last executing test programs:

3.36170288s ago: executing program 0 (id=5820):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x4048851}, 0x44080)

3.158807912s ago: executing program 0 (id=5824):
openat(0xffffffffffffff9c, 0x0, 0x40, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x4, 0x0, &(0x7f0000fd7ff0), &(0x7f0000048000)=0x1, 0x0)

2.973648495s ago: executing program 4 (id=5828):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@volatile}]})
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

2.762752332s ago: executing program 4 (id=5832):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c000000100085060000", @ANYRES32=r2, @ANYBLOB="01030003000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)

2.538016189s ago: executing program 4 (id=5836):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000003c0)=ANY=[@ANYBLOB="b702000003000000bfa300000000000007030000fdfdfff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040000010000400404000001000000b7050000020000006a0a00fe00000000850000000b000000b70000000000000095000000000000009cc6b3fcd62c7d376238975d43a4505f80fc88943c4f0cf08e46"], 0x0}, 0x94)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000500)={0x2, 0x0, @ioapic={0x41000, 0xfffffff7, 0x0, 0x9, 0x0, [{0xfe, 0x4, 0x2, '\x00', 0xc0}, {0x2, 0xc, 0x3, '\x00', 0x7}, {0xc, 0x1, 0x7f, '\x00', 0x4}, {0x7f, 0x0, 0x9, '\x00', 0xe8}, {0x1, 0x5, 0x6a, '\x00', 0x2}, {0x1, 0xc, 0x0, '\x00', 0x7}, {0x4a, 0x1, 0x9, '\x00', 0xa5}, {0xc2, 0x2c, 0xa, '\x00', 0xb}, {0x81, 0x10, 0x2, '\x00', 0xfc}, {0x7f, 0x7, 0x1, '\x00', 0x8}, {0x4, 0x5, 0x5, '\x00', 0x7}, {0x5, 0x6, 0xff, '\x00', 0x7}, {0x5, 0x3, 0x8}, {0x0, 0x0, 0x9, '\x00', 0x82}, {0x0, 0xf8, 0xcf, '\x00', 0x9}, {0x9, 0xfc, 0x8, '\x00', 0x1}, {0x4, 0x2b, 0x6, '\x00', 0x4}, {0x7, 0x6e, 0x48, '\x00', 0xe}, {0x3, 0x3, 0x7}, {0x8, 0x7, 0xf8, '\x00', 0x5}, {0x1b, 0x2c, 0x64}, {0x80, 0x1, 0x9, '\x00', 0xff}, {0x9, 0x99, 0x7, '\x00', 0x7}, {0x2, 0x81, 0x1, '\x00', 0xe}]}})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0xce, 0x80, 0x5, 0x0, 0x4, 0x4, 0x6, 0x9, 0x6, 0x5, 0x2, 0xf3, 0x0, 0x3ff, 0x7fffffff, 0x6, 0xdd, 0xb, 0xff, '\x00', 0x8})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2.238838139s ago: executing program 1 (id=5842):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@volatile}]})
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

2.190889302s ago: executing program 0 (id=5843):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1d, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x74, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2309e}, 0x94)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r1, &(0x7f0000000340), &(0x7f0000000040)=@tcp=r0}, 0x20)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x123900, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r2 = openat$kvm(0xffffff9c, &(0x7f0000000300), 0x80800, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x80203, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x1, 0x0, [{0xce, 0x0, 0x7}]})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r4, 0x4090ae82, &(0x7f00000001c0)={[0xfffffffffffffffb, 0x9, 0x0, 0x4, 0x10003, 0x0, 0x400200cc4, 0x5, 0x7d, 0x0, 0x0, 0x2, 0x5, 0x1, 0xb9, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

2.028951253s ago: executing program 4 (id=5845):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r0 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read$FUSE(r0, &(0x7f0000000100)={0x2020}, 0x2020)
writev(r0, 0x0, 0x0)
epoll_create(0x2)
read$FUSE(r0, &(0x7f0000002240)={0x2020}, 0x2020)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000280)=[@text64={0x40, 0x0}], 0x1, 0xe8, 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000001680)=[{&(0x7f0000000240)="e773", 0x2}], 0x1)
ioctl$KVM_CAP_EXIT_HYPERCALL(r2, 0x4068aea3, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x21)
sendmsg$NL80211_CMD_GET_MPATH(0xffffffffffffffff, 0x0, 0x41)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

2.018896516s ago: executing program 1 (id=5846):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000240)={0x2, 0xffff, @dev={0xac, 0x14, 0x14, 0x37}}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000b80)=[{{&(0x7f0000000800)={0x2, 0x4e21, @multicast1}, 0x10, 0x0}}, {{0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000003000)="8b01ca941645382c16b8fc6d273020bed425b8e74a70ff1b188684b87beb346b8649115fda9d4d458602d200c00de57f9c978e57bf53ac526e46417086d3ea08870d8033418dd0e7a4af41721efd125bbb349a22b406ab0be392e340d9e3e58ef29e31da64ccd5d4794353f1fdd99f6f931d967f53bd3b8c240864e28ccc71159bcccecf76980d1ff09c59e3cce5368844aa8f15157ed9906fa8886b63755456a72f1c5d42177f9ae47b451c43372c37c177d296b37c614d9c27dc6c09343fc8462c7ceb834513c4a3e7472f1057c7cb76830201a4e84b8c6a1679e2f7bc23a5603c34a41db97ad84d3443e66c0c5a88f5", 0xf1}, {&(0x7f0000000180)="791a2340a1f677a116b071fa28cf7350659268f33cae67d94df7f4fd7db6e4e25affa690dcd1a098528ea4b0d5a9d1f20d6143c5bd164e3cfdf9ac0709b4e95d0e99c79555efef1b4f678e9093613495dffb05beba5a3028105f88656523b851b9e751", 0x63}, {&(0x7f0000000cc0)="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", 0xea8}, {&(0x7f0000000200)="b742acfb2f830aa10c387f5f8d9673e68bfb432b1a348afef7aafe5125d84fec7b93dbd48008f901fa4a88", 0x2b}, {&(0x7f0000000280)="3fec56f2eb536d886458b32c8df08b323d6dba4a4bf13eb70cad18b98c624d4f1dc6e94efae3649b4affa39b6c867c266524a7f081ae2e6b1763daf094cafed5270ded67083c4336bc1048c6f76a41d1a2fdb7994c9a6e849318cb514c310ac36d428668af3fee1bccf6fbf9ed79f895a0dcbdb94c33682fec4e24b9433f5a4448e475f8caeed3155383e1b7b63dfd6563818c5a8807", 0x96}], 0x5}}, {{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000640)="6181da5de4066c6c011b59c65317fb91628cc910524441495aa017f669aee1175179af60a5a1dd3b7c560da4e318454f475fc7404ac42d586126aaf02ff0b32c86dd49a8a2a403c28adf3ffef4cd5bdd69d8b14139554120014bd2c0b86e7a0131f43effad86ff5e0090f00a088102fce752480a9475dfb88e15f4f93cd81efc31c9f6c318b1", 0x86}, {0x0}], 0x2}}], 0x3, 0xc040)

1.8411109s ago: executing program 1 (id=5848):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c000000100085060000", @ANYRES32=r2, @ANYBLOB="01030003000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)

1.650494596s ago: executing program 1 (id=5851):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x2, 0x4)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006300)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x34014c40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x0, 0x0, {0x0, 0x1a}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000280), 0x42000, 0x0)
read$FUSE(r2, &(0x7f0000002600)={0x2020, 0x0, 0x0, <r3=>0x0}, 0x2020)
setreuid(r3, r3)
dup2(0xffffffffffffffff, r0)
ftruncate(r0, 0x3a7)

1.484806144s ago: executing program 2 (id=5853):
r0 = openat$qat_adf_ctl(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
ioctl$IOCTL_STATUS_ACCEL_DEV(r0, 0x40046103, &(0x7f0000000080)={0x6, 0xfffffffc, 0x1, 0x5, 0x48, 0x6, 0x2, 0x0, 0x8c, 0xe, 0x9, "150e2be787e753546003596723d48b5132ac4a3c7b5140f220a0aaa628b2d15d"})

1.375077319s ago: executing program 3 (id=5854):
syz_emit_ethernet(0x5e, &(0x7f0000000100)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa2e08004ff200500069000004069078ac1414bbac1e0101441c0d93ac14141700000001ac141441"], 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x400, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x2710, 0x1, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3eb, 0x4, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7d3}, 0x94)
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000040)=@arm64={0x6, 0x4, 0x9, '\x00', 0x1})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000000c0)=0x10000)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.311415941s ago: executing program 2 (id=5855):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000003c0)=ANY=[@ANYBLOB="b702000003000000bfa300000000000007030000fdfdfff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040000010000400404000001000000b7050000020000006a0a00fe00000000850000000b000000b70000000000000095000000000000009cc6b3fcd62c7d376238975d43a4505f80fc88943c4f0cf08e46"], 0x0}, 0x94)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000500)={0x2, 0x0, @ioapic={0x41000, 0xfffffff7, 0x0, 0x9, 0x0, [{0xfe, 0x4, 0x2, '\x00', 0xc0}, {0x2, 0xc, 0x3, '\x00', 0x7}, {0xc, 0x1, 0x7f, '\x00', 0x4}, {0x7f, 0x0, 0x9, '\x00', 0xe8}, {0x1, 0x5, 0x6a, '\x00', 0x2}, {0x1, 0xc, 0x0, '\x00', 0x7}, {0x4a, 0x1, 0x9, '\x00', 0xa5}, {0xc2, 0x2c, 0xa, '\x00', 0xb}, {0x81, 0x10, 0x2, '\x00', 0xfc}, {0x7f, 0x7, 0x1, '\x00', 0x8}, {0x4, 0x5, 0x5, '\x00', 0x7}, {0x5, 0x6, 0xff, '\x00', 0x7}, {0x5, 0x3, 0x8}, {0x0, 0x0, 0x9, '\x00', 0x82}, {0x0, 0xf8, 0xcf, '\x00', 0x9}, {0x9, 0xfc, 0x8, '\x00', 0x1}, {0x4, 0x2b, 0x6, '\x00', 0x4}, {0x7, 0x6e, 0x48, '\x00', 0xe}, {0x3, 0x3, 0x7}, {0x8, 0x7, 0xf8, '\x00', 0x5}, {0x1b, 0x2c, 0x64}, {0x80, 0x1, 0x9, '\x00', 0xff}, {0x9, 0x99, 0x7, '\x00', 0x7}, {0x2, 0x81, 0x1, '\x00', 0xe}]}})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0xce, 0x80, 0x5, 0x0, 0x4, 0x4, 0x6, 0x9, 0x6, 0x5, 0x2, 0xf3, 0x0, 0x3ff, 0x7fffffff, 0x6, 0xdd, 0xb, 0xff, '\x00', 0x8})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.206227598s ago: executing program 0 (id=5856):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x54)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@volatile}]})
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

1.065030399s ago: executing program 0 (id=5857):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
mkdir(&(0x7f0000000000)='./file0\x00', 0xfffffffffffffffe)
r1 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg(r1, &(0x7f0000002dc0), 0x307017fdb7a66cb, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
r3 = dup(r2)
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESDEC=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

927.003046ms ago: executing program 3 (id=5858):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e6400"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r6, 0x8933, &(0x7f0000000000)={'team0\x00', <r7=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r7, 0x500}, [@IFLA_MASTER={0x8, 0xa, r5}]}, 0x28}, 0x1, 0x0, 0x0, 0x24000804}, 0x4050)

868.659789ms ago: executing program 2 (id=5859):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000280)='./file1/file0\x00', 0x0, 0x1085408, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0xc0189436, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x9, 0x3})

677.474805ms ago: executing program 2 (id=5860):
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
mount$overlay(0x0, &(0x7f0000000140)='./bus\x00', &(0x7f0000000380), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ftruncate(r1, 0x8008976)
ioctl$FIDEDUPERANGE(r1, 0xc0189436, &(0x7f0000000280)=ANY=[@ANYBLOB])

518.875835ms ago: executing program 3 (id=5861):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000003c0)=ANY=[@ANYBLOB="3c000000100085060000", @ANYRES32=r2, @ANYBLOB="01030003000000001c0012000c000100626f6e64000000000c0002000800010005"], 0x3c}}, 0x0)

468.032165ms ago: executing program 1 (id=5862):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000680)=ANY=[@ANYBLOB="4c00000010001ffffcfffffffdffffff00000000", @ANYRES32=0x0, @ANYBLOB="0002010000000000240012800b00010065727370616e000014000280050016000000000008000700ac1414bb08000a00", @ANYRES32=r3], 0x4c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x803, 0x4)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20088814}, 0x0)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route_sched(r4, &(0x7f0000000280)={0x0, 0x7400, &(0x7f00000001c0)={&(0x7f0000000200)=@delchain={0x24, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r6}}, 0x24}}, 0x0)

398.985612ms ago: executing program 2 (id=5863):
socket$inet_tcp(0x2, 0x1, 0x0)
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
r1 = io_uring_setup(0x34b1, &(0x7f0000000040)={0x0, 0xc8df, 0xc000, 0xa, 0x176})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0xffffffffffffff31, &(0x7f00000001c0)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x300, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xfff1, 0x8}, {0xe, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x20040000)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, 0x0, 0x0)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)

367.800431ms ago: executing program 4 (id=5864):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)=ANY=[@ANYBLOB="600000001000ffff27bd7000fbdbdf2500000000", @ANYRES32=0x0, @ANYBLOB="137c0300231a05002c0012800e0001006970366772657461700000001800028014000700000000000000"], 0x60}, 0x1, 0x0, 0x0, 0x1}, 0x20040040)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5}, 0x8000002)

359.268278ms ago: executing program 3 (id=5865):
r0 = mmap$KVM_VCPU(&(0x7f0000ffc000/0x2000)=nil, 0x930, 0x1000002, 0x4018831, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000240)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000000)="0900bf65653f47f4020000008bd458d1e7cbdaf300000f34e7e4165f081ae36850f6d15c3e681411f7a496c0da04003c242f5bedaf6bec340dee49474362b24cb800edc500", 0x0, 0x48)
syz_memcpy_off$KVM_EXIT_MMIO(r0, 0x20, &(0x7f0000000200)="bff60b58ddefda66d439d7edef3b314671375fbb65f554b4", 0x0, 0x18)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/3\x00')
syz_memcpy_off$KVM_EXIT_MMIO(r0, 0x20, &(0x7f0000002080)="0c92ffcc30a89ccd44e5d173321683a4c944aefcad6a6827", 0x0, 0x22)
read$FUSE(r1, &(0x7f0000000040)={0x2020}, 0x2020)

236.217136ms ago: executing program 4 (id=5866):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1d, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x74, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2309e}, 0x94)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r1, &(0x7f0000000340), &(0x7f0000000040)=@tcp=r0}, 0x20)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x123900, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r2 = openat$kvm(0xffffff9c, &(0x7f0000000300), 0x80800, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
openat$kvm(0x0, &(0x7f0000000040), 0x80203, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f00000000c0)={0x1, 0x0, [{0xce, 0x0, 0x7}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000001c0)={[0xfffffffffffffffb, 0x9, 0x0, 0x4, 0x10003, 0x0, 0x400200cc4, 0x5, 0x7d, 0x0, 0x0, 0x2, 0x5, 0x1, 0xb9, 0x8d], 0xeeee8000, 0x2011c0})
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

157.630107ms ago: executing program 3 (id=5867):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x1d0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x54)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@volatile}]})
setresuid(0x0, 0xee00, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

156.31516ms ago: executing program 1 (id=5868):
listen(0xffffffffffffffff, 0x0)
close(0x3)
r0 = socket(0x2, 0x80805, 0x0)
r1 = syz_open_dev$loop(&(0x7f0000000240), 0x7, 0x180862)
r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/fscaps', 0x40000, 0x3c)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f0000000080)={r2, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x19, 0x5, "faf98317e5b4140989fc8dbe43ea6acc96e3a2503dc3bd3ff87d5812ff010000000000000f35000000b50000000200", "32ffff26f7d31a74df2cfc06c89f3d9e234b30c50997d3bed109ff2176ff7bfe55cd4a5d83cd4a524bd3ffe70c7f3f800b2f7b6aa54cc50a1fcaed1e831fc99a", "675237ff070008000100e4162e43ac61b7ad3300e8ffffffffffffff00", [0x6, 0xfffffdfffffffffe]}})
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r2)
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0)
shutdown(0xffffffffffffffff, 0x0)
close(0x3)
sendmmsg$inet_sctp(r0, 0x0, 0x0, 0x0)

39.628334ms ago: executing program 0 (id=5869):
r0 = io_uring_setup(0x7ee1, &(0x7f0000000bc0)={0x0, 0x1cc1, 0x40, 0x2, 0x383})
fanotify_mark(0xffffffffffffffff, 0x541, 0x40001019, 0xffffffffffffffff, 0x0)
fanotify_mark(0xffffffffffffffff, 0x541, 0x40001019, 0xffffffffffffffff, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = dup(r1)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x7}], 0x1c)
sendmsg$inet6(r1, &(0x7f0000000800)={&(0x7f0000000000)={0xa, 0x4e24, 0x8, @ipv4={'\x00', '\xff\xff', @local}, 0x2}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e24, @empty}}, 0x5, 0x4, 0xf06, 0x0, 0x84, 0x81, 0x5}, 0x9c)
dup(r1)
setsockopt$SO_BINDTODEVICE(r1, 0x1, 0x19, &(0x7f0000000740)='team_slave_1\x00', 0x10)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x4e24, 0x5, @empty, 0xb055}}, 0xff80, 0x1, 0xf06, 0x0, 0xac, 0x7d, 0x5}, 0x9c)
close_range(r0, 0xffffffffffffffff, 0x0)

38.7913ms ago: executing program 2 (id=5870):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x88)
mkdir(&(0x7f00000003c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = open(&(0x7f0000000480)='./file0\x00', 0x0, 0x718bb647156ec3b7)
mknodat$loop(r0, &(0x7f0000001600)='./file1\x00', 0x200, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000000)='./file1\x00', &(0x7f00000001c0)='./file0\x00')
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={0x0, &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1, 0x1}}, 0x40)

0s ago: executing program 3 (id=5871):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000400)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0198000000000000200012800800"], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x4c094)
r3 = socket(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0x5, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x6, 0x2}}}}]}, 0x79}}, 0x800)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000045c0)=@newtfilter={0x84, 0x28, 0xd27, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0xffff, 0x9}, {0xfff3}, {0x2, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x54, 0x2, [@TCA_CGROUP_EMATCHES={0x10, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xc01}}, @TCA_EMATCH_TREE_LIST={0x4}]}, @TCA_CGROUP_POLICE={0x40, 0x2, [@TCA_POLICE_TBF={0x3c, 0x1, {0xfffffffc, 0x8, 0x0, 0x8, 0x80, {0x4, 0x1, 0x0, 0x2, 0x61f, 0x10000}, {0x5, 0x1, 0x6b4a, 0x9, 0xa6, 0x10000}, 0x4, 0x80000001, 0xc6}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x8000}, 0x404c0c0)

kernel console output (not intermixed with test programs):

2148] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  303.183618][   T37] kauditd_printk_skb: 23 callbacks suppressed
[  303.183637][   T37] audit: type=1800 audit(1766183980.487:845): pid=12163 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.2446" name="bus" dev="overlay" ino=2657 res=0 errno=0
[  303.954199][   T37] audit: type=1800 audit(1766183981.257:846): pid=12193 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.2459" name="bus" dev="overlay" ino=2676 res=0 errno=0
[  304.153513][T12205] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  305.462726][T12247] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  306.167033][T12277] __nla_validate_parse: 5 callbacks suppressed
[  306.167053][T12277] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2492'.
[  306.167209][T12277] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2492'.
[  306.383587][   T37] audit: type=1800 audit(1766183983.687:847): pid=12288 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.2496" name="bus" dev="overlay" ino=2474 res=0 errno=0
[  306.970708][T12313] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2506'.
[  306.971771][T12313] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2506'.
[  307.713342][T12343] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2516'.
[  307.817695][T12352] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2518'.
[  307.817866][T12352] netlink: 52 bytes leftover after parsing attributes in process `syz.4.2518'.
[  308.863948][T12375] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2529'.
[  309.048892][T12388] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2531'.
[  309.413928][T12402] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  310.463230][T12437] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2552'.
[  310.745247][T12451] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  311.227544][T12467] netlink: 64 bytes leftover after parsing attributes in process `syz.4.2564'.
[  311.330898][T12473] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2567'.
[  311.389833][T12473] 8021q: adding VLAN 0 to HW filter on device bond8
[  312.803687][T12536] program syz.4.2595 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  316.753549][T12693] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2664'.
[  316.753816][T12693] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.754052][T12693] bridge0: port 2(bridge_slave_1) entered forwarding state
[  316.757314][T12693] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.759150][T12693] bridge0: port 1(bridge_slave_0) entered forwarding state
[  317.169838][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  317.169933][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  317.415659][T12718] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2676'.
[  318.014367][T12744] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2689'.
[  318.923012][T12773] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2700'.
[  318.923160][T12773] netlink: 88 bytes leftover after parsing attributes in process `syz.4.2700'.
[  319.252696][T12792] overlayfs: failed to resolve './file0': -2
[  319.381902][T12797] overlayfs: failed to resolve './file1': -2
[  319.806919][T12818] netlink: 76 bytes leftover after parsing attributes in process `syz.1.2713'.
[  319.807058][T12818] netlink: 88 bytes leftover after parsing attributes in process `syz.1.2713'.
[  319.988742][T12826] overlayfs: failed to resolve './file0': -2
[  320.089002][T12831] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2719'.
[  320.130329][T12831] 8021q: adding VLAN 0 to HW filter on device bond1
[  320.186490][T12831] team0: entered promiscuous mode
[  320.186516][T12831] team_slave_0: entered promiscuous mode
[  320.186740][T12831] team_slave_1: entered promiscuous mode
[  320.620523][T12850] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2725'.
[  320.620578][T12850] netlink: 88 bytes leftover after parsing attributes in process `syz.2.2725'.
[  320.780746][T12858] overlayfs: failed to resolve './file1': -2
[  320.945692][T12863] 8021q: adding VLAN 0 to HW filter on device bond9
[  321.826757][T12896] __nla_validate_parse: 3 callbacks suppressed
[  321.826779][T12896] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2742'.
[  321.892029][T12896] 8021q: adding VLAN 0 to HW filter on device bond4
[  322.288228][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  322.331059][T12921] macvtap1: entered allmulticast mode
[  322.331074][T12921] team0: entered allmulticast mode
[  322.331082][T12921] team_slave_0: entered allmulticast mode
[  322.331093][T12921] team_slave_1: entered allmulticast mode
[  322.331581][T12921] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  322.331871][T12921] team0: Device macvtap1 is already an upper device of the team interface
[  322.416198][T12921] team0: left allmulticast mode
[  322.416217][T12921] team_slave_0: left allmulticast mode
[  322.416295][T12921] team_slave_1: left allmulticast mode
[  322.786247][T12930] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2752'.
[  322.786442][T12930] netlink: 88 bytes leftover after parsing attributes in process `syz.0.2752'.
[  322.979410][T12940] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2758'.
[  323.017741][T12940] 8021q: adding VLAN 0 to HW filter on device bond4
[  323.022043][T12940] team0: entered promiscuous mode
[  323.022078][T12940] team_slave_0: entered promiscuous mode
[  323.022316][T12940] team_slave_1: entered promiscuous mode
[  323.148291][T12949] overlayfs: failed to resolve './file1': -2
[  323.729999][T12967] netlink: 76 bytes leftover after parsing attributes in process `syz.4.2768'.
[  323.730175][T12967] netlink: 88 bytes leftover after parsing attributes in process `syz.4.2768'.
[  323.773004][T12976] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2769'.
[  323.856418][T12976] 8021q: adding VLAN 0 to HW filter on device bond3
[  323.877411][T12981] team0: entered promiscuous mode
[  323.877435][T12981] team_slave_0: entered promiscuous mode
[  323.877819][T12981] team_slave_1: entered promiscuous mode
[  323.912213][T12981] syz.1.2769 (12981) used greatest stack depth: 15280 bytes left
[  323.989709][   T37] audit: type=1800 audit(1766184001.297:848): pid=12985 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.4.2772" name="bus" dev="overlay" ino=2767 res=0 errno=0
[  324.551073][T13007] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2782'.
[  324.554967][T13007] bridge0: entered promiscuous mode
[  324.554993][T13007] bridge0: entered allmulticast mode
[  324.581812][T13007] netlink: 72 bytes leftover after parsing attributes in process `syz.3.2782'.
[  324.587953][T13010] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2783'.
[  324.640229][T13010] 8021q: adding VLAN 0 to HW filter on device bond5
[  324.756081][   T37] audit: type=1800 audit(1766184002.067:849): pid=13015 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.3.2785" name="bus" dev="overlay" ino=2893 res=0 errno=0
[  326.307036][T13077] overlayfs: failed to resolve './file1': -2
[  327.303176][T13121] fuse: Bad value for 'fd'
[  328.259002][T13147] fuse: Bad value for 'fd'
[  328.537014][T13164] __nla_validate_parse: 1 callbacks suppressed
[  328.537033][T13164] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2845'.
[  328.776619][T13154] team0: left promiscuous mode
[  328.776643][T13154] team_slave_0: left promiscuous mode
[  328.776839][T13154] team_slave_1: left promiscuous mode
[  329.187529][T13154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  329.204338][T13154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  329.717089][T13182] fuse: Bad value for 'fd'
[  330.202470][T13154] ip6gre1: left promiscuous mode
[  330.202490][T13154] ip6gre1: left allmulticast mode
[  330.204746][T13154] ip6gre2: left promiscuous mode
[  330.204763][T13154] ip6gre2: left allmulticast mode
[  330.208451][T13154] ip6gre3: left promiscuous mode
[  330.208474][T13154] ip6gre3: left allmulticast mode
[  330.382767][T13164] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2845'.
[  330.382925][ T1370] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  330.383015][ T6910] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  330.383065][ T6910] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  330.383104][ T6910] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  330.487722][T13154] syz.1.2844 (13154) used greatest stack depth: 15096 bytes left
[  331.123976][T13230] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2871'.
[  331.124097][T13230] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2871'.
[  331.541614][T13245] kvm: pic: single mode not supported
[  331.541786][T13245] kvm: pic: non byte read
[  331.541956][T13245] kvm: pic: single mode not supported
[  331.542039][T13245] kvm: pic: level sensitive irq not supported
[  331.542085][T13245] kvm: pic: non byte read
[  331.542269][T13245] kvm: pic: non byte read
[  331.542385][T13245] kvm: pic: single mode not supported
[  331.542512][T13245] kvm: pic: non byte read
[  331.542648][T13245] kvm: pic: level sensitive irq not supported
[  331.542698][T13245] kvm: pic: non byte read
[  331.542825][T13245] kvm: pic: single mode not supported
[  331.542830][T13245] kvm: pic: level sensitive irq not supported
[  331.542864][T13245] kvm: pic: non byte read
[  331.542980][T13245] kvm: pic: level sensitive irq not supported
[  331.543015][T13245] kvm: pic: non byte read
[  331.543130][T13245] kvm: pic: single mode not supported
[  331.543135][T13245] kvm: pic: level sensitive irq not supported
[  331.543169][T13245] kvm: pic: non byte read
[  331.543296][T13245] kvm: pic: single mode not supported
[  331.543345][T13245] kvm: pic: non byte read
[  332.126825][T13266] netlink: 76 bytes leftover after parsing attributes in process `syz.0.2882'.
[  332.126945][T13266] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2882'.
[  332.657528][ T5808] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  332.664572][ T5808] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  332.686005][ T5808] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  332.687725][ T5808] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  332.688882][ T5808] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  333.279573][T13302] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2895'.
[  333.338232][T13302] netlink: 60 bytes leftover after parsing attributes in process `syz.3.2895'.
[  333.433131][T13283] chnl_net:caif_netlink_parms(): no params data found
[  333.815106][T13283] bridge0: port 1(bridge_slave_0) entered blocking state
[  333.815250][T13283] bridge0: port 1(bridge_slave_0) entered disabled state
[  333.815475][T13283] bridge_slave_0: entered allmulticast mode
[  333.817932][T13283] bridge_slave_0: entered promiscuous mode
[  333.820013][T13283] bridge0: port 2(bridge_slave_1) entered blocking state
[  333.820082][T13283] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.820209][T13283] bridge_slave_1: entered allmulticast mode
[  333.821924][T13283] bridge_slave_1: entered promiscuous mode
[  334.083362][T13283] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  334.088696][T13283] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  334.367665][T13283] team0: Port device team_slave_0 added
[  334.459690][T13283] team0: Port device team_slave_1 added
[  334.677364][T13283] batman_adv: batadv0: Adding interface: batadv_slave_0
[  334.677378][T13283] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  334.677392][T13283] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  334.678957][T13283] batman_adv: batadv0: Adding interface: batadv_slave_1
[  334.678967][T13283] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  334.678982][T13283] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  334.775168][ T5808] Bluetooth: hci5: command tx timeout
[  334.990896][T13283] hsr_slave_0: entered promiscuous mode
[  334.992296][T13283] hsr_slave_1: entered promiscuous mode
[  334.993252][T13283] debugfs: 'hsr0' already exists in 'hsr'
[  334.993275][T13283] Cannot create hsr debugfs directory
[  335.648182][T13283] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.989399][T13283] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  336.087875][T13366] kvm: pic: non byte read
[  336.260237][T13283] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  336.539285][T13283] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  336.865489][ T5808] Bluetooth: hci5: command tx timeout
[  337.173584][T13283] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  337.231920][T13283] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  337.261559][T13283] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  337.320823][T13283] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  337.499852][T13283] 8021q: adding VLAN 0 to HW filter on device bond0
[  337.534912][T13283] 8021q: adding VLAN 0 to HW filter on device team0
[  337.552935][  T982] bridge0: port 1(bridge_slave_0) entered blocking state
[  337.553056][  T982] bridge0: port 1(bridge_slave_0) entered forwarding state
[  337.588198][  T982] bridge0: port 2(bridge_slave_1) entered blocking state
[  337.588710][  T982] bridge0: port 2(bridge_slave_1) entered forwarding state
[  337.982928][T13407] program syz.4.2930 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  338.090203][T13283] 8021q: adding VLAN 0 to HW filter on device batadv0
[  338.274647][T13283] veth0_vlan: entered promiscuous mode
[  338.303557][T13283] veth1_vlan: entered promiscuous mode
[  338.422291][T13283] veth0_macvtap: entered promiscuous mode
[  338.452700][T13283] veth1_macvtap: entered promiscuous mode
[  338.516727][T13283] batman_adv: batadv0: Interface activated: batadv_slave_0
[  338.559919][T13283] batman_adv: batadv0: Interface activated: batadv_slave_1
[  338.590581][ T5953] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  338.590845][ T5953] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  338.590880][ T5953] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  338.590913][ T5953] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  338.925572][ T5808] Bluetooth: hci5: command tx timeout
[  338.938021][ T5953] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  338.938042][ T5953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  339.052701][  T982] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  339.052722][  T982] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  340.280211][ T5815] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  340.304160][ T5815] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  340.308072][ T5815] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  340.314005][ T5815] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  340.314913][ T5815] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  340.496013][T13484] bridge0: left promiscuous mode
[  340.496043][T13484] bridge0: left allmulticast mode
[  340.497754][T13484] team0: left promiscuous mode
[  340.497772][T13484] team_slave_0: left promiscuous mode
[  340.497966][T13484] team_slave_1: left promiscuous mode
[  340.550321][T13484] ip6gre1: left promiscuous mode
[  340.550348][T13484] ip6gre1: left allmulticast mode
[  341.005322][ T5808] Bluetooth: hci5: command tx timeout
[  341.331127][T13511] overlayfs: missing 'lowerdir'
[  342.093523][T13475] chnl_net:caif_netlink_parms(): no params data found
[  342.365200][ T5808] Bluetooth: hci3: command tx timeout
[  342.403924][T13550] overlayfs: missing 'lowerdir'
[  342.759913][T13475] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.763621][T13475] bridge0: port 1(bridge_slave_0) entered disabled state
[  342.763889][T13475] bridge_slave_0: entered allmulticast mode
[  342.771284][T13475] bridge_slave_0: entered promiscuous mode
[  342.784800][T13563] syzkaller0: tun_chr_ioctl cmd 1074025677
[  342.784963][T13563] syzkaller0: linktype set to 768
[  342.791902][T13475] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.797513][T13475] bridge0: port 2(bridge_slave_1) entered disabled state
[  342.797776][T13475] bridge_slave_1: entered allmulticast mode
[  342.801047][T13475] bridge_slave_1: entered promiscuous mode
[  343.344670][T13475] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  343.399655][T13475] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  344.457602][ T5808] Bluetooth: hci3: command tx timeout
[  345.765870][ T1016] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  345.855938][ T1016] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  345.904642][ T1016] bond0 (unregistering): Released all slaves
[  346.525239][ T5808] Bluetooth: hci3: command tx timeout
[  346.827890][ T1016] bond1 (unregistering): Released all slaves
[  347.622841][ T1016] bond2 (unregistering): Released all slaves
[  348.478201][ T1016] bond3 (unregistering): Released all slaves
[  348.560679][T13475] team0: Port device team_slave_0 added
[  348.604909][T13475] team0: Port device team_slave_1 added
[  348.605211][ T5808] Bluetooth: hci3: command tx timeout
[  349.304182][T13475] batman_adv: batadv0: Adding interface: batadv_slave_0
[  349.304198][T13475] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  349.304218][T13475] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  349.358046][T13475] batman_adv: batadv0: Adding interface: batadv_slave_1
[  349.358058][T13475] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  349.358073][T13475] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  350.140930][T13475] hsr_slave_0: entered promiscuous mode
[  350.142307][T13475] hsr_slave_1: entered promiscuous mode
[  350.143287][T13475] debugfs: 'hsr0' already exists in 'hsr'
[  350.143310][T13475] Cannot create hsr debugfs directory
[  350.385597][ T1016] hsr_slave_0: left promiscuous mode
[  350.420108][ T1016] hsr_slave_1: left promiscuous mode
[  350.421255][ T1016] batman_adv: batadv0: Removing interface: batadv_slave_0
[  350.437658][ T1016] batman_adv: batadv0: Removing interface: batadv_slave_1
[  351.473368][T13789] kvm: requested 137447 ns i8254 timer period limited to 200000 ns
[  351.473515][T13789] kvm: requested 21790 ns i8254 timer period limited to 200000 ns
[  351.473934][T13789] kvm: requested 184381 ns i8254 timer period limited to 200000 ns
[  351.474078][T13789] kvm: requested 115657 ns i8254 timer period limited to 200000 ns
[  351.474309][T13789] kvm: requested 117333 ns i8254 timer period limited to 200000 ns
[  351.474546][T13789] kvm: requested 170971 ns i8254 timer period limited to 200000 ns
[  351.474682][T13789] kvm: requested 35200 ns i8254 timer period limited to 200000 ns
[  351.529056][T13789] kvm: requested 137447 ns i8254 timer period limited to 200000 ns
[  351.529214][T13789] kvm: requested 3352 ns i8254 timer period limited to 200000 ns
[  351.529573][T13789] kvm: requested 63695 ns i8254 timer period limited to 200000 ns
[  352.746163][ T1016] team0 (unregistering): Port device team_slave_1 removed
[  353.045673][ T1016] team0 (unregistering): Port device team_slave_0 removed
[  355.531385][T13844] overlayfs: missing 'lowerdir'
[  355.742854][T13848] team0: entered promiscuous mode
[  355.742877][T13848] team_slave_0: entered promiscuous mode
[  355.743082][T13848] team_slave_1: entered promiscuous mode
[  356.370173][T13877] overlayfs: missing 'lowerdir'
[  356.616398][T13885] overlayfs: missing 'lowerdir'
[  357.673092][T13475] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  357.774544][T13475] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  357.862532][T13475] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  358.000223][T13475] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  358.407027][T13928] overlayfs: missing 'lowerdir'
[  358.436044][T13927] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  358.436101][T13927] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  358.442842][T13475] 8021q: adding VLAN 0 to HW filter on device bond0
[  358.588226][T13475] 8021q: adding VLAN 0 to HW filter on device team0
[  358.644441][ T5953] bridge0: port 1(bridge_slave_0) entered blocking state
[  358.645452][ T5953] bridge0: port 1(bridge_slave_0) entered forwarding state
[  358.670493][ T5953] bridge0: port 2(bridge_slave_1) entered blocking state
[  358.670744][ T5953] bridge0: port 2(bridge_slave_1) entered forwarding state
[  359.354969][T13475] 8021q: adding VLAN 0 to HW filter on device batadv0
[  359.607405][T13475] veth0_vlan: entered promiscuous mode
[  359.623345][T13475] veth1_vlan: entered promiscuous mode
[  359.770246][T13475] veth0_macvtap: entered promiscuous mode
[  359.783650][T13475] veth1_macvtap: entered promiscuous mode
[  359.859302][T13475] batman_adv: batadv0: Interface activated: batadv_slave_0
[  359.894638][T13475] batman_adv: batadv0: Interface activated: batadv_slave_1
[  359.927536][ T3588] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  359.935453][ T3588] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  359.935501][ T3588] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  359.935534][ T3588] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  360.312458][  T982] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  360.312480][  T982] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  360.491065][ T3588] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  360.491087][ T3588] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  360.540337][T13994] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  360.540396][T13994] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  360.638815][T13997] overlayfs: missing 'workdir'
[  361.055489][T14014] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3132'.
[  361.061801][T14014] team0: entered promiscuous mode
[  361.061824][T14014] team_slave_0: entered promiscuous mode
[  361.062046][T14014] team_slave_1: entered promiscuous mode
[  361.522157][ T5815] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  361.541245][ T5815] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  361.545561][ T5815] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  361.546828][ T5815] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  361.565511][ T5815] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  361.730128][T14031] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  361.730194][T14031] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  361.974748][T14044] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3142'.
[  361.978277][T14041] overlayfs: failed to resolve './file1': -2
[  362.542238][T14024] chnl_net:caif_netlink_parms(): no params data found
[  362.669699][T14073] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3153'.
[  362.751348][T14078] overlayfs: failed to resolve './file1': -2
[  363.109452][T14024] bridge0: port 1(bridge_slave_0) entered blocking state
[  363.109685][T14024] bridge0: port 1(bridge_slave_0) entered disabled state
[  363.109916][T14024] bridge_slave_0: entered allmulticast mode
[  363.125293][T14024] bridge_slave_0: entered promiscuous mode
[  363.132766][T14024] bridge0: port 2(bridge_slave_1) entered blocking state
[  363.134351][T14024] bridge0: port 2(bridge_slave_1) entered disabled state
[  363.134574][T14024] bridge_slave_1: entered allmulticast mode
[  363.140693][T14024] bridge_slave_1: entered promiscuous mode
[  363.322689][T14109] overlayfs: failed to resolve './file1': -2
[  363.341195][T14024] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  363.344548][T14024] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  363.368652][T14099] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  363.433515][T14113] netlink: 28 bytes leftover after parsing attributes in process `syz.4.3167'.
[  363.606546][T14116] lo: entered promiscuous mode
[  363.612697][T14024] team0: Port device team_slave_0 added
[  363.612729][T14115] lo: left promiscuous mode
[  363.633330][T14024] team0: Port device team_slave_1 added
[  363.645390][ T5808] Bluetooth: hci2: command tx timeout
[  363.829056][T14123] overlayfs: missing 'lowerdir'
[  363.829405][T14024] batman_adv: batadv0: Adding interface: batadv_slave_0
[  363.829462][T14024] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  363.829477][T14024] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  363.831498][T14024] batman_adv: batadv0: Adding interface: batadv_slave_1
[  363.831507][T14024] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  363.831521][T14024] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  364.110532][T14024] hsr_slave_0: entered promiscuous mode
[  364.112937][T14024] hsr_slave_1: entered promiscuous mode
[  364.166093][T14134] fuse: Bad value for 'fd'
[  364.268811][T14137] overlayfs: failed to resolve './file0': -2
[  364.270706][T14138] netlink: 28 bytes leftover after parsing attributes in process `syz.1.3178'.
[  364.334303][T14139] team0: entered promiscuous mode
[  364.334325][T14139] team_slave_0: entered promiscuous mode
[  364.334523][T14139] team_slave_1: entered promiscuous mode
[  364.399637][T14138] macvlan2: entered promiscuous mode
[  364.399664][T14138] macvlan2: entered allmulticast mode
[  364.543966][T14141] picdev_read: 86 callbacks suppressed
[  364.543980][T14141] kvm: pic: non byte read
[  364.544023][T14141] kvm: pic: non byte read
[  364.544064][T14141] kvm: pic: non byte read
[  364.544105][T14141] kvm: pic: non byte read
[  364.544148][T14141] kvm: pic: non byte read
[  364.544189][T14141] kvm: pic: non byte read
[  364.544230][T14141] kvm: pic: non byte read
[  364.544270][T14141] kvm: pic: non byte read
[  364.544311][T14141] kvm: pic: non byte read
[  364.544352][T14141] kvm: pic: non byte read
[  364.794000][T14154] overlayfs: missing 'lowerdir'
[  364.910810][T14158] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3185'.
[  364.942471][T14158] bridge0: entered promiscuous mode
[  364.942500][T14158] bridge0: entered allmulticast mode
[  364.949115][T14158] netlink: 88 bytes leftover after parsing attributes in process `syz.1.3185'.
[  365.020460][T14160] fuse: Bad value for 'fd'
[  365.084473][T14164] overlayfs: failed to resolve './file0': -2
[  365.643037][T14183] overlayfs: missing 'lowerdir'
[  365.714493][T14187] fuse: Bad value for 'fd'
[  365.725669][ T5808] Bluetooth: hci2: command tx timeout
[  365.817987][T14191] overlayfs: failed to resolve './file0': -2
[  365.882060][T14188] create_pit_timer: 42 callbacks suppressed
[  365.882082][T14188] kvm: requested 129904 ns i8254 timer period limited to 200000 ns
[  365.882204][T14188] kvm: requested 114819 ns i8254 timer period limited to 200000 ns
[  365.882316][T14188] kvm: requested 93028 ns i8254 timer period limited to 200000 ns
[  365.882439][T14188] kvm: requested 176838 ns i8254 timer period limited to 200000 ns
[  365.882553][T14188] kvm: requested 98057 ns i8254 timer period limited to 200000 ns
[  365.882664][T14188] kvm: requested 36038 ns i8254 timer period limited to 200000 ns
[  365.884232][T14188] kvm: requested 62857 ns i8254 timer period limited to 200000 ns
[  365.884521][T14188] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  365.884741][T14188] kvm: requested 168457 ns i8254 timer period limited to 200000 ns
[  365.884882][T14188] kvm: requested 77942 ns i8254 timer period limited to 200000 ns
[  366.185615][T14024] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  366.219398][T14024] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  366.259244][T14024] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  366.306124][T14024] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  366.550248][T14024] 8021q: adding VLAN 0 to HW filter on device bond0
[  366.588511][T14024] 8021q: adding VLAN 0 to HW filter on device team0
[  366.599251][ T1370] bridge0: port 1(bridge_slave_0) entered blocking state
[  366.599480][ T1370] bridge0: port 1(bridge_slave_0) entered forwarding state
[  366.648790][ T5953] bridge0: port 2(bridge_slave_1) entered blocking state
[  366.648931][ T5953] bridge0: port 2(bridge_slave_1) entered forwarding state
[  367.012670][T14230] macvlan2: entered promiscuous mode
[  367.012697][T14230] macvlan2: entered allmulticast mode
[  367.066930][T14233] overlayfs: failed to resolve './file0': -2
[  367.158254][T14024] 8021q: adding VLAN 0 to HW filter on device batadv0
[  367.264436][T14242] netlink: 76 bytes leftover after parsing attributes in process `syz.4.3213'.
[  367.264552][T14242] netlink: 88 bytes leftover after parsing attributes in process `syz.4.3213'.
[  367.357201][T14024] veth0_vlan: entered promiscuous mode
[  367.390901][T14024] veth1_vlan: entered promiscuous mode
[  367.522751][T14249] tmpfs: Unknown parameter 'nr_ino'
[  367.527478][T14024] veth0_macvtap: entered promiscuous mode
[  367.559734][T14024] veth1_macvtap: entered promiscuous mode
[  367.604677][T14024] batman_adv: batadv0: Interface activated: batadv_slave_0
[  367.623995][T14024] batman_adv: batadv0: Interface activated: batadv_slave_1
[  367.670245][ T6421] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  367.684962][ T6421] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  367.700736][ T6421] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  367.708669][ T6421] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  367.805208][ T5808] Bluetooth: hci2: command tx timeout
[  368.035804][ T1016] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  368.035825][ T1016] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  368.146555][ T6910] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  368.146577][ T6910] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  368.387567][T14271] overlayfs: failed to resolve './file0': -2
[  368.548011][T14280] netlink: 76 bytes leftover after parsing attributes in process `syz.2.3225'.
[  368.548049][T14280] bridge0: entered promiscuous mode
[  368.548069][T14280] bridge0: entered allmulticast mode
[  368.548688][T14280] netlink: 88 bytes leftover after parsing attributes in process `syz.2.3225'.
[  368.565516][   T37] audit: type=1800 audit(1766184045.877:850): pid=14278 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.1.3224" name="bus" dev="overlay" ino=170 res=0 errno=0
[  369.624484][ T5815] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  369.642971][ T5815] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  369.646065][ T5815] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  369.647207][ T5815] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  369.647892][ T5815] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  369.752126][   T37] audit: type=1800 audit(1766184047.057:851): pid=14312 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.3237" name="bus" dev="overlay" ino=389 res=0 errno=0
[  369.834857][T14314] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  369.885692][ T5815] Bluetooth: hci2: command tx timeout
[  370.300897][T14333] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3244'.
[  370.950891][T14304] chnl_net:caif_netlink_parms(): no params data found
[  371.106687][T14358] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  371.377037][T14369] picdev_read: 77 callbacks suppressed
[  371.377059][T14369] kvm: pic: non byte read
[  371.377264][T14369] kvm: pic: level sensitive irq not supported
[  371.377320][T14369] kvm: pic: non byte read
[  371.379891][T14369] kvm: pic: level sensitive irq not supported
[  371.379947][T14369] kvm: pic: non byte read
[  371.380305][T14369] kvm: pic: level sensitive irq not supported
[  371.380357][T14369] kvm: pic: non byte read
[  371.380544][T14369] kvm: pic: level sensitive irq not supported
[  371.380596][T14369] kvm: pic: non byte read
[  371.380785][T14369] kvm: pic: level sensitive irq not supported
[  371.380835][T14369] kvm: pic: non byte read
[  371.381033][T14369] kvm: pic: level sensitive irq not supported
[  371.381081][T14369] kvm: pic: non byte read
[  371.381274][T14369] kvm: pic: level sensitive irq not supported
[  371.381323][T14369] kvm: pic: non byte read
[  371.381506][T14369] kvm: pic: level sensitive irq not supported
[  371.381555][T14369] kvm: pic: non byte read
[  371.725218][ T5815] Bluetooth: hci1: command tx timeout
[  371.776886][T14304] bridge0: port 1(bridge_slave_0) entered blocking state
[  371.777085][T14304] bridge0: port 1(bridge_slave_0) entered disabled state
[  371.777351][T14304] bridge_slave_0: entered allmulticast mode
[  371.787618][T14304] bridge_slave_0: entered promiscuous mode
[  371.791254][T14304] bridge0: port 2(bridge_slave_1) entered blocking state
[  371.797181][T14304] bridge0: port 2(bridge_slave_1) entered disabled state
[  371.797441][T14304] bridge_slave_1: entered allmulticast mode
[  371.800037][T14304] bridge_slave_1: entered promiscuous mode
[  372.037071][T14394] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  372.095353][T14400] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  372.103573][T14304] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  372.163086][T14304] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  372.229467][T14404] netlink: 76 bytes leftover after parsing attributes in process `syz.1.3265'.
[  372.276408][T14404] netlink: 52 bytes leftover after parsing attributes in process `syz.1.3265'.
[  372.290627][T14404] bridge0: port 2(bridge_slave_1) entered disabled state
[  372.291001][T14404] bridge0: port 1(bridge_slave_0) entered disabled state
[  372.421071][T14304] team0: Port device team_slave_0 added
[  372.424765][T14304] team0: Port device team_slave_1 added
[  372.578903][T14304] batman_adv: batadv0: Adding interface: batadv_slave_0
[  372.578921][T14304] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  372.578946][T14304] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  372.581727][T14304] batman_adv: batadv0: Adding interface: batadv_slave_1
[  372.581741][T14304] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  372.581765][T14304] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  372.840081][T14304] hsr_slave_0: entered promiscuous mode
[  372.841617][T14304] hsr_slave_1: entered promiscuous mode
[  372.842608][T14304] debugfs: 'hsr0' already exists in 'hsr'
[  372.842631][T14304] Cannot create hsr debugfs directory
[  372.842856][T14416] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3269'.
[  373.003033][T14422] tmpfs: Bad value for 'nr_inodes'
[  373.314042][T14435] netlink: 76 bytes leftover after parsing attributes in process `syz.3.3277'.
[  373.431439][T14435] bridge0: entered promiscuous mode
[  373.431458][T14435] bridge0: entered allmulticast mode
[  373.432690][T14435] netlink: 52 bytes leftover after parsing attributes in process `syz.3.3277'.
[  373.552414][T14443] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3279'.
[  373.660179][T14446] team0: entered promiscuous mode
[  373.660203][T14446] team_slave_0: entered promiscuous mode
[  373.660422][T14446] team_slave_1: entered promiscuous mode
[  373.689631][T14451] tmpfs: Bad value for 'nr_inodes'
[  373.734894][T14452] macvlan2: entered promiscuous mode
[  373.734912][T14452] macvlan2: entered allmulticast mode
[  373.805135][ T5815] Bluetooth: hci1: command tx timeout
[  374.085573][   T37] audit: type=1800 audit(1766184051.397:852): pid=14464 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.2.3287" name="bus" dev="overlay" ino=455 res=0 errno=0
[  374.323486][T14304] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.746342][T14304] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.909544][   T37] audit: type=1800 audit(1766184052.217:853): pid=14497 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.0.3300" name="bus" dev="overlay" ino=132 res=0 errno=0
[  375.033192][T14304] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.067835][T14495] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  375.412389][T14304] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  375.721267][T14304] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  375.755783][T14304] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  375.794782][T14304] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  375.838231][T14304] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  375.885560][ T5815] Bluetooth: hci1: command tx timeout
[  376.010480][T14304] 8021q: adding VLAN 0 to HW filter on device bond0
[  376.036598][T14304] 8021q: adding VLAN 0 to HW filter on device team0
[  376.043312][ T6421] bridge0: port 1(bridge_slave_0) entered blocking state
[  376.043442][ T6421] bridge0: port 1(bridge_slave_0) entered forwarding state
[  376.084979][ T6421] bridge0: port 2(bridge_slave_1) entered blocking state
[  376.085156][ T6421] bridge0: port 2(bridge_slave_1) entered forwarding state
[  376.101476][T14536] create_pit_timer: 2 callbacks suppressed
[  376.101495][T14536] kvm: requested 129904 ns i8254 timer period limited to 200000 ns
[  376.101612][T14536] kvm: requested 114819 ns i8254 timer period limited to 200000 ns
[  376.101727][T14536] kvm: requested 93028 ns i8254 timer period limited to 200000 ns
[  376.101851][T14536] kvm: requested 176838 ns i8254 timer period limited to 200000 ns
[  376.101965][T14536] kvm: requested 98057 ns i8254 timer period limited to 200000 ns
[  376.104976][T14536] kvm: requested 36038 ns i8254 timer period limited to 200000 ns
[  376.108261][T14536] kvm: requested 62857 ns i8254 timer period limited to 200000 ns
[  376.108492][T14536] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  376.108711][T14536] kvm: requested 168457 ns i8254 timer period limited to 200000 ns
[  376.108853][T14536] kvm: requested 77942 ns i8254 timer period limited to 200000 ns
[  376.603986][T14304] 8021q: adding VLAN 0 to HW filter on device batadv0
[  376.604235][T14551] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  376.827399][T14560] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  377.077552][T14304] veth0_vlan: entered promiscuous mode
[  377.107396][T14304] veth1_vlan: entered promiscuous mode
[  377.163315][T14304] veth0_macvtap: entered promiscuous mode
[  377.178881][T14304] veth1_macvtap: entered promiscuous mode
[  377.212158][T14304] batman_adv: batadv0: Interface activated: batadv_slave_0
[  377.237481][T14304] batman_adv: batadv0: Interface activated: batadv_slave_1
[  377.275361][  T155] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  377.276507][  T155] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  377.278948][  T155] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  377.315752][  T155] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  377.637042][ T5953] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  377.637338][ T5953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  377.720773][ T1531] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  377.720795][ T1531] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  377.917935][T14590] overlayfs: failed to resolve './file0': -2
[  377.966802][ T5815] Bluetooth: hci1: command tx timeout
[  378.588810][ T5808] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  378.601410][ T5808] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  378.602564][ T5808] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  378.603617][ T5808] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  378.604414][ T5808] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  378.631132][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  378.631206][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  379.667895][T14606] chnl_net:caif_netlink_parms(): no params data found
[  380.411036][T14655] kvm: pic: non byte read
[  380.411105][T14655] kvm: pic: non byte read
[  380.428431][T14655] kvm: pic: non byte read
[  380.428576][T14655] kvm: pic: non byte read
[  380.428636][T14655] kvm: pic: non byte read
[  380.428688][T14655] kvm: pic: non byte read
[  380.428742][T14655] kvm: pic: non byte read
[  380.428794][T14655] kvm: pic: non byte read
[  380.428846][T14655] kvm: pic: non byte read
[  380.428896][T14655] kvm: pic: non byte read
[  380.686494][ T5808] Bluetooth: hci4: command tx timeout
[  380.986313][T14606] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.986516][T14606] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.986807][T14606] bridge_slave_0: entered allmulticast mode
[  380.989574][T14606] bridge_slave_0: entered promiscuous mode
[  381.205774][T14606] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.205878][T14606] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.206391][T14606] bridge_slave_1: entered allmulticast mode
[  381.209530][T14606] bridge_slave_1: entered promiscuous mode
[  381.600411][T14606] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  381.636464][T14606] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  382.107887][T14606] team0: Port device team_slave_0 added
[  382.247557][T14606] team0: Port device team_slave_1 added
[  382.767201][ T5808] Bluetooth: hci4: command tx timeout
[  382.775517][T14715] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  382.847527][T14606] batman_adv: batadv0: Adding interface: batadv_slave_0
[  382.847539][T14606] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  382.847554][T14606] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  383.026483][T14606] batman_adv: batadv0: Adding interface: batadv_slave_1
[  383.026498][T14606] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  383.026518][T14606] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  383.182726][T14720] trusted_key: encrypted_key: insufficient parameters specified
[  383.205950][T14720] trusted_key: encrypted_key: master key parameter 'user' is invalid
[  383.358911][   T12] bridge_slave_1: left allmulticast mode
[  383.358941][   T12] bridge_slave_1: left promiscuous mode
[  383.361036][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  383.446616][   T12] bridge_slave_0: left allmulticast mode
[  383.446645][   T12] bridge_slave_0: left promiscuous mode
[  383.446838][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.859638][ T5808] Bluetooth: hci4: command tx timeout
[  385.525864][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  385.586617][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  385.626128][   T12] bond0 (unregistering): Released all slaves
[  386.382130][   T12] bond1 (unregistering): Released all slaves
[  386.928438][ T5815] Bluetooth: hci4: command tx timeout
[  387.047265][   T12] bond2 (unregistering): Released all slaves
[  387.739153][   T12] bond3 (unregistering): Released all slaves
[  388.457208][   T12] bond4 (unregistering): Released all slaves
[  389.267980][   T12] bond5 (unregistering): Released all slaves
[  389.949420][   T12] bond6 (unregistering): Released all slaves
[  390.688855][   T12] bond7 (unregistering): Released all slaves
[  391.369786][   T12] bond8 (unregistering): Released all slaves
[  392.058946][   T12] bond9 (unregistering): Released all slaves
[  392.201801][T14741] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  392.282004][T14606] hsr_slave_0: entered promiscuous mode
[  392.282881][T14606] hsr_slave_1: entered promiscuous mode
[  392.283489][T14606] debugfs: 'hsr0' already exists in 'hsr'
[  392.283505][T14606] Cannot create hsr debugfs directory
[  393.239694][T14782] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3395'.
[  393.718046][T14789] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3397'.
[  393.749542][   T12] hsr_slave_0: left promiscuous mode
[  393.765199][   T12] hsr_slave_1: left promiscuous mode
[  393.766324][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  393.825333][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  393.972501][T14796] trusted_key: encrypted_key: keyword 'upmate' not recognized
[  395.053847][T14819] netlink: 'syz.1.3407': attribute type 1 has an invalid length.
[  396.925915][   T12] team_slave_1 (unregistering): left promiscuous mode
[  396.966673][   T12] team0 (unregistering): Port device team_slave_1 removed
[  397.168552][   T12] team_slave_0 (unregistering): left promiscuous mode
[  397.208339][   T12] team0 (unregistering): Port device team_slave_0 removed
[  397.500263][T14865] fuse: Bad value for 'fd'
[  399.079173][T14889] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  399.300004][T14892] fuse: Bad value for 'fd'
[  399.734871][T14819] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  399.910738][T14826] vlan2: entered allmulticast mode
[  399.910755][T14826] vlan0: entered allmulticast mode
[  399.910762][T14826] veth0_vlan: entered allmulticast mode
[  400.168462][T14906] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3441'.
[  400.308094][T14911] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3441'.
[  400.325290][T14906] bond1: entered promiscuous mode
[  400.325319][T14906] bond1: entered allmulticast mode
[  400.325838][T14906] 8021q: adding VLAN 0 to HW filter on device bond1
[  400.388422][T14907] erspan1: entered allmulticast mode
[  400.392979][T14907] erspan1: entered promiscuous mode
[  400.409883][T14907] bond1: (slave erspan1): Enslaving as an active interface with an up link
[  400.659258][T14922] fuse: Bad value for 'fd'
[  401.357556][T14911] bond1 (unregistering): (slave erspan1): Releasing backup interface
[  401.397954][T14911] erspan1: left promiscuous mode
[  401.438816][T14911] bond1 (unregistering): Released all slaves
[  402.418869][T14967] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  403.306755][T14985] kvm: pic: single mode not supported
[  403.306821][T14985] picdev_read: 164 callbacks suppressed
[  403.306839][T14985] kvm: pic: non byte read
[  403.307165][T14985] kvm: pic: single mode not supported
[  403.307215][T14985] kvm: pic: non byte read
[  403.307536][T14985] kvm: pic: non byte read
[  403.307770][T14985] kvm: pic: non byte read
[  403.307993][T14985] kvm: pic: non byte read
[  403.308344][T14985] kvm: pic: non byte read
[  403.308593][T14985] kvm: pic: level sensitive irq not supported
[  403.308643][T14985] kvm: pic: non byte read
[  403.308866][T14985] kvm: pic: non byte read
[  403.309056][T14985] kvm: pic: level sensitive irq not supported
[  403.309105][T14985] kvm: pic: non byte read
[  404.701540][T15012] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  405.021020][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  405.097272][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  405.146436][   T12] bond0 (unregistering): Released all slaves
[  405.810763][T15027] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3476'.
[  406.209899][   T12] bond1 (unregistering): Released all slaves
[  406.908711][   T12] bond2 (unregistering): Released all slaves
[  407.592289][   T12] bond3 (unregistering): Released all slaves
[  408.295624][   T12] bond4 (unregistering): Released all slaves
[  408.587762][T15039] fuse: Unknown parameter 'group_i00000000000000000000'
[  409.461990][T14606] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  409.486444][T15069] fuse: root generation should be zero
[  409.546963][T14606] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  409.720990][T15075] fuse: Bad value for 'fd'
[  409.755165][   T12] hsr_slave_0: left promiscuous mode
[  409.798072][   T12] hsr_slave_1: left promiscuous mode
[  409.799067][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  409.828428][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  410.410847][T15086] kvm: pic: single mode not supported
[  410.410912][T15086] kvm: pic: non byte read
[  410.425670][T15086] kvm: pic: single mode not supported
[  410.425730][T15086] kvm: pic: non byte read
[  410.425949][T15086] kvm: pic: non byte read
[  410.426178][T15086] kvm: pic: non byte read
[  410.426434][T15086] kvm: pic: non byte read
[  410.426652][T15086] kvm: pic: non byte read
[  410.426832][T15086] kvm: pic: level sensitive irq not supported
[  410.426879][T15086] kvm: pic: non byte read
[  410.427097][T15086] kvm: pic: non byte read
[  410.427279][T15086] kvm: pic: level sensitive irq not supported
[  410.427326][T15086] kvm: pic: non byte read
[  410.825939][T15100] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3498'.
[  411.126251][T15110] fuse: Bad value for 'fd'
[  412.439331][   T12] team_slave_1 (unregistering): left promiscuous mode
[  412.477382][   T12] team0 (unregistering): Port device team_slave_1 removed
[  412.676453][   T12] team_slave_0 (unregistering): left promiscuous mode
[  412.716079][   T12] team0 (unregistering): Port device team_slave_0 removed
[  413.439740][T15134] fuse: Bad value for 'fd'
[  415.099142][T15148] kvm: pic: single mode not supported
[  415.099214][T15148] kvm: pic: non byte read
[  415.099390][T15148] kvm: pic: single mode not supported
[  415.100477][T15148] kvm: pic: level sensitive irq not supported
[  415.100941][T15148] kvm: pic: level sensitive irq not supported
[  415.235668][T14606] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  415.308341][T14606] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  415.739791][T14606] 8021q: adding VLAN 0 to HW filter on device bond0
[  415.827792][T14606] 8021q: adding VLAN 0 to HW filter on device team0
[  415.849495][ T1016] bridge0: port 1(bridge_slave_0) entered blocking state
[  415.849667][ T1016] bridge0: port 1(bridge_slave_0) entered forwarding state
[  415.880225][ T6462] bridge0: port 2(bridge_slave_1) entered blocking state
[  415.880312][ T6462] bridge0: port 2(bridge_slave_1) entered forwarding state
[  416.086913][T15179] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3528'.
[  416.152840][T15179] bond1: entered promiscuous mode
[  416.152863][T15179] bond1: entered allmulticast mode
[  416.153174][T15179] 8021q: adding VLAN 0 to HW filter on device bond1
[  416.202799][T15183] erspan1: entered allmulticast mode
[  416.212825][T15183] erspan1: entered promiscuous mode
[  416.213288][T15183] bond1: (slave erspan1): Enslaving as an active interface with an up link
[  416.258480][T15179] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3528'.
[  416.659924][T14606] 8021q: adding VLAN 0 to HW filter on device batadv0
[  417.150228][T14606] veth0_vlan: entered promiscuous mode
[  417.192477][T15210] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3539'.
[  417.207264][T14606] veth1_vlan: entered promiscuous mode
[  417.262440][T15210] bond1: entered promiscuous mode
[  417.262458][T15210] bond1: entered allmulticast mode
[  417.262813][T15210] 8021q: adding VLAN 0 to HW filter on device bond1
[  417.321724][T15210] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3539'.
[  417.648695][T14606] veth0_macvtap: entered promiscuous mode
[  417.659419][T14606] veth1_macvtap: entered promiscuous mode
[  417.939520][T14606] batman_adv: batadv0: Interface activated: batadv_slave_0
[  417.950406][T14606] batman_adv: batadv0: Interface activated: batadv_slave_1
[  417.976200][   T12] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  417.976292][   T12] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  417.976413][   T12] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  417.976448][   T12] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  418.589733][T15244] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3550'.
[  418.640189][  T982] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  418.640210][  T982] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  418.718937][T15251] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3550'.
[  418.743916][T15244] bond1: entered promiscuous mode
[  418.743945][T15244] bond1: entered allmulticast mode
[  418.744433][T15244] 8021q: adding VLAN 0 to HW filter on device bond1
[  418.873722][T15247] erspan1: entered allmulticast mode
[  418.901615][T15247] erspan1: entered promiscuous mode
[  418.902102][T15247] bond1: (slave erspan1): Enslaving as an active interface with an up link
[  419.095318][ T6910] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  419.095342][ T6910] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  419.987064][T15291] 9p: Bad value for 'rfdno'
[  420.772751][T15310] fuse: Invalid rootmode
[  421.866852][T15339] fuse: Invalid rootmode
[  422.779851][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  422.867105][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  422.883904][T15367] fuse: Unknown parameter '0x0000000000000004'
[  422.916033][   T12] bond0 (unregistering): Released all slaves
[  423.394802][T15373] Driver unsupported XDP return value 0 on prog  (id 300) dev N/A, expect packet loss!
[  423.499446][T15375] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3603'.
[  423.618534][T15381] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3603'.
[  423.668324][T15383] fuse: Unknown parameter 'grou00000000000000000000'
[  423.787285][   T12] bond1 (unregistering): Released all slaves
[  423.962993][T15391] fuse: Unknown parameter '0x0000000000000004'
[  424.055996][T15394] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  424.578256][   T12] bond2 (unregistering): Released all slaves
[  425.403267][   T12] bond3 (unregistering): Released all slaves
[  425.590913][T15420] fuse: Unknown parameter '0x0000000000000004'
[  426.214391][   T12] bond4 (unregistering): Released all slaves
[  426.486577][   T37] audit: type=1326 audit(1766184103.797:854): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15430 comm="syz.3.3625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79696ff749 code=0x7ffc0000
[  426.486637][   T37] audit: type=1326 audit(1766184103.797:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15430 comm="syz.3.3625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79696ff749 code=0x7ffc0000
[  426.488119][   T37] audit: type=1326 audit(1766184103.797:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15430 comm="syz.3.3625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f79696ff749 code=0x7ffc0000
[  426.488706][   T37] audit: type=1326 audit(1766184103.797:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15430 comm="syz.3.3625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79696ff749 code=0x7ffc0000
[  426.489535][   T37] audit: type=1326 audit(1766184103.797:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15430 comm="syz.3.3625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79696ff749 code=0x7ffc0000
[  426.489654][   T37] audit: type=1326 audit(1766184103.797:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15430 comm="syz.3.3625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7f79696ff749 code=0x7ffc0000
[  426.489818][   T37] audit: type=1326 audit(1766184103.797:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15430 comm="syz.3.3625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79696ff749 code=0x7ffc0000
[  426.490044][   T37] audit: type=1326 audit(1766184103.797:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15430 comm="syz.3.3625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79696ff749 code=0x7ffc0000
[  426.490238][   T37] audit: type=1326 audit(1766184103.797:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15430 comm="syz.3.3625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7f79696ff749 code=0x7ffc0000
[  426.490378][   T37] audit: type=1326 audit(1766184103.797:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=15430 comm="syz.3.3625" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f79696ff749 code=0x7ffc0000
[  427.189876][   T12] bond5 (unregistering): Released all slaves
[  427.519846][T15375] workqueue: Failed to create a rescuer kthread for wq "bond1": -EINTR
[  427.530935][T15378] erspan1: entered allmulticast mode
[  427.822605][T15455] fuse: Unknown parameter '0x0000000000000004'
[  428.238291][T15474] fuse: Unknown parameter 'group_i00000000000000000000'
[  428.553564][T15486] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3642'.
[  428.657982][T15494] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3642'.
[  428.690019][T15496] fuse: Unknown parameter '0x0000000000000004'
[  428.914950][T15486] bond2: entered promiscuous mode
[  428.914980][T15486] bond2: entered allmulticast mode
[  428.937506][T15486] 8021q: adding VLAN 0 to HW filter on device bond2
[  429.022762][T15472] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  429.023045][T15472] block device autoloading is deprecated and will be removed.
[  429.195881][T15507] fuse: Unknown parameter 'user_i00000000000000000000'
[  429.230765][T15510] fuse: Unknown parameter 'group_i00000000000000000000'
[  429.386219][   T12] hsr_slave_0: left promiscuous mode
[  429.438543][   T12] hsr_slave_1: left promiscuous mode
[  429.439253][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  429.439531][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  429.494669][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  429.494700][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  429.581033][T15525] fuse: Unknown parameter 'fd0x0000000000000004'
[  429.709484][   T12] veth1_macvtap: left promiscuous mode
[  429.709677][   T12] veth0_macvtap: left promiscuous mode
[  429.709929][   T12] veth1_vlan: left promiscuous mode
[  429.710577][   T12] veth0_vlan: left promiscuous mode
[  429.964115][T15544] fuse: Unknown parameter 'user_i00000000000000000000'
[  430.181238][T15554] fuse: Unknown parameter 'fd0x0000000000000004'
[  430.580395][T15572] fuse: Unknown parameter 'user_id00000000000000000000'
[  430.872611][T15581] fuse: Unknown parameter 'fd0x0000000000000004'
[  432.098883][T15614] fuse: Unknown parameter 'user_id00000000000000000000'
[  432.271500][T15616] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  432.690851][T15626] create_pit_timer: 16 callbacks suppressed
[  432.690871][T15626] kvm: requested 136609 ns i8254 timer period limited to 200000 ns
[  432.690989][T15626] kvm: requested 99733 ns i8254 timer period limited to 200000 ns
[  432.692033][T15626] kvm: requested 128228 ns i8254 timer period limited to 200000 ns
[  432.692148][T15626] kvm: requested 27657 ns i8254 timer period limited to 200000 ns
[  432.692449][T15626] kvm: requested 32685 ns i8254 timer period limited to 200000 ns
[  432.692714][T15626] kvm: requested 42742 ns i8254 timer period limited to 200000 ns
[  432.692990][T15626] kvm: requested 191923 ns i8254 timer period limited to 200000 ns
[  432.693133][T15626] kvm: requested 76266 ns i8254 timer period limited to 200000 ns
[  432.693390][T15626] kvm: requested 119847 ns i8254 timer period limited to 200000 ns
[  432.730683][T15626] kvm: requested 41066 ns i8254 timer period limited to 200000 ns
[  432.907006][   T12] team_slave_1 (unregistering): left promiscuous mode
[  432.946558][   T12] team0 (unregistering): Port device team_slave_1 removed
[  433.184606][T15643] fuse: Bad value for 'fd'
[  433.190276][   T12] team_slave_0 (unregistering): left promiscuous mode
[  433.226070][   T12] team0 (unregistering): Port device team_slave_0 removed
[  433.670519][T15652] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  435.376070][T15681] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  436.090870][T15634] ip6gre1: entered promiscuous mode
[  436.090899][T15634] ip6gre1: entered allmulticast mode
[  436.145488][T15641] erspan1: entered allmulticast mode
[  436.146538][ T1382] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  436.146793][ T1382] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  436.175333][   T31] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  436.340144][T15698] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3729'.
[  436.402952][T15692] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  436.402982][T15692] overlayfs: failed to set xattr on upper
[  436.402990][T15692] overlayfs: ...falling back to redirect_dir=nofollow.
[  436.402998][T15692] overlayfs: ...falling back to index=off.
[  436.403006][T15692] overlayfs: ...falling back to uuid=null.
[  436.414326][T15698] 8021q: adding VLAN 0 to HW filter on device bond1
[  436.415705][T15696] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3726'.
[  436.485563][   T31] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  436.532075][T15698] macvlan2: entered promiscuous mode
[  436.532103][T15698] macvlan2: entered allmulticast mode
[  436.539309][T15698] bond1: (slave macvlan2): Opening slave failed
[  436.925426][   T31] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  437.368998][T15733] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  437.369029][T15733] overlayfs: failed to set xattr on upper
[  437.369038][T15733] overlayfs: ...falling back to redirect_dir=nofollow.
[  437.369046][T15733] overlayfs: ...falling back to index=off.
[  437.369054][T15733] overlayfs: ...falling back to uuid=null.
[  437.714483][T15747] fuse: Bad value for 'fd'
[  438.899561][T15802] loop7: detected capacity change from 0 to 65599
[  439.331712][T15818] netlink: 44 bytes leftover after parsing attributes in process `syz.3.3775'.
[  440.060017][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  440.064230][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  440.365867][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  440.962191][T15884] netlink: 44 bytes leftover after parsing attributes in process `syz.1.3802'.
[  441.293395][T15904] fuse: Unknown parameter 'fd0x0000000000000004'
[  442.940937][T15954] fuse: Unknown parameter 'fd0x0000000000000004'
[  443.505060][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  444.708320][T15981] picdev_read: 8 callbacks suppressed
[  444.708335][T15981] kvm: pic: non byte read
[  444.708476][T15981] kvm: pic: level sensitive irq not supported
[  444.708515][T15981] kvm: pic: non byte read
[  444.708650][T15981] kvm: pic: level sensitive irq not supported
[  444.708685][T15981] kvm: pic: non byte read
[  444.708970][T15981] kvm: pic: level sensitive irq not supported
[  444.709031][T15981] kvm: pic: non byte read
[  444.709170][T15981] kvm: pic: level sensitive irq not supported
[  444.709205][T15981] kvm: pic: non byte read
[  444.709343][T15981] kvm: pic: level sensitive irq not supported
[  444.709378][T15981] kvm: pic: non byte read
[  444.709512][T15981] kvm: pic: level sensitive irq not supported
[  444.709546][T15981] kvm: pic: non byte read
[  444.709681][T15981] kvm: pic: level sensitive irq not supported
[  444.709716][T15981] kvm: pic: non byte read
[  444.709875][T15981] kvm: pic: level sensitive irq not supported
[  444.709910][T15981] kvm: pic: non byte read
[  444.954817][T15986] fuse: Unknown parameter 'grou00000000000000000000'
[  445.225084][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  446.007500][T16026] Þ=(ÉL¸: renamed from vlan0 (while UP)
[  446.067343][T16027] sctp: [Deprecated]: syz.3.3858 (pid 16027) Use of struct sctp_assoc_value in delayed_ack socket option.
[  446.067343][T16027] Use struct sctp_sack_info instead
[  446.535974][T16045] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  448.434676][T16118] fuse: Unknown parameter 'user_i00000000000000000000'
[  448.564177][T16113] create_pit_timer: 4 callbacks suppressed
[  448.564197][T16113] kvm: requested 137447 ns i8254 timer period limited to 200000 ns
[  448.564290][T16113] kvm: requested 21790 ns i8254 timer period limited to 200000 ns
[  448.564490][T16113] kvm: requested 184381 ns i8254 timer period limited to 200000 ns
[  448.564835][T16113] kvm: requested 115657 ns i8254 timer period limited to 200000 ns
[  448.571164][T16113] kvm: requested 117333 ns i8254 timer period limited to 200000 ns
[  448.571437][T16113] kvm: requested 170971 ns i8254 timer period limited to 200000 ns
[  448.571579][T16113] kvm: requested 35200 ns i8254 timer period limited to 200000 ns
[  448.587067][T16113] kvm: requested 137447 ns i8254 timer period limited to 200000 ns
[  448.600595][T16113] kvm: requested 3352 ns i8254 timer period limited to 200000 ns
[  448.612053][T16113] kvm: requested 63695 ns i8254 timer period limited to 200000 ns
[  449.002619][T16141] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3901'.
[  449.005269][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  449.036951][T16141] 8021q: adding VLAN 0 to HW filter on device bond3
[  449.107355][T16141] team0: entered promiscuous mode
[  449.107378][T16141] team_slave_0: entered promiscuous mode
[  449.107613][T16141] team_slave_1: entered promiscuous mode
[  449.133186][T16141] 8021q: adding VLAN 0 to HW filter on device team0
[  449.142584][T16141] bond3: (slave team0): Enslaving as an active interface with an up link
[  449.211613][T16149] fuse: Bad value for 'fd'
[  449.328987][T16151] fuse: Unknown parameter 'user_i00000000000000000000'
[  450.040251][T16180] netlink: 'syz.1.3916': attribute type 1 has an invalid length.
[  450.119400][T16180] 8021q: adding VLAN 0 to HW filter on device bond2
[  450.158561][T16182] bond2: (slave ip6erspan0): making interface the new active one
[  450.163151][T16182] bond2: (slave ip6erspan0): Enslaving as an active interface with an up link
[  450.261107][T16189] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3918'.
[  450.321203][T16189] erspan2: entered allmulticast mode
[  450.736960][T16201] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  451.074035][T16221] Þ=(ÉL¸: renamed from vlan0 (while UP)
[  451.089511][T16223] fuse: Bad value for 'user_id'
[  451.089525][T16223] fuse: Bad value for 'user_id'
[  451.333832][T16233] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3937'.
[  451.468019][T16233] 8021q: adding VLAN 0 to HW filter on device bond4
[  451.471694][T16245] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3940'.
[  451.536043][T16238] bond3: (slave team0): Releasing backup interface
[  451.564190][T16238] 8021q: adding VLAN 0 to HW filter on device team0
[  451.594485][T16238] bond4: (slave team0): Enslaving as an active interface with an up link
[  451.718808][T16247] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  451.976462][T16263] fuse: Unknown parameter 'user_id00000000000000000000'
[  452.206382][T16272] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3953'.
[  452.273507][T16278] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3954'.
[  452.310283][T16272] 8021q: adding VLAN 0 to HW filter on device bond1
[  452.327025][T16280] 8021q: adding VLAN 0 to HW filter on device team0
[  452.332286][T16280] bond1: (slave team0): Enslaving as an active interface with an up link
[  453.566473][T16323] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3968'.
[  453.699109][T16323] 8021q: adding VLAN 0 to HW filter on device bond2
[  453.743686][T16326] team0: entered promiscuous mode
[  453.743712][T16326] team_slave_0: entered promiscuous mode
[  453.749904][T16326] team_slave_1: entered promiscuous mode
[  453.774434][T16326] 8021q: adding VLAN 0 to HW filter on device team0
[  453.784260][T16326] bond2: (slave team0): Enslaving as an active interface with an up link
[  453.972728][T16344] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3977'.
[  454.718126][T16370] erspan1: entered allmulticast mode
[  455.199884][T16386] overlayfs: failed to resolve './file0': -2
[  455.559664][T16402] fuse: Bad value for 'fd'
[  456.168663][T16424] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  456.195617][T16419] kvm: pic: non byte read
[  456.195766][T16419] kvm: pic: level sensitive irq not supported
[  456.195805][T16419] kvm: pic: non byte read
[  456.195942][T16419] kvm: pic: level sensitive irq not supported
[  456.195977][T16419] kvm: pic: non byte read
[  456.196239][T16419] kvm: pic: level sensitive irq not supported
[  456.196274][T16419] kvm: pic: non byte read
[  456.196418][T16419] kvm: pic: level sensitive irq not supported
[  456.196467][T16419] kvm: pic: non byte read
[  456.196622][T16419] kvm: pic: level sensitive irq not supported
[  456.196657][T16419] kvm: pic: non byte read
[  456.196808][T16419] kvm: pic: level sensitive irq not supported
[  456.196844][T16419] kvm: pic: non byte read
[  456.196980][T16419] kvm: pic: level sensitive irq not supported
[  456.197014][T16419] kvm: pic: non byte read
[  456.197156][T16419] kvm: pic: level sensitive irq not supported
[  456.197191][T16419] kvm: pic: non byte read
[  456.378548][T16430] fuse: Bad value for 'fd'
[  456.400976][T16432] fuse: Bad value for 'fd'
[  456.821513][T16452] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  457.485211][ T5815] Bluetooth: hci5: command 0x0406 tx timeout
[  457.798920][T16498] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  458.162057][T16504] Þ=(ÉL¸: renamed from vlan0 (while UP)
[  458.392975][T16517] fuse: Unknown parameter '0x0000000000000003'
[  461.798719][T16643] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4095'.
[  462.404242][T16669] fuse: Bad value for 'fd'
[  462.605292][ T5808] Bluetooth: hci3: command 0x0406 tx timeout
[  463.633847][T16707] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  464.364048][T16746] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4134'.
[  464.470322][T16752] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4134'.
[  464.523184][T16748] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  464.574123][T16746] bond5: entered promiscuous mode
[  464.574142][T16746] bond5: entered allmulticast mode
[  464.574470][T16746] 8021q: adding VLAN 0 to HW filter on device bond5
[  464.664147][T16762] fuse: Bad value for 'rootmode'
[  465.143405][T16786] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4149'.
[  465.284469][T16786] bond2: entered promiscuous mode
[  465.284499][T16786] bond2: entered allmulticast mode
[  465.298869][T16795] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4149'.
[  465.318030][T16786] 8021q: adding VLAN 0 to HW filter on device bond2
[  465.515311][T16799] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  465.901912][T16821] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  466.413946][T16846] fuse: Unknown parameter 'use00000000000000000000'
[  466.925214][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  467.378271][T16894] fuse: Unknown parameter 'use00000000000000000000'
[  468.017659][T16923] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4196'.
[  468.040843][T16925] fuse: Unknown parameter 'use00000000000000000000'
[  468.711237][T16956] fuse: Bad value for 'group_id'
[  468.711258][T16956] fuse: Bad value for 'group_id'
[  468.774252][T16959] netlink: 16 bytes leftover after parsing attributes in process `syz.2.4209'.
[  468.801045][T16960] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4210'.
[  468.891349][T16965] fuse: Unknown parameter 'user_i00000000000000000000'
[  469.455881][T16992] fuse: Bad value for 'group_id'
[  469.455900][T16992] fuse: Bad value for 'group_id'
[  469.511505][T16994] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4224'.
[  470.144758][T17026] fuse: Bad value for 'group_id'
[  470.144781][T17026] fuse: Bad value for 'group_id'
[  470.670323][T17056] netlink: 8 bytes leftover after parsing attributes in process `syz.1.4249'.
[  470.672968][T17056] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4249'.
[  471.153195][T17074] fuse: Unknown parameter 'user_id00000000000000000000'
[  471.379178][T17081] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  472.331265][T17131] netlink: 'syz.3.4275': attribute type 1 has an invalid length.
[  472.410702][T17131] 8021q: adding VLAN 0 to HW filter on device bond3
[  472.610297][T17138] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  473.628776][T17197] fuse: Bad value for 'group_id'
[  473.628798][T17197] fuse: Bad value for 'group_id'
[  473.663501][T17188] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  474.173143][T17220] netlink: 20 bytes leftover after parsing attributes in process `syz.0.4310'.
[  474.398330][T17227] fuse: Bad value for 'group_id'
[  474.398344][T17227] fuse: Bad value for 'group_id'
[  474.878177][T17254] netlink: 44 bytes leftover after parsing attributes in process `syz.4.4324'.
[  474.936804][T17258] fuse: Bad value for 'group_id'
[  474.936824][T17258] fuse: Bad value for 'group_id'
[  475.841932][T17300] overlayfs: missing 'lowerdir'
[  476.258620][T17321] process 'syz.1.4353' launched '/dev/fd/4' with NULL argv: empty string added
[  476.352611][T17324] program syz.3.4354 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  476.517566][T17331] overlayfs: missing 'lowerdir'
[  477.114832][T17360] overlayfs: missing 'lowerdir'
[  477.747168][T17385] sctp: [Deprecated]: syz.0.4378 (pid 17385) Use of struct sctp_assoc_value in delayed_ack socket option.
[  477.747168][T17385] Use struct sctp_sack_info instead
[  478.388366][T17414] sctp: [Deprecated]: syz.0.4391 (pid 17414) Use of struct sctp_assoc_value in delayed_ack socket option.
[  478.388366][T17414] Use struct sctp_sack_info instead
[  478.561283][T17421] loop3: detected capacity change from 0 to 16384
[  478.881569][T17436] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  479.033344][T17427] loop3: detected capacity change from 16384 to 0
[  479.980751][T17470] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4412'.
[  480.098062][T17470] 8021q: adding VLAN 0 to HW filter on device bond3
[  480.120168][T17475] 8021q: adding VLAN 0 to HW filter on device team0
[  480.127821][T17475] bond3: (slave team0): Enslaving as an active interface with an up link
[  480.141699][T17470] macvlan2: entered promiscuous mode
[  480.141717][T17470] macvlan2: entered allmulticast mode
[  480.640215][T17499] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4421'.
[  480.658618][T17499] erspan0: entered promiscuous mode
[  480.659020][T17499] macvtap1: entered promiscuous mode
[  480.659191][T17499] macvtap1: entered allmulticast mode
[  480.659204][T17499] erspan0: entered allmulticast mode
[  480.698991][T17499] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4421'.
[  480.731524][T17499] erspan0: left allmulticast mode
[  480.731775][T17499] erspan0: left promiscuous mode
[  480.804682][T17507] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4424'.
[  480.909107][T17507] 8021q: adding VLAN 0 to HW filter on device bond6
[  480.966001][T17510] bond4: (slave team0): Releasing backup interface
[  481.061386][T17510] 8021q: adding VLAN 0 to HW filter on device team0
[  481.076920][T17510] bond6: (slave team0): Enslaving as an active interface with an up link
[  481.174059][T17527] overlayfs: missing 'workdir'
[  481.831086][T17554] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4442'.
[  488.205250][ T5808] Bluetooth: hci2: command 0x0406 tx timeout
[  493.327430][ T5815] Bluetooth: hci1: command 0x0406 tx timeout
[  494.373112][T17554] 8021q: adding VLAN 0 to HW filter on device bond7
[  494.405930][T17558] bond6: (slave team0): Releasing backup interface
[  494.428362][T17558] 8021q: adding VLAN 0 to HW filter on device team0
[  494.429802][T17558] bond7: (slave team0): Enslaving as an active interface with an up link
[  495.053387][T17620] fuse: Unknown parameter '0x0000000000000004'
[  495.060667][T17619] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4464'.
[  495.127404][T17619] 8021q: adding VLAN 0 to HW filter on device bond4
[  495.162592][T17624] bond3: (slave team0): Releasing backup interface
[  495.216107][T17624] 8021q: adding VLAN 0 to HW filter on device team0
[  495.218941][T17624] bond4: (slave team0): Enslaving as an active interface with an up link
[  495.954592][T17648] fuse: Unknown parameter '0x0000000000000004'
[  496.121151][T17652] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4479'.
[  496.299638][T17652] 8021q: adding VLAN 0 to HW filter on device bond8
[  496.336162][T17657] bond7: (slave team0): Releasing backup interface
[  496.359438][T17657] 8021q: adding VLAN 0 to HW filter on device team0
[  496.390939][T17657] bond8: (slave team0): Enslaving as an active interface with an up link
[  496.552414][T17674] fuse: Unknown parameter '0x0000000000000004'
[  496.717716][T17678] evm: overlay not supported
[  497.413990][T17713] fuse: Unknown parameter 'group_id00000000000000000000'
[  497.426004][T17709] fuse: Unknown parameter 'fd0x0000000000000004'
[  497.682252][T17728] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4509'.
[  497.893258][T17737] fuse: Bad value for 'fd'
[  497.917203][T17733] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  498.319058][T17754] fuse: Unknown parameter 'fd0x0000000000000004'
[  498.343753][T17752] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4516'.
[  498.715973][T17771] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  499.065995][T17785] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer.
[  499.122033][T17794] fuse: Unknown parameter 'fd0x0000000000000004'
[  500.623012][T17855] 9p: Bad value for 'rfdno'
[  500.658826][T17846] kvm: kvm [17845]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x12d30aa700000000
[  500.658892][T17846] kvm: kvm [17845]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc1) = 0x12d30aa700000001
[  500.658996][T17846] kvm: kvm [17845]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc2) = 0x12d30aa700000080
[  500.659041][T17846] kvm: kvm [17845]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0xc2) = 0x12d30aa700000081
[  500.683734][T17846] kvm: kvm [17845]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x12d30aa700000000
[  500.683788][T17846] kvm: kvm [17845]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0x12d30aa700000001
[  500.703103][T17846] kvm: kvm [17845]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x186) = 0x12d30aa700000080
[  500.703159][T17846] kvm: kvm [17845]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x186) = 0x12d30aa700000081
[  500.703270][T17846] kvm: kvm [17845]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x187) = 0x12d30aa700000000
[  500.703315][T17846] kvm: kvm [17845]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x187) = 0x12d30aa700000001
[  500.884922][T17863] program syz.4.4558 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  501.489265][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  501.489333][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  501.496812][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  502.172888][T17899] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4570'.
[  502.740537][T17919] syzkaller0: entered promiscuous mode
[  502.740565][T17919] syzkaller0: entered allmulticast mode
[  502.764377][T17921] 9p: Bad value for 'rfdno'
[  503.070689][T17928] fuse: Unknown parameter 'group_i00000000000000000000'
[  503.565496][ T5815] Bluetooth: hci4: command 0x0406 tx timeout
[  504.123949][T17957] fuse: Unknown parameter 'group_id00000000000000000000'
[  504.782683][T17981] sock: sock_timestamping_bind_phc: sock not bind to device
[  505.226210][T17996] fuse: Unknown parameter 'group_id00000000000000000000'
[  505.475543][T17999] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  505.732519][T18015] program syz.4.4612 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  506.194969][T18034] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4619'.
[  506.643315][T18048] program syz.0.4625 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  506.896987][T18065] netlink: 12 bytes leftover after parsing attributes in process `syz.4.4631'.
[  506.904933][T18065] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4631'.
[  507.419142][T18084] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  508.048642][T18098] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4646'.
[  508.051159][T18098] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4646'.
[  509.713305][T18132] kvm: user requested TSC rate below hardware speed
[  510.850843][T18170] sctp: [Deprecated]: syz.0.4678 (pid 18170) Use of struct sctp_assoc_value in delayed_ack socket option.
[  510.850843][T18170] Use struct sctp_sack_info instead
[  511.306156][T18188] netlink: 'syz.3.4683': attribute type 4 has an invalid length.
[  511.371261][T18192] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4686'.
[  511.498247][T18198] program syz.2.4689 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  512.544012][T18242] netlink: 28 bytes leftover after parsing attributes in process `syz.3.4702'.
[  512.925214][T18249] serio: Serial port pty26
[  512.950078][T18252] fuse: Bad value for 'fd'
[  513.775829][T18283] netlink: 28 bytes leftover after parsing attributes in process `syz.2.4714'.
[  515.121784][T18306] overlayfs: failed to resolve './file1': -2
[  515.359929][T18318] program syz.3.4726 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  515.676881][T18333] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4731'.
[  516.176897][T18353] program syz.2.4739 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  517.176515][T18385] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4748'.
[  517.380640][T18391] program syz.2.4751 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  517.476502][T18393] fuse: Bad value for 'fd'
[  517.597977][T18401] fuse: Unknown parameter 'user_i00000000000000000000'
[  517.968675][T18412] netlink: 520 bytes leftover after parsing attributes in process `syz.2.4759'.
[  518.012583][T18411] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  518.599946][T18420] program syz.3.4763 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  519.001485][T18424] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  519.670675][T18437] serio: Serial port pty20
[  519.902759][T18442] 9p: Bad value for 'wfdno'
[  520.171153][T18450] program syz.1.4774 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  520.414451][T18459] fuse: Invalid rootmode
[  521.085721][T18482] program syz.0.4787 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  521.172485][T18486] fuse: Bad value for 'rootmode'
[  521.977055][T18508] kvm: user requested TSC rate below hardware speed
[  522.205900][T18514] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  525.852078][T18644] fuse: Unknown parameter 'use00000000000000000000'
[  526.229570][   T37] kauditd_printk_skb: 4 callbacks suppressed
[  526.229590][   T37] audit: type=1326 audit(1766184203.527:868): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18660 comm="syz.4.4855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efee57df749 code=0x7ffc0000
[  526.229635][   T37] audit: type=1326 audit(1766184203.527:869): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18660 comm="syz.4.4855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7efee57df749 code=0x7ffc0000
[  526.229674][   T37] audit: type=1326 audit(1766184203.527:870): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18660 comm="syz.4.4855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efee57df749 code=0x7ffc0000
[  526.229716][   T37] audit: type=1326 audit(1766184203.527:871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18660 comm="syz.4.4855" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efee57df749 code=0x7ffc0000
[  526.467050][T18666] sctp: [Deprecated]: syz.4.4857 (pid 18666) Use of struct sctp_assoc_value in delayed_ack socket option.
[  526.467050][T18666] Use struct sctp_sack_info instead
[  526.750992][T18676] fuse: Unknown parameter 'user_i00000000000000000000'
[  527.204095][   T37] audit: type=1326 audit(1766184204.507:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18692 comm="syz.4.4867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efee57df749 code=0x7ffc0000
[  527.204151][   T37] audit: type=1326 audit(1766184204.507:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18692 comm="syz.4.4867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7efee57df749 code=0x7ffc0000
[  527.204192][   T37] audit: type=1326 audit(1766184204.507:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18692 comm="syz.4.4867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efee57df749 code=0x7ffc0000
[  527.204235][   T37] audit: type=1326 audit(1766184204.507:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18692 comm="syz.4.4867" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efee57df749 code=0x7ffc0000
[  527.444024][T18704] 8021q: adding VLAN 0 to HW filter on device bond2
[  527.474077][T18704] bond2: (slave ip6erspan0): Enslaving as an active interface with an up link
[  527.517123][T18706] sctp: [Deprecated]: syz.4.4870 (pid 18706) Use of struct sctp_assoc_value in delayed_ack socket option.
[  527.517123][T18706] Use struct sctp_sack_info instead
[  527.736682][T18713] fuse: Unknown parameter 'user_i00000000000000000000'
[  528.689768][T18744] 8021q: adding VLAN 0 to HW filter on device bond9
[  528.799175][T18748] bond9: (slave ip6erspan0): Enslaving as an active interface with an up link
[  529.133242][T18765] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  529.993490][T18793] 8021q: adding VLAN 0 to HW filter on device bond5
[  530.728802][T18818] 9p: Bad value for 'wfdno'
[  530.827818][T18823] netlink: 'syz.1.4912': attribute type 1 has an invalid length.
[  531.215712][T18823] 8021q: adding VLAN 0 to HW filter on device bond6
[  532.050916][T18852] 9p: Bad value for 'wfdno'
[  532.274887][T18862] fuse: Unknown parameter '0x0000000000000003'
[  532.754541][T18874] overlayfs: failed to resolve './file0': -2
[  532.989249][T18882] 9p: Bad value for 'wfdno'
[  533.656366][T18903] overlayfs: failed to resolve './file0': -2
[  533.697951][T18904] program syz.4.4945 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  533.858311][T18911] 9p: Bad value for 'wfdno'
[  534.294038][T18929] overlayfs: missing 'lowerdir'
[  534.295734][T18927] fuse: Bad value for 'fd'
[  534.641391][T18944] overlayfs: failed to resolve './file0': -2
[  534.861607][T18952] 9p: Bad value for 'wfdno'
[  534.952903][T18955] loop3: detected capacity change from 0 to 16384
[  535.403447][T18968] overlayfs: missing 'lowerdir'
[  535.590642][   T37] audit: type=1326 audit(1766184212.897:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18969 comm="syz.2.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bdff749 code=0x7ffc0000
[  535.590929][   T37] audit: type=1326 audit(1766184212.897:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18969 comm="syz.2.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa33bdff749 code=0x7ffc0000
[  535.653682][   T37] audit: type=1326 audit(1766184212.957:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18969 comm="syz.2.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bdff749 code=0x7ffc0000
[  535.654791][   T37] audit: type=1326 audit(1766184212.957:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=18969 comm="syz.2.4967" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa33bdff749 code=0x7ffc0000
[  535.818772][T18975] overlayfs: failed to resolve './file1': -2
[  535.914641][T18978] netlink: 12 bytes leftover after parsing attributes in process `syz.1.4970'.
[  536.330420][T18994] overlayfs: missing 'lowerdir'
[  536.860846][T19009] kvm: pic: single mode not supported
[  536.861886][T19009] kvm: pic: single mode not supported
[  536.862029][T19009] kvm: pic: single mode not supported
[  537.180610][T19032] 9p: Bad value for 'wfdno'
[  537.231032][T19034] overlayfs: failed to resolve './file1': -2
[  538.059941][T19061] 9p: Bad value for 'wfdno'
[  539.505794][T19109] netlink: 'syz.4.5028': attribute type 1 has an invalid length.
[  539.611142][T19111] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5028'.
[  539.724791][T19109] bond10: entered promiscuous mode
[  539.724906][T19109] bond10: entered allmulticast mode
[  539.726110][T19109] 8021q: adding VLAN 0 to HW filter on device bond10
[  539.823186][T19114] bridge1: entered promiscuous mode
[  539.824893][T19114] team0: Port device bridge1 added
[  540.483427][T19143] netlink: 'syz.2.5040': attribute type 1 has an invalid length.
[  540.523926][T19143] bond3: entered promiscuous mode
[  540.523947][T19143] bond3: entered allmulticast mode
[  540.524446][T19143] 8021q: adding VLAN 0 to HW filter on device bond3
[  540.531330][T19143] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5040'.
[  540.951911][T19162] overlayfs: missing 'lowerdir'
[  541.200982][T19173] netlink: 'syz.3.5052': attribute type 1 has an invalid length.
[  541.258226][T19173] bond4: entered promiscuous mode
[  541.258257][T19173] bond4: entered allmulticast mode
[  541.258909][T19173] 8021q: adding VLAN 0 to HW filter on device bond4
[  541.319171][T19173] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5052'.
[  541.343273][   T37] audit: type=1326 audit(1766184218.647:880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=19175 comm="syz.1.5054" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4145f9f749 code=0x0
[  541.491267][T19185] overlayfs: failed to resolve './file1': -2
[  541.728840][T19196] overlayfs: missing 'lowerdir'
[  542.479024][ T6910] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  542.502756][ T5888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  542.504534][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  542.523198][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  542.697938][T19228] overlayfs: missing 'lowerdir'
[  543.017142][   T68] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.025143][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.031063][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.031403][ T5888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.255320][T19251] overlayfs: missing 'lowerdir'
[  543.566638][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.743524][ T1363] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  543.896272][T19273] overlayfs: failed to resolve './file1': -2
[  544.063395][T19280] overlayfs: missing 'lowerdir'
[  544.284809][T19294] netlink: 'syz.1.5101': attribute type 1 has an invalid length.
[  544.370827][T19294] bond7: entered promiscuous mode
[  544.370860][T19294] bond7: entered allmulticast mode
[  544.382785][T19294] 8021q: adding VLAN 0 to HW filter on device bond7
[  544.638589][T19308] overlayfs: failed to resolve './file1': -2
[  544.831767][T19319] overlayfs: missing 'workdir'
[  545.424372][T19348] overlayfs: missing 'workdir'
[  546.039057][T19375] overlayfs: missing 'workdir'
[  546.311072][T19384] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  547.420598][T19424] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  547.421172][T19424] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  547.659508][T19439] netlink: 'syz.0.5157': attribute type 1 has an invalid length.
[  547.743491][ T5880] net_ratelimit: 6 callbacks suppressed
[  547.743511][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  548.561453][T19463] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  548.566061][T19463] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  548.765434][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  548.943098][T19476] 8021q: adding VLAN 0 to HW filter on device bond8
[  548.956104][T19476] bond8: entered promiscuous mode
[  548.961173][T19476] team0: Failed to send port change of device bond8 via netlink (err -105)
[  548.961374][T19476] team0: Failed to send options change via netlink (err -105)
[  548.961391][T19476] team0: Port device bond8 added
[  549.002640][   T78] team0: Failed to send port change of device bond8 via netlink (err -105)
[  549.165444][ T5888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.486298][ T5953] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.489847][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.490785][ T5888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  549.807334][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  550.566731][T19518] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  550.846258][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  551.233218][T19539] netlink: 67 bytes leftover after parsing attributes in process `syz.3.5197'.
[  551.881801][T19570] netlink: 'syz.4.5210': attribute type 1 has an invalid length.
[  551.886072][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  551.965838][T19576] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5210'.
[  551.997053][T19570] bond11: entered promiscuous mode
[  551.997093][T19570] bond11: entered allmulticast mode
[  551.997674][T19570] 8021q: adding VLAN 0 to HW filter on device bond11
[  552.205471][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  552.935490][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  553.069488][T19576] bond11 (unregistering): Released all slaves
[  553.212373][T19592] 8021q: adding VLAN 0 to HW filter on device bond9
[  553.215885][T19592] bond9: entered promiscuous mode
[  553.217922][T19592] team0: Port device bond9 added
[  553.965680][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  554.014329][T19630] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5231'.
[  554.026575][T19630] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5231'.
[  555.005266][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  555.245611][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  555.253132][ T1370] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  555.275697][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  555.276376][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.045427][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  556.275874][T19701] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5256'.
[  556.354601][T19704] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5258'.
[  556.376550][T19704] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5258'.
[  557.089487][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  558.125755][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  558.288914][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  559.175466][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  559.412915][T19824] fuse: Bad value for 'fd'
[  559.643924][T19831] overlayfs: missing 'workdir'
[  559.711843][T19830] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  559.791298][T19836] netlink: 'syz.3.5310': attribute type 1 has an invalid length.
[  559.793999][T19836] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5310'.
[  560.067184][T19843] 9p: Bad value for 'wfdno'
[  560.086619][T19844] netlink: 68 bytes leftover after parsing attributes in process `syz.1.5313'.
[  560.206314][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  560.294408][T19853] fuse: Bad value for 'fd'
[  560.694301][T19869] netlink: 'syz.2.5322': attribute type 1 has an invalid length.
[  560.715183][T19869] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5322'.
[  560.728680][T19870] overlayfs: missing 'workdir'
[  561.078472][T19875] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  561.245608][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  561.325385][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  561.711891][T19899] overlayfs: missing 'workdir'
[  561.716370][T19904] netlink: 'syz.2.5334': attribute type 1 has an invalid length.
[  561.825653][T19912] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5334'.
[  561.829346][T19904] bond4: entered promiscuous mode
[  561.829367][T19904] bond4: entered allmulticast mode
[  561.829784][T19904] 8021q: adding VLAN 0 to HW filter on device bond4
[  562.285293][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  562.313115][T19927] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  562.546331][T19940] overlayfs: missing 'lowerdir'
[  562.733330][T19946] netlink: 'syz.3.5352': attribute type 1 has an invalid length.
[  562.852950][T19954] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5352'.
[  562.915794][T19957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  562.936262][ T1319] ieee802154 phy0 wpan0: encryption failed: -22
[  562.936330][ T1319] ieee802154 phy1 wpan1: encryption failed: -22
[  562.955644][T19946] bond5: entered promiscuous mode
[  562.955673][T19946] bond5: entered allmulticast mode
[  562.956154][T19946] 8021q: adding VLAN 0 to HW filter on device bond5
[  563.023143][T19957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.256086][T19957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.262847][T19957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.266756][T19957] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.267898][T19970] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.268352][T19970] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.272222][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.272775][T19970] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.273497][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.274027][T19970] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.274703][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  563.721502][T19982] overlayfs: missing 'lowerdir'
[  564.214211][T20001] netlink: 'syz.0.5370': attribute type 1 has an invalid length.
[  564.317917][T20007] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5370'.
[  564.328503][T20001] bond3: entered promiscuous mode
[  564.328530][T20001] bond3: entered allmulticast mode
[  564.329049][T20001] 8021q: adding VLAN 0 to HW filter on device bond3
[  564.789879][T20022] overlayfs: missing 'lowerdir'
[  565.380271][T20045] netlink: 'syz.3.5385': attribute type 1 has an invalid length.
[  565.383378][T20045] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5385'.
[  565.762809][T20059] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  565.762855][T20059] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  565.762895][T20059] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  566.076369][T20069] overlayfs: failed to resolve './file1': -2
[  567.606030][T20086] netlink: 'syz.3.5398': attribute type 1 has an invalid length.
[  567.618359][T20086] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5398'.
[  567.761440][T20091] netlink: 'syz.2.5399': attribute type 1 has an invalid length.
[  567.965808][T20103] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  567.965840][T20103] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  567.965881][T20103] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  567.986113][T20091] bond5: entered promiscuous mode
[  567.986140][T20091] bond5: entered allmulticast mode
[  568.001707][T20091] 8021q: adding VLAN 0 to HW filter on device bond5
[  568.043820][T20091] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5399'.
[  568.045241][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  568.765956][ T5880] net_ratelimit: 358 callbacks suppressed
[  568.765978][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  569.248017][T20132] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  569.248050][T20132] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  569.248091][T20132] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  569.678033][T20138] program syz.2.5418 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  569.845406][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  570.445456][ T5889] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  570.965806][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  571.268595][T20172] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  571.269151][T20172] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  572.045553][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  572.443714][T20210] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  572.457773][T20210] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  572.685135][T20216] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5446'.
[  572.685181][T20216] bond0: ARP target 170.170.170.170 is already present
[  572.685203][T20216] bond0: option arp_ip_target: invalid value (2863311530)
[  572.791391][T20218] netlink: 'syz.2.5447': attribute type 1 has an invalid length.
[  572.798953][T20218] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5447'.
[  573.088651][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  573.497922][ T5887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  573.747234][T20239] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  573.753652][T20239] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  573.962201][T20247] netlink: 'syz.2.5459': attribute type 1 has an invalid length.
[  573.998861][T20247] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5459'.
[  574.156753][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  574.445727][ T5888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  574.465449][T20262] overlayfs: missing 'lowerdir'
[  575.165517][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  575.412397][T20284] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  575.412863][T20284] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  576.083617][T20298] overlayfs: missing 'lowerdir'
[  576.215614][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  576.546582][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  577.246051][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  577.321363][T20326] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  577.340486][T20326] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  577.731574][T20336] overlayfs: missing 'lowerdir'
[  578.286582][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  578.288929][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  579.328807][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  579.565359][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  579.983131][T20386] overlayfs: failed to resolve './file1/file0': -2
[  580.129777][T20391] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  580.385476][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  580.433039][T20403] netlink: 'syz.0.5514': attribute type 1 has an invalid length.
[  580.487672][T20405] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5514'.
[  580.530300][T20402] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  580.530735][T20402] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  580.561374][T20403] bond4: entered promiscuous mode
[  580.561406][T20403] bond4: entered allmulticast mode
[  580.561915][T20403] 8021q: adding VLAN 0 to HW filter on device bond4
[  580.922659][T20415] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  581.405891][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  581.461067][T20426] overlayfs: failed to resolve './file1': -2
[  581.858415][T20436] netlink: 'syz.3.5527': attribute type 1 has an invalid length.
[  581.956099][T20439] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5527'.
[  581.994977][T20436] bond6: entered promiscuous mode
[  581.995338][T20436] bond6: entered allmulticast mode
[  581.995843][T20436] 8021q: adding VLAN 0 to HW filter on device bond6
[  582.386613][T20447] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  582.445769][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  583.406877][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  583.533219][ T5887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  583.656204][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  584.273406][T20486] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  584.276604][T20486] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  584.695760][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  585.402771][T20518] 8021q: adding VLAN 0 to HW filter on device bond7
[  585.403534][T20518] bond7: entered promiscuous mode
[  585.404869][T20518] team0: Port device bond7 added
[  586.499987][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  586.605730][ T5918] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  586.690879][T20543] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  586.691490][T20543] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  587.073040][T20556] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  587.600926][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  587.885587][ T5887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  588.054170][T20584] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  588.054717][T20584] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  588.468279][T20601] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  588.469014][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  588.605818][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  589.401396][T20620] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  589.401857][T20620] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  589.645405][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  589.695379][ T5887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  590.086639][T20647] netlink: 'syz.2.5606': attribute type 1 has an invalid length.
[  590.360121][T20647] bond6: entered promiscuous mode
[  590.360151][T20647] bond6: entered allmulticast mode
[  590.375956][T20647] 8021q: adding VLAN 0 to HW filter on device bond6
[  590.868894][T20668] netlink: 'syz.0.5615': attribute type 1 has an invalid length.
[  590.948883][T20671] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  590.962546][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  590.999157][T20673] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5615'.
[  591.037449][T20671] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  591.096409][T20668] bond5: entered promiscuous mode
[  591.096441][T20668] bond5: entered allmulticast mode
[  591.096947][T20668] 8021q: adding VLAN 0 to HW filter on device bond5
[  591.217355][T20677] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5616'.
[  591.355424][T20681] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5616'.
[  591.416559][T20677] bond11: entered promiscuous mode
[  591.416588][T20677] bond11: entered allmulticast mode
[  591.427850][T20677] 8021q: adding VLAN 0 to HW filter on device bond11
[  591.730796][T20693] netlink: 'syz.1.5623': attribute type 1 has an invalid length.
[  591.965494][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  592.527326][T20706] netlink: 'syz.0.5628': attribute type 1 has an invalid length.
[  592.714442][T20708] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5628'.
[  592.765728][ T5887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  593.005657][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  593.033727][T20681] bond11 (unregistering): Released all slaves
[  593.190613][T20693] workqueue: Failed to create a rescuer kthread for wq "bond10": -EINTR
[  593.266508][T20706] bond6: entered promiscuous mode
[  593.266719][T20706] bond6: entered allmulticast mode
[  593.269520][T20706] 8021q: adding VLAN 0 to HW filter on device bond6
[  593.441164][T20727] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  593.787874][T20746] netlink: 'syz.2.5641': attribute type 1 has an invalid length.
[  593.924431][T20753] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5641'.
[  593.953039][T20755] netlink: 'syz.0.5644': attribute type 1 has an invalid length.
[  593.987747][T20746] bond7: entered promiscuous mode
[  593.987770][T20746] bond7: entered allmulticast mode
[  593.988166][T20746] 8021q: adding VLAN 0 to HW filter on device bond7
[  594.045396][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  594.099005][T20755] bond7: entered promiscuous mode
[  594.099025][T20755] bond7: entered allmulticast mode
[  594.099383][T20755] 8021q: adding VLAN 0 to HW filter on device bond7
[  594.220219][T20759] netlink: 'syz.3.5645': attribute type 1 has an invalid length.
[  594.333407][T20770] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5645'.
[  594.396982][T20759] bond8: entered promiscuous mode
[  594.397015][T20759] bond8: entered allmulticast mode
[  594.401259][T20759] 8021q: adding VLAN 0 to HW filter on device bond8
[  595.097032][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  595.805570][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  596.125619][ T5880] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  596.272616][T20818] loop6: detected capacity change from 0 to 7
[  596.299270][T20818] Dev loop6: unable to read RDB block 7
[  596.299323][T20818]  loop6: unable to read partition table
[  596.299551][T20818] loop6: partition table beyond EOD, truncated
[  596.299576][T20818] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[  596.768857][T20828] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  597.166981][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  597.223118][T20843] netlink: 'syz.2.5675': attribute type 1 has an invalid length.
[  597.309335][T20847] overlayfs: conflicting lowerdir path
[  597.380130][T20843] 8021q: adding VLAN 0 to HW filter on device bond8
[  597.516456][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  597.668909][T20858] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5680'.
[  598.058903][T20873] overlayfs: conflicting lowerdir path
[  598.205606][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  598.316391][T20884] netlink: 'syz.3.5691': attribute type 1 has an invalid length.
[  598.391061][T20884] 8021q: adding VLAN 0 to HW filter on device bond9
[  598.767238][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  598.845584][ T5887] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  599.164917][T20903] kvm: pic: single mode not supported
[  599.185513][T20903] kvm: pic: single mode not supported
[  599.185599][T20903] kvm: pic: single mode not supported
[  599.186064][T20903] kvm: pic: single mode not supported
[  599.186138][T20903] kvm: pic: single mode not supported
[  599.186210][T20903] kvm: pic: single mode not supported
[  599.186281][T20903] kvm: pic: single mode not supported
[  599.186785][T20903] kvm: pic: single mode not supported
[  599.186794][T20903] kvm: pic: level sensitive irq not supported
[  599.186864][T20903] kvm: pic: single mode not supported
[  599.186933][T20903] kvm: pic: single mode not supported
[  599.245796][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  599.279210][T20911] overlayfs: conflicting lowerdir path
[  600.285792][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  600.412605][T20938] overlayfs: conflicting lowerdir path
[  600.458667][T20942] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[  600.543208][T20936] kvm: kvm [20934]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x186) = 0xe8f1
[  601.325392][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  601.621796][T20989] overlayfs: failed to resolve './file1': -2
[  601.857221][T20991] bridge0: port 2(bridge_slave_1) entered blocking state
[  601.857475][T20991] bridge0: port 2(bridge_slave_1) entered forwarding state
[  601.857894][T20991] bridge0: port 1(bridge_slave_0) entered blocking state
[  601.858044][T20991] bridge0: port 1(bridge_slave_0) entered forwarding state
[  601.919845][ T5888] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  601.925496][T20991] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  602.021149][T20996] create_pit_timer: 16 callbacks suppressed
[  602.021171][T20996] kvm: requested 136609 ns i8254 timer period limited to 200000 ns
[  602.021290][T20996] kvm: requested 65371 ns i8254 timer period limited to 200000 ns
[  602.021654][T20996] kvm: requested 71238 ns i8254 timer period limited to 200000 ns
[  602.021926][T20996] kvm: requested 40228 ns i8254 timer period limited to 200000 ns
[  602.023622][T20996] kvm: requested 129904 ns i8254 timer period limited to 200000 ns
[  602.023778][T20996] kvm: requested 119009 ns i8254 timer period limited to 200000 ns
[  602.023914][T20996] kvm: requested 17600 ns i8254 timer period limited to 200000 ns
[  602.024259][T20996] kvm: requested 83809 ns i8254 timer period limited to 200000 ns
[  602.024488][T20996] kvm: requested 176838 ns i8254 timer period limited to 200000 ns
[  602.024630][T20996] kvm: requested 65371 ns i8254 timer period limited to 200000 ns
[  602.365486][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  602.521663][T21020] netlink: 'syz.3.5742': attribute type 1 has an invalid length.
[  602.547053][T21018] overlayfs: conflicting lowerdir path
[  602.554218][T21021] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[  602.748142][T21020] 8021q: adding VLAN 0 to HW filter on device bond10
[  602.909954][T21030] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  603.973460][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  604.326172][T21053] overlayfs: conflicting lowerdir path
[  604.353581][T21053] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[  604.643036][T21060] netlink: 'syz.4.5757': attribute type 1 has an invalid length.
[  604.701083][T21060] 8021q: adding VLAN 0 to HW filter on device bond11
[  604.814518][T21070] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5760'.
[  604.926553][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  605.006151][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  605.074144][T21074] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  605.156799][T21087] netlink: 24 bytes leftover after parsing attributes in process `syz.4.5765'.
[  605.687959][T21106] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5773'.
[  605.888461][T21112] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5777'.
[  606.045771][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  606.312039][T21131] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5785'.
[  607.085512][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  607.095706][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  607.317306][T21160] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5796'.
[  607.463144][T21172] 9p: Bad value for 'wfdno'
[  607.617253][T21180] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  607.618254][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  607.995276][ T5918] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  608.038490][T21195] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5809'.
[  608.140640][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  608.158531][T21202] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5811'.
[  608.245659][T21204] overlayfs: failed to resolve './bus': -2
[  608.350822][T21211] overlayfs: missing 'lowerdir'
[  608.662949][T21226] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5823'.
[  608.803975][T21233] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5825'.
[  608.981341][T21242] overlayfs: failed to resolve './bus': -2
[  609.010348][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  609.168934][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  609.639360][T21273] overlayfs: failed to resolve './bus': -2
[  609.779584][T21277] program syz.3.5841 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  610.135585][T21289] __nla_validate_parse: 2 callbacks suppressed
[  610.135606][T21289] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5848'.
[  610.195184][T21291] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5849'.
[  610.205623][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  610.673683][T21306] overlayfs: conflicting lowerdir path
[  610.725908][T21306] overlayfs: failed to resolve './file1': -2
[  611.038325][T21316] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5858'.
[  611.097730][T21316] 8021q: adding VLAN 0 to HW filter on device bond11
[  611.166097][T21322] bond2: (slave team0): Releasing backup interface
[  611.209780][T21322] 8021q: adding VLAN 0 to HW filter on device team0
[  611.218953][T21322] bond11: (slave team0): Enslaving as an active interface with an up link
[  611.247012][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  611.438245][T21326] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5861'.
[  611.529914][T21328] netlink: 20 bytes leftover after parsing attributes in process `syz.4.5864'.
[  611.606291][T21331] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5862'.
[  611.733365][T21338] overlayfs: conflicting lowerdir path
[  611.759072][T21338] overlayfs: failed to resolve './file1': -2
[  611.804258][T21340] loop7: detected capacity change from 0 to 8
[  611.866538][T21340] 
[  611.866551][T21340] ======================================================
[  611.866566][T21340] WARNING: possible circular locking dependency detected
[  611.866584][T21340] syzkaller #0 Not tainted
[  611.866595][T21340] ------------------------------------------------------
[  611.866604][T21340] syz.1.5868/21340 is trying to acquire lock:
[  611.866615][T21340] ffff88813ff742c0 (&root->kernfs_iattr_rwsem){++++}-{4:4}, at: kernfs_iop_getattr+0x9e/0x450
[  611.866681][T21340] 
[  611.866681][T21340] but task is already holding lock:
[  611.866688][T21340] ffff888023bebcf0 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: lo_ioctl+0x161d/0x1c70
[  611.866739][T21340] 
[  611.866739][T21340] which lock already depends on the new lock.
[  611.866739][T21340] 
[  611.866747][T21340] 
[  611.866747][T21340] the existing dependency chain (in reverse order) is:
[  611.866754][T21340] 
[  611.866754][T21340] -> #2 (&q->q_usage_counter(io)#24){++++}-{0:0}:
[  611.866786][T21340]        blk_alloc_queue+0x537/0x620
[  611.866810][T21340]        __blk_mq_alloc_disk+0x15c/0x340
[  611.866836][T21340]        loop_add+0x411/0xae0
[  611.866856][T21340]        loop_init+0xd9/0x170
[  611.866880][T21340]        do_one_initcall+0x1fb/0x820
[  611.866906][T21340]        do_initcall_level+0x104/0x190
[  611.866927][T21340]        do_initcalls+0x59/0xa0
[  611.866945][T21340]        kernel_init_freeable+0x334/0x4b0
[  611.866965][T21340]        kernel_init+0x1d/0x1d0
[  611.866988][T21340]        ret_from_fork+0x599/0xb30
[  611.867009][T21340]        ret_from_fork_asm+0x1a/0x30
[  611.867037][T21340] 
[  611.867037][T21340] -> #1 (fs_reclaim){+.+.}-{0:0}:
[  611.867065][T21340]        fs_reclaim_acquire+0x72/0x100
[  611.867082][T21340]        kmem_cache_alloc_noprof+0x40/0x6c0
[  611.867108][T21340]        __kernfs_iattrs+0xd9/0x320
[  611.867134][T21340]        kernfs_iop_setattr+0xea/0x3f0
[  611.867161][T21340]        notify_change+0xc18/0xf60
[  611.867187][T21340]        do_truncate+0x1a4/0x220
[  611.867212][T21340]        path_openat+0x35b9/0x3df0
[  611.867237][T21340]        do_filp_open+0x1fa/0x410
[  611.867260][T21340]        do_sys_openat2+0x121/0x200
[  611.867282][T21340]        __x64_sys_openat+0x138/0x170
[  611.867302][T21340]        do_syscall_64+0xfa/0xf80
[  611.867319][T21340]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.867340][T21340] 
[  611.867340][T21340] -> #0 (&root->kernfs_iattr_rwsem){++++}-{4:4}:
[  611.867368][T21340]        __lock_acquire+0x15a6/0x2cf0
[  611.867404][T21340]        lock_acquire+0x117/0x340
[  611.867429][T21340]        down_read+0x97/0x1f0
[  611.867448][T21340]        kernfs_iop_getattr+0x9e/0x450
[  611.867475][T21340]        vfs_getattr_nosec+0x2e1/0x430
[  611.867494][T21340]        loop_assign_backing_file+0x22e/0x410
[  611.867522][T21340]        lo_ioctl+0x169b/0x1c70
[  611.867545][T21340]        blkdev_ioctl+0x611/0x710
[  611.867571][T21340]        __se_sys_ioctl+0xff/0x170
[  611.867594][T21340]        do_syscall_64+0xfa/0xf80
[  611.867610][T21340]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.867627][T21340] 
[  611.867627][T21340] other info that might help us debug this:
[  611.867627][T21340] 
[  611.867633][T21340] Chain exists of:
[  611.867633][T21340]   &root->kernfs_iattr_rwsem --> fs_reclaim --> &q->q_usage_counter(io)#24
[  611.867633][T21340] 
[  611.867670][T21340]  Possible unsafe locking scenario:
[  611.867670][T21340] 
[  611.867677][T21340]        CPU0                    CPU1
[  611.867684][T21340]        ----                    ----
[  611.867690][T21340]   lock(&q->q_usage_counter(io)#24);
[  611.867710][T21340]                                lock(fs_reclaim);
[  611.867725][T21340]                                lock(&q->q_usage_counter(io)#24);
[  611.867745][T21340]   rlock(&root->kernfs_iattr_rwsem);
[  611.867760][T21340] 
[  611.867760][T21340]  *** DEADLOCK ***
[  611.867760][T21340] 
[  611.867766][T21340] 3 locks held by syz.1.5868/21340:
[  611.867777][T21340]  #0: ffff888023df9498 (&lo->lo_mutex){+.+.}-{4:4}, at: lo_ioctl+0x11fd/0x1c70
[  611.867832][T21340]  #1: ffff888023bebcf0 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: lo_ioctl+0x161d/0x1c70
[  611.867883][T21340]  #2: ffff888023bebd28 (&q->q_usage_counter(queue)#8){+.+.}-{0:0}, at: lo_ioctl+0x161d/0x1c70
[  611.867936][T21340] 
[  611.867936][T21340] stack backtrace:
[  611.867961][T21340] CPU: 1 UID: 0 PID: 21340 Comm: syz.1.5868 Not tainted syzkaller #0 PREEMPT_{RT,(full)} 
[  611.867985][T21340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  611.868010][T21340] Call Trace:
[  611.868025][T21340]  <TASK>
[  611.868034][T21340]  dump_stack_lvl+0x189/0x250
[  611.868063][T21340]  ? __pfx_dump_stack_lvl+0x10/0x10
[  611.868089][T21340]  ? __pfx__printk+0x10/0x10
[  611.868109][T21340]  ? print_lock_name+0xde/0x100
[  611.868140][T21340]  print_circular_bug+0x2e2/0x300
[  611.868162][T21340]  check_noncircular+0x12e/0x150
[  611.868194][T21340]  __lock_acquire+0x15a6/0x2cf0
[  611.868229][T21340]  ? kernfs_iop_getattr+0x9e/0x450
[  611.868255][T21340]  lock_acquire+0x117/0x340
[  611.868279][T21340]  ? kernfs_iop_getattr+0x9e/0x450
[  611.868312][T21340]  down_read+0x97/0x1f0
[  611.868332][T21340]  ? kernfs_iop_getattr+0x9e/0x450
[  611.868360][T21340]  ? __pfx_down_read+0x10/0x10
[  611.868379][T21340]  ? kernfs_root+0x1c/0x230
[  611.868414][T21340]  ? kernfs_root+0x1c/0x230
[  611.868440][T21340]  kernfs_iop_getattr+0x9e/0x450
[  611.868470][T21340]  vfs_getattr_nosec+0x2e1/0x430
[  611.868493][T21340]  loop_assign_backing_file+0x22e/0x410
[  611.868524][T21340]  ? __pfx_loop_assign_backing_file+0x10/0x10
[  611.868566][T21340]  lo_ioctl+0x169b/0x1c70
[  611.868594][T21340]  ? __pfx_lo_ioctl+0x10/0x10
[  611.868618][T21340]  ? ima_match_policy+0x2125/0x21b0
[  611.868646][T21340]  ? __lock_acquire+0x6b6/0x2cf0
[  611.868676][T21340]  ? __lock_acquire+0x6b6/0x2cf0
[  611.868704][T21340]  ? __lock_acquire+0x6b6/0x2cf0
[  611.868731][T21340]  ? __lock_acquire+0x6b6/0x2cf0
[  611.868759][T21340]  ? __lock_acquire+0x6b6/0x2cf0
[  611.868786][T21340]  ? __lock_acquire+0x6b6/0x2cf0
[  611.868827][T21340]  ? is_bpf_text_address+0x26/0x2b0
[  611.868854][T21340]  ? is_bpf_text_address+0x292/0x2b0
[  611.868879][T21340]  ? is_bpf_text_address+0x26/0x2b0
[  611.868904][T21340]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  611.868930][T21340]  ? kernel_text_address+0xa5/0xe0
[  611.868948][T21340]  ? __kernel_text_address+0xd/0x40
[  611.868964][T21340]  ? unwind_get_return_address+0x4d/0x90
[  611.868991][T21340]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  611.869016][T21340]  ? arch_stack_walk+0xfc/0x150
[  611.869045][T21340]  ? stack_trace_save+0x9c/0xe0
[  611.869070][T21340]  ? stack_depot_save_flags+0x40/0x850
[  611.869096][T21340]  ? format_decode+0xd0/0xe10
[  611.869121][T21340]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  611.869147][T21340]  ? kasan_save_track+0x4f/0x80
[  611.869176][T21340]  ? kasan_save_track+0x3e/0x80
[  611.869201][T21340]  ? kasan_save_free_info+0x46/0x50
[  611.869223][T21340]  ? __kasan_slab_free+0x5c/0x80
[  611.869251][T21340]  ? kfree+0x1bd/0x900
[  611.869275][T21340]  ? tomoyo_path_number_perm+0x47a/0x5a0
[  611.869301][T21340]  ? security_file_ioctl+0xcb/0x2d0
[  611.869327][T21340]  ? __se_sys_ioctl+0x47/0x170
[  611.869352][T21340]  ? do_syscall_64+0xfa/0xf80
[  611.869372][T21340]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.869407][T21340]  ? __asan_memset+0x22/0x50
[  611.869433][T21340]  ? blk_get_meta_cap+0x18c/0x750
[  611.869458][T21340]  ? __pfx_blk_get_meta_cap+0x10/0x10
[  611.869485][T21340]  ? blkdev_common_ioctl+0x11d9/0x2c40
[  611.869513][T21340]  ? kasan_quarantine_put+0xdd/0x220
[  611.869540][T21340]  ? lockdep_hardirqs_on+0x98/0x140
[  611.869560][T21340]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  611.869590][T21340]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  611.869620][T21340]  ? do_vfs_ioctl+0xbeb/0x1440
[  611.869645][T21340]  ? tomoyo_path_number_perm+0x1bc/0x5a0
[  611.869673][T21340]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  611.869707][T21340]  ? do_futex+0x395/0x420
[  611.869734][T21340]  ? __asan_memset+0x22/0x50
[  611.869756][T21340]  ? smack_file_ioctl+0x24d/0x340
[  611.869779][T21340]  ? __pfx_smack_file_ioctl+0x10/0x10
[  611.869803][T21340]  ? __pfx_lo_ioctl+0x10/0x10
[  611.869828][T21340]  blkdev_ioctl+0x611/0x710
[  611.869855][T21340]  ? __pfx_blkdev_ioctl+0x10/0x10
[  611.869879][T21340]  ? __fget_files+0x3a6/0x420
[  611.869900][T21340]  ? __fget_files+0x2a/0x420
[  611.869922][T21340]  ? bpf_lsm_file_ioctl+0x9/0x20
[  611.869953][T21340]  ? __pfx_blkdev_ioctl+0x10/0x10
[  611.869982][T21340]  __se_sys_ioctl+0xff/0x170
[  611.870011][T21340]  do_syscall_64+0xfa/0xf80
[  611.870033][T21340]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.870054][T21340]  ? clear_bhb_loop+0x60/0xb0
[  611.870077][T21340]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  611.870098][T21340] RIP: 0033:0x7f4145f9f749
[  611.870127][T21340] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  611.870147][T21340] RSP: 002b:00007f41441fe038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  611.870171][T21340] RAX: ffffffffffffffda RBX: 00007f41461f5fa0 RCX: 00007f4145f9f749
[  611.870189][T21340] RDX: 0000000000000005 RSI: 0000000000004c06 RDI: 0000000000000004
[  611.870204][T21340] RBP: 00007f4146023f91 R08: 0000000000000000 R09: 0000000000000000
[  611.870218][T21340] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  611.870232][T21340] R13: 00007f41461f6038 R14: 00007f41461f5fa0 R15: 00007fff1017e578
[  611.870256][T21340]  </TASK>
[  612.295189][  T805] net_ratelimit: 1 callbacks suppressed
[  612.295208][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  613.325323][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  614.365652][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  615.085266][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  615.405712][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  616.445312][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  616.690608][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  617.496911][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  618.125241][  T835] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  618.525277][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  619.256471][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  619.565469][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  620.605372][  T805] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  621.645447][   T31] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog