691586f0e3dca06c5ce496858572729cfddbd8361d7b84a4154eee56155c23aeed8ed0a65ed48f0c371fc7c2fae7cc378a4e17242639742fa3236f23844605437fa36c9de62bb6f8164667e82b72500ec2b0dfb6bba54889176e287d08f038c5d6f872659f130ad02bf9393f6785fbeb5f3eb3bd7fe2be046e76dc69bcdf39f36d0fa471ad301c3c23d3de60085a868681caea41cb967728a83f1126f94acdbbca531f305fd717b70cd895f6b117355083f4430850f361987229f6cf59c9e1df14524e8f0c5d63953f484d2c3abc15bbdf27817ac0441e98ebfe633b5b22d6ffa1e54bd39c4f779fc2ba55c8e36ca17c27503af04201bc1e0c47375a58946ac7e0974d565ea98b2069c369b84b8ed3887d76bb1f8df5277df2c993023870ff5e3f9ecb97f4a620ec8bc36aba37d94cd49e1d8af230a39f58474a91f9f0fc788ceeee2a35578851a47b1d8840c2a99e40a81615c0af7fcd174079fa93656e0e0f38be83987ecbf1f1be64178e664dd35234f9a67824327fba6c819a3af213ee004b915d239705eda142627c552a26c686ae71a5285515b2a7d9b45535167bebffa14d68d54eaa6557791ef4f8dcb51d1bf5fe6c09b835eafa4151f9fe9757b6acabdfadb3cb6000a9a3491c241ab76af195ca904d6b4aa44d6d3a0f56bd154cab8066760f23ca3cf2feba12094cedbd8f4e20f122d4c964bd598bca34fc4843c49f29373539c1fb06d63dfde28f03723884c9ea2d7a81ad6fbd59914dc3195f5cc1d26281b735406b324fb394f4179f6f86d06d20078728b7601ac0531ef374fcdaefb434be672fd34335ea683121ac1fa576beb4d05f3cb22e235227aaa02d08552f07f99c50eb2afbd7fe7f05d80a0beb10f4a013026f0640adba2cea8afcc1e005a0044cb43eb6d933439422bf4a784e63b6845c0c3591c5b185019b2f6946291b0e8c540b0ec8ee409c80a86689adb08103237a96347dc5a29cfde9157af41467640b1dc20516f37b916083934216ea5e9d2c968a646e207fb3d90354aad701393b3d7d8786c8204b9b18b1439cce756ba842a69af3e4320fe00c5419a888e36d5150f9eb807196ef827c4c3198c7b9e23187289a5a6d30cc0d57ab71e2868ad258f78bdd16edb70b86cb09d8d43e83424d22c6d5cd2c69968b0fb6cb164055d1a309707f27eb71b6e3a4bfc0709b4c14e0f7367a853b1b7a8f42fc9ce88db7f2cc1c5d5c80a67598db9db67d28aa7f104e94eec4cedef48fda37f005364aa9b7a8e94633effbcaaa68f206365e9bdf6af7d0a8ec0c86006b2d34919a4c396779980d0caeb0b1ae4df247ab3a6f115c3fdbbe0b21234f42e9d402efb676c16b331a82ef6b88f3e1dc30024abc67afeebadf893e9c7d72978eb5847471938ea848823532832ba7d09dd5deffc9da5948a7629152302f607c7581b1949c433e1bde40f7ed0cf16d032608bdc272359d874f770986e4e6c2c390ed19d402de44a66696fde82843fdb74df0280e166277511a20c3412f2b8427c76243e1568455a5fa5270ed02c8cce77c9fd7fc745a646146f377d2d53d81763ceae0ec03840fc4834a19b931815c79195d1e466ed46c57a120469d0bcb3d0007e59fb615dae97de19205c92f2f002da823cf4e9075bd1b16d7b0716feb50158bfd86e57a33388a949fb638d8bf50bbebd35f553eb9f1af252d696c4960dfd401759ce8d942c5406338780ef74c1e274069dadaf9c261d260d42d855e72c8a09c091b8d477e47b48fbf2c3d7d5357a6db23d744bfeae1f15eccde416814f158569e700e681004745733b69d61f91da118f62a171d4af3c01f02bb8d2189b70f9f24f1d23c664905eb5a94cc8cfada3d55f071ac1719c9a344932c874d97637d6a26f47cb9ed63b08d579e4bc8f74ccfc3e013877e24fac04e3cf80be0e7fadcc789f4f1a4fc3dd2b297ed635346d470f8b9361285ca3df1f60b73b4139fb1298670099028f55f3faf98ac24b4f8834986d3ef788a545d2cca0458db975c9896b9b7d99a64d1ca8ebf20482f985a5d06f92fbd4655167f4d6b8bd530be13dacb4a2ecffb3dcc70e47c428bc5ecefd677b09e2b1a1083c1d58ef7263cdcd540ad027859df11446c197a4a1a6174593d72088e0f52ebe25db2ac6068194a0353c2d30fb57190f8525b8a6bd88df219c33e4b9d4aab7d7a6c434f163fd8c0b13b07751be5e18edfb527daa1f12716156b9440a26fae39eb5504e47499314afe9268f3d965e240a5c111257ac5b0b3f46701534925bd5613360a121faace7a2974c2517474afcabc3fd801452a04fd4dea21e4854b662642838c49bc1dd249150a645e128d39f0ca71a388f3f39bf81056ff1aaf7f1ff2a047795f73dadb5038204aabcab545fce0fa577e3bf15ba36443153691b34df5c932118237f31d6d1ad09af1d91cc1cb64db0297844407b21a8df42869743ed0aa231204c3df97912af0de5d505540f4fa01a26794c1566bdd03e8d1d1c7ea54cf5f83f12abb894dc56fc8708f748a85246df151629840d89abf3f953365f32b81a87888f4d821eed2eec4b3e78623ed42bad07bc8243624dfd87c704ff6dfa3f0b116fb08264f99deb6079d5c2fb62c819fe4c411b11684a1a46e8bca1d24cd22971fde03bc2ec5a44dbd9fc4578ece5b878d3ec9bc0cc898ca8db87b8c91f9be7d5edabcd34c8eb45c8945d65787cd70476ee7de89a9cd23535f55cfbfa453ba6db637b47b40335c8ec1250e2b390c5651d5d1fdbea2d39c08e32abe523369f6a048947646d1439e400a9e2b82584a339be5a8709a4664428ac95428eca28c0956d10e0a3957a66443136431f99d342fe9d3abb0e7948f147377b14cc8e0955226cca6c06f59b20474bc9faa6b2bbb1f5d1ea3395a53e4aacb68f82ed6caa00471d87c27935653b3660a6d652ea2bf9c6524ba14b9c511c4499f63df0296a7af1849c8a204010c648ddaf4ca2f07240f092b60166a9ba9d650bf96adae1a988a344b452c2afc1ad863787e403cad1d1f7d228bb791ae4888e3985bea6fd5083a9ed7a37ea17dbd039f40a89e5c1a70afe55700cbe3e961f9499d2bb584917323742ce2810fd3a75f8c4639bab2ff4a14cc9230fd642f359a5de10a4acc824c426163f47ccc38cb485e59579f6e1cf0a8cea18dbe7b441e2dbf258fe991a89acdc0e5a1c542e45c6ea6e8dce162dc6cfdaddec501a63168fc635ec2e350ec3d7ca94946858c38cdb05f1f426691c4c08fa9a408971c13bdf519aa4d52f860f5ee30e0559656c76db544bc4215efa12f7b07085dc12e4571e1a78e74e1a4fe4de3ae6ae79aab4bef02a2a7efb81ff790a95180de89f86fdf0f4c", 0x2000, &(0x7f0000000980)={0x0, &(0x7f0000000140)={0x18, 0xfffffffffffffffe, 0x0, {0x5}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
lseek(r4, 0x0, 0x4)
read$FUSE(r0, &(0x7f0000000180)={0x2020}, 0x2020)
fcntl$getown(0xffffffffffffffff, 0x9)
r5 = syz_open_dev$evdev(&(0x7f00000000c0), 0x4, 0x183000)
ioctl$EVIOCSKEYCODE_V2(r5, 0x40284504, &(0x7f0000000180)={0x0, 0x8, 0x0, 0x5, "d88fd87f1ad6eeb75a957fe0213b2e100af028f0030b2eff0b61e6e66b8f37ff"})
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='attr/sockcreate\x00')
write$tcp_mem(r6, 0x0, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2000004, 0x13, r6, 0xb4bc4000)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000100)=<r7=>0x0)
kcmp$KCMP_EPOLL_TFD(r1, r7, 0x7, r0, &(0x7f00000021c0)={r0, r5, 0x4})
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./file0\x00', &(0x7f00000000c0)='overlay\x00', 0x190d404, 0x0)
r8 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
ioctl$NBD_CLEAR_SOCK(r8, 0xab04)

1.340941562s ago: executing program 2 (id=2074):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000100)=0x2)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}}, 0xc010)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a2, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000000300)=ANY=[@ANYBLOB="0180c200000eaaaaaaaaaaaa88a81b008100400086dd610961d300442ffffc010000000000000000000000000001000000000000000000000000000000010c21880b00000003010008000c7cd3f259bd2770d978e40086dd080088be00000001160863020100000000000009080022eb000000042101ff060200000000000009000e"], 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@bloom_filter={0x1e, 0xef, 0x0, 0x35adeba0, 0x0, 0xffffffffffffffff, 0xf2, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x1, 0x5, 0x1, @void, @value, @void, @value}, 0x50)
r4 = socket$kcm(0x29, 0x5, 0x0)
r5 = syz_io_uring_setup(0x10c, &(0x7f0000000380)={0x0, 0x5885, 0x10, 0x0, 0x2c5}, &(0x7f0000000340)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_SEND={0x1a, 0x40, 0x0, r4, 0x0, 0x0, 0x0, 0x10})
io_uring_enter(r5, 0x3516, 0x0, 0x0, 0x0, 0x0)

967.887717ms ago: executing program 3 (id=2075):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$key(r1, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB], 0x10}}, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, 0x0, 0x0)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000080)={{{@in6=@loopback, @in=@remote, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee00}, {0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x100000000000000}, {}, 0x0, 0x0, 0x1}, {{@in=@private=0xa010101, 0x4d5, 0x32}, 0x0, @in=@loopback, 0x0, 0x0, 0x0, 0xb7}}, 0xe8)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000600)=[@text64={0x40, &(0x7f0000000640)="430fc73f0f2390b9800000c00f3235010000000f300f20d835080000000f22d8c4e18173f53866baf80cb83879e487ef66bafc0cec66b88e008ec02d1aa80000460f1c460041ae", 0x47}], 0x1, 0x74, 0x0, 0x0)
r6 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r6, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
connect$inet(r6, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r6, &(0x7f0000000900)=[{{0x0, 0x0, 0x0}}], 0x40000cf, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0x40f00, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)

765.989314ms ago: executing program 0 (id=2076):
syz_open_dev$vim2m(0x0, 0x4, 0x2)
socket$inet6(0xa, 0x80002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_io_uring_setup(0x10e, &(0x7f0000000140)={0x0, 0x8380, 0x0, 0x0, 0x801}, &(0x7f0000000340)=<r1=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x2, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
r3 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmmsg$inet(r2, 0x0, 0x0, 0x5080)
r4 = syz_open_dev$dri(&(0x7f0000000100), 0x1f, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000380)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r4, 0xc05064a7, &(0x7f0000000440)={0x0, &(0x7f0000000240)=[{}], 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, r5})

413.48324ms ago: executing program 2 (id=2077):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$TOKEN_CREATE(0x24, &(0x7f0000000180)={0x0, r1}, 0x8)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={0x0, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
r4 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r4, 0x5423, &(0x7f0000000100)=0x2)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = socket$l2tp(0x2, 0x2, 0x73)
mbind(&(0x7f0000474000/0x2000)=nil, 0x2000, 0x3, &(0x7f0000000280)=0xffffffffffffff8b, 0x9, 0x6)
bind$l2tp(r6, &(0x7f00000000c0), 0x10)
r7 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="2309fefffffffcffffff0100000005000700000000000800090000000000060002000100000008000a000400010008001700", @ANYRES32=r3], 0x3c}}, 0x0)

0s ago: executing program 3 (id=2078):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f00000001c0)={0x9, 0x6, 0x3, 0x4800})
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x3, 0x0, @loopback}, 0x1c)
r2 = openat$sndtimer(0xffffff9c, &(0x7f0000000000), 0x40000)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x18, 0x55, 0x1e5, 0x0, 0x0, {0x7, r5}}, 0x18}}, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)
r6 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382)
r7 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x0)
pwritev(r7, &(0x7f0000000440)=[{0x0}, {0x0}, {0x0}], 0x3, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r6, 0x4c00, r7)
ioctl$LOOP_SET_BLOCK_SIZE(r6, 0x4c09, 0x1)
ioctl$LOOP_SET_STATUS(r6, 0x4c02, 0x0)
syz_emit_ethernet(0x6a, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x0)
ioctl$LOOP_GET_STATUS(r6, 0x4c03, &(0x7f0000000040))
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='nv\x00', 0x3)
shutdown(r0, 0x2)

kernel console output (not intermixed with test programs):

plete_evt+0x23d/0x380
[   82.805528][ T5313]  ? skb_pull_data+0x166/0x210
[   82.806922][ T5313]  hci_le_meta_evt+0x2e2/0x5d0
[   82.808327][ T5313]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[   82.810365][ T5313]  hci_event_packet+0x666/0x1190
[   82.811837][ T5313]  ? __pfx_hci_le_meta_evt+0x10/0x10
[   82.813369][ T5313]  ? __pfx_hci_event_packet+0x10/0x10
[   82.814925][ T5313]  ? kcov_remote_start+0x3df/0x6e0
[   82.816428][ T5313]  hci_rx_work+0x2c5/0x16b0
[   82.817749][ T5313]  ? process_one_work+0x8bb/0x1b30
[   82.819230][ T5313]  process_one_work+0x958/0x1b30
[   82.820688][ T5313]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   82.822311][ T5313]  ? __pfx_process_one_work+0x10/0x10
[   82.823872][ T5313]  ? rcu_is_watching+0x12/0xc0
[   82.825268][ T5313]  ? assign_work+0x1a0/0x250
[   82.826625][ T5313]  worker_thread+0x6c8/0xf00
[   82.827978][ T5313]  ? __kthread_parkme+0x148/0x220
[   82.829433][ T5313]  ? __pfx_worker_thread+0x10/0x10
[   82.830932][ T5313]  kthread+0x2c1/0x3a0
[   82.832125][ T5313]  ? _raw_spin_unlock_irq+0x23/0x50
[   82.833626][ T5313]  ? __pfx_kthread+0x10/0x10
[   82.834969][ T5313]  ret_from_fork+0x45/0x80
[   82.836270][ T5313]  ? __pfx_kthread+0x10/0x10
[   82.837612][ T5313]  ret_from_fork_asm+0x1a/0x30
[   82.839008][ T5313]  </TASK>
[   82.841269][ T5313] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[   82.846559][ T5313] Bluetooth: hci3: failed to register connection device
[   82.911749][ T6779] can0 (unregistered): slcan off ptm0.
[   82.915082][ T6779] mkiss: ax0: crc mode is auto.
[   83.819882][ T5957] Bluetooth: hci2: unexpected event for opcode 0x0003
[   84.130758][ T6824] netlink: 8 bytes leftover after parsing attributes in process `syz.3.175'.
[   85.790745][ T6848] : entered promiscuous mode
[   85.971312][   T39] kauditd_printk_skb: 4 callbacks suppressed
[   85.971323][   T39] audit: type=1326 audit(1737315380.907:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6849 comm="syz.3.182" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[   85.979343][   T39] audit: type=1326 audit(1737315380.917:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6849 comm="syz.3.182" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[   86.296892][ T6865] netlink: 'syz.3.184': attribute type 10 has an invalid length.
[   86.389588][ T6865] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.400861][ T6865] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   86.513273][ T6868] loop7: detected capacity change from 0 to 16384
[   86.953410][ T6865] syz.3.184 (6865) used greatest stack depth: 20896 bytes left
[   87.143470][ T6880] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[   87.894864][ T5957] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[   87.894908][ T5957] Bluetooth: hci2: Injecting HCI hardware error event
[   87.895839][ T5957] Bluetooth: hci2: hardware error 0x00
[   89.961152][ T5957] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[   91.357918][ T6952] netlink: 'syz.1.206': attribute type 10 has an invalid length.
[   91.368159][ T6952] team0: Port device netdevsim0 added
[   91.375929][ T6952] netlink: 'syz.1.206': attribute type 10 has an invalid length.
[   91.385806][ T6952] team0: Port device netdevsim0 removed
[   91.392320][ T6952] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[   91.750143][ T6956] lo speed is unknown, defaulting to 1000
[   91.756865][ T6956] lo speed is unknown, defaulting to 1000
[   91.761424][ T6956] lo speed is unknown, defaulting to 1000
[   91.819941][ T6956] infiniband s
z1: set active
[   91.822910][ T6007] lo speed is unknown, defaulting to 1000
[   91.825323][ T6956] infiniband s
z1: added lo
[   91.851759][ T6956] RDS/IB: s
z1: added
[   91.853343][ T6956] smc: adding ib device s
z1 with port count 1
[   91.855386][ T6956] smc:    ib device s
z1 port 1 has pnetid 
[   91.873492][ T6007] lo speed is unknown, defaulting to 1000
[   91.877401][ T6956] lo speed is unknown, defaulting to 1000
[   91.935803][ T6963] bridge_slave_0: left allmulticast mode
[   91.937613][ T6963] bridge_slave_0: left promiscuous mode
[   91.939633][ T6963] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.952968][ T6963] bridge_slave_1: left allmulticast mode
[   91.954796][ T6963] bridge_slave_1: left promiscuous mode
[   91.956768][ T6963] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.970959][ T6963] team0: Port device team_slave_0 removed
[   91.977490][ T6963] team0: Port device team_slave_1 removed
[   91.979512][ T6963] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   91.982023][ T6963] batman_adv: batadv0: Removing interface: batadv_slave_0
[   91.985997][ T6963] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   91.988258][ T6963] batman_adv: batadv0: Removing interface: batadv_slave_1
[   91.993630][ T6963] batman_adv: batadv0: Removing interface: vxlan0
[   91.997007][ T6956] lo speed is unknown, defaulting to 1000
[   92.033621][ T6964] team0: Mode changed to "broadcast"
[   92.042902][ T6956] lo speed is unknown, defaulting to 1000
[   92.065983][ T6963] vlan0: entered promiscuous mode
[   92.070344][ T6963] team0: Port device vlan0 added
[   92.078381][ T6963] tipc: Started in network mode
[   92.079835][ T6963] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   92.082471][ T6963] tipc: Enabled bearer <eth:team0>, priority 0
[   92.084318][ T6956] lo speed is unknown, defaulting to 1000
[   92.117725][ T6968] 9pnet_fd: Insufficient options for proto=fd
[   92.301189][ T1338] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   92.461109][ T1338] usb 6-1: Using ep0 maxpacket: 8
[   92.464492][ T1338] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[   92.467701][ T1338] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   92.471823][ T1338] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   92.475865][ T1338] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   92.478603][ T1338] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   92.482375][ T1338] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   92.484994][ T1338] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   92.693675][ T1338] usb 6-1: usb_control_msg returned -32
[   92.695331][ T1338] usbtmc 6-1:16.0: can't read capabilities
[   93.048610][ T6980] usbtmc 6-1:16.0: usb_control_msg returned -32
[   93.082616][    T8] tipc: Node number set to 11578026
[   93.107713][ T6006] usb 6-1: USB disconnect, device number 2
[   93.652092][ T6991] netlink: 'syz.0.217': attribute type 9 has an invalid length.
[   94.952215][ T7009] process 'syz.2.221' launched '/dev/fd/3' with NULL argv: empty string added
[   95.324646][ T7014] virtio-fs: tag </dev/sr0> not found
[   95.591219][   T30] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   95.781128][   T30] usb 6-1: Using ep0 maxpacket: 32
[   95.785901][   T30] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[   95.788733][   T30] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   95.792129][   T30] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[   95.795250][   T30] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   95.798074][   T30] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   95.801492][   T30] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   95.805287][   T30] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   95.807854][   T30] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.816423][   T30] usb 6-1: config 0 descriptor??
[   96.072683][   T30] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   96.078801][   T30] usb 6-1: USB disconnect, device number 3
[   96.082484][   T30] usblp0: removed
[   96.918679][ T7041] ptrace attach of "/syz-executor exec"[5952] was attempted by "/syz-executor exec"[7041]
[   97.106801][   T30] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   97.361004][   T30] usb 6-1: Using ep0 maxpacket: 32
[   97.374859][   T30] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[   97.378522][   T30] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[   97.382238][   T30] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[   97.386041][   T30] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[   97.389966][   T30] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[   97.394082][   T30] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[   97.399372][   T30] usb 6-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[   97.403152][   T30] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.476693][ T7046] lo speed is unknown, defaulting to 1000
[   97.694788][   T30] usb 6-1: config 0 descriptor??
[   97.913816][   T30] usblp 6-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[   98.394616][ T7061] lo speed is unknown, defaulting to 1000
[   98.468730][ T6007] usb 6-1: USB disconnect, device number 4
[   98.472263][ T6007] usblp0: removed
[   98.494107][ T7061] 9pnet_fd: Insufficient options for proto=fd
[   99.303542][ T7083] netlink: 'syz.2.238': attribute type 4 has an invalid length.
[  100.507862][ T7083] syz.2.238 (7083) used greatest stack depth: 20304 bytes left
[  101.058160][ T7105] netlink: 'syz.1.244': attribute type 2 has an invalid length.
[  101.060436][ T7105] netlink: 'syz.1.244': attribute type 8 has an invalid length.
[  101.065062][ T7105] netlink: 132 bytes leftover after parsing attributes in process `syz.1.244'.
[  102.600708][ T7128] syzkaller0: entered promiscuous mode
[  102.604677][ T7128] syzkaller0: entered allmulticast mode
[  102.661146][ T7129] block nbd2: Device being setup by another task
[  102.725045][ T7129] syz.2.249: attempt to access beyond end of device
[  102.725045][ T7129] nbd2: rw=0, sector=64, nr_sectors = 1 limit=0
[  102.728925][ T7129] syz.2.249: attempt to access beyond end of device
[  102.728925][ T7129] nbd2: rw=0, sector=256, nr_sectors = 1 limit=0
[  102.733581][ T7129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  102.737048][ T7129] getblk(): invalid block size 512 requested
[  102.739420][ T7129] logical block size: 1024
[  102.741874][ T7129] CPU: 2 UID: 0 PID: 7129 Comm: syz.2.249 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[  102.745844][ T7129] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  102.749969][ T7129] Call Trace:
[  102.751288][ T7129]  <TASK>
[  102.752426][ T7129]  dump_stack_lvl+0x16c/0x1f0
[  102.754246][ T7129]  __getblk_slow+0x4fe/0x5c0
[  102.755794][ T7126] block nbd2: shutting down sockets
[  102.756024][ T7129]  ? __pfx___might_resched+0x10/0x10
[  102.759401][ T7129]  ? fs_reclaim_acquire+0xae/0x150
[  102.761329][ T7129]  bdev_getblk+0xb1/0xc0
[  102.762940][ T7129]  __bread_gfp+0x86/0x340
[  102.764578][ T7129]  udf_read_tagged+0xae/0x740
[  102.766442][ T7129]  udf_check_anchor_block+0x8a/0x4b0
[  102.768454][ T7129]  ? udf_get_last_block+0x1cf/0x2b0
[  102.770481][ T7129]  ? __pfx_udf_check_anchor_block+0x10/0x10
[  102.772742][ T7129]  ? __brelse+0x8c/0xb0
[  102.774344][ T7129]  udf_load_vrs+0x668/0x1050
[  102.776153][ T7129]  ? __pfx_udf_load_vrs+0x10/0x10
[  102.778070][ T7129]  ? lockdep_init_map_type+0x16d/0x7d0
[  102.780168][ T7129]  ? __pfx_udf_get_last_session+0x10/0x10
[  102.782362][ T7129]  udf_fill_super+0x79b/0x1e00
[  102.784218][ T7129]  ? __pfx_udf_fill_super+0x10/0x10
[  102.786218][ T7129]  ? do_raw_spin_lock+0x12d/0x2c0
[  102.788129][ T7129]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  102.790191][ T7129]  ? set_blocksize+0x2a8/0x360
[  102.792015][ T7129]  ? sb_set_blocksize+0xf6/0x120
[  102.793935][ T7129]  ? setup_bdev_super+0x369/0x730
[  102.795884][ T7129]  get_tree_bdev_flags+0x38b/0x620
[  102.797837][ T7129]  ? __pfx_udf_fill_super+0x10/0x10
[  102.799874][ T7129]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  102.802021][ T7129]  ? bpf_lsm_capable+0x9/0x10
[  102.803821][ T7129]  vfs_get_tree+0x8f/0x380
[  102.805551][ T7129]  path_mount+0x6e1/0x1f00
[  102.807288][ T7129]  ? kmem_cache_free+0x152/0x4c0
[  102.809194][ T7129]  ? __pfx_path_mount+0x10/0x10
[  102.811130][ T7129]  ? putname+0x13c/0x180
[  102.812760][ T7129]  __ia32_sys_mount+0x292/0x310
[  102.814612][ T7129]  ? __pfx___ia32_sys_mount+0x10/0x10
[  102.816698][ T7129]  __do_fast_syscall_32+0x73/0x120
[  102.818667][ T7129]  do_fast_syscall_32+0x32/0x80
[  102.820236][ T7129]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  102.822035][ T7129] RIP: 0023:0xf7f3f579
[  102.823231][ T7129] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  102.828374][ T7129] RSP: 002b:00000000f505455c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  102.830829][ T7129] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000020004a00
[  102.833085][ T7129] RDX: 0000000020000040 RSI: 0000000000008007 RDI: 0000000000000000
[  102.835337][ T7129] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  102.837586][ T7129] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  102.839900][ T7129] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  102.842521][ T7129]  </TASK>
[  102.884018][ T7129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  102.891234][ T7129] syz.2.249: attempt to access beyond end of device
[  102.891234][ T7129] nbd2: rw=0, sector=64, nr_sectors = 2 limit=0
[  102.907254][ T7129] syz.2.249: attempt to access beyond end of device
[  102.907254][ T7129] nbd2: rw=0, sector=512, nr_sectors = 2 limit=0
[  102.911367][ T7129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  102.918899][ T7129] syz.2.249: attempt to access beyond end of device
[  102.918899][ T7129] nbd2: rw=0, sector=1024, nr_sectors = 2 limit=0
[  102.924499][ T7129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  102.927520][ T7129] syz.2.249: attempt to access beyond end of device
[  102.927520][ T7129] nbd2: rw=0, sector=64, nr_sectors = 4 limit=0
[  102.931464][ T7129] syz.2.249: attempt to access beyond end of device
[  102.931464][ T7129] nbd2: rw=0, sector=1024, nr_sectors = 4 limit=0
[  102.935579][ T7129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  102.940560][ T7129] syz.2.249: attempt to access beyond end of device
[  102.940560][ T7129] nbd2: rw=0, sector=2048, nr_sectors = 4 limit=0
[  102.944566][ T7129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  102.947452][ T7129] syz.2.249: attempt to access beyond end of device
[  102.947452][ T7129] nbd2: rw=0, sector=64, nr_sectors = 8 limit=0
[  102.951285][ T7129] syz.2.249: attempt to access beyond end of device
[  102.951285][ T7129] nbd2: rw=0, sector=2048, nr_sectors = 8 limit=0
[  102.955036][ T7129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=256, location=256
[  102.957923][ T7129] UDF-fs: error (device nbd2): udf_read_tagged: read failed, block=512, location=512
[  102.960693][ T7129] UDF-fs: warning (device nbd2): udf_fill_super: No partition found (1)
[  103.250063][ T7142] Illegal XDP return value 4294967274 on prog  (id 53) dev N/A, expect packet loss!
[  103.906997][ T7148] 9pnet_fd: Insufficient options for proto=fd
[  104.553593][ T7150] mkiss: ax0: crc mode is auto.
[  105.986354][ T7169] netlink: 36 bytes leftover after parsing attributes in process `syz.0.259'.
[  106.004281][ T7176] cgroup: fork rejected by pids controller in /syz1
[  106.298575][ T7388] netlink: 'syz.2.261': attribute type 9 has an invalid length.
[  106.789377][ T7391] netlink: 8 bytes leftover after parsing attributes in process `syz.0.262'.
[  107.024817][ T7395] netlink: 'syz.3.263': attribute type 2 has an invalid length.
[  107.027576][ T7395] netlink: 'syz.3.263': attribute type 8 has an invalid length.
[  107.030869][ T7395] netlink: 132 bytes leftover after parsing attributes in process `syz.3.263'.
[  107.913415][ T7418] lo speed is unknown, defaulting to 1000
[  108.074348][ T7422] random: crng reseeded on system resumption
[  108.126700][ T7422] lo speed is unknown, defaulting to 1000
[  108.134396][ T7418] block nbd3: Device being setup by another task
[  108.215290][ T7424] block nbd3: shutting down sockets
[  108.578394][ T7418] block nbd3: NBD_DISCONNECT
[  108.580294][ T7418] block nbd3: Send disconnect failed -32
[  108.872620][ T7438] netlink: 'syz.1.273': attribute type 10 has an invalid length.
[  108.882753][ T7438] netlink: 40 bytes leftover after parsing attributes in process `syz.1.273'.
[  108.885678][ T7438] team0: entered promiscuous mode
[  108.891679][ T7438] team_slave_0: entered promiscuous mode
[  108.893467][ T7438] team_slave_1: entered promiscuous mode
[  108.895233][ T7438] team0: entered allmulticast mode
[  108.896716][ T7438] team_slave_0: entered allmulticast mode
[  108.898591][ T7438] team_slave_1: entered allmulticast mode
[  108.900800][ T7438] bridge0: port 1(team0) entered blocking state
[  108.904905][ T7438] bridge0: port 1(team0) entered disabled state
[  108.940481][ T7439] lo speed is unknown, defaulting to 1000
[  109.104498][ T7444] overlayfs: missing 'workdir'
[  109.901038][ T7448] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  109.904791][ T7448] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  111.000866][ T7475] netlink: 4 bytes leftover after parsing attributes in process `syz.0.281'.
[  111.786723][ T7471] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  112.065959][ T7490] netlink: 36 bytes leftover after parsing attributes in process `syz.3.285'.
[  112.071893][ T7490] netlink: 16 bytes leftover after parsing attributes in process `syz.3.285'.
[  112.081461][ T7490] netlink: 36 bytes leftover after parsing attributes in process `syz.3.285'.
[  112.086366][ T7490] netlink: 36 bytes leftover after parsing attributes in process `syz.3.285'.
[  114.052166][ T5957] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  114.055807][ T5957] Bluetooth: hci0: Injecting HCI hardware error event
[  114.060159][ T5957] Bluetooth: hci0: hardware error 0x00
[  115.037720][ T7536] netlink: 'syz.3.296': attribute type 9 has an invalid length.
[  116.121035][ T5957] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  117.883896][ T7587] netlink: 4 bytes leftover after parsing attributes in process `syz.1.315'.
[  118.372615][ T5313] Bluetooth: hci3: command 0x0405 tx timeout
[  118.754438][ T7584] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  119.853718][ T7609] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  120.087732][ T7611] netlink: 36 bytes leftover after parsing attributes in process `syz.0.314'.
[  120.090505][ T7611] netlink: 16 bytes leftover after parsing attributes in process `syz.0.314'.
[  120.093700][ T7611] netlink: 36 bytes leftover after parsing attributes in process `syz.0.314'.
[  120.096350][ T7611] netlink: 36 bytes leftover after parsing attributes in process `syz.0.314'.
[  124.689345][   T39] audit: type=1326 audit(1737315419.627:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.3.333" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  124.696765][   T39] audit: type=1326 audit(1737315419.627:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.3.333" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  124.703100][   T39] audit: type=1326 audit(1737315419.627:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.3.333" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf706e579 code=0x7ffc0000
[  124.709702][   T39] audit: type=1326 audit(1737315419.647:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.3.333" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  124.718293][   T39] audit: type=1326 audit(1737315419.647:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.3.333" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  124.727810][   T39] audit: type=1326 audit(1737315419.667:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.3.333" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf706e579 code=0x7ffc0000
[  124.737527][   T39] audit: type=1326 audit(1737315419.667:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.3.333" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  124.745807][   T39] audit: type=1326 audit(1737315419.667:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.3.333" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  124.753869][   T39] audit: type=1326 audit(1737315419.677:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.3.333" exe="/syz-executor" sig=0 arch=40000003 syscall=41 compat=1 ip=0xf706e579 code=0x7ffc0000
[  124.766633][   T39] audit: type=1326 audit(1737315419.677:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7679 comm="syz.3.333" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  125.175776][ T7694] netlink: 36 bytes leftover after parsing attributes in process `syz.1.336'.
[  125.178432][ T7694] netlink: 16 bytes leftover after parsing attributes in process `syz.1.336'.
[  125.182345][ T7694] netlink: 36 bytes leftover after parsing attributes in process `syz.1.336'.
[  125.184927][ T7694] netlink: 36 bytes leftover after parsing attributes in process `syz.1.336'.
[  126.435232][ T7704] [U] 
[  126.904611][ T7723] netdevsim netdevsim3: Direct firmware load for ./file0 failed with error -2
[  126.907314][ T7723] netdevsim netdevsim3: Falling back to sysfs fallback for: ./file0
[  128.006204][ T7736] random: crng reseeded on system resumption
[  128.053416][ T7736] lo speed is unknown, defaulting to 1000
[  128.361233][ T5313] Bluetooth: hci3: command 0x0405 tx timeout
[  130.228276][ T7751] [U] 
[  131.279796][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  131.279839][   T39] audit: type=1326 audit(1737315426.217:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7776 comm="syz.0.358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  131.294084][   T39] audit: type=1326 audit(1737315426.217:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7776 comm="syz.0.358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  131.300263][   T39] audit: type=1326 audit(1737315426.217:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7776 comm="syz.0.358" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf715e579 code=0x7ffc0000
[  131.401052][   T39] audit: type=1326 audit(1737315426.337:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7776 comm="syz.0.358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  131.409567][   T39] audit: type=1326 audit(1737315426.337:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7776 comm="syz.0.358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  131.416714][   T39] audit: type=1326 audit(1737315426.337:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7776 comm="syz.0.358" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf715e579 code=0x7ffc0000
[  131.423100][   T39] audit: type=1326 audit(1737315426.347:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7776 comm="syz.0.358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  131.429282][   T39] audit: type=1326 audit(1737315426.347:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7776 comm="syz.0.358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  131.436036][   T39] audit: type=1326 audit(1737315426.347:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7776 comm="syz.0.358" exe="/syz-executor" sig=0 arch=40000003 syscall=41 compat=1 ip=0xf715e579 code=0x7ffc0000
[  131.442180][   T39] audit: type=1326 audit(1737315426.347:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7776 comm="syz.0.358" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  131.817499][ T7785] Cannot find add_set index 3 as target
[  132.282318][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  132.284744][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  132.641126][ T7803] random: crng reseeded on system resumption
[  132.690322][ T7795] lo speed is unknown, defaulting to 1000
[  134.091127][ T7826] overlayfs: missing 'lowerdir'
[  137.797564][ T7875] Cannot find add_set index 3 as target
[  137.924229][ T7880] netlink: 'syz.1.388': attribute type 9 has an invalid length.
[  138.189536][ T7887] netlink: 40 bytes leftover after parsing attributes in process `syz.0.390'.
[  138.470031][   T39] kauditd_printk_skb: 15 callbacks suppressed
[  138.470098][   T39] audit: type=1326 audit(1737315433.407:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.2.393" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  138.502264][   T39] audit: type=1326 audit(1737315433.417:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.2.393" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  138.508410][   T39] audit: type=1326 audit(1737315433.437:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.2.393" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  138.514968][   T39] audit: type=1326 audit(1737315433.437:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.2.393" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  138.588329][   T39] audit: type=1326 audit(1737315433.437:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.2.393" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  138.599111][   T39] audit: type=1326 audit(1737315433.487:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.2.393" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  138.605439][   T39] audit: type=1326 audit(1737315433.497:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.2.393" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  138.612251][   T39] audit: type=1326 audit(1737315433.497:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.2.393" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  138.618211][   T39] audit: type=1326 audit(1737315433.507:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.2.393" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  138.624653][   T39] audit: type=1326 audit(1737315433.507:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7896 comm="syz.2.393" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f3f579 code=0x7ffc0000
[  139.090143][ T6006] libceph: connect (1)[c::]:6789 error -101
[  139.104462][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  139.117765][ T6006] libceph: connect (1)[c::]:6789 error -101
[  139.126027][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  139.441816][ T6006] libceph: connect (1)[c::]:6789 error -101
[  139.451235][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  139.489364][ T7904] ceph: No mds server is up or the cluster is laggy
[  139.841459][ T7923] netlink: 8 bytes leftover after parsing attributes in process `syz.1.398'.
[  141.802706][ T7951] overlay: Unknown parameter '/'
[  144.319103][ T7991] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  144.321641][ T7991] overlayfs: failed to set xattr on upper
[  144.323382][ T7991] overlayfs: ...falling back to redirect_dir=nofollow.
[  144.325373][ T7991] overlayfs: ...falling back to index=off.
[  144.327192][ T7991] overlayfs: ...falling back to uuid=null.
[  144.464389][ T6006] libceph: connect (1)[c::]:6789 error -101
[  144.471162][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  144.487981][ T6006] libceph: connect (1)[c::]:6789 error -101
[  144.515508][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  144.793380][ T6006] libceph: connect (1)[c::]:6789 error -101
[  144.802567][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  145.084268][ T7996] ceph: No mds server is up or the cluster is laggy
[  145.125733][ T8007] netlink: 40 bytes leftover after parsing attributes in process `syz.1.420'.
[  145.401045][ T5313] Bluetooth: hci3: command 0x0405 tx timeout
[  146.756332][ T8026] overlayfs: missing 'lowerdir'
[  146.813882][ T8034] netlink: 'syz.3.426': attribute type 4 has an invalid length.
[  148.510420][   T39] kauditd_printk_skb: 34 callbacks suppressed
[  148.510432][   T39] audit: type=1326 audit(1737315443.447:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8058 comm="syz.3.433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  148.518543][   T39] audit: type=1326 audit(1737315443.447:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8058 comm="syz.3.433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  148.525005][   T39] audit: type=1326 audit(1737315443.457:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8058 comm="syz.3.433" exe="/syz-executor" sig=0 arch=40000003 syscall=172 compat=1 ip=0xf706e579 code=0x7ffc0000
[  148.533074][   T39] audit: type=1326 audit(1737315443.457:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8058 comm="syz.3.433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  148.539186][   T39] audit: type=1326 audit(1737315443.457:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8058 comm="syz.3.433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  148.551823][   T39] audit: type=1326 audit(1737315443.457:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8058 comm="syz.3.433" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf706e579 code=0x7ffc0000
[  148.558255][   T39] audit: type=1326 audit(1737315443.457:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8058 comm="syz.3.433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  148.564434][   T39] audit: type=1326 audit(1737315443.457:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8058 comm="syz.3.433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  148.570566][   T39] audit: type=1326 audit(1737315443.457:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8058 comm="syz.3.433" exe="/syz-executor" sig=0 arch=40000003 syscall=41 compat=1 ip=0xf706e579 code=0x7ffc0000
[  148.585405][   T39] audit: type=1326 audit(1737315443.457:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8058 comm="syz.3.433" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  148.923716][ T5313] Bluetooth: hci3: command 0x0405 tx timeout
[  150.440155][   T30] libceph: connect (1)[c::]:6789 error -101
[  150.455169][ T8093] overlayfs: missing 'lowerdir'
[  150.461542][   T30] libceph: mon0 (1)[c::]:6789 connect error
[  150.467952][   T30] libceph: connect (1)[c::]:6789 error -101
[  150.474062][   T30] libceph: mon0 (1)[c::]:6789 connect error
[  150.741746][   T30] libceph: connect (1)[c::]:6789 error -101
[  150.745745][   T30] libceph: mon0 (1)[c::]:6789 connect error
[  151.286512][ T6006] libceph: connect (1)[c::]:6789 error -101
[  151.298224][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  151.484327][ T8089] ceph: No mds server is up or the cluster is laggy
[  151.990077][ T8114] overlayfs: missing 'lowerdir'
[  152.044186][ T8115] netlink: 40 bytes leftover after parsing attributes in process `syz.2.442'.
[  152.283252][ T8119] mmap: syz.3.443 (8119) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  154.072110][ T8146] cgroup: fork rejected by pids controller in /syz3
[  154.358483][ T8145] netlink: 'syz.2.452': attribute type 12 has an invalid length.
[  154.446694][ T8587] overlayfs: missing 'lowerdir'
[  154.486048][ T6006] libceph: connect (1)[c::]:6789 error -101
[  154.488232][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  154.742255][ T6006] libceph: connect (1)[c::]:6789 error -101
[  154.744996][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  154.827252][ T8151] ceph: No mds server is up or the cluster is laggy
[  156.246870][ T8623] netlink: 4 bytes leftover after parsing attributes in process `syz.0.460'.
[  156.643321][ T8630] netlink: 'syz.2.462': attribute type 12 has an invalid length.
[  157.333290][ T8638] veth0_vlan: entered allmulticast mode
[  157.343512][   T60] tipc: Resetting bearer <eth:team0>
[  157.389809][ T8642] overlayfs: missing 'lowerdir'
[  157.393150][ T8638] veth0_vlan: left promiscuous mode
[  157.395830][ T8638] veth0_vlan: entered promiscuous mode
[  157.944790][ T8654] netlink: 'syz.2.469': attribute type 12 has an invalid length.
[  158.985445][ T8677] netlink: 'syz.3.473': attribute type 12 has an invalid length.
[  160.013598][ T8693] veth0_vlan: entered allmulticast mode
[  160.057220][ T8693] veth0_vlan: left promiscuous mode
[  160.060331][ T8693] veth0_vlan: entered promiscuous mode
[  160.237963][ T8694] netlink: 'syz.2.484': attribute type 12 has an invalid length.
[  160.691075][ T8703] overlayfs: missing 'lowerdir'
[  164.074747][ T8749] netlink: 'syz.2.490': attribute type 12 has an invalid length.
[  164.752997][ T8760] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  164.755566][ T8760] overlayfs: failed to set xattr on upper
[  164.757668][ T8760] overlayfs: ...falling back to redirect_dir=nofollow.
[  164.760265][ T8760] overlayfs: ...falling back to index=off.
[  164.764417][ T8760] overlayfs: ...falling back to uuid=null.
[  165.108864][ T8765] overlayfs: missing 'workdir'
[  170.201079][ T5950] Bluetooth: hci1: command 0x0406 tx timeout
[  170.214094][ T5950] Bluetooth: hci3: command 0x0405 tx timeout
[  171.871864][ T8849] overlayfs: missing 'lowerdir'
[  176.908433][ T8930] netlink: 'syz.0.528': attribute type 12 has an invalid length.
[  177.022218][ T8934] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  177.025608][ T8934] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  178.184565][ T8946] lo speed is unknown, defaulting to 1000
[  179.881115][   T59] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  180.041078][   T59] usb 5-1: Using ep0 maxpacket: 8
[  180.044117][   T59] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  180.047011][   T59] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  180.049592][   T59] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[  180.053038][   T59] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[  180.056385][   T59] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  180.059051][   T59] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  180.065960][   T59] hub 5-1:1.0: bad descriptor, ignoring hub
[  180.068517][   T59] hub 5-1:1.0: probe with driver hub failed with error -5
[  180.071818][   T59] cdc_wdm 5-1:1.0: skipping garbage
[  180.073909][   T59] cdc_wdm 5-1:1.0: skipping garbage
[  180.077894][   T59] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  180.080710][   T59] cdc_wdm 5-1:1.0: Unknown control protocol
[  180.688304][ T8975] usb 5-1: reset high-speed USB device number 2 using dummy_hcd
[  181.218543][ T8996] cgroup: fork rejected by pids controller in /syz2
[  181.484569][ T8975] usb 5-1: reset high-speed USB device number 2 using dummy_hcd
[  181.495473][ T8975] usb 5-1: device reset changed ep0 maxpacket size!
[  181.500097][ T5987] usb 5-1: USB disconnect, device number 2
[  181.631133][ T5987] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  181.791035][ T5987] usb 5-1: Using ep0 maxpacket: 32
[  181.794822][ T5987] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  181.798223][ T5987] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  181.802026][ T5987] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  181.805498][ T5987] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  181.808709][ T5987] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 22
[  181.814529][ T5987] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  181.817874][ T5987] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  181.820777][ T5987] usb 5-1: SerialNumber: syz
[  182.037748][ T5987] cdc_acm 5-1:1.0: Control and data interfaces are not separated!
[  182.040116][ T5987] cdc_acm 5-1:1.0: This needs exactly 3 endpoints
[  182.042424][ T5987] cdc_acm 5-1:1.0: probe with driver cdc_acm failed with error -22
[  182.046052][ T5987] usb 5-1: USB disconnect, device number 3
[  182.390719][ T9237] netlink: 'syz.1.558': attribute type 12 has an invalid length.
[  185.356658][ T9276] netlink: 'syz.1.563': attribute type 12 has an invalid length.
[  185.425842][ T9278] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode
[  185.428498][ T9278] macvtap1: entered promiscuous mode
[  185.430287][ T9278] macvtap1: entered allmulticast mode
[  185.432139][ T9278] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode
[  185.438872][ T9278] mac80211_hwsim hwsim8 wlan0: left allmulticast mode
[  185.443319][ T9278] mac80211_hwsim hwsim8 wlan0: left promiscuous mode
[  187.285727][ T9420] netlink: zone id is out of range
[  187.287299][ T9420] netlink: zone id is out of range
[  187.288877][ T9420] netlink: zone id is out of range
[  188.024877][ T9430] netlink: 'syz.0.575': attribute type 12 has an invalid length.
[  188.051243][ T9431] block nbd1: Device being setup by another task
[  188.098335][ T9429] block nbd1: shutting down sockets
[  188.111678][ T9426] bio_check_eod: 1 callbacks suppressed
[  188.111692][ T9426] syz.1.574: attempt to access beyond end of device
[  188.111692][ T9426] nbd1: rw=0, sector=64, nr_sectors = 2 limit=0
[  188.117546][ T9426] syz.1.574: attempt to access beyond end of device
[  188.117546][ T9426] nbd1: rw=0, sector=512, nr_sectors = 2 limit=0
[  188.121521][ T9426] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  188.124319][ T9426] syz.1.574: attempt to access beyond end of device
[  188.124319][ T9426] nbd1: rw=0, sector=1024, nr_sectors = 2 limit=0
[  188.127994][ T9426] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  188.131018][ T9426] syz.1.574: attempt to access beyond end of device
[  188.131018][ T9426] nbd1: rw=0, sector=64, nr_sectors = 4 limit=0
[  188.136977][ T9426] syz.1.574: attempt to access beyond end of device
[  188.136977][ T9426] nbd1: rw=0, sector=1024, nr_sectors = 4 limit=0
[  188.140685][ T9426] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  188.143653][ T9426] syz.1.574: attempt to access beyond end of device
[  188.143653][ T9426] nbd1: rw=0, sector=2048, nr_sectors = 4 limit=0
[  188.147606][ T9426] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  188.150573][ T9426] syz.1.574: attempt to access beyond end of device
[  188.150573][ T9426] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[  188.154302][ T9426] syz.1.574: attempt to access beyond end of device
[  188.154302][ T9426] nbd1: rw=0, sector=2048, nr_sectors = 8 limit=0
[  188.158037][ T9426] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[  188.160792][ T9426] syz.1.574: attempt to access beyond end of device
[  188.160792][ T9426] nbd1: rw=0, sector=4096, nr_sectors = 8 limit=0
[  188.164536][ T9426] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[  188.167344][ T9426] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1)
[  188.333880][ T9440] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.416768][ T9440] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.494699][ T9440] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.579829][ T9440] bond0: (slave netdevsim0): Releasing backup interface
[  188.595669][ T9440] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.668572][ T9440] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  188.675329][ T9440] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  188.682750][ T9440] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  188.694438][ T9440] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  190.265560][ T9478] netlink: 'syz.3.587': attribute type 12 has an invalid length.
[  190.715434][ T9493] lo speed is unknown, defaulting to 1000
[  190.751406][ T9495] ptrace attach of "/syz-executor exec"[5952] was attempted by "/syz-executor exec"[9495]
[  190.924743][ T9509] 9p: Unknown uid 00000000004294967295
[  190.966538][ T9503] netlink: 'syz.1.590': attribute type 12 has an invalid length.
[  190.979006][ T9515] overlayfs: failed to resolve './bus': -2
[  190.984546][ T9515] sctp: [Deprecated]: syz.0.591 (pid 9515) Use of struct sctp_assoc_value in delayed_ack socket option.
[  190.984546][ T9515] Use struct sctp_sack_info instead
[  192.134234][ T9569] netlink: 12 bytes leftover after parsing attributes in process `syz.1.598'.
[  192.993624][ T9579] netlink: 'syz.2.601': attribute type 12 has an invalid length.
[  193.152801][ T9586] netlink: 'syz.2.603': attribute type 12 has an invalid length.
[  193.418330][ T9600] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[  193.421073][ T9600] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  193.425724][ T9600] vhci_hcd vhci_hcd.0: Device attached
[  193.611464][ T6011] vhci_hcd: vhci_device speed not set
[  193.681048][ T6011] usb 43-1: new full-speed USB device number 2 using vhci_hcd
[  193.731810][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  193.734477][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  193.994590][ T9601] vhci_hcd: connection reset by peer
[  193.999209][ T1142] vhci_hcd: stop threads
[  194.002239][ T1142] vhci_hcd: release socket
[  194.004613][ T1142] vhci_hcd: disconnect device
[  197.695099][ T9636] lo speed is unknown, defaulting to 1000
[  198.181224][ T9668] vxcan1: tx address claim with dlc 1
[  198.841697][ T6011] vhci_hcd: vhci_device speed not set
[  199.772461][ T9683] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3738224872 (478492783616 ns) > initial count (91121186304 ns). Using initial count to start timer.
[  200.012525][ T9690] netlink: 'syz.1.624': attribute type 12 has an invalid length.
[  200.433349][ T9697] xt_TCPMSS: Only works on TCP SYN packets
[  201.383053][ T9711] lo speed is unknown, defaulting to 1000
[  202.575344][ T9733] syz.0.633 uses obsolete (PF_INET,SOCK_PACKET)
[  202.582714][ T9733] 9pnet_fd: Insufficient options for proto=fd
[  202.977014][ T9739] netlink: 'syz.0.635': attribute type 12 has an invalid length.
[  203.645470][ T6006] hid (null): unknown global tag 0xe
[  203.647233][ T6006] hid (null): unknown global tag 0xe
[  203.649186][ T6006] hid (null): unknown global tag 0xc
[  203.650755][ T6006] hid (null): unknown global tag 0xd
[  203.785244][ T6006] hid-generic 0000:0004:00A9.0002: unknown main item tag 0x0
[  203.787526][ T6006] hid-generic 0000:0004:00A9.0002: unknown global tag 0xe
[  203.789687][ T6006] hid-generic 0000:0004:00A9.0002: item 0 2 1 14 parsing failed
[  203.792460][ T9749] tipc: Started in network mode
[  203.793896][ T9749] tipc: Node identity ffffffff, cluster identity 4711
[  203.795963][ T9749] tipc: Node number set to 4294967295
[  203.798694][ T6006] hid-generic 0000:0004:00A9.0002: probe with driver hid-generic failed with error -22
[  205.628659][ T9778] netlink: 8 bytes leftover after parsing attributes in process `syz.0.641'.
[  206.059665][ T9781] netlink: 'syz.1.645': attribute type 1 has an invalid length.
[  206.076681][ T9781] 8021q: adding VLAN 0 to HW filter on device bond1
[  206.099476][ T9781] bond1: (slave gretap1): making interface the new active one
[  206.104486][ T9781] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  206.175884][ T9791] ata1.00: invalid command format 189
[  207.226567][ T9803] lo speed is unknown, defaulting to 1000
[  207.422531][ T9807] netlink: 'syz.2.650': attribute type 12 has an invalid length.
[  208.879866][ T9829] netlink: 12 bytes leftover after parsing attributes in process `syz.1.655'.
[  209.338299][ T9836] lo speed is unknown, defaulting to 1000
[  209.358643][ T9840] netlink: 'syz.2.659': attribute type 12 has an invalid length.
[  209.382962][ T9841] netlink: 'syz.0.658': attribute type 39 has an invalid length.
[  209.868546][ T9848] netlink: 4 bytes leftover after parsing attributes in process `syz.0.661'.
[  211.342616][ T9881] netlink: 'syz.3.668': attribute type 12 has an invalid length.
[  211.762363][ T9883] netlink: 'syz.1.669': attribute type 12 has an invalid length.
[  213.830459][ T9938] netlink: 'syz.0.682': attribute type 12 has an invalid length.
[  213.834138][ T9934] netlink: 'syz.3.681': attribute type 12 has an invalid length.
[  213.870182][ T9930] netlink: 'syz.2.680': attribute type 12 has an invalid length.
[  215.746415][ T9979] netlink: 'syz.3.693': attribute type 12 has an invalid length.
[  215.843209][ T9980] netlink: 'syz.0.694': attribute type 12 has an invalid length.
[  216.064755][ T9985] netlink: 'syz.1.696': attribute type 12 has an invalid length.
[  216.634763][ T9992] can0: slcan on pts0.
[  216.712686][ T9992] can0 (unregistered): slcan off pts0.
[  217.774679][T10029] netlink: 40 bytes leftover after parsing attributes in process `syz.1.704'.
[  217.788025][T10029] netlink: 40 bytes leftover after parsing attributes in process `syz.1.704'.
[  217.809099][T10032] netlink: 4 bytes leftover after parsing attributes in process `syz.0.705'.
[  217.813931][T10032] netlink: 12 bytes leftover after parsing attributes in process `syz.0.705'.
[  219.991009][ T6011] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  220.423401][ T6011] usb 5-1: config index 0 descriptor too short (expected 23569, got 27)
[  220.425865][ T6011] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  220.429398][ T6011] usb 5-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  220.432079][ T6011] usb 5-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  220.434349][ T6011] usb 5-1: Manufacturer: syz
[  220.440280][ T6011] usb 5-1: config 0 descriptor??
[  220.491072][ T6011] rc_core: IR keymap rc-hauppauge not found
[  220.492855][ T6011] Registered IR keymap rc-empty
[  220.495275][ T6011] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0
[  220.498797][ T6011] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/rc/rc0/input6
[  221.004458][T10092] netlink: 8 bytes leftover after parsing attributes in process `syz.0.715'.
[  222.778594][   T59] usb 5-1: USB disconnect, device number 4
[  222.931248][T10115] syz.1.726[10115] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  222.931301][T10115] syz.1.726[10115] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  222.934415][T10115] syz.1.726[10115] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  222.941540][T10115] random: crng reseeded on system resumption
[  223.021750][T10118] netlink: 'syz.0.725': attribute type 12 has an invalid length.
[  224.902212][T10153] tipc: Enabled bearer <eth:team0>, priority 0
[  225.838212][T10168] netlink: 'syz.1.738': attribute type 12 has an invalid length.
[  227.285085][T10186] ip6gretap0: entered promiscuous mode
[  228.562017][T10209] netlink: 'syz.2.750': attribute type 12 has an invalid length.
[  228.632402][T10213] overlayfs: empty lowerdir
[  228.673980][T10214] netlink: 'syz.1.749': attribute type 12 has an invalid length.
[  229.845155][T10229] input: syz0 as /devices/virtual/input/input7
[  229.864617][T10229] syz_tun: entered allmulticast mode
[  229.874014][T10229] syz_tun: left allmulticast mode
[  230.065678][T10242] ptrace attach of "/syz-executor exec"[5954] was attempted by "/syz-executor exec"[10242]
[  230.663780][T10254] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  230.767161][T10255] netlink: 'syz.2.763': attribute type 12 has an invalid length.
[  231.748239][T10273] netlink: 'syz.1.770': attribute type 12 has an invalid length.
[  231.992585][T10278] lo speed is unknown, defaulting to 1000
[  232.900258][T10288] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  232.905544][T10288] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  232.925431][T10296] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(7)
[  232.927542][T10296] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  232.930073][T10296] vhci_hcd vhci_hcd.0: Device attached
[  233.141567][ T5987] vhci_hcd: vhci_device speed not set
[  233.176048][ T5957] Bluetooth: hci1: unexpected event for opcode 0x040e
[  233.201053][ T5987] usb 43-1: new full-speed USB device number 3 using vhci_hcd
[  233.223046][T10302] vhci_hcd: connection reset by peer
[  233.228273][   T12] vhci_hcd: stop threads
[  233.230120][   T12] vhci_hcd: release socket
[  233.232147][   T12] vhci_hcd: disconnect device
[  233.333388][T10312] netlink: 'syz.2.779': attribute type 12 has an invalid length.
[  233.601107][   T59] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  233.761043][   T59] usb 7-1: Using ep0 maxpacket: 32
[  233.763857][   T59] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  233.768422][   T59] usb 7-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  233.771375][   T59] usb 7-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  233.773794][   T59] usb 7-1: Product: syz
[  233.775032][   T59] usb 7-1: Manufacturer: syz
[  233.776381][   T59] usb 7-1: SerialNumber: syz
[  233.778673][   T59] usb 7-1: config 0 descriptor??
[  233.783196][T10314] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  233.997054][T10314] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.000068][T10314] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  234.119980][T10329] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.122569][T10329] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  234.158223][T10330] netlink: 'syz.1.782': attribute type 12 has an invalid length.
[  234.332146][T10329] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.336934][T10329] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  234.343235][T10329] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  234.345787][T10329] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  234.350034][ T5988] usb 7-1: USB disconnect, device number 4
[  234.426476][T10333] netlink: 'syz.0.784': attribute type 12 has an invalid length.
[  234.999837][   T39] kauditd_printk_skb: 4 callbacks suppressed
[  234.999849][   T39] audit: type=1800 audit(1737315529.937:115): pid=10343 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.787" name="bus" dev="overlay" ino=1234 res=0 errno=0
[  235.583444][T10354] Cannot find add_set index 3 as target
[  236.703234][T10373] netlink: 4 bytes leftover after parsing attributes in process `syz.2.794'.
[  237.281431][T10388] netlink: 4 bytes leftover after parsing attributes in process `syz.2.799'.
[  237.377305][T10391] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  237.384143][T10391] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  237.386775][T10391] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  237.504091][T10393] vlan2: entered allmulticast mode
[  237.506043][T10393] bond0: entered allmulticast mode
[  237.507609][T10393] bond_slave_0: entered allmulticast mode
[  237.509452][T10393] batadv0: entered allmulticast mode
[  237.513127][T10393] bond0: left allmulticast mode
[  237.514615][T10393] bond_slave_0: left allmulticast mode
[  237.516600][T10393] batadv0: left allmulticast mode
[  237.623091][T10393] hub 9-0:1.0: USB hub found
[  237.625271][T10393] hub 9-0:1.0: 1 port detected
[  238.361132][ T5987] vhci_hcd: vhci_device speed not set
[  238.365266][T10415] loop2: detected capacity change from 0 to 524287999
[  238.421607][T10411] netlink: 'syz.2.806': attribute type 12 has an invalid length.
[  239.271976][T10429] netlink: 'syz.3.810': attribute type 12 has an invalid length.
[  241.162828][T10457] netlink: 'syz.0.819': attribute type 12 has an invalid length.
[  241.682449][   T58] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  242.832455][T10495] netlink: 'syz.0.823': attribute type 12 has an invalid length.
[  252.343622][T10522] netlink: 28 bytes leftover after parsing attributes in process `syz.0.829'.
[  253.609487][T10552] netlink: 'syz.0.837': attribute type 12 has an invalid length.
[  253.658835][T10551] netlink: 'syz.2.836': attribute type 12 has an invalid length.
[  254.645615][T10571] netlink: 'syz.3.838': attribute type 12 has an invalid length.
[  255.162190][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  255.164045][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  255.492790][T10584] netlink: 12 bytes leftover after parsing attributes in process `syz.3.845'.
[  255.624269][T10588] lo speed is unknown, defaulting to 1000
[  256.366983][T10601] netlink: 'syz.3.850': attribute type 12 has an invalid length.
[  256.378298][T10602] netlink: 'syz.2.849': attribute type 12 has an invalid length.
[  257.142129][T10617] netlink: 'syz.2.854': attribute type 10 has an invalid length.
[  257.148210][T10617] netlink: 'syz.2.854': attribute type 10 has an invalid length.
[  258.505934][T10635] 9pnet_fd: Insufficient options for proto=fd
[  258.549373][T10634] syz.0.856: attempt to access beyond end of device
[  258.549373][T10634] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  258.554293][T10634] XFS (nbd0): SB validate failed with error -5.
[  258.574268][T10639] block nbd0: Send control failed (result -89)
[  258.576872][T10639] block nbd0: Request send failed, requeueing
[  258.581043][T10639] block nbd0: Dead connection, failed to find a fallback
[  258.581093][ T5960] block nbd0: Receive control failed (result -32)
[  258.583267][T10639] block nbd0: shutting down sockets
[  258.587501][T10639] I/O error, dev nbd0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  259.003909][T10648] netlink: 44 bytes leftover after parsing attributes in process `syz.0.862'.
[  259.006596][T10648] netlink: 59 bytes leftover after parsing attributes in process `syz.0.862'.
[  260.166229][T10674] siw: device registration error -23
[  260.478933][T10683] 9pnet_fd: Insufficient options for proto=fd
[  261.782691][   T39] audit: type=1326 audit(1737315556.727:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10701 comm="syz.1.876" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f15579 code=0x0
[  262.463349][T10721] Bluetooth: MGMT ver 1.23
[  267.437552][ T6011] IPVS: starting estimator thread 0...
[  267.551086][T10786] IPVS: using max 37 ests per chain, 88800 per kthread
[  269.548689][T10839] netlink: 4 bytes leftover after parsing attributes in process `syz.3.902'.
[  269.840019][T10851] netlink: 'syz.1.912': attribute type 12 has an invalid length.
[  270.442114][T10853] loop2: detected capacity change from 0 to 524287999
[  271.572993][T10875] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.639566][T10875] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.730863][T10875] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.817530][T10875] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.998677][T10875] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  272.025622][T10875] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  272.049494][T10875] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  272.054553][T10875] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  272.464393][T10892] netlink: 'syz.2.917': attribute type 12 has an invalid length.
[  275.866288][T10938] ip6gretap0: entered promiscuous mode
[  275.928098][T10933] netlink: 'syz.1.930': attribute type 12 has an invalid length.
[  277.239820][T10956] netlink: 'syz.2.933': attribute type 12 has an invalid length.
[  279.176250][T10981] netlink: 'syz.3.940': attribute type 12 has an invalid length.
[  279.577932][ T6011] hid (null): unknown global tag 0xe
[  279.579639][ T6011] hid (null): unknown global tag 0xe
[  279.581700][ T6011] hid (null): unknown global tag 0xc
[  279.583300][ T6011] hid (null): unknown global tag 0xd
[  279.587793][ T6011] hid-generic 0000:0004:00A9.0003: unknown main item tag 0x0
[  279.590047][ T6011] hid-generic 0000:0004:00A9.0003: unknown global tag 0xe
[  279.593242][ T6011] hid-generic 0000:0004:00A9.0003: item 0 2 1 14 parsing failed
[  279.595749][ T6011] hid-generic 0000:0004:00A9.0003: probe with driver hid-generic failed with error -22
[  281.088955][T11005] netlink: 'syz.2.948': attribute type 12 has an invalid length.
[  281.786902][T11025] can0: slcan on pts0.
[  281.851826][T11025] can0 (unregistered): slcan off pts0.
[  283.553944][T11060] netlink: 'syz.1.953': attribute type 12 has an invalid length.
[  284.667259][T11079] netlink: 'syz.1.960': attribute type 12 has an invalid length.
[  285.839708][T11097] netlink: 'syz.1.965': attribute type 12 has an invalid length.
[  287.431139][ T5987] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  287.652555][ T5987] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  287.659323][ T5987] usb 7-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  287.663893][ T5987] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  287.667141][ T5987] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  287.791671][T11129] netlink: 'syz.0.973': attribute type 12 has an invalid length.
[  287.798820][T11121] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  287.804700][ T5987] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[  288.235291][ T6011] usb 7-1: USB disconnect, device number 5
[  288.564351][T11141] netlink: 'syz.1.976': attribute type 39 has an invalid length.
[  289.298804][T11152] netlink: 'syz.3.978': attribute type 12 has an invalid length.
[  289.463934][T11159] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.774711][T11159] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  289.955676][T11167] lo speed is unknown, defaulting to 1000
[  289.978029][T11159] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.073403][T11159] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  290.160195][T11159] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  290.166198][T11159] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  290.171509][T11159] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  290.176568][T11159] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  291.936052][T11194] netlink: 'syz.1.985': attribute type 12 has an invalid length.
[  292.244125][T11202] netlink: 'syz.3.989': attribute type 39 has an invalid length.
[  292.431083][   T59] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  292.767569][   T59] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  292.772127][   T59] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  292.776020][   T59] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  292.780826][   T59] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.785871][T11196] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  292.791821][   T59] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  292.804739][T11210] netlink: 'syz.2.990': attribute type 12 has an invalid length.
[  293.051158][   T59] usb 6-1: USB disconnect, device number 5
[  293.193333][T11216] tipc: Enabling of bearer <eth:team0> rejected, already enabled
[  294.456380][T11236] netlink: 'syz.1.997': attribute type 12 has an invalid length.
[  295.433727][T11246] netlink: 'syz.1.1002': attribute type 12 has an invalid length.
[  295.877701][T11255] netlink: 'syz.3.1004': attribute type 12 has an invalid length.
[  296.531179][    T8] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  296.693321][    T8] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  296.696665][    T8] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  296.699526][    T8] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  296.704278][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  296.709796][T11264] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  296.714609][    T8] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  296.973965][    T8] usb 5-1: USB disconnect, device number 5
[  297.936370][T11289] xt_TCPMSS: Only works on TCP SYN packets
[  297.967654][T11286] ptrace attach of "/syz-executor exec"[5952] was attempted by "/syz-executor exec"[11286]
[  298.130082][T11288] netlink: 'syz.1.1014': attribute type 12 has an invalid length.
[  299.160897][T11308] netlink: 'syz.1.1016': attribute type 12 has an invalid length.
[  300.018863][T11318] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1019'.
[  300.322820][   T39] audit: type=1800 audit(1737315595.267:117): pid=11326 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1020" name="bus" dev="overlay" ino=1449 res=0 errno=0
[  302.530397][T11361] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  302.787766][T11364] netlink: 'syz.3.1029': attribute type 12 has an invalid length.
[  305.950736][T11422] netlink: 'syz.2.1043': attribute type 39 has an invalid length.
[  306.075797][T11423] netdevsim netdevsim3: Direct firmware load for .
[  306.075797][T11423]  failed with error -2
[  306.103753][T11423] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[  306.103753][T11423] 
[  309.161815][T11479] ptrace attach of "/syz-executor exec"[5949] was attempted by "/syz-executor exec"[11479]
[  309.816593][T11489] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.825074][T11491] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  309.828136][T11491] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  309.831604][T11491] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  310.055965][T11489] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.332693][T11489] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.462807][T11489] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.771056][T11489] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  310.797799][T11489] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  310.809210][T11489] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  310.842513][T11489] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  311.023907][ T6011] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  311.953280][T11529] Cannot find add_set index 3 as target
[  312.318652][T11537] netlink: 'syz.2.1067': attribute type 12 has an invalid length.
[  313.595533][T11556] ptrace attach of "/syz-executor exec"[5945] was attempted by "/syz-executor exec"[11556]
[  316.606706][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  316.609221][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  321.495273][T11586] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.588640][T11586] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  321.669649][T11590] overlayfs: missing 'lowerdir'
[  322.027729][T11582] syz.2.1074: attempt to access beyond end of device
[  322.027729][T11582] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  322.031644][T11582] XFS (nbd2): SB validate failed with error -5.
[  322.089305][T11586] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.183206][T11586] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.331649][T11586] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  322.337280][T11586] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  322.342872][T11586] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  322.348139][T11586] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  322.901363][T11610] Cannot find add_set index 3 as target
[  323.102954][T11613] netlink: 'syz.1.1077': attribute type 12 has an invalid length.
[  323.908672][T11624] ptrace attach of "/syz-executor exec"[5945] was attempted by "/syz-executor exec"[11624]
[  324.111509][   T58] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  324.866107][T11655] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  324.868862][T11655] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  324.871841][T11655] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  325.625695][T11661] syz.3.1087: attempt to access beyond end of device
[  325.625695][T11661] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  325.629704][T11661] XFS (nbd3): SB validate failed with error -5.
[  326.037655][T11676] Cannot find add_set index 3 as target
[  326.405114][T11685] lo speed is unknown, defaulting to 1000
[  334.427468][T11707] 9pnet_fd: Insufficient options for proto=fd
[  334.438022][T11707] netlink: 'syz.0.1092': attribute type 1 has an invalid length.
[  334.448721][T11707] 8021q: adding VLAN 0 to HW filter on device bond1
[  334.548504][T11707] 8021q: adding VLAN 0 to HW filter on device bond1
[  334.552908][T11707] bond1: (slave vcan0): The slave device specified does not support setting the MAC address
[  334.556516][T11707] bond1: (slave vcan0): Error -95 calling set_mac_address
[  334.930761][ T6011] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  335.379129][T11720] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1096'.
[  335.381989][T11720] netlink: 59 bytes leftover after parsing attributes in process `syz.2.1096'.
[  336.417638][T11740] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  336.420219][T11740] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  336.423130][T11740] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  336.576712][T11744] netlink: 'syz.0.1108': attribute type 10 has an invalid length.
[  336.581270][T11744] netlink: 'syz.0.1108': attribute type 10 has an invalid length.
[  337.063997][T11749] netlink: 'syz.1.1101': attribute type 12 has an invalid length.
[  337.529793][T11762] netlink: 'syz.3.1112': attribute type 10 has an invalid length.
[  337.534491][T11762] netlink: 'syz.3.1112': attribute type 10 has an invalid length.
[  338.108766][T11767] syz.1.1103: attempt to access beyond end of device
[  338.108766][T11767] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  338.112993][T11767] XFS (nbd1): SB validate failed with error -5.
[  338.349006][T11777] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1105'.
[  344.682207][T11862] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  344.773585][T11877] netlink: zone id is out of range
[  344.872635][T11877] bridge0: port 2(bridge_slave_1) entered disabled state
[  344.875768][T11877] bridge0: port 1(bridge_slave_0) entered disabled state
[  348.016890][T11928] netlink: 'syz.3.1138': attribute type 12 has an invalid length.
[  348.680045][T11936] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  348.682782][T11936] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  348.685459][T11936] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  350.233953][T11965] lo speed is unknown, defaulting to 1000
[  350.839131][T11976] netlink: 'syz.3.1151': attribute type 12 has an invalid length.
[  351.401149][ T6006] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  351.601021][ T6006] usb 7-1: Using ep0 maxpacket: 8
[  351.603706][ T6006] usb 7-1: config index 0 descriptor too short (expected 301, got 45)
[  351.607233][ T6006] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  351.619207][ T6006] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  351.631126][ T6006] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  351.637040][ T6006] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  351.655218][ T6006] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  351.678078][ T6006] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.924168][ T6006] usb 7-1: GET_CAPABILITIES returned 0
[  351.925721][ T6006] usbtmc 7-1:16.0: can't read capabilities
[  352.239391][T11978] usbtmc 7-1:16.0: usb_control_msg returned -71
[  352.239679][   T59] usb 7-1: USB disconnect, device number 6
[  352.248322][T11981] usbtmc 7-1:16.0: send_request_dev_dep_msg_in returned -19
[  354.611508][T12030] netlink: 'syz.2.1163': attribute type 12 has an invalid length.
[  355.260756][T12040] netlink: 284 bytes leftover after parsing attributes in process `syz.2.1167'.
[  355.531231][T12046] netlink: 'syz.1.1166': attribute type 10 has an invalid length.
[  355.568175][T12046] netlink: 'syz.1.1166': attribute type 10 has an invalid length.
[  355.706468][T12047] netlink: 'syz.0.1174': attribute type 12 has an invalid length.
[  357.474152][T12080] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  357.476065][T12080] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  357.478965][T12080] vhci_hcd vhci_hcd.0: Device attached
[  357.681016][ T5987] vhci_hcd: vhci_device speed not set
[  357.741626][ T5987] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[  358.331509][ T6011] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  358.424270][T12091] bond0: entered promiscuous mode
[  358.425911][T12091] bond_slave_0: entered promiscuous mode
[  358.428355][T12091] bond_slave_1: entered promiscuous mode
[  359.063661][T12117] netlink: 'syz.1.1180': attribute type 12 has an invalid length.
[  359.413275][T12081] vhci_hcd: connection reset by peer
[  359.416800][   T12] vhci_hcd: stop threads
[  359.418123][   T12] vhci_hcd: release socket
[  359.421289][   T12] vhci_hcd: disconnect device
[  359.824489][T12130] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  359.827992][T12130] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  359.834755][T12130] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  360.682705][T12151] netlink: 'syz.0.1187': attribute type 10 has an invalid length.
[  360.685873][T12151] netlink: 'syz.0.1187': attribute type 10 has an invalid length.
[  362.831272][ T5987] vhci_hcd: vhci_device speed not set
[  365.446008][T12166] ntfs3(nullb0): Primary boot signature is not NTFS.
[  365.448619][T12166] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  365.492135][T12169] ubi0: attaching mtd0
[  365.494517][T12169] ubi0: scanning is finished
[  365.495860][T12169] ubi0: empty MTD device detected
[  365.725862][T12169] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  365.763640][T12169] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  365.765860][T12169] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  365.779309][T12169] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  365.787583][T12169] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  365.789697][T12169] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  365.793195][T12169] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 112324103
[  365.796712][T12169] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  365.799676][T12179] ubi0: background thread "ubi_bgt0d" started, PID 12179
[  366.561007][ T6006] usb 6-1: new full-speed USB device number 6 using dummy_hcd
[  366.726535][T12198] netlink: 'syz.2.1193': attribute type 12 has an invalid length.
[  366.732935][ T6006] usb 6-1: not running at top speed; connect to a high speed hub
[  366.735917][ T6006] usb 6-1: config 1 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 911, setting to 64
[  366.738899][ T6006] usb 6-1: config 1 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  366.743831][ T6006] usb 6-1: config 1 interface 0 has no altsetting 0
[  366.747445][ T6006] usb 6-1: New USB device found, idVendor=056a, idProduct=010f, bcdDevice= 0.40
[  366.749950][ T6006] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  366.768786][ T6006] usb 6-1: Product: syz
[  366.769979][ T6006] usb 6-1: Manufacturer: syz
[  366.772189][ T6006] usb 6-1: SerialNumber: syz
[  366.901826][T12187] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  368.470053][ T6006] usbhid 6-1:1.0: can't add hid device: -71
[  368.471938][ T6006] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  368.491495][ T6006] usb 6-1: USB disconnect, device number 6
[  368.970875][T12236] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  369.526467][T12247] netlink: 'syz.3.1204': attribute type 12 has an invalid length.
[  370.761030][ T5957] Bluetooth: hci3: command 0x0405 tx timeout
[  371.734722][T12288] lo speed is unknown, defaulting to 1000
[  371.768284][T12289] ptrace attach of "/syz-executor exec"[5945] was attempted by "/syz-executor exec"[12289]
[  373.051583][ T6011] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  373.637422][T12331] bridge0: port 3(syz_tun) entered blocking state
[  373.642065][T12331] bridge0: port 3(syz_tun) entered disabled state
[  373.645089][T12331] syz_tun: entered allmulticast mode
[  373.648932][T12331] syz_tun: entered promiscuous mode
[  373.653724][T12331] bridge0: port 3(syz_tun) entered blocking state
[  373.656647][T12331] bridge0: port 3(syz_tun) entered forwarding state
[  373.785712][   T39] audit: type=1326 audit(1737316181.722:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12330 comm="syz.0.1222" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x0
[  374.826847][T12356] netlink: 'syz.0.1227': attribute type 12 has an invalid length.
[  378.045160][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  378.047698][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  383.361394][T12376] netlink: 100 bytes leftover after parsing attributes in process `syz.3.1232'.
[  383.396095][T12376] syzkaller0: entered promiscuous mode
[  383.398182][T12376] syzkaller0: entered allmulticast mode
[  383.461989][T12379] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1229'.
[  385.388621][T12420] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1236'.
[  385.391400][T12420] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1236'.
[  385.394057][T12420] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1236'.
[  386.189264][T12450] netlink: 'syz.1.1238': attribute type 12 has an invalid length.
[  387.775131][T12470] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1245'.
[  388.829280][T12499] netlink: 'syz.0.1251': attribute type 12 has an invalid length.
[  390.299823][T12522] syz.1.1257: attempt to access beyond end of device
[  390.299823][T12522] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  390.304969][T12522] XFS (nbd1): SB validate failed with error -5.
[  392.109351][T12561] netlink: 'syz.0.1263': attribute type 12 has an invalid length.
[  392.856889][T12571] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1270'.
[  392.911481][T12571] geneve0: entered allmulticast mode
[  395.741281][T12616] lo speed is unknown, defaulting to 1000
[  395.920580][T12609] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  397.271088][T12651] netlink: 'syz.0.1288': attribute type 12 has an invalid length.
[  398.109089][T12667] IPVS: Unknown mcast interface: geneve0
[  399.811253][T12702] [U] 
[  404.119842][T12780] lo speed is unknown, defaulting to 1000
[  404.154816][T12782] ptrace attach of "/syz-executor exec"[5949] was attempted by "/syz-executor exec"[12782]
[  404.502262][T12790] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1325'.
[  406.834034][T12817] tipc: Resetting bearer <eth:team0>
[  406.918293][T12817] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  406.920811][T12817] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  406.925647][T12817] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  406.928174][T12817] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  409.164622][   T39] audit: type=1326 audit(1737316730.105:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12854 comm="syz.2.1344" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f3f579 code=0x0
[  409.304696][T12859] lo speed is unknown, defaulting to 1000
[  409.336139][T12860] ptrace attach of "/syz-executor exec"[5952] was attempted by "/syz-executor exec"[12860]
[  409.502113][T12866] ntfs3(nullb0): Primary boot signature is not NTFS.
[  409.504147][T12866] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  412.530769][T12903] ubi: mtd0 is already attached to ubi0
[  414.135837][T12930] netlink: 'syz.3.1359': attribute type 12 has an invalid length.
[  414.772330][T12963] ubi: mtd0 is already attached to ubi0
[  415.198853][T12978] netlink: 'syz.3.1372': attribute type 12 has an invalid length.
[  415.783469][T13003] lo speed is unknown, defaulting to 1000
[  415.814467][T13007] ptrace attach of "/syz-executor exec"[5954] was attempted by "/syz-executor exec"[13007]
[  419.097823][T13079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1381'.
[  419.102632][T13079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1381'.
[  419.111040][T13079] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1381'.
[  419.140301][T13084] netlink: 'syz.1.1378': attribute type 12 has an invalid length.
[  419.430716][T13098] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1383'.
[  420.313006][T13118] lo speed is unknown, defaulting to 1000
[  421.099380][T13134] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1389'.
[  422.060301][T13145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1394'.
[  422.066160][T13145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1394'.
[  422.072050][T13145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1394'.
[  422.156596][T13146] lo speed is unknown, defaulting to 1000
[  422.173815][T13147] ptrace attach of "/syz-executor exec"[5949] was attempted by "/syz-executor exec"[13147]
[  422.764513][T13153] lo speed is unknown, defaulting to 1000
[  423.503633][T13170] loop7: detected capacity change from 0 to 16384
[  424.384790][T13189] netlink: 'syz.3.1402': attribute type 12 has an invalid length.
[  424.578963][T13197] netlink: 'syz.2.1401': attribute type 12 has an invalid length.
[  426.925782][T13238] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  427.581980][T13249] netlink: 'syz.1.1413': attribute type 12 has an invalid length.
[  428.405763][T13262] netlink: 'syz.3.1416': attribute type 12 has an invalid length.
[  429.303297][T13272] bond0: entered promiscuous mode
[  429.304858][T13272] bond_slave_0: entered promiscuous mode
[  429.306808][T13272] batadv0: entered promiscuous mode
[  429.347353][ T6011] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  430.431270][T13303] lo speed is unknown, defaulting to 1000
[  430.658781][T13315] batman_adv: batadv0: Adding interface: dummy0
[  430.660601][T13315] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  430.669637][T13315] batman_adv: batadv0: Interface activated: dummy0
[  430.677409][T13315] batadv0: mtu less than device minimum
[  430.681062][T13315] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  430.686339][T13315] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  430.694505][T13315] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  430.706565][T13315] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  430.717294][T13315] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  430.722170][T13315] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  430.727635][T13315] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  430.732883][T13315] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  430.737877][T13315] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  431.515912][T13324] netlink: 'syz.1.1428': attribute type 12 has an invalid length.
[  439.482703][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  439.485367][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  439.529793][T13338] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1429'.
[  439.532562][T13338] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1429'.
[  440.753029][ T6011] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  440.968194][T13371] syz.0.1436: attempt to access beyond end of device
[  440.968194][T13371] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  440.972040][T13371] XFS (nbd0): SB validate failed with error -5.
[  440.983972][   T36] I/O error, dev nbd0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  441.065515][T13381] bridge0: port 3(syz_tun) entered disabled state
[  441.109308][T13381] syz_tun (unregistering): left allmulticast mode
[  441.111380][T13381] syz_tun (unregistering): left promiscuous mode
[  441.113231][T13381] bridge0: port 3(syz_tun) entered disabled state
[  441.874804][T13406] netlink: 'syz.0.1439': attribute type 12 has an invalid length.
[  441.887173][T13405] netlink: 197276 bytes leftover after parsing attributes in process `syz.3.1440'.
[  451.328532][T13452] infiniband s
z1: set active
[  451.334919][T13452] bond0: left promiscuous mode
[  451.336362][T13452] bond_slave_0: left promiscuous mode
[  451.337990][T13452] bond_slave_1: left promiscuous mode
[  451.355258][T13452] 8021q: adding VLAN 0 to HW filter on device bond0
[  451.358897][T13452] net_ratelimit: 10 callbacks suppressed
[  451.358903][T13452] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  451.373945][  T834] lo speed is unknown, defaulting to 1000
[  453.439335][T13495] lo speed is unknown, defaulting to 1000
[  454.808091][T13513] loop7: detected capacity change from 0 to 16384
[  454.883764][T13519] 9pnet_fd: Insufficient options for proto=fd
[  454.946730][T13515] lo speed is unknown, defaulting to 1000
[  454.991027][ T5987] IPVS: starting estimator thread 0...
[  455.081085][T13520] IPVS: using max 21 ests per chain, 50400 per kthread
[  455.176915][T13528] syz.1.1464: attempt to access beyond end of device
[  455.176915][T13528] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  455.180676][T13528] XFS (nbd1): SB validate failed with error -5.
[  456.254942][T13553] program syz.3.1468 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  458.670731][T13594] lo speed is unknown, defaulting to 1000
[  460.576367][T13623] binder: 13615:13623 ioctl c0306201 0 returned -14
[  461.885228][T13651] block device autoloading is deprecated and will be removed.
[  463.129531][T13669] loop7: detected capacity change from 0 to 16384
[  463.669095][T13680] 9pnet_fd: Insufficient options for proto=fd
[  465.664253][T13718] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1509'.
[  466.239260][T13723] netlink: 'syz.0.1510': attribute type 12 has an invalid length.
[  466.441758][T13714] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  466.514227][T13727] syz.2.1511: attempt to access beyond end of device
[  466.514227][T13727] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  466.518153][T13727] XFS (nbd2): SB validate failed with error -5.
[  466.759745][T13738] kAFS: No cell specified
[  468.624478][T13760] lo speed is unknown, defaulting to 1000
[  468.935565][T13766] netlink: 'syz.3.1520': attribute type 12 has an invalid length.
[  469.098037][T13771] netlink: 'syz.3.1521': attribute type 12 has an invalid length.
[  470.361094][ T5957] Bluetooth: hci3: command 0x0405 tx timeout
[  471.050418][T13805] netlink: 'syz.1.1529': attribute type 12 has an invalid length.
[  471.470384][T13803] program syz.0.1527 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  474.130244][T13844] random: crng reseeded on system resumption
[  476.164460][T13884] syz.2.1548: attempt to access beyond end of device
[  476.164460][T13884] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  476.168195][T13884] XFS (nbd2): SB validate failed with error -5.
[  476.268962][T13895] kAFS: unable to lookup cell '.,'
[  476.999426][T13911] lo speed is unknown, defaulting to 1000
[  477.030726][T13913] ptrace attach of "/syz-executor exec"[5945] was attempted by "/syz-executor exec"[13913]
[  477.243454][T13920] netlink: 'syz.2.1557': attribute type 1 has an invalid length.
[  477.264196][T13920] bond0: entered promiscuous mode
[  477.265981][T13920] 8021q: adding VLAN 0 to HW filter on device bond0
[  477.315902][T13920] 8021q: adding VLAN 0 to HW filter on device bond1
[  477.320675][T13920] bond0: (slave bond1): making interface the new active one
[  477.323116][T13920] bond1: entered promiscuous mode
[  477.327524][T13920] bond0: (slave bond1): Enslaving as an active interface with an up link
[  477.340817][T13923] kAFS: No cell specified
[  477.388120][T13920] netlink: 'syz.2.1557': attribute type 2 has an invalid length.
[  477.504957][T13926] input: syz0 as /devices/virtual/input/input8
[  477.657806][T13928] syz.3.1559: attempt to access beyond end of device
[  477.657806][T13928] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  477.661756][T13928] XFS (nbd3): SB validate failed with error -5.
[  478.827428][T13953] kAFS: No cell specified
[  479.455841][T13966] binder: 13960:13966 ioctl c0306201 0 returned -14
[  480.187677][T13972] syz.0.1569: attempt to access beyond end of device
[  480.187677][T13972] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  480.191777][T13972] XFS (nbd0): SB validate failed with error -5.
[  480.231294][ T1163] I/O error, dev nbd0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  480.608495][T13986] kAFS: No cell specified
[  480.921099][ T5957] Bluetooth: hci3: command 0x0405 tx timeout
[  481.260837][T13998] netlink: 'syz.2.1572': attribute type 12 has an invalid length.
[  482.353162][T14015] kAFS: No cell specified
[  482.897371][T14022] syz.2.1580: attempt to access beyond end of device
[  482.897371][T14022] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  482.902159][T14022] XFS (nbd2): SB validate failed with error -5.
[  483.231721][T14034] kAFS: No cell specified
[  483.834205][T14044] lo speed is unknown, defaulting to 1000
[  484.398715][T14060] kAFS: No cell specified
[  484.572676][T14058] loop7: detected capacity change from 0 to 16384
[  485.427746][T14078] kAFS: No cell specified
[  486.312442][ T6006] libceph: connect (1)[c::]:6789 error -101
[  486.314647][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  486.571499][ T6006] libceph: connect (1)[c::]:6789 error -101
[  486.577315][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  487.000210][T14094] ceph: No mds server is up or the cluster is laggy
[  487.363129][T14111] syz.3.1599: attempt to access beyond end of device
[  487.363129][T14111] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  487.368438][T14111] XFS (nbd3): SB validate failed with error -5.
[  487.603141][T14114] kAFS: No cell specified
[  489.632363][T14150] netlink: 'syz.2.1606': attribute type 12 has an invalid length.
[  490.082096][T14155] syz.0.1608: attempt to access beyond end of device
[  490.082096][T14155] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  490.086571][T14155] XFS (nbd0): SB validate failed with error -5.
[  490.098349][ T1163] I/O error, dev nbd0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  490.222733][T14167] syz.0.1609: attempt to access beyond end of device
[  490.222733][T14167] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  490.226603][T14167] XFS (nbd0): SB validate failed with error -5.
[  490.245422][ T1163] I/O error, dev nbd0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  491.835738][T14205] syz.1.1617: attempt to access beyond end of device
[  491.835738][T14205] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  491.848939][T14205] XFS (nbd1): SB validate failed with error -5.
[  492.320262][T14217] syz.2.1620: attempt to access beyond end of device
[  492.320262][T14217] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  492.324340][T14217] XFS (nbd2): SB validate failed with error -5.
[  492.464314][ T5957] Bluetooth: hci1: unexpected event for opcode 0x2040
[  493.349320][T14250] syz.2.1626: attempt to access beyond end of device
[  493.349320][T14250] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  493.354526][T14250] XFS (nbd2): SB validate failed with error -5.
[  493.710422][T14268] netlink: 180 bytes leftover after parsing attributes in process `syz.0.1635'.
[  493.713120][T14268] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1635'.
[  493.715600][T14268] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1635'.
[  493.718022][T14268] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1635'.
[  494.786311][T14282] syz.1.1630: attempt to access beyond end of device
[  494.786311][T14282] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  494.791094][T14282] XFS (nbd1): SB validate failed with error -5.
[  494.936449][T14294] dvmrp0: entered allmulticast mode
[  495.105124][T14302] syz.3.1636: attempt to access beyond end of device
[  495.105124][T14302] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  495.110346][T14302] XFS (nbd3): SB validate failed with error -5.
[  495.245984][T14315] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1634'.
[  495.389756][T14317] netlink: 168 bytes leftover after parsing attributes in process `syz.3.1637'.
[  495.405216][T14317] loop9: detected capacity change from 0 to 6
[  495.409737][T14317] Dev loop9: unable to read RDB block 6
[  495.411928][T14317]  loop9: unable to read partition table
[  495.413874][T14317] loop9: partition table beyond EOD, truncated
[  495.415638][T14317] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  495.415638][T14317] 
) failed (rc=-5)
[  496.861874][T14331] syz.3.1643: attempt to access beyond end of device
[  496.861874][T14331] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  496.866527][T14331] XFS (nbd3): SB validate failed with error -5.
[  497.105869][   T58] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  497.196171][T14347] bond0: entered promiscuous mode
[  497.197646][T14347] bond_slave_0: entered promiscuous mode
[  497.199279][T14347] bond_slave_1: entered promiscuous mode
[  499.215969][T14382] 8021q: adding VLAN 0 to HW filter on device bond0
[  499.236388][T14382] bond0: (slave rose0): Enslaving as an active interface with an up link
[  499.401935][T14387] netlink: 'syz.0.1654': attribute type 12 has an invalid length.
[  499.791828][T14403] netlink: 'syz.1.1663': attribute type 10 has an invalid length.
[  499.794172][T14403] netlink: 2 bytes leftover after parsing attributes in process `syz.1.1663'.
[  499.934633][T14412] block device autoloading is deprecated and will be removed.
[  500.541408][   T58] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  500.921823][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  500.923791][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  501.312560][T14460] rdma_rxe: rxe_newlink: failed to add lo
[  501.317587][T14460] lo speed is unknown, defaulting to 1000
[  501.323420][T14460] lo speed is unknown, defaulting to 1000
[  501.327429][T14460] lo speed is unknown, defaulting to 1000
[  501.336396][T14460] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  501.353066][T14460] lo speed is unknown, defaulting to 1000
[  501.358268][T14460] lo speed is unknown, defaulting to 1000
[  501.363550][T14460] lo speed is unknown, defaulting to 1000
[  501.367734][T14460] lo speed is unknown, defaulting to 1000
[  501.384622][T14460] ������: renamed from lo
[  501.523886][T14465] netlink: 'syz.0.1666': attribute type 33 has an invalid length.
[  501.526200][T14465] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1666'.
[  501.529073][T14465] tipc: Resetting bearer <eth:team0>
[  501.534436][   T99] tipc: Resetting bearer <eth:team0>
[  501.750949][T14467] syz.0.1667: attempt to access beyond end of device
[  501.750949][T14467] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  501.754954][T14467] XFS (nbd0): SB validate failed with error -5.
[  501.782023][T10639] I/O error, dev nbd0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  501.817271][T14479] loop7: detected capacity change from 0 to 16384
[  507.624683][T14504] input: syz0 as /devices/virtual/input/input11
[  507.719811][   T39] audit: type=1326 audit(1737318880.661:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14503 comm="syz.3.1673" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  507.726622][   T39] audit: type=1326 audit(1737318880.661:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14503 comm="syz.3.1673" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e579 code=0x7ffc0000
[  508.113013][T14507] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  508.743924][T14522] netlink: 'syz.2.1675': attribute type 12 has an invalid length.
[  509.614897][T14548] loop7: detected capacity change from 0 to 16384
[  509.621697][   T58] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  509.782388][T14555] syz.1.1682: attempt to access beyond end of device
[  509.782388][T14555] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  509.787069][T14555] XFS (nbd1): SB validate failed with error -5.
[  510.926699][T14594] netlink: 'syz.1.1687': attribute type 12 has an invalid length.
[  519.982478][T14633] netlink: 'syz.3.1694': attribute type 7 has an invalid length.
[  520.095412][T14637] lo speed is unknown, defaulting to 1000
[  520.267829][T14637] ������ speed is unknown, defaulting to 1000
[  521.125360][ T6006] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  521.127630][ T6006] hid-generic 0000:0003:0000.0004: unknown main item tag 0x0
[  521.136942][ T6006] hid-generic 0000:0003:0000.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  521.606366][T14672] devpts: called with bogus options
[  521.669819][T14674] netlink: 'syz.2.1700': attribute type 12 has an invalid length.
[  522.796633][T14695] [U] 
[  524.061492][   T58] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  524.253793][T14730] netlink: 'syz.3.1711': attribute type 12 has an invalid length.
[  525.687613][ T5960] Bluetooth: hci1: unexpected event for opcode 0x6503
[  529.721332][ T5960] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  529.724807][ T5960] Bluetooth: hci1: Injecting HCI hardware error event
[  529.730706][ T5957] Bluetooth: hci1: hardware error 0x00
[  530.908574][T14782] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  531.492247][T14793] netlink: 'syz.0.1724': attribute type 12 has an invalid length.
[  531.801046][ T5957] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  532.851344][ T5960] Bluetooth: hci4: Entering manufacturer mode failed (-110)
[  533.223569][T14820] block device autoloading is deprecated and will be removed.
[  533.592592][ T5960] Bluetooth: hci3: unexpected event for opcode 0x2031
[  534.073429][T14839] netlink: 'syz.1.1735': attribute type 12 has an invalid length.
[  534.356119][T14843] binder: 14841:14843 ioctl ae01 0 returned -22
[  536.096106][T14878] netlink: 'syz.1.1745': attribute type 10 has an invalid length.
[  536.110325][T14878] team0: left allmulticast mode
[  536.113682][T14878] team_slave_0: left allmulticast mode
[  536.115269][T14878] team_slave_1: left allmulticast mode
[  536.116834][T14878] team0: left promiscuous mode
[  536.118216][T14878] team_slave_0: left promiscuous mode
[  536.120978][T14872] XFS (sr0): Invalid superblock magic number
[  536.123202][T14878] team_slave_1: left promiscuous mode
[  536.130210][T14878] bridge0: port 1(team0) entered disabled state
[  536.148810][T14878] team0: Cannot enslave team device to itself
[  536.743696][T14890] netlink: 'syz.0.1747': attribute type 12 has an invalid length.
[  537.642232][ T5960] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  537.645984][ T5960] Bluetooth: hci3: Injecting HCI hardware error event
[  537.653644][ T5957] Bluetooth: hci3: hardware error 0x00
[  537.664434][T14908] [U] 
[  538.384883][T14917] ISOFS: Unable to identify CD-ROM format.
[  538.414008][T14917] Process accounting resumed
[  538.580485][T14923] lo speed is unknown, defaulting to 1000
[  538.636612][T14924] ptrace attach of "/syz-executor exec"[5952] was attempted by "/syz-executor exec"[14924]
[  538.640076][T14923] ������ speed is unknown, defaulting to 1000
[  539.599406][T14946] netlink: 'syz.1.1761': attribute type 12 has an invalid length.
[  539.961045][ T5957] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  540.396592][T14954] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  540.399272][T14954] UDF-fs: Scanning with blocksize 2048 failed
[  540.403411][T14954] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  540.405590][T14954] UDF-fs: Scanning with blocksize 4096 failed
[  542.997454][T14987] netlink: 'syz.0.1772': attribute type 12 has an invalid length.
[  544.518285][T15018] syz.3.1778: attempt to access beyond end of device
[  544.518285][T15018] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  544.523065][T15018] XFS (nbd3): SB validate failed with error -5.
[  545.133641][T15045] netlink: 'syz.3.1783': attribute type 12 has an invalid length.
[  546.011126][ T6011] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  546.029192][T15057] netlink: 'syz.3.1787': attribute type 12 has an invalid length.
[  546.182880][ T6011] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  546.187404][ T6011] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  546.191784][ T6011] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  546.195436][ T6011] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  546.204576][T15050] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  546.211462][ T6011] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  546.571899][   T59] usb 6-1: USB disconnect, device number 7
[  548.045377][T15091] netlink: 'syz.3.1795': attribute type 12 has an invalid length.
[  548.672010][T15103] netlink: 'syz.0.1798': attribute type 12 has an invalid length.
[  548.960556][T15105] syz.3.1799: attempt to access beyond end of device
[  548.960556][T15105] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  548.964301][T15105] XFS (nbd3): SB validate failed with error -5.
[  549.063116][T15119] nvme_fabrics: missing parameter 'transport=%s'
[  549.065140][T15119] nvme_fabrics: missing parameter 'nqn=%s'
[  550.692005][T15147] netlink: 'syz.2.1807': attribute type 12 has an invalid length.
[  551.001615][T15153] syz.1.1810: attempt to access beyond end of device
[  551.001615][T15153] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  551.005444][T15153] XFS (nbd1): SB validate failed with error -5.
[  551.589402][T15174] netlink: 'syz.2.1812': attribute type 12 has an invalid length.
[  553.094712][T15196] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[  553.163270][T15196] netlink: 'syz.0.1818': attribute type 10 has an invalid length.
[  553.195709][T15196] bond0: (slave wlan1): Opening slave failed
[  553.752835][T15204] netlink: 'syz.2.1820': attribute type 12 has an invalid length.
[  553.951751][T15209] syz.3.1822: attempt to access beyond end of device
[  553.951751][T15209] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  553.959805][T15209] XFS (nbd3): SB validate failed with error -5.
[  554.428031][T15229] loop7: detected capacity change from 0 to 16384
[  554.447878][T15231] netlink: 'syz.3.1823': attribute type 12 has an invalid length.
[  555.906941][T15256] kAFS: unable to lookup cell '.,'
[  555.971421][T15258] syz.3.1831: attempt to access beyond end of device
[  555.971421][T15258] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  555.975028][T15258] XFS (nbd3): SB validate failed with error -5.
[  556.824972][T15281] netlink: 'syz.3.1833': attribute type 12 has an invalid length.
[  558.082975][T15307] input: syz0 as /devices/virtual/input/input12
[  558.372661][T15311] syz.2.1842: attempt to access beyond end of device
[  558.372661][T15311] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  558.376545][T15311] XFS (nbd2): SB validate failed with error -5.
[  558.929202][T15329] devpts: called with bogus options
[  559.331766][T15337] loop7: detected capacity change from 0 to 16384
[  559.540673][ T5987] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  559.543319][ T5987] hid-generic 0000:0003:0000.0005: unknown main item tag 0x0
[  559.549797][ T5987] hid-generic 0000:0003:0000.0005: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  559.687830][T15346] netlink: 'syz.0.1846': attribute type 12 has an invalid length.
[  560.449398][T15372] input: syz0 as /devices/virtual/input/input13
[  560.485239][T15368] syz.1.1853: attempt to access beyond end of device
[  560.485239][T15368] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  560.489763][T15368] XFS (nbd1): SB validate failed with error -5.
[  560.963734][T15390] netlink: 'syz.2.1856': attribute type 33 has an invalid length.
[  560.966395][T15390] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1856'.
[  561.274690][T15397] lo speed is unknown, defaulting to 1000
[  561.320682][T15398] ptrace attach of "/syz-executor exec"[5949] was attempted by "/syz-executor exec"[15398]
[  561.354883][T15397] ������ speed is unknown, defaulting to 1000
[  562.231471][T15418] netlink: 'syz.2.1861': attribute type 12 has an invalid length.
[  562.363767][ T1417] ieee802154 phy0 wpan0: encryption failed: -22
[  562.365605][ T1417] ieee802154 phy1 wpan1: encryption failed: -22
[  562.500945][T15420] syz.1.1862: attempt to access beyond end of device
[  562.500945][T15420] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  562.506040][T15420] XFS (nbd1): SB validate failed with error -5.
[  562.662131][T15436] batadv0: entered promiscuous mode
[  562.664395][T15436] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network
[  562.667517][T15436] 8021q: adding VLAN 0 to HW filter on device hsr1
[  563.535256][T15459] netlink: 'syz.1.1867': attribute type 1 has an invalid length.
[  563.566967][T15459] bond2: entered promiscuous mode
[  563.569070][T15459] 8021q: adding VLAN 0 to HW filter on device bond2
[  563.758139][T15459] 8021q: adding VLAN 0 to HW filter on device bond3
[  563.765757][T15459] bond2: (slave bond3): making interface the new active one
[  563.770995][T15459] bond3: entered promiscuous mode
[  563.781508][T15459] bond2: (slave bond3): Enslaving as an active interface with an up link
[  564.168946][T15459] netlink: 'syz.1.1867': attribute type 2 has an invalid length.
[  564.325779][T15474] syz.2.1872: attempt to access beyond end of device
[  564.325779][T15474] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  564.329657][T15474] XFS (nbd2): SB validate failed with error -5.
[  564.682122][T15494] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1873'.
[  564.694863][T15494] loop9: detected capacity change from 0 to 6
[  564.701757][T15494] Dev loop9: unable to read RDB block 6
[  564.703547][T15494]  loop9: unable to read partition table
[  564.707030][T15494] loop9: partition table beyond EOD, truncated
[  564.708963][T15494] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  564.708963][T15494] 
) failed (rc=-5)
[  565.196431][T15493] netlink: 'syz.0.1875': attribute type 12 has an invalid length.
[  565.341599][T15501] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1876'.
[  565.417809][T15504] input: syz0 as /devices/virtual/input/input14
[  566.431157][T15499] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  566.743261][T15536] netlink: 'syz.0.1884': attribute type 1 has an invalid length.
[  566.758577][T15536] bond2: entered promiscuous mode
[  566.760268][T15536] 8021q: adding VLAN 0 to HW filter on device bond2
[  566.817634][T15536] 8021q: adding VLAN 0 to HW filter on device bond3
[  566.822474][T15536] bond2: (slave bond3): making interface the new active one
[  566.824606][T15536] bond3: entered promiscuous mode
[  566.826781][T15536] bond2: (slave bond3): Enslaving as an active interface with an up link
[  566.829230][T15539] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  566.861304][T15536] netlink: 'syz.0.1884': attribute type 2 has an invalid length.
[  567.794772][T15559] lo speed is unknown, defaulting to 1000
[  567.839886][T15560] ptrace attach of "/syz-executor exec"[5954] was attempted by "/syz-executor exec"[15560]
[  567.890664][T15559] ������ speed is unknown, defaulting to 1000
[  568.817391][T15581] [U] 
[  569.547146][T15589] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1895'.
[  569.931722][T15592] siw: device registration error -23
[  570.279884][T15584] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  570.537208][T15605] bond0: (slave rose0): Error: Device is in use and cannot be enslaved
[  571.098783][T15613] binder: 15610:15613 ioctl ae01 0 returned -22
[  571.734196][ T6006] libceph: connect (1)[c::]:6789 error -101
[  571.741060][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  572.013787][ T6006] libceph: connect (1)[c::]:6789 error -101
[  572.016453][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  572.260722][T15617] ceph: No mds server is up or the cluster is laggy
[  572.286305][T15629] lo speed is unknown, defaulting to 1000
[  572.289246][T15631] ptrace attach of "/syz-executor exec"[5952] was attempted by "/syz-executor exec"[15631]
[  572.578920][T15629] ������ speed is unknown, defaulting to 1000
[  572.593527][T15636] syz.3.1905: attempt to access beyond end of device
[  572.593527][T15636] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  572.621661][T15636] XFS (nbd3): SB validate failed with error -5.
[  573.037999][T15662] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  573.161634][T15663] siw: device registration error -23
[  573.188258][T15665] s
z1: rxe_newlink: already configured on lo
[  573.197872][T15665] siw: device registration error -23
[  573.205775][T15665] ������: renamed from lo (while UP)
[  574.773041][T15683] netlink: 'syz.1.1921': attribute type 12 has an invalid length.
[  575.027474][T15688] syz.2.1916: attempt to access beyond end of device
[  575.027474][T15688] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  575.033849][T15688] XFS (nbd2): SB validate failed with error -5.
[  575.698382][T15695] netlink: 168 bytes leftover after parsing attributes in process `syz.0.1915'.
[  575.705884][T15695] loop9: detected capacity change from 0 to 6
[  575.712083][T15695] Dev loop9: unable to read RDB block 6
[  575.714205][T15695]  loop9: unable to read partition table
[  575.716621][T15695] loop9: partition table beyond EOD, truncated
[  575.719120][T15695] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  575.719120][T15695] 
) failed (rc=-5)
[  575.774585][T15708] netlink: 116 bytes leftover after parsing attributes in process `syz.1.1919'.
[  576.762523][T15721] syz.0.1923: attempt to access beyond end of device
[  576.762523][T15721] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  576.767674][T15721] XFS (nbd0): SB validate failed with error -5.
[  576.783949][   T52] I/O error, dev nbd0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  577.574266][T15738] syz.2.1926: attempt to access beyond end of device
[  577.574266][T15738] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  577.579058][T15738] XFS (nbd2): SB validate failed with error -5.
[  578.738531][T15772] [U] 
[  580.032250][T15790] syz.2.1935: attempt to access beyond end of device
[  580.032250][T15790] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  580.037577][T15790] XFS (nbd2): SB validate failed with error -5.
[  580.389796][T15813] siw: device registration error -23
[  581.058054][T15816] syz.3.1938: attempt to access beyond end of device
[  581.058054][T15816] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  581.066053][T15816] XFS (nbd3): SB validate failed with error -5.
[  581.237123][T15834] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1948'.
[  581.250022][T15834] ata1.00: invalid command format 189
[  581.405774][T15837] rdma_rxe: rxe_newlink: failed to add lo
[  581.408845][T15837] siw: device registration error -23
[  581.412352][T15837] ������: renamed from lo (while UP)
[  582.394522][T15855] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1942'.
[  582.428527][T15857] syz.2.1947: attempt to access beyond end of device
[  582.428527][T15857] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  582.433282][T15857] XFS (nbd2): SB validate failed with error -5.
[  582.527705][T15852] loop9: detected capacity change from 0 to 6
[  582.530678][T15852] Dev loop9: unable to read RDB block 6
[  582.532595][T15852]  loop9: unable to read partition table
[  582.534291][T15852] loop9: partition table beyond EOD, truncated
[  582.536189][T15852] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  582.536189][T15852] 
) failed (rc=-5)
[  582.593941][T15870] syz.2.1949: attempt to access beyond end of device
[  582.593941][T15870] nbd2: rw=0, sector=2, nr_sectors = 2 limit=0
[  582.598219][T15870] syz.2.1949: attempt to access beyond end of device
[  582.598219][T15870] nbd2: rw=0, sector=16, nr_sectors = 2 limit=0
[  582.665321][T15870] net veth1_virt_wifi ������: renamed from virt_wifi0
[  583.368815][T15888] netlink: 'syz.0.1960': attribute type 12 has an invalid length.
[  584.391140][T15912] syz.0.1958: attempt to access beyond end of device
[  584.391140][T15912] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  584.394934][T15912] XFS (nbd0): SB validate failed with error -5.
[  584.486481][ T1163] I/O error, dev nbd0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  584.531020][   T59] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  584.535640][T15927] rdma_rxe: rxe_newlink: failed to add lo
[  584.538170][T15927] siw: device registration error -23
[  584.540533][T15927] ������: renamed from lo
[  584.681063][   T59] usb 6-1: Using ep0 maxpacket: 8
[  584.687400][   T59] usb 6-1: config 167 has too many interfaces: 202, using maximum allowed: 32
[  584.689964][   T59] usb 6-1: config 167 has 1 interface, different from the descriptor's value: 202
[  584.694143][   T59] usb 6-1: New USB device found, idVendor=1025, idProduct=005f, bcdDevice=fe.29
[  584.696786][   T59] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  584.699125][   T59] usb 6-1: Product: syz
[  584.700373][   T59] usb 6-1: Manufacturer: syz
[  584.701823][   T59] usb 6-1: SerialNumber: syz
[  584.708773][   T59] dvb-usb: found a 'Unknown USB1.1 DVB-T device ???? please report the name to the author' in warm state.
[  584.709535][   T39] audit: type=1326 audit(1737321009.651:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15928 comm="syz.0.1959" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  584.714198][   T59] dvb-usb: bulk message failed: -22 (3/0)
[  584.718837][   T39] audit: type=1326 audit(1737321009.651:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15928 comm="syz.0.1959" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  584.729561][   T39] audit: type=1326 audit(1737321009.661:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15928 comm="syz.0.1959" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf715e579 code=0x7ffc0000
[  584.733809][   T59] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  584.736403][   T39] audit: type=1326 audit(1737321009.661:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15928 comm="syz.0.1959" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  584.739341][   T59] dvbdev: DVB: registering new adapter (Unknown USB1.1 DVB-T device ???? please report the name to the author)
[  584.746142][   T39] audit: type=1326 audit(1737321009.661:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15928 comm="syz.0.1959" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  584.746216][   T39] audit: type=1326 audit(1737321009.661:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15928 comm="syz.0.1959" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf715e579 code=0x7ffc0000
[  584.749741][   T59] usb 6-1: media controller created
[  584.758090][   T39] audit: type=1326 audit(1737321009.661:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15928 comm="syz.0.1959" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf715e579 code=0x7ffc0000
[  584.776312][   T59] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  584.777092][   T39] audit: type=1326 audit(1737321009.661:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15928 comm="syz.0.1959" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf715e5a7 code=0x7ffc0000
[  584.785102][   T59] dvb-usb: bulk message failed: -22 (6/0)
[  584.786836][   T39] audit: type=1326 audit(1737321009.661:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15928 comm="syz.0.1959" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  584.788990][   T59] dvb-usb: no frontend was attached by 'Unknown USB1.1 DVB-T device ???? please report the name to the author'
[  584.790456][   T59] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb6/6-1/input/input17
[  584.795747][   T39] audit: type=1326 audit(1737321009.661:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15928 comm="syz.0.1959" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[  584.803536][   T59] dvb-usb: schedule remote query interval to 150 msecs.
[  584.813067][   T59] dvb-usb: bulk message failed: -22 (3/0)
[  584.831066][   T59] dvb-usb: Unknown USB1.1 DVB-T device ???? please report the name to the author successfully initialized and connected.
[  584.971074][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  584.973396][   T59] dvb-usb: error while querying for an remote control event.
[  585.143381][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  585.145836][   T59] dvb-usb: error while querying for an remote control event.
[  585.311483][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  585.313223][   T59] dvb-usb: error while querying for an remote control event.
[  585.495342][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  585.497350][   T59] dvb-usb: error while querying for an remote control event.
[  585.508559][T15940] netlink: 168 bytes leftover after parsing attributes in process `syz.3.1962'.
[  585.526352][T15940] loop9: detected capacity change from 0 to 6
[  585.535556][T15940] Dev loop9: unable to read RDB block 6
[  585.537291][T15940]  loop9: unable to read partition table
[  585.539805][T15940] loop9: partition table beyond EOD, truncated
[  585.542641][T15940] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  585.542641][T15940] 
) failed (rc=-5)
[  585.660052][T15942] netlink: 'syz.2.1963': attribute type 10 has an invalid length.
[  585.662522][T15942] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1963'.
[  585.665125][T15942] team0: entered promiscuous mode
[  585.667120][T15942] 8021q: adding VLAN 0 to HW filter on device team0
[  585.669160][T15942] bridge0: port 1(team0) entered blocking state
[  585.671049][T15942] bridge0: port 1(team0) entered disabled state
[  585.672928][T15942] team0: entered allmulticast mode
[  585.674417][T15942] vlan0: entered allmulticast mode
[  585.945049][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  585.946775][   T59] dvb-usb: error while querying for an remote control event.
[  586.101030][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  586.103225][   T59] dvb-usb: error while querying for an remote control event.
[  586.271094][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  586.273293][   T59] dvb-usb: error while querying for an remote control event.
[  586.431259][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  586.432982][   T59] dvb-usb: error while querying for an remote control event.
[  586.601378][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  586.603170][   T59] dvb-usb: error while querying for an remote control event.
[  586.761014][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  586.762810][   T59] dvb-usb: error while querying for an remote control event.
[  586.921010][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  586.951189][   T59] dvb-usb: error while querying for an remote control event.
[  587.196307][   T59] dvb-usb: bulk message failed: -22 (1/0)
[  587.198609][   T59] dvb-usb: error while querying for an remote control event.
[  587.217466][T15977] syz.2.1974: attempt to access beyond end of device
[  587.217466][T15977] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  587.221846][T15977] XFS (nbd2): SB validate failed with error -5.
[  587.234729][   T59] usb 6-1: USB disconnect, device number 8
[  587.289501][   T59] dvb-usb: Unknown USB1.1 DVB-T device ???? please successfully deinitialized and disconnected.
[  587.557043][T15997] netlink: 168 bytes leftover after parsing attributes in process `syz.1.1975'.
[  587.571267][T15997] loop9: detected capacity change from 0 to 6
[  587.575481][T15997] Dev loop9: unable to read RDB block 6
[  587.577207][T15997]  loop9: unable to read partition table
[  587.579103][T15997] loop9: partition table beyond EOD, truncated
[  587.581051][T15997] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  587.581051][T15997] 
) failed (rc=-5)
[  588.067207][T16008] netlink: 'syz.0.1978': attribute type 12 has an invalid length.
[  589.355826][T16034] syz.3.1984: attempt to access beyond end of device
[  589.355826][T16034] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  589.359588][T16034] XFS (nbd3): SB validate failed with error -5.
[  590.260826][T16070] ������ speed is unknown, defaulting to 1000
[  590.462613][T16070] ������ speed is unknown, defaulting to 1000
[  590.854958][T16085] syz.0.1995: attempt to access beyond end of device
[  590.854958][T16085] nbd0: rw=4096, sector=0, nr_sectors = 2 limit=0
[  590.858775][T16085] XFS (nbd0): SB validate failed with error -5.
[  590.913818][ T1163] I/O error, dev nbd0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 2
[  592.203756][T16117] netlink: 'syz.3.1999': attribute type 12 has an invalid length.
[  593.033026][T16121] trusted_key: encrypted_key: insufficient parameters specified
[  593.325169][T16127] syz.2.2004: attempt to access beyond end of device
[  593.325169][T16127] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  593.328913][T16127] XFS (nbd2): SB validate failed with error -5.
[  593.476983][T16144] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2003'.
[  594.106523][T16153] netlink: 'syz.1.2007': attribute type 12 has an invalid length.
[  595.419480][T16175] syz.2.2013: attempt to access beyond end of device
[  595.419480][T16175] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  595.423171][T16175] XFS (nbd2): SB validate failed with error -5.
[  595.523445][T16186] nvme_fabrics: missing parameter 'transport=%s'
[  595.525453][T16186] nvme_fabrics: missing parameter 'nqn=%s'
[  596.368910][T16201] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  596.370832][T16201] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  596.373833][T16201] vhci_hcd vhci_hcd.0: Device attached
[  596.582946][ T5987] vhci_hcd: vhci_device speed not set
[  596.641247][ T5987] usb 43-1: new full-speed USB device number 4 using vhci_hcd
[  597.067302][T16210] netlink: 168 bytes leftover after parsing attributes in process `syz.2.2019'.
[  597.078260][T16210] loop9: detected capacity change from 0 to 6
[  597.082396][T16210] Dev loop9: unable to read RDB block 6
[  597.084037][T16210]  loop9: unable to read partition table
[  597.085760][T16210] loop9: partition table beyond EOD, truncated
[  597.087592][T16210] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[  597.087592][T16210] 
) failed (rc=-5)
[  597.973919][T16202] vhci_hcd: connection reset by peer
[  597.975733][ T1142] vhci_hcd: stop threads
[  597.976978][ T1142] vhci_hcd: release socket
[  597.981382][ T1142] vhci_hcd: disconnect device
[  598.493630][T16240] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  598.495857][T16240] UDF-fs: Scanning with blocksize 2048 failed
[  598.501333][T16240] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  598.505406][T16240] UDF-fs: Scanning with blocksize 4096 failed
[  601.432852][T16294] ������ speed is unknown, defaulting to 1000
[  601.791009][ T5987] vhci_hcd: vhci_device speed not set
[  601.828146][ T6006] libceph: connect (1)[c::]:6789 error -101
[  601.832231][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  601.844765][T16294] ������ speed is unknown, defaulting to 1000
[  602.094096][ T6006] libceph: connect (1)[c::]:6789 error -101
[  602.096078][ T6006] libceph: mon0 (1)[c::]:6789 connect error
[  602.274059][T16306] ceph: No mds server is up or the cluster is laggy
[  602.464468][T16323] syz.2.2048: attempt to access beyond end of device
[  602.464468][T16323] nbd2: rw=4096, sector=0, nr_sectors = 2 limit=0
[  602.468311][T16323] XFS (nbd2): SB validate failed with error -5.
[  603.501826][T16335] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  603.968705][T16348] fuse: blksize only supported for fuseblk
[  604.057880][T16352] nvme_fabrics: missing parameter 'transport=%s'
[  604.059767][T16352] nvme_fabrics: missing parameter 'nqn=%s'
[  605.394647][T16380] syz.3.2057: attempt to access beyond end of device
[  605.394647][T16380] nbd3: rw=4096, sector=0, nr_sectors = 2 limit=0
[  605.401169][T16380] XFS (nbd3): SB validate failed with error -5.
[  606.052152][T16405] ������ speed is unknown, defaulting to 1000
[  606.251483][T16405] ������ speed is unknown, defaulting to 1000
[  608.954986][T16423] block device autoloading is deprecated and will be removed.
[  609.996202][T16437] netlink: 'syz.0.2069': attribute type 4 has an invalid length.
[  610.002854][T16437] infiniband s
z1: set down
[  610.011291][   T59] ������ speed is unknown, defaulting to 1000
[  610.015643][   T59] ������ speed is unknown, defaulting to 1000
[  610.062366][T16438] netlink: 'syz.0.2069': attribute type 4 has an invalid length.
[  610.068275][T16438] infiniband s
z1: set active
[  610.071096][   T58] ������ speed is unknown, defaulting to 1000
[  610.072964][   T58] ������ speed is unknown, defaulting to 1000
[  610.169679][T16440] syz.1.2070: attempt to access beyond end of device
[  610.169679][T16440] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  610.175095][T16440] XFS (nbd1): SB validate failed with error -5.
[  611.691771][T16471] 
[  611.692539][T16471] ======================================================
[  611.694536][T16471] WARNING: possible circular locking dependency detected
[  611.696566][T16471] 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0 Not tainted
[  611.699239][T16471] ------------------------------------------------------
[  611.702204][T16471] syz.3.2078/16471 is trying to acquire lock:
[  611.703967][T16471] ffff88801bb868c8 (&q->limits_lock){+.+.}-{4:4}, at: loop_reconfigure_limits+0x407/0x8c0
[  611.706807][T16471] 
[  611.706807][T16471] but task is already holding lock:
[  611.708898][T16471] ffff88801bb86278 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: lo_ioctl+0x8e8/0x18a0
[  611.711635][T16471] 
[  611.711635][T16471] which lock already depends on the new lock.
[  611.711635][T16471] 
[  611.714562][T16471] 
[  611.714562][T16471] the existing dependency chain (in reverse order) is:
[  611.717155][T16471] 
[  611.717155][T16471] -> #5 (&q->q_usage_counter(io)#24){++++}-{0:0}:
[  611.719602][T16471]        blk_mq_submit_bio+0x1fb6/0x24c0
[  611.721246][T16471]        __submit_bio+0x384/0x540
[  611.722718][T16471]        submit_bio_noacct_nocheck+0x698/0xd70
[  611.724504][T16471]        submit_bio_noacct+0x93a/0x1e20
[  611.726137][T16471]        mpage_readahead+0x41d/0x590
[  611.727667][T16471]        read_pages+0x1a8/0xdc0
[  611.729079][T16471]        page_cache_ra_unbounded+0x3dc/0x750
[  611.730803][T16471]        page_cache_ra_order+0x8f2/0xc80
[  611.732406][T16471]        page_cache_sync_ra+0x4b4/0x9c0
[  611.733992][T16471]        filemap_get_pages+0xd7b/0x1be0
[  611.735592][T16471]        filemap_splice_read+0x5cc/0xd00
[  611.737200][T16471]        do_splice_read+0x282/0x370
[  611.738694][T16471]        splice_direct_to_actor+0x2a4/0xa40
[  611.740381][T16471]        do_splice_direct+0x178/0x250
[  611.741923][T16471]        do_sendfile+0xaed/0xe30
[  611.743342][T16471]        __ia32_compat_sys_sendfile+0x1e7/0x230
[  611.745160][T16471]        __do_fast_syscall_32+0x73/0x120
[  611.746765][T16471]        do_fast_syscall_32+0x32/0x80
[  611.748496][T16471]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  611.750934][T16471] 
[  611.750934][T16471] -> #4 (mapping.invalidate_lock#2){++++}-{4:4}:
[  611.753347][T16471]        down_read+0x9a/0x330
[  611.754769][T16471]        filemap_fault+0x2e0/0x2820
[  611.756270][T16471]        __do_fault+0x10a/0x490
[  611.757662][T16471]        do_pte_missing+0x1a8/0x3e00
[  611.759194][T16471]        __handle_mm_fault+0x103c/0x2a40
[  611.760797][T16471]        handle_mm_fault+0x3fa/0xaa0
[  611.762330][T16471]        __get_user_pages+0x8d9/0x3b50
[  611.764021][T16471]        faultin_page_range+0x24a/0x980
[  611.765800][T16471]        do_madvise+0x504/0x770
[  611.767395][T16471]        __ia32_sys_madvise+0xa7/0x110
[  611.769161][T16471]        __do_fast_syscall_32+0x73/0x120
[  611.770785][T16471]        do_fast_syscall_32+0x32/0x80
[  611.772317][T16471]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  611.774257][T16471] 
[  611.774257][T16471] -> #3 (&mm->mmap_lock){++++}-{4:4}:
[  611.776435][T16471]        __might_fault+0x11b/0x190
[  611.777898][T16471]        _copy_from_user+0x29/0xd0
[  611.779392][T16471]        compat_blk_trace_setup+0xc9/0x200
[  611.781228][T16471]        blk_trace_ioctl+0x24a/0x290
[  611.782796][T16471]        compat_blkdev_ioctl+0x13c/0x750
[  611.784425][T16471]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  611.786162][T16471]        __do_fast_syscall_32+0x73/0x120
[  611.787812][T16471]        do_fast_syscall_32+0x32/0x80
[  611.789431][T16471]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  611.791411][T16471] 
[  611.791411][T16471] -> #2 (&q->debugfs_mutex){+.+.}-{4:4}:
[  611.793624][T16471]        __mutex_lock+0x19b/0xa60
[  611.795114][T16471]        blk_mq_init_sched+0x42b/0x640
[  611.796667][T16471]        elevator_init_mq+0x2cd/0x420
[  611.798209][T16471]        add_disk_fwnode+0x113/0x1300
[  611.799744][T16471]        sd_probe+0xa66/0xfa0
[  611.801096][T16471]        really_probe+0x23e/0xa90
[  611.802548][T16471]        __driver_probe_device+0x1de/0x440
[  611.804234][T16471]        driver_probe_device+0x4c/0x1b0
[  611.805865][T16471]        __device_attach_driver+0x1df/0x310
[  611.807564][T16471]        bus_for_each_drv+0x157/0x1e0
[  611.809088][T16471]        __device_attach_async_helper+0x1d3/0x290
[  611.810927][T16471]        async_run_entry_fn+0x9c/0x530
[  611.812655][T16471]        process_one_work+0x958/0x1b30
[  611.814121][T16471]        worker_thread+0x6c8/0xf00
[  611.815657][T16471]        kthread+0x2c1/0x3a0
[  611.816946][T16471]        ret_from_fork+0x45/0x80
[  611.818375][T16471]        ret_from_fork_asm+0x1a/0x30
[  611.819947][T16471] 
[  611.819947][T16471] -> #1 (&q->q_usage_counter(queue)#51){++++}-{0:0}:
[  611.822520][T16471]        blk_queue_enter+0x50f/0x640
[  611.824028][T16471]        blk_mq_alloc_request+0x59b/0x950
[  611.825711][T16471]        scsi_execute_cmd+0x20a/0xf30
[  611.827253][T16471]        read_capacity_16+0x21a/0xe20
[  611.828786][T16471]        sd_revalidate_disk.isra.0+0x1a06/0xa8d0
[  611.830564][T16471]        sd_probe+0x8ee/0xfa0
[  611.831843][T16471]        really_probe+0x23e/0xa90
[  611.833195][T16471]        __driver_probe_device+0x1de/0x440
[  611.834735][T16471]        driver_probe_device+0x4c/0x1b0
[  611.836250][T16471]        __device_attach_driver+0x1df/0x310
[  611.837853][T16471]        bus_for_each_drv+0x157/0x1e0
[  611.839382][T16471]        __device_attach_async_helper+0x1d3/0x290
[  611.841164][T16471]        async_run_entry_fn+0x9c/0x530
[  611.842741][T16471]        process_one_work+0x958/0x1b30
[  611.844296][T16471]        worker_thread+0x6c8/0xf00
[  611.845788][T16471]        kthread+0x2c1/0x3a0
[  611.847125][T16471]        ret_from_fork+0x45/0x80
[  611.848539][T16471]        ret_from_fork_asm+0x1a/0x30
[  611.850047][T16471] 
[  611.850047][T16471] -> #0 (&q->limits_lock){+.+.}-{4:4}:
[  611.852206][T16471]        __lock_acquire+0x249e/0x3c40
[  611.853730][T16471]        lock_acquire.part.0+0x11b/0x380
[  611.855349][T16471]        __mutex_lock+0x19b/0xa60
[  611.856780][T16471]        loop_reconfigure_limits+0x407/0x8c0
[  611.858497][T16471]        lo_ioctl+0x8f4/0x18a0
[  611.859859][T16471]        lo_compat_ioctl+0xb9/0x170
[  611.861336][T16471]        compat_blkdev_ioctl+0x2f7/0x750
[  611.862957][T16471]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  611.864624][T16471]        __do_fast_syscall_32+0x73/0x120
[  611.866257][T16471]        do_fast_syscall_32+0x32/0x80
[  611.867794][T16471]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  611.869728][T16471] 
[  611.869728][T16471] other info that might help us debug this:
[  611.869728][T16471] 
[  611.872599][T16471] Chain exists of:
[  611.872599][T16471]   &q->limits_lock --> mapping.invalidate_lock#2 --> &q->q_usage_counter(io)#24
[  611.872599][T16471] 
[  611.876724][T16471]  Possible unsafe locking scenario:
[  611.876724][T16471] 
[  611.878706][T16471]        CPU0                    CPU1
[  611.880231][T16471]        ----                    ----
[  611.881764][T16471]   lock(&q->q_usage_counter(io)#24);
[  611.883285][T16471]                                lock(mapping.invalidate_lock#2);
[  611.885538][T16471]                                lock(&q->q_usage_counter(io)#24);
[  611.887742][T16471]   lock(&q->limits_lock);
[  611.888991][T16471] 
[  611.888991][T16471]  *** DEADLOCK ***
[  611.888991][T16471] 
[  611.891233][T16471] 3 locks held by syz.3.2078/16471:
[  611.892717][T16471]  #0: ffff8880438e0360 (&lo->lo_mutex){+.+.}-{4:4}, at: lo_ioctl+0x764/0x18a0
[  611.895307][T16471]  #1: ffff88801bb86278 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: lo_ioctl+0x8e8/0x18a0
[  611.897948][T16471]  #2: ffff88801bb862b0 (&q->q_usage_counter(queue)#8){+.+.}-{0:0}, at: lo_ioctl+0x8e8/0x18a0
[  611.900851][T16471] 
[  611.900851][T16471] stack backtrace:
[  611.902485][T16471] CPU: 1 UID: 0 PID: 16471 Comm: syz.3.2078 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[  611.905519][T16471] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  611.908537][T16471] Call Trace:
[  611.909492][T16471]  <TASK>
[  611.910348][T16471]  dump_stack_lvl+0x116/0x1f0
[  611.911665][T16471]  print_circular_bug+0x41c/0x610
[  611.913112][T16471]  check_noncircular+0x31a/0x400
[  611.914544][T16471]  ? __pfx_check_noncircular+0x10/0x10
[  611.916162][T16471]  ? save_trace+0x42/0xa10
[  611.917487][T16471]  ? add_lock_to_list+0x17d/0x390
[  611.919045][T16471]  __lock_acquire+0x249e/0x3c40
[  611.920891][T16471]  ? __pfx___lock_acquire+0x10/0x10
[  611.922778][T16471]  lock_acquire.part.0+0x11b/0x380
[  611.924245][T16471]  ? loop_reconfigure_limits+0x407/0x8c0
[  611.925880][T16471]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  611.927492][T16471]  ? rcu_is_watching+0x12/0xc0
[  611.928859][T16471]  ? trace_lock_acquire+0x14e/0x1f0
[  611.930363][T16471]  ? loop_reconfigure_limits+0x407/0x8c0
[  611.931978][T16471]  ? lock_acquire+0x2f/0xb0
[  611.933281][T16471]  ? loop_reconfigure_limits+0x407/0x8c0
[  611.934909][T16471]  __mutex_lock+0x19b/0xa60
[  611.936223][T16471]  ? loop_reconfigure_limits+0x407/0x8c0
[  611.937817][T16471]  ? __pfx_mark_lock+0x10/0x10
[  611.939200][T16471]  ? loop_reconfigure_limits+0x407/0x8c0
[  611.940800][T16471]  ? find_held_lock+0x2d/0x110
[  611.942178][T16471]  ? __pfx___mutex_lock+0x10/0x10
[  611.943665][T16471]  ? shmem_statfs+0x1bb/0x3f0
[  611.945098][T16471]  ? vfs_statfs.part.0.isra.0+0x208/0x270
[  611.946730][T16471]  ? loop_reconfigure_limits+0x407/0x8c0
[  611.948326][T16471]  loop_reconfigure_limits+0x407/0x8c0
[  611.949881][T16471]  ? hlock_class+0x4e/0x130
[  611.951188][T16471]  ? mark_lock+0xb5/0xc60
[  611.952427][T16471]  ? __pfx___lock_acquire+0x10/0x10
[  611.953914][T16471]  ? __pfx_mark_lock+0x10/0x10
[  611.955324][T16471]  ? lock_acquire.part.0+0x11b/0x380
[  611.956828][T16471]  ? __pfx_loop_reconfigure_limits+0x10/0x10
[  611.958549][T16471]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  611.960210][T16471]  ? lockdep_hardirqs_on+0x7c/0x110
[  611.961700][T16471]  ? lo_ioctl+0x8e8/0x18a0
[  611.962990][T16471]  lo_ioctl+0x8f4/0x18a0
[  611.964206][T16471]  ? __pfx_lo_ioctl+0x10/0x10
[  611.965592][T16471]  ? find_held_lock+0x2d/0x110
[  611.966990][T16471]  ? tomoyo_path_number_perm+0x298/0x5b0
[  611.968752][T16471]  ? __pfx_lock_release+0x10/0x10
[  611.970213][T16471]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  611.971832][T16471]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  611.973521][T16471]  ? blkdev_common_ioctl+0x1d9/0x2220
[  611.975092][T16471]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  611.976817][T16471]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  611.978417][T16471]  ? do_vfs_ioctl+0x513/0x1950
[  611.979753][T16471]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  611.981185][T16471]  lo_compat_ioctl+0xb9/0x170
[  611.982549][T16471]  ? __pfx_lo_compat_ioctl+0x10/0x10
[  611.984067][T16471]  compat_blkdev_ioctl+0x2f7/0x750
[  611.985597][T16471]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  611.987208][T16471]  ? __fget_files+0x206/0x3a0
[  611.988558][T16471]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  611.990153][T16471]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  611.991669][T16471]  __do_fast_syscall_32+0x73/0x120
[  611.993136][T16471]  do_fast_syscall_32+0x32/0x80
[  611.994539][T16471]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  611.996407][T16471] RIP: 0023:0xf706e579
[  611.997591][T16471] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  612.003062][T16471] RSP: 002b:00000000f506055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  612.005448][T16471] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000004c09
[  612.007703][T16471] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  612.009930][T16471] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  612.012181][T16471] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  612.014477][T16471] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  612.016698][T16471]  </TASK>
[  612.017672][    C1] vkms_vblank_simulate: vblank timer overrun
[  612.019695][T16471] Invalid logical block size (1)

VM DIAGNOSIS:
19:45:06  Registers:
info registers vcpu 0

CPU#0
RAX=00000004000008fb RBX=0000000000000001 RCX=0000000000000830 RDX=0000000000000004
RSI=00000000000000fb RDI=0000000000000004 RBP=0000000000000002 RSP=ffffc90000007e20
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=ffffffff816b5f6e
R12=0000000000000002 R13=0000000000000000 R14=ffff88802b63ed00 R15=ffff88801b788401
RIP=ffffffff8147a098 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002f918ffc CR3=00000000796e8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff85145395 RDI=ffffffff9a66e200 RBP=ffffffff9a66e1c0 RSP=ffffc90003276da0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d
R12=0000000000000000 R13=0000000000000000 R14=ffffffff9a66e210 R15=000000000000004e
RIP=ffffffff851453bf RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f055c0 CR3=000000007840c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=00000001000008fb RBX=0000000000000001 RCX=0000000000000830 RDX=0000000000000001
RSI=00000000000000fb RDI=0000000000000001 RBP=0000000000000000 RSP=ffffc9000403fa78
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000001
R12=0000000000000000 R13=ffffc9000403fca8 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8147a098 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000562d890eb000 CR3=00000000743cc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a4
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=30807b8b30807b8b 30807b8b30807b8b 30807b8b30807b8b 30807b8b30807b8b 30807b8b30807b8b 30807b8b30807b8b 30807b8b30807b8b 30807b8b30807b8b
ZMM22=fb4fa240fb4fa240 fb4fa240fb4fa240 fb4fa240fb4fa240 fb4fa240fb4fa240 fb4fa240fb4fa240 fb4fa240fb4fa240 fb4fa240fb4fa240 fb4fa240fb4fa240
ZMM23=e1923080e1923080 e1923080e1923080 e1923080e1923080 e1923080e1923080 e1923080e1923080 e1923080e1923080 e1923080e1923080 e1923080e1923080
ZMM24=14170cc014170cc0 14170cc014170cc0 14170cc014170cc0 14170cc014170cc0 14170cc014170cc0 14170cc014170cc0 14170cc014170cc0 14170cc014170cc0
ZMM25=e580120fe580120f e580120fe580120f e580120fe580120f e580120fe580120f e580120fe580120f e580120fe580120f e580120fe580120f e580120fe580120f
ZMM26=8803270988032709 8803270988032709 8803270988032709 8803270988032709 8803270988032709 8803270988032709 8803270988032709 8803270988032709
ZMM27=26a4c6c626a4c6c6 26a4c6c626a4c6c6 26a4c6c626a4c6c6 26a4c6c626a4c6c6 26a4c6c626a4c6c6 26a4c6c626a4c6c6 26a4c6c626a4c6c6 26a4c6c626a4c6c6
ZMM28=000000e0000000df 000000de000000dd 000000dc000000db 000000da000000d9 000000d8000000d7 000000d6000000d5 000000d4000000d3 000000d2000000d1
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=b0140000b0140000 b0140000b0140000 b0140000b0140000 b0140000b0140000 b0140000b0140000 b0140000b0140000 b0140000b0140000 b0140000b0140000
info registers vcpu 3

CPU#3
RAX=0000000000669e0c RBX=0000000000000003 RCX=ffffffff8b1a8899 RDX=ffffed10056e6fee
RSI=ffffffff8bb19b00 RDI=ffffffff81702c79 RBP=ffffed10036ee488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000001
R12=0000000000000003 R13=ffff88801b772440 R14=ffffffff901d29d0 R15=0000000000000000
RIP=ffffffff8b1a9c7f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=00000000743cc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000009000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000