last executing test programs:

1m29.457268514s ago: executing program 2 (id=357):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000300)=0x4, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x36}}, 0x10)
sendmmsg$inet(r0, &(0x7f0000003580)=[{{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000180)="80c01db89a249df8828dbdbd6b78bf72ab75eda4d8571af2ad125fe541d8f2959593ac56dd65d45afe7d81702aee9e324f94c9", 0x33}, {&(0x7f0000000340)="9146d1ade3d28041a81d364c0ce8c9c1509632ddbebec9de3aa099adb252170b83c39dc38c720283f0c54b3b7e8a61541e7fc92b45e7e317099f1438ff5b11acaeec36707800117ec7977362ec1d505449eb0e938219c4924bffd7afd776847ea3706dc127d1967c3af578603df745cd3c806020a6176369354c2afeebcb3281105fd8ce566aa0ca275b75df62c483625a520c93f411023ae5cbe0dd77aee91fa61de24926de02e619a37aa52ff928b2a38f", 0xb2}, {&(0x7f00000001c0)="204ab0", 0x3}, {&(0x7f00000004c0)="0b4bb9afe878e89dd5dfeff6ac906f0059fd3f3dd0a65a6525df376ebaeccc97ac4859d550d73cc84f88f67e672832da7a0ed74ad629c2c35c03190a6725363916fa9fc95b637fa10813ecdd6fcfda906a43945b84e7cb5f9670940707ffb9bf9321f2063c78a3bdcf9d8f4fce2af8d00ea44aedaf29ca7c1b6be7b23e59aa564d1988a6e089594adb306e9793cf0509ad1d1d3ee31f676bc2bffb6d9876e9d2b45c0c082d594e22a3323c7b733992156deda175570199c90e97449815f261", 0xbf}, {&(0x7f0000000c40)="bf9218ed59f57b4aeced6e1a3447cf4e6d2ed197897cb4b5976ebaed1d446d5f82551e1a88c43577e93bfb76dfd80717d00c8a6760e23726440f113430ac9524d57dac6e19e99f0c7726742c4d1c2136f473f585f20b381f133c71973c9dec970ca8612aac58ac27541bda7dfdafdc338522dd1ebfc200a599609e584ab7194f8a6d9c0c1e697da3d77bb673f2d2ce5165e0251beea362d12e690cdfc3a8b4dcf1d464697a3ae4477221463b8079dd4cbb17a434fa317b8d08070e41d56dbdb27ca107a1d7dcdc01adc0a4d3ee3e03a4f6ed7b3b87d7cb4c5a5d36c61f9ad3c784cfd029f1154f95403d15b5ac35df9d25cd58c38c2ce062fb1bb613d340c8c004adf91a9e5c558099c888da3d9d3a159a14b197b6853a632e03f60e2f6d472b5f1adcbdcdfaf4b5c6163652607f318bb0d79e09291b474f3b7c87fb4d8faf7d9c4fb0fad4220a09bcc04907ad90ea8c6aa2ba2cce3a8fb76fe15cc0574b08ed697584545dc062a3bfde63cd0c1b00b01b6f03b436404dbd298f00a65edb268b1da5c8fa0109e8dea8807a42d3efe713773c102bdc486c9eed873d1f32fe1d87004d580db8c38351c8dbfa7cdf1ca6f41ac17abfcf9f1a1cb62c0e12d22cc236220cefe0fd4aba720b7030411c507b95fd52cbc96534e0f50b14e5db0c0538a26d5250fadd90eab729c92d105689dd682208b79b898786e39d473ccf753f57d2a46145fc815bc970b1ca45aee3e1e412adb4d6c497bac83d32d72133318bb6c2bc7b9d0ae292b5a9fbc2d3fc18dc8b6469433a442890baf0225f8c1f2515dc3d93dd30ec2bcd4d83caafb51911bb7d51f3f3504ac3e3b94ea1d2b3abc339c9aa1f829013224a857ba4ddfc91082699761b3a0d0ed11176fa1179cb81117a7a8205398a8b786cb736f82405e07f65f2f798a70c28dd382f2cedb9b5abee6814bd9124aa2a147c54e4c461b48b3b543511fbf5d24a19f1e2978d3a723619ccb4b39c7cec26177bc66f3790aa0cc2af604758ff2baea3feef54d3aac87af935a00602995eea33e2d7b770c287d7adda569e82936d3e9e3f62192136a9f0b90a66ce3d877231d66ecff905e383bc49528c13ea4896402dfce9d277c00b1b1ba19460b4b556aea173bb76fdd7ab1071342fadb037b625e2adde10073188f296eba40f343a6c2b597825fa2e3814385504b2010aeba1bc180c2f499e81c28959da7b82feec0eefa7196453172aadf148fd4e63bed01a47985daeb37f9beb2bff4f51f990f8f7da08c5c63d1048cc2c0142062a59a343b4a6c0bbf3b28020526f2ee38f4649a2e14ae742eced37c0633cd8f57e604b507965a433c4c521220bd743419e87804a2f0b7b94a275f1077f52197cd022a03122676439f0fe383608e7e83b7eed20f92cb78bdd98d44dec9b69e148184213c43b32a081c43eaee1bad6ca6257ecdba1260121902af41cb2880d5ffe8190b84642d1f08a852613f655e90b89ae20d929948ae76ef442a802276c973691b2807fbbe28168c78ae2b2b715aad79dff003293b5cd6508da3442de7c7354c718ebd5f6b3df5cc3426a078a78acd7566350e72218e27ce113e42fa66a3dec2836d5b0a5a97056972b385ede7dffc00bde5cdbfdda4e06a975529703078ab3bb3cca3d206ac3b6e99c9c67f141dd7f99078a906e81f44486a26899310dec80d682979466c40436e4bea1e3849c05821401f05e72c4ea1fd8a1c1b32a3271ba5dd8948e1b418175a61c417319facd9c8209ac2baa8e1e9b32150318b56edadfd426fa49d765e7b8ca518af9db037e9eda3ded3ed9b887844626f2391d0e0bdc5d4dbf26bb17e4b81d646652cc54c1129bfe7ddf5dbd9860c215d020b8054a53e1ad4b88cc927a3b429f0b22fb5d0d9d392b116ab29eb938d98a12ba5f926c4859306d3fd0d317e6873e8324fbe9e342914e8a1dab6482d962a7c52751dd05bfc19ff990151f02b4f4a11fff4a47ff9ea1de8d84511865e6546ed649cf13adad70439582beaab95e0ddafe452defac99e7f5a9f6969890bde421b0d5bcf6f4de8a85a947a97bb13de30765f1f30b886f7fc390863b7f28584d0e6c922c82eb6941e51c38f7cf729e9f738dedb27a846a4a56d06f97e108be86eee86d745c00f7f5264d60d16a4a124db2355588e45169251dc8dc93bea7d3a50212ee35b3f9fcfe258d66a37dec4b4a6748fe106150a963dd97ee3237ac862e0f6ce6a5e5d191353c2f9f46c2f6885efa4cd907a141c94002a77840576f1210908ba68cdda525e04df04d9d521f7e77876ccd912af5c33535d29341f26342dba3f00c315ae864d34a94ccee9cee07ff769d1b115c66b3df9bc88e1bfd8ef6f69ca3466be17e9150215d4966d3812d7136208e5e7aea4aad717529388b10c138411cdcc2a14473b1d3cba0a976f554ff4f293b4e69cd4a41da6dcc608bf79251c7360b5c31f8b1a555743630acd5c084856c4a0f2c42f7479ec0191245d61b14f20b91f43c2e40a71593f0da5a98f25b2356d9af52dc9aff80b6bbe2c6aed0b4b64c6763756528ecbcb12ea098f48b9247e6978a3b360dfeef84002b8e9dc4ed0c1a7331821bad82f86cb330b4ad53a26f8286e07282539be267d92e655d289d61130248e28015ef3a4b7edd27103a649b8966aa0a7b8062cd8bc90525d766a469c189dc9c065210f45b8dab25aa81a742f6bc60f36d84635029f28a87fcb11dcf9656215cb048612b2394219638d09501be9fa3787fb8bc628c0fe7200b5ab784f17f21cbc3437b1ab046fc50719700bb6618c6a5e4d6c13cf077042c4f57fbc5777a1853288fea3b6b82eb623feb3470c681535bcf9a8f33d9c54e95922a2e5bce3c5dbdd9b33adc207ec4cca3e3f512383881a0d61536510b2a896a187d130cf913cfa331661fa9c85f36940492d819a83f73ece4e5eb7d43edaec9f0419afed9121975a478f21b287bd09d2d3c387bf9cceeb5ec660452670494397333428bdcf7e2e06a7879e84239447977abdbd3b79be7994ca632b816df3c85fbb63d7789bf1aa3077aa5f0342f47f17021cded68d2eb2d466a30a8e38dc457acd89113289ba23285a2c092f06fb4810f5bab6aa99df86225f04b08a364ec91a8496021a84b7c499e5f05acaf2962079f82e2235282a916", 0x8bd}], 0x5}}, {{0x0, 0x0, &(0x7f0000002fc0)=[{&(0x7f0000001c40)='Q', 0x1}], 0x1}}], 0x2, 0x40040)
shutdown(r0, 0x1)

1m29.377464497s ago: executing program 2 (id=358):
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2)
r1 = memfd_create(&(0x7f0000000380)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xa9\x1fg\xf1\x85z{\x1d<\xe2\x1c7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xedn\x8c<5\xcf\x92;\x85)\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\x05\x831\xd3\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xf6\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\xc6(\x19\xf8\xb4?Fv\xac\xc7m\xe1\xf68W\x19\x0f\x87\x84\xafK\x91v\xb5\xe7Cf\xe0L\b9\xe2\x15d~R4\xdf\xbb\xfeiH', 0x3)
ftruncate(r1, 0xffff)
fcntl$addseals(r1, 0x409, 0x7)
r2 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000100)={r1, 0x0, 0x0, 0x1000})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0xc0086202, &(0x7f0000000080)=0x2)

1m29.377287286s ago: executing program 2 (id=359):
r0 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r0, &(0x7f0000000040), 0x10)
listen(r0, 0x0)
r1 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080), 0x10)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000140)={0x1}, 0x8)
close(r1)

1m29.37720829s ago: executing program 2 (id=360):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='debugfs\x00', 0x0, 0x0)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

1m29.316957165s ago: executing program 2 (id=361):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x20008850)
sendmsg$nl_route_sched(r1, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002700)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r3, {0xc, 0x7}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0xc, 0x2, [@TCA_U32_HASH={0x8, 0x2, 0xffff3a93}]}}]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x20000800)

1m27.476126885s ago: executing program 2 (id=386):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000300)=[<r1=>0x0], &(0x7f0000000340)=[<r2=>0x0], 0x0, 0x0, 0x1, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r2, r1], 0x2, 0x0, 0x0, <r3=>0xffffffffffffffff})
r4 = syz_open_dev$dri(&(0x7f00000002c0), 0x1, 0x2100)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000300)={&(0x7f00000001c0)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r3, 0xc02064b6, &(0x7f0000000080)={r5, r1, r2, 0x0, 0x0, 0x0, 0x0})

1m27.443193323s ago: executing program 32 (id=386):
r0 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, &(0x7f00000003c0)={0x0, &(0x7f0000000300)=[<r1=>0x0], &(0x7f0000000340)=[<r2=>0x0], 0x0, 0x0, 0x1, 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000040)={&(0x7f0000000640)=[r2, r1], 0x2, 0x0, 0x0, <r3=>0xffffffffffffffff})
r4 = syz_open_dev$dri(&(0x7f00000002c0), 0x1, 0x2100)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000300)={&(0x7f00000001c0)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r3, 0xc02064b6, &(0x7f0000000080)={r5, r1, r2, 0x0, 0x0, 0x0, 0x0})

1m19.156613605s ago: executing program 0 (id=525):
sendmmsg(0xffffffffffffffff, &(0x7f0000005940)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000003080)}], 0x1}}], 0x1, 0x9200000000000000)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x143a82, 0x8)
r2 = dup(r1)
r3 = open(&(0x7f0000000100)='./bus\x00', 0x40542, 0x0)
sendfile(r2, r3, 0x0, 0x8000fffffffe)

1m18.807249354s ago: executing program 0 (id=533):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0x0, 0x0, 0xb, 0x0, 0x8, 0x0, 0x0, 0x2, 0x7c, 0x8, 0x9, 0x10}, {0x10000, 0x0, 0xc, 0x0, 0x2, 0x0, 0x7, 0x0, 0x5, 0x7, 0x14, 0x4}, {0x2000, 0xdddd0000, 0xc, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x4, 0xfc}, {0x5000, 0xd000, 0x0, 0xff, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee8000, 0x2, 0x9, 0x0, 0xfc, 0x4, 0x0, 0x3, 0x0, 0x3c}, {0x0, 0xdddd1000, 0x4, 0x0, 0x0, 0xff, 0x2, 0xa7, 0xa, 0x2}, {0xeeef0000, 0xdddd1000, 0xe, 0xfe, 0x0, 0x0, 0x3, 0x80, 0x0, 0xfc}, {0x2000, 0x0, 0x3, 0x0, 0x0, 0x1, 0xfd, 0xa, 0x26}, {0xdddd1000}, {0xdddd1000, 0xfbff}, 0xddf8ffdb, 0x0, 0x0, 0x430, 0x0, 0x2501, 0xdddd0000, [0x100000, 0x6e, 0x2]})
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m18.636909705s ago: executing program 0 (id=542):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f00000028c0)={'#! ', './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0xffc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x13, r3, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f0000000200))

1m18.51725512s ago: executing program 0 (id=544):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='debugfs\x00', 0x0, 0x0)

1m18.516982425s ago: executing program 0 (id=545):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
r1 = socket$packet(0x11, 0x3, 0x300)
readv(r0, &(0x7f0000000140)=[{&(0x7f00000003c0)=""/4096, 0x1000}], 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'rose0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r2], 0x20}}, 0x0)

1m18.244762207s ago: executing program 0 (id=553):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000000), 0x10, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f0000000100)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000140)={@multicast2, @loopback}, 0x10)

1m18.16122952s ago: executing program 33 (id=553):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f0000000000), 0x10, 0x0, 0x1, 0x0, 0x0, 0x80}, 0x4000000)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f0000000100)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000140)={@multicast2, @loopback}, 0x10)

51.219015923s ago: executing program 4 (id=1070):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=@newtfilter={0x44, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r3, {0xc, 0x4}, {}, {0x5, 0xf}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_ENC_IPV4_SRC_MASK={0x8, 0x1c, 0xffffff00}, @TCA_FLOWER_KEY_ENC_IPV4_SRC={0x8, 0x1b, @rand_addr=0x64010102}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8050}, 0x20040054)

51.136132549s ago: executing program 4 (id=1074):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0)
fdatasync(r0)

51.104316535s ago: executing program 4 (id=1075):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0500000004000000032000000c"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

51.062210807s ago: executing program 4 (id=1078):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='debugfs\x00', 0x0, 0x0)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

51.026252238s ago: executing program 4 (id=1080):
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000000), 0x2)
r1 = memfd_create(&(0x7f0000000380)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xa9\x1fg\xf1\x85z{\x1d<\xe2\x1c7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xedn\x8c<5\xcf\x92;\x85)\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\x05\x831\xd3\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xf6\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\xc6(\x19\xf8\xb4?Fv\xac\xc7m\xe1\xf68W\x19\x0f\x87\x84\xafK\x91v\xb5\xe7Cf\xe0L\b9\xe2\x15d~R4\xdf\xbb\xfeiH', 0x3)
ftruncate(r1, 0xffff)
fcntl$addseals(r1, 0x409, 0x7)
r2 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000100)={r1, 0x0, 0x0, 0x1000})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$DMA_BUF_IOCTL_SYNC(r2, 0xc0086202, &(0x7f0000000080)=0x2)

50.715466065s ago: executing program 4 (id=1083):
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10700}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r5, 0x0, 0x4ffe6, 0x0)

50.664910366s ago: executing program 34 (id=1083):
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10700}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r5, 0x0, 0x4ffe6, 0x0)

5.631086637s ago: executing program 5 (id=1720):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

4.834698864s ago: executing program 3 (id=1721):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x34, 0x0, 0x20, 0xfc, 0x2, 0x0, @rand_addr=0x1c, @multicast1=0xe0000300, {[@end, @ssrr={0x89, 0x3, 0x9}]}}, @dest_unreach={0x3, 0x6, 0x0, 0x0, 0xfa, 0x9, {0x5, 0x4, 0x0, 0x3d, 0xfff6, 0x65, 0x5, 0x5, 0x4, 0x3, @rand_addr=0x64010102, @local}}}}}}, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f00000000c0)={@multicast1=0x1c, @empty=0xe0000300, 0x0, "8a79348df081496d0420922f45a71c1daa8b610468cd140526c41efcd3a4a422", 0x3, 0x1, 0x85}, 0x3c)

4.832765541s ago: executing program 6 (id=1730):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "00000100ebffffff", "2607080d7f4fcf00fd4ef2dece6c7c58", '\x00', "006e34e400"}, 0x28)
sendto$inet6(r0, &(0x7f00000001c0), 0xfffffffffffffede, 0x0, 0x0, 0x3000137)
setsockopt$sock_int(r0, 0x1, 0x20, &(0x7f0000000300)=0x3, 0x4)

4.736480022s ago: executing program 5 (id=1722):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="18010000179fa10000000000ff000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000002007b"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = syz_io_uring_setup(0x1710, &(0x7f0000000240)={0x0, 0x6201, 0x10, 0x80000, 0x1bb}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000640)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x8, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r0, 0x47bc, 0x20, 0x0, 0x0, 0x0)

4.736304458s ago: executing program 6 (id=1724):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
write$binfmt_aout(r1, 0x0, 0xffffffdb)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)

4.733678991s ago: executing program 3 (id=1733):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x13f}}, 0x45)
r3 = fcntl$dupfd(r1, 0x0, r1)
write$RDMA_USER_CM_CMD_BIND(r3, &(0x7f0000000080)={0x14, 0x88, 0xfa00, {r2, 0x30, 0x0, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x500, 0x40420f00}}}, 0x90)
write$RDMA_USER_CM_CMD_LISTEN(r3, &(0x7f0000000140)={0x7, 0x8, 0xfa00, {r2, 0x4}}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

4.495190561s ago: executing program 3 (id=1735):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

4.486934691s ago: executing program 5 (id=1736):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000200)={0x0, 0x22, 0xf, {[@global=@item_012={0x0, 0x1, 0x5}, @local=@item_4={0x3, 0x2, 0x0, "45501821"}, @global=@item_012={0x1, 0x1, 0x9, "f5"}, @global=@item_012={0x1, 0x1, 0x7, "84"}, @main=@item_4={0x3, 0x0, 0xb, "9e3ce079"}]}}, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000040)={0x3, 0x200, 0x0, 0x310b, 0x5, 0x1})
write$RDMA_USER_CM_CMD_DESTROY_ID(0xffffffffffffffff, &(0x7f0000000040)={0x1, 0x10, 0xfa00, {0x0}}, 0x18)
rt_sigsuspend(&(0x7f0000000040)={[0x3]}, 0x8)

4.415418601s ago: executing program 6 (id=1739):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x13f}}, 0x45)
r3 = fcntl$dupfd(r1, 0x0, r1)
write$RDMA_USER_CM_CMD_BIND(r3, &(0x7f0000000080)={0x14, 0x88, 0xfa00, {r2, 0x30, 0x0, @ib={0x1b, 0x0, 0x0, {"00000000000000000000000000000001"}, 0x500, 0x40420f00}}}, 0x90)
write$RDMA_USER_CM_CMD_LISTEN(r3, &(0x7f0000000140)={0x7, 0x8, 0xfa00, {r2, 0x4}}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

4.353275977s ago: executing program 3 (id=1727):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x80, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)={0x1c, 0x0, 0x1, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x8891}, 0x10)
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f0000000140))
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000000000b0000040"])

4.35197524s ago: executing program 6 (id=1741):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='debugfs\x00', 0x0, 0x0)

4.316469155s ago: executing program 6 (id=1728):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r1 = syz_open_procfs(0x0, &(0x7f0000000580)='smaps_rollup\x00')
lseek(r1, 0x2004, 0x0)

4.197358974s ago: executing program 1 (id=1729):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000015c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r2, 0x20e, 0x5ee, 0xfd000004, &(0x7f00000004c0)="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", 0x0, 0x31, 0x6000000000000000, 0xfffffffffffffe7e, 0x1d4}, 0x28)

4.188168491s ago: executing program 3 (id=1744):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='debugfs\x00', 0x0, 0x0)

4.153113146s ago: executing program 1 (id=1731):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000003d40), 0x4)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8)
syz_emit_ethernet(0x42, &(0x7f0000000140)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x6, 0x4, 0x0, 0x0, 0x34, 0x0, 0x20, 0xfc, 0x2, 0x0, @rand_addr=0x1c, @multicast1=0xe0000300, {[@end, @ssrr={0x89, 0x3, 0x9}]}}, @dest_unreach={0x3, 0x6, 0x0, 0x0, 0xfa, 0x9, {0x5, 0x4, 0x0, 0x3d, 0xfff6, 0x65, 0x5, 0x5, 0x4, 0x3, @rand_addr=0x64010102, @local}}}}}}, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f00000000c0)={@multicast1=0x1c, @empty=0xe0000300, 0x0, "8a79348df081496d0420922f45a71c1daa8b610468cd140526c41efcd3a4a422", 0x3, 0x1, 0x85}, 0x3c)

4.152995321s ago: executing program 6 (id=1732):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x33, 0x0)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, 0x0, 0x8810)
openat$vimc0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_emit_ethernet(0xfc1, &(0x7f00000013c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x10}, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0xfb3, 0x0, 0x0, 0x0, 0x84, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0xe}}, "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"}}}}, 0x0)

4.061149366s ago: executing program 35 (id=1732):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010600000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff1b000000020000000900010073797a30000001000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000020000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001"], 0x64}}, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x33, 0x0)
sendmsg$BATADV_CMD_GET_TRANSTABLE_GLOBAL(0xffffffffffffffff, 0x0, 0x8810)
openat$vimc0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_emit_ethernet(0xfc1, &(0x7f00000013c0)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x10}, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0xfb3, 0x0, 0x0, 0x0, 0x84, 0x0, @remote, @dev={0xac, 0x14, 0x14, 0xe}}, "dd9dec79219eb5499325e16c96335bc5ff0e043319357749084ca9d0ae1378f4e88112a2f7c10fd1523b9007773fd2b2bd0ebabccd2e5c35fb3baff587585840f2530c6f4d025f118440ac22a8b34da7b5e1e873bd429686be3ef84439e05fc0fefedb8b897b09445a9e10cf24aec2ff3ca6a86d94df0c4a928ed904dcfb02e6c6c5918a839d33cb9b55dfb3cd89d80eb18dc06415d313b4ea240a65eff4b941ac018e8f81de044239960271333255291b5fbfdcf8db25e175640f36986b859aeb3370ca17e6a20aeeb5c5d27eb097fc1fab796a7ff8fcbe119bbe4be2c8a5c58890191c59bea20bfe4edf9c5453e59f610d3bd1d6eb49b02e464aee0480187c5717936add1347b08cdf5b056adb941708e8a0498900419e98b75658c6dd00f88eebf8c9aaee2e38c80eafcf6ca08ea305da9c7050948ef78a1457a2e933287fe8d2e100cb00078ed829985f8812d543cc5cdb71521f4113829551efe915e4d6773f2d285cc1e8813919356ca5ef202b0d2b8a3d7de51e4635e761ffd7efe5d51dd1325596f0e4e1c0b1ce73240cb931227892d66f3629c9d152372d5790c1c25e2f6f850a5eb83654f423b84adbbf4169d472b2cddaa7137ff14c2944ade3a57613806810707a2e6c078beb4b87cf8cf39c9950bcb3f9bb42308bd5e68d81f7f4d9e528541703059787f5e342be8ebb9841d587f7455b409115d511c130d9641fc74391228bda52d2fa58e2ca74b26583e73e2cfb881945d8ecbc77eb35e783057f6c35ba06b7f639ec516ee54bf3645f6ec436ba859e22ed480a862285aa21f3d5cd3734dde388a7f8920c4a6b4a952f830e0d2811f2f2714e660e961de0b3e0b8d5fd1007690a61e414e82245dbe4e47c73465ed40af1cee2eae4801ee408ad1fce81ff8db77082c5efd93fa9a1a3e3d78eff84f326df1c6fa656cc7d4dab842fe8e0d9ce47ad0a7e74dfe1a53776a346a22dc7a0e476754d385d99aa9cbd3f445ffb2ed61e01b28fc071d706ad204b1e8014481dba0cbc460b67e64d6e955184271cedef7f951021e3595ebe9c3384b53efafb67cbed2aa1ede5d7fcff3a9d27d05766fb8894d7948609441759f4c4dfa33b6d486d4fb7e231f04d4f0f9e98f4b156129d9307fb9ebf3b278232062e7fe9ec2db7c4c991f83733368a107bf5798a1df45c919d71cce45ed907240c2f2fa6a4227e8e11cef2e7968c63e7a1adc3edec2170c17ed2cc54d0ea2b34e99b81015ffe51a501c2b73ddac5223e69d0dd451d358c0cd2ff7db256850ec1e9e349901f168d854284da68d80c68298a75c5d859008c82fe08b4cf2e68a2c0190760a03aff1be2c9425b6d5ef5c67bafb6d16fffeeb0211d90abbade4db9d6a9e9c981dde14c1d54e9138f9760bcdccbf17e7416042cfe7bbd8bba2f739f7f900ee45b965316b950e8474f3be92081fb63f43a4858b39e20e14d5a38c0973d680f2fda9e310d0e088523bdcbb728bcd0074447b4ace876da5642cd7d781cdb023a31446e0a0c59d5388674a5c8a97927e014a73d0330bd5c5187db79f1c546a8bcca008263509c23b246dea58fb36c44d373c1c92ffdd1600c27d4b10b3fc86b88ecefe8743bb59a6b8e443f06d2ae3a6908b6bc25b647deee13262225b8879dd79413ffa3d4aef91a0a04d4dc3030b5beb081c5fdf9152c3a17e6b24457fd580d84d3006af27ff44d6ec3664c4955a1d1dc5eb041682644ae564390a3d0aa602b2a18cdd3f8a1efff7b8f3afc31c283c9b74b806a98bd9f1ad8ecce410160c0a27f7ef90a2b0c1bea64e187adc04a04bff7c435659bc4c3ce5c2730e121972541062102e93d2a136e1aaaf3e25d547cad6e2b0874500fc098469494d2654808ee88588fd167f4332061a9b4cae6b22d87624e325e89a269f61ce0d26465ddfedc1f0fa2a5cf1ee7fe3e6cb375f1ff04cf8d22667debe574b8395023bde9a8302376af2e119c4c88433d1722011ade605f3a4201860742b0392ac96cc138d9ddb952f4e4742a7fd9d625465dac35347c1662b2085c357120c6ff69dedc013c5fe46555a4448b0be41e21ad73162bf9aa1cfb70f4702c7051c0a13fae918133f123d33c5c02e66ae8fceb3109b2e13a7a3e71484d59dfcba16db2d21549be1ba6cd5ad7610eefda427982384961f18bd6857ad97e868c2914d0ba934a296eda52646031c4504864061f3cba1df65cd04ef6b1050fb30b5abbbe28f8f7adb8073e452f4c0c5492a5f8d427ddf451ae303a86639e5dbccfe2b2bedb911d534a77c012e2f8a24917d98ab14557caf3e66040f21767685644f0003459762d4ab25a0e33a92b54748cf46a977505074b79b9b0746b2b5b168876a2ca10bb903edc1d1992a4a94c0ee0dd7b37add092163b5fbaf16090f8143187d060b19e3822f3def14717e41558f9582467a5a5f89148450fde235e7a5bb900e4e9d14e2147bfd2a52f84a115eb170bf3d3b9b3de9781960be4e53025c7dce005e1458140bb9cf9da8fa1124ac558fb220d57c23a7f120f5171eb2208d9e6ab7186ae457973da564f1fd45b241c15596035f55034c3995a587b4471068076839420df947f10ab2fc211732d768c135d63cc5eeda1bdfc780e7ed90855fa5a364e63f529703cd0f691b0b6a41232bfd1c1f61ef6b16ed3b9055ca888c8ebcd16a0623ede9e4e37b7d6175e3d0ddba8e7d87639eb8b0ba246131951a581575f1adf4c598a9f2f087d5eb2a0a5834d8cb12b0ad76d9381a838ccfbfcc20bbb970474c48677f10aa57be1d607d5b049d397178035f7f3393cd9000336c83218850ecd64142a22f7ae7e6a7e62013d6d105eb7c862e13979698681d44121ee9e2e552315d4d3913ff7bcd90d6bed72d50107a971a37d5a1d75efeebf03cc91239b7e427fba8df6b79674c15acd2093289fe6155063af81d85840abf4635f66083b3707d34b2149dfdf95cb4deb71e1574118c242b160c770347e6b1f135a985e89fe8e6d7f40281cfb6dc05cd8b9d4f6680c0863acb34516092acdf2bea67f54ab4282ba2d898287f34d9384e335b2ddbb87aaea8cadb8f0b397e99a68a7a214fae5a1f56c95bcd901534c23cd5cff3c168813d7fa1191dd7437c96b07324a7b21b48e205b859dcd080bd62ab7cca4bd7a73959218d0eeb21c887483201eaf3afb19efe1741b57332c5441685a7bb8324d9e85faafc785312b58aabef2eef6a8048663bf13db9ae9edd4b1dcebc99890693f11b354b1f1aad19b66251b4bcaed0daed73b87dedd140fd680e7d3355362844d1d7ba2ae6be7ffae59d7b3c679b890448b0de1acf591abfe6f3096794b7e142e0ac0862ab8cb76eb79b17d1138be3747f907c3f11c636a0f0e0d315d1ff05aab0ce62fbac03a2b4ddeac7ee192bba2da93b7a926271f6d594aa14de2c294ad0c77770a624d1ce24cc8d8f5e9b629604fa7897f0cbd641f76a85dc8df33b5715eb100e30e53b85110d2252c22575a7365eb08006b4d62d305e780101965094ce2aaad170df470870e687fb280b772d41ad5d470b71e256af3a0d2c02df95821d38f28cdff26fa7a3f6e920edbd3174d2d2bde854ef68dae8a0a4a63753c825930903a2ca75d4321bad0ad9ff6852f94dd04972a45bb9625b3726dfbcc959e85242f0d327b181aee0fdab7af064dd97151b131a5c4a51a66692cbbd9f1348a16470cedef1b255e172cd2b15184177ad43744de941869af884ff8e59ef0e63ac5e1b99c851e0f915359ce12d9c380bb6f9c2bc773267157afeda7abcc120a31a1b72af6662bff7f5f194dad00b4ebfdcbb4dfc39854412db1ae99b449d741f841239159ea467cf1e38b95bcb7603ebcb400cb31410b2a4e25126caade0019bf667cc998bc4582578da0f8a6268f6d114ccf9dd8379995e8be1b934bb5645d72f97e05628129a7d2bc548e08796341f43dc3c9fcbe89d8284dc6633bee0d17e99f600425f0172b6bc478f5117dadf15e36e850ecc0ca75664ef8e4877a44b4ffa22a6f1d6719f8d81f9937928caa0690b77406a3298aaf446e2f78343267399bb7f64c60f82bf5d07210281eaad09a3810790720c98a041332c809be7aea1480b9e5eb989085c23b4aee75143068def3e89d1c417b63321e68d340a1472d2504088c17cd75de0e700508c55a7246ca9a762cc50ca35cbcaa7dcf4ae3264c32ff2cd67566ed501fb8182b5f16c58295783f3b2b554b06aae700f198c71ad7519868c1e6fbeb0246569b04beeb8b71bcbb9af93372bee365efb1d7424689e8241b1dc346a73a84b5773487f388356b8dbec1a108846e3f8dc74865b156e8ad18b353efc4ad0b11412a381fec8f5d45678b4f8b680591be8077303e7aff71acf9052ae3b73e41e19668f9b53bfd75b778970831b6891a78ffe0d4863e62cbbf6cf8c085032864479cd3a250842984dcc2860f057f86c8e2d4d2afefb8a45b7d5b8c94e752f369a1b434c827cd26cd0276a8b40019a95ebe7c16de4c1ce8efbd5c70e0c507631818aa4fbc937d212e428aefa895069656babdbd921af974da32c49f4ca6d1e1e28319b427c8bad4d650809c673ec6073770b4097e5700a8071110fd07acbc5a59f8d7b0735a98fd40ce03718a9a93c035948859215c59f54343b08bfd95a35d73c5f09a9ebe63c509fe8443fa74e6efd0fd87defc7cb16725ce3c3d5f7664cfe253faf2cbeb307052dd2269b6266acdb31e2006b9355f673ca5c9cb907605ce071824254b139607a069531f9598f4040ddeb9cd018e9dfa1808032dfb65a4af0820da810a7b58fbb65ac8e65b017a40ec2d445a5c7b78d1f0e717b19427ef1fe6cc08c5e9da5a7d1d508fd939854589dcba8d75ff3d8d1c1fb28af1ed6900bcd4cedbe42fd6243c81264fe81be756bfd71ebcd4d96bd7ec50a676bc57e130bd8da21bb6e888eb6c8402516f6fe6dfe25be9a3e33f2cdbed9de00efb867cbe80ec2309458f41924b967d254166e5a0a5f776395214a67900d180704b9fb09f9c4c4c62fd382fcd5efe099e22d2c82f198a39d193f65b68e09454e2ab8f2d7413c64563742f1c34ca9285e501bff5efa30a0da946f875d23162eaa53c4008bed38e9a190b08ff8bfb6bfb91553c4c329fc73b8be308b00347dee2afdc08bab311c75386f452b706d1820c9038998924665010a548c09743a16167b0b09373b5cd2fb1da4f6c9ea5b1f1dd7775f6fcb23eab4fd1990364dacb2a1656b9bcf1c4866b7222872a3a3a03d397499222a3f31a35d3aeaf6a6d39f0fbee1e0f6e1e10ba0774f15f245d955cc8132d86c2d768f8a06274caa5a12c46e9e08ee556c1da49830f1e6c0a0c53a9ef1489c3fba0251c3e6839e891ac298108f3ed05066e48b8bda2c5f6e691c7a7425b7019e0a547f6560a0af41831a4a790c3a8eac9a3a9119da3eef85cb12f3f3115f04ae95534ac847b4ee2cc2fc43cdba382ecae7c4f499ce1be1ca1907313ff665c2fd7d4c8f36716f33b6861f5cf3f1c878feadfa9a664b8d629a16c750c466326a951efaa830e4f328270041f2ca0be49f0affe5806b94b027033f008957e83d167d6fe4168ec4fb79385cc06e257bba807ecfccaba56cf751dac996b7a347d36ec52b0f5d16425402416c735530bd7c545f8c753fb3b1054b82bc3"}}}}, 0x0)

4.005631082s ago: executing program 1 (id=1737):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x218, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r3, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

3.130482002s ago: executing program 1 (id=1740):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
write$binfmt_aout(r1, 0x0, 0xffffffdb)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)

2.770062499s ago: executing program 1 (id=1743):
mkdir(&(0x7f0000000400)='./file0\x00', 0x14d)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.numa_stat\x00', 0x275a, 0x0)
lseek(r0, 0x0, 0x0)

475.301639ms ago: executing program 7 (id=1734):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x200000a, 0x5d031, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f0000199000/0x800000)=nil, 0x800000})

474.179462ms ago: executing program 5 (id=1751):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x8000001c)
r1 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x1a)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)

463.927086ms ago: executing program 1 (id=1752):
io_setup(0x222, 0x0)
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000140), 0x40000000040201, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000500)={0x0, 0x18, 0xfa00, {0x3, 0x0}}, 0x20)
r1 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000040))
r2 = syz_open_dev$sndpcmp(&(0x7f0000000200), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT32(r2, 0xc06c4124, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})

319.280358ms ago: executing program 7 (id=1745):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x1)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)

318.23397ms ago: executing program 5 (id=1746):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='debugfs\x00', 0x0, 0x0)

284.375093ms ago: executing program 5 (id=1747):
r0 = socket$nl_route(0x10, 0x3, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
fstatfs(r0, &(0x7f0000000400))
sendmsg$IEEE802154_DISASSOCIATE_REQ(0xffffffffffffffff, 0x0, 0x40000000)

43.811488ms ago: executing program 3 (id=1742):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000040)=0xfffe, 0x4)
bind$inet(r0, &(0x7f0000003900)={0x2, 0x4e24, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e24, @empty}, 0x10)
sendto$inet(r0, &(0x7f0000000200)=';', 0x1, 0x40004, 0x0, 0x0)
sendto$inet(r0, &(0x7f0000000100)="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", 0xfffffffffffffdb0, 0x4040004, 0x0, 0xfffffffb)
setsockopt$inet_tcp_int(r0, 0x6, 0x19, &(0x7f0000000080)=0x7fe00, 0x4)

0s ago: executing program 7 (id=1748):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a40)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000a80)=@newtfilter={0x40, 0x2c, 0xd27, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r3, {0xa, 0x4}, {}, {0x3, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0xc, 0x2, [@TCA_MATCHALL_CLASSID={0x8, 0x1, {0x8, 0x10}}]}}]}, 0x40}}, 0x20040054)

kernel console output (not intermixed with test programs):

ly recommended to keep mac addresses unique to avoid problems!
[   49.108390][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.112002][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.116497][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.119535][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.122063][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.134096][ T5949] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.137248][ T5949] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.148458][ T5949] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.151250][ T5949] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.163323][   T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.168570][   T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.213035][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.215576][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.252945][   T65] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.255852][   T65] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.143155][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.183772][ T6080] netlink: 'syz.3.27': attribute type 1 has an invalid length.
[   50.195522][ T6080] bond0: (slave gretap1): Enslaving as an active interface with an up link
[   50.243650][ T5293] Bluetooth: hci3: command tx timeout
[   50.243697][   T68] Bluetooth: hci2: command tx timeout
[   50.323356][   T68] Bluetooth: hci1: command tx timeout
[   50.323383][ T5293] Bluetooth: hci0: command tx timeout
[   50.354375][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.454433][ T6092] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   50.458299][ T6092] batadv_slave_0: entered promiscuous mode
[   50.484168][   T40] audit: type=1800 audit(1746544441.518:2): pid=6094 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.33" name="bus" dev="tmpfs" ino=2 res=0 errno=0
[   50.653678][ T6110] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   50.829857][ T6136] netlink: 'syz.1.46': attribute type 27 has an invalid length.
[   50.856158][ T6136] bridge0: port 2(bridge_slave_1) entered disabled state
[   50.859259][ T6136] bridge0: port 1(bridge_slave_0) entered disabled state
[   50.908279][ T6136] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   50.917369][ T6136] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   50.959141][ T6136] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   50.961926][ T6136] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   50.964967][ T6136] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   50.967842][ T6136] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   51.006930][ T6138] 8021q: adding VLAN 0 to HW filter on device bond0
[   51.011212][ T6138] 8021q: adding VLAN 0 to HW filter on device team0
[   51.016703][ T6138] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   51.805840][   T68] block nbd3: Receive control failed (result -107)
[   51.903229][ T6168] nbd3: detected capacity change from 0 to 12
[   51.904895][ T6172] evm: overlay not supported
[   51.954159][ T6173] nbd3: detected capacity change from 12 to 6
[   51.957883][ T5951] block nbd3: Dead connection, failed to find a fallback
[   51.960262][ T5951] block nbd3: shutting down sockets
[   51.962466][ T5951] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   51.965901][ T5951] Buffer I/O error on dev nbd3, logical block 0, async page read
[   51.968713][ T5951] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   51.971661][ T5951] Buffer I/O error on dev nbd3, logical block 0, async page read
[   51.975931][ T5951] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   51.978793][ T5951] Buffer I/O error on dev nbd3, logical block 0, async page read
[   51.981281][ T5951] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   51.984308][ T5951] Buffer I/O error on dev nbd3, logical block 0, async page read
[   51.986894][ T5951] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   51.989731][ T5951] Buffer I/O error on dev nbd3, logical block 0, async page read
[   51.992574][ T5951] ldm_validate_partition_table(): Disk read failed.
[   51.995014][ T5951] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   51.998579][ T5951] Buffer I/O error on dev nbd3, logical block 0, async page read
[   52.001220][ T5951] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   52.004292][ T5951] Buffer I/O error on dev nbd3, logical block 0, async page read
[   52.006839][ T5951] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   52.009895][ T5951] Buffer I/O error on dev nbd3, logical block 0, async page read
[   52.012481][ T5951] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   52.015511][ T5951] Buffer I/O error on dev nbd3, logical block 0, async page read
[   52.017931][ T5951] Dev nbd3: unable to read RDB block 0
[   52.019871][ T5951] I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   52.022900][ T5951] Buffer I/O error on dev nbd3, logical block 0, async page read
[   52.026208][ T5951]  nbd3: unable to read partition table
[   52.028093][ T5951] nbd3: partition table beyond EOD, truncated
[   52.034608][  T834] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   52.034617][ T5951] ldm_validate_partition_table(): Disk read failed.
[   52.040300][ T5951] Dev nbd3: unable to read RDB block 0
[   52.042978][ T5951]  nbd3: unable to read partition table
[   52.045411][ T5951] nbd3: partition table beyond EOD, truncated
[   52.160558][ T6193] trusted_key: syz.1.71 sent an empty control message without MSG_MORE.
[   52.206951][  T834] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   52.210637][  T834] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   52.214217][  T834] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   52.219001][  T834] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   52.221930][  T834] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   52.223755][ T5997] IPVS: starting estimator thread 0...
[   52.228402][  T834] usb 7-1: config 0 descriptor??
[   52.323748][   T68] Bluetooth: hci2: command tx timeout
[   52.324033][ T5293] Bluetooth: hci3: command tx timeout
[   52.325749][ T6204] IPVS: using max 48 ests per chain, 115200 per kthread
[   52.403121][ T5293] Bluetooth: hci1: command tx timeout
[   52.413147][ T5293] Bluetooth: hci0: command tx timeout
[   52.637049][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.642706][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.645436][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.648234][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.650682][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.653559][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.655983][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.658373][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.660758][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.663554][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.665978][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.668384][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.670772][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.673255][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.675677][  T834] plantronics 0003:047F:FFFF.0002: unknown main item tag 0x0
[   52.678711][  T834] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[   52.692436][  T834] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   52.897317][ T6011] usb 7-1: USB disconnect, device number 2
[   53.134643][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   53.141410][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   53.232958][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   53.236804][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   53.252317][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   53.255901][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   53.443457][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   53.463789][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   53.743258][ T6011] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   53.893202][ T6011] usb 8-1: Using ep0 maxpacket: 8
[   53.896772][ T6011] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[   53.899535][ T6011] usb 8-1: config 0 has no interface number 0
[   53.901616][ T6011] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   53.905564][ T6011] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   53.908517][ T6011] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   53.913139][ T6011] usb 8-1: config 0 descriptor??
[   53.919739][ T6011] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   53.984582][   T40] audit: type=1326 audit(1746544445.028:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.2.110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x7fc00000
[   54.403240][ T5293] Bluetooth: hci3: command tx timeout
[   54.405180][ T5293] Bluetooth: hci2: command tx timeout
[   54.483279][   T68] Bluetooth: hci0: command tx timeout
[   54.493216][   T68] Bluetooth: hci1: command tx timeout
[   54.664691][   T40] audit: type=1326 audit(1746544445.708:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6288 comm="syz.2.110" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f67579 code=0x7fc00000
[   54.982337][ T6321] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   55.136409][   T29] usb 8-1: USB disconnect, device number 2
[   55.220268][ T6338] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[   55.354202][   T40] audit: type=1804 audit(1746544446.398:5): pid=6347 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.133" name="/newroot/28/file0" dev="tmpfs" ino=171 res=1 errno=0
[   55.758318][ T6376] netlink: 36 bytes leftover after parsing attributes in process `syz.2.147'.
[   55.761355][ T6376] netlink: 36 bytes leftover after parsing attributes in process `syz.2.147'.
[   55.764831][ T6376] netlink: 36 bytes leftover after parsing attributes in process `syz.2.147'.
[   55.782603][ T6376] netlink: 36 bytes leftover after parsing attributes in process `syz.2.147'.
[   55.785876][ T6376] netlink: 36 bytes leftover after parsing attributes in process `syz.2.147'.
[   55.789231][ T6376] netlink: 36 bytes leftover after parsing attributes in process `syz.2.147'.
[   55.800997][   T40] audit: type=1804 audit(1746544446.838:6): pid=6380 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.146" name="/" dev="pidfs" ino=6375 res=1 errno=0
[   55.823695][ T6376] netlink: 36 bytes leftover after parsing attributes in process `syz.2.147'.
[   55.826640][ T6376] netlink: 36 bytes leftover after parsing attributes in process `syz.2.147'.
[   55.829616][ T6376] netlink: 36 bytes leftover after parsing attributes in process `syz.2.147'.
[   55.997407][ T6395] Bluetooth: MGMT ver 1.23
[   56.035552][ T6397] netlink: 4 bytes leftover after parsing attributes in process `syz.3.155'.
[   56.083947][  T834] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   56.091983][ T6405] gtp0: entered promiscuous mode
[   56.096736][ T6405] gtp0: entered allmulticast mode
[   56.099651][ T6405] Zero length message leads to an empty skb
[   56.152678][ T6410] 
: renamed from bond0 (while UP)
[   56.206625][ T6418] Illegal XDP return value 4294967274 on prog  (id 23) dev syz_tun, expect packet loss!
[   56.243111][  T834] usb 5-1: Using ep0 maxpacket: 8
[   56.250833][  T834] usb 5-1: config 0 has no interfaces?
[   56.252721][  T834] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   56.260756][  T834] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   56.266776][  T834] usb 5-1: config 0 descriptor??
[   56.476982][ T6442] only policy match revision 0 supported
[   56.476994][ T6442] unable to load match
[   56.477754][  T834] usb 5-1: USB disconnect, device number 2
[   56.559120][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.561994][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.565180][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.568171][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.571080][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.574397][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.578038][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.580885][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.583938][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.586842][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.589753][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.592438][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.595436][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.597948][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.600473][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.602984][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.605901][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.608529][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.611103][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.614260][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.616811][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.619395][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.621900][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.625814][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.628345][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.631088][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.635059][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.638506][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.642531][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.646364][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.649731][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.653225][   T34] hid-generic 0004:FFFFFFFF:0000.0003: unknown main item tag 0x0
[   56.658184][   T34] hid-generic 0004:FFFFFFFF:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   56.823165][ T5825] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   56.851787][ T6464] syz.2.183 uses obsolete (PF_INET,SOCK_PACKET)
[   56.921820][   T40] audit: type=1804 audit(1746544447.958:7): pid=6466 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.186" name="/newroot/43/file0/file0" dev="9p" ino=35913890 res=1 errno=0
[   56.990785][ T5825] usb 8-1: config 0 has no interfaces?
[   56.992876][ T5825] usb 8-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[   56.996920][ T5825] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   57.002058][ T5825] usb 8-1: config 0 descriptor??
[   57.209442][ T5825] usb 8-1: USB disconnect, device number 3
[   58.009733][ T6512] =======================================================
[   58.009733][ T6512] WARNING: The mand mount option has been deprecated and
[   58.009733][ T6512]          and is ignored by this kernel. Remove the mand
[   58.009733][ T6512]          option from the mount to silence this warning.
[   58.009733][ T6512] =======================================================
[   58.117197][ T6527] process 'syz.1.211' launched './file0' with NULL argv: empty string added
[   58.146410][ T6531] capability: warning: `syz.1.213' uses 32-bit capabilities (legacy support in use)
[   58.237313][ T6540] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.240698][ T6540] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.243790][ T6540] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.246876][ T6540] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   58.250641][ T6540] geneve2: entered promiscuous mode
[   58.306971][ T6547] overlayfs: missing 'lowerdir'
[   58.573784][   T34] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[   58.753075][   T34] usb 8-1: Using ep0 maxpacket: 8
[   58.756400][   T34] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   58.759013][   T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   58.762809][   T34] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   58.768981][   T40] audit: type=1804 audit(1746544449.808:8): pid=6592 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.234" name="/newroot/64/file0/file0" dev="9p" ino=35913890 res=1 errno=0
[   58.776192][   T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   58.779909][   T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   58.787069][   T34] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   58.789564][   T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   58.793606][   T34] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   58.797414][   T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   58.801135][   T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   58.805576][   T34] usb 8-1: config 168 descriptor has 1 excess byte, ignoring
[   58.808017][   T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   58.811592][   T34] usb 8-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   58.815541][   T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   58.819157][   T34] usb 8-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   58.825622][   T34] usb 8-1: string descriptor 0 read error: -22
[   58.827720][   T34] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   58.830669][   T34] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   58.838174][   T34] adutux 8-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   59.196914][   T29] usb 8-1: USB disconnect, device number 4
[   59.206693][ T6619] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   59.320864][ T6631] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[   59.327377][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[   59.877589][ T6641] loop2: detected capacity change from 0 to 7
[   59.881996][ T6641] Dev loop2: unable to read RDB block 7
[   59.883952][ T6641]  loop2: unable to read partition table
[   59.885926][ T6641] loop2: partition table beyond EOD, truncated
[   59.887982][ T6641] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[   60.215234][ T6661] netlink: 'syz.3.258': attribute type 5 has an invalid length.
[   61.143147][ T5825] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[   61.317072][ T5825] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   61.321311][ T5825] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   61.326824][ T5825] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   61.330504][ T5825] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   61.363164][   T68] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   61.363400][ T5293] Bluetooth: hci4: command 0x1003 tx timeout
[   61.541350][ T5825] usb 5-1: usb_control_msg returned -32
[   61.543902][ T5825] usbtmc 5-1:16.0: can't read capabilities
[   61.574447][ T6705] vlan2: entered allmulticast mode
[   61.576191][ T6705] bond0: entered allmulticast mode
[   61.577849][ T6705] bond_slave_0: entered allmulticast mode
[   61.579732][ T6705] bond_slave_1: entered allmulticast mode
[   61.581594][ T6705] gretap1: entered allmulticast mode
[   61.905101][ T6719] usbtmc 5-1:16.0: usb_control_msg returned -32
[   61.911231][    T9] usb 5-1: USB disconnect, device number 3
[   62.164599][   T68] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[   62.167611][   T68] Bluetooth: hci2: Injecting HCI hardware error event
[   62.170916][   T68] Bluetooth: hci2: hardware error 0x00
[   62.270524][  T835] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   62.277225][  T835] hid-generic 0000:0000:0000.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[   62.443711][ T6747] binder: 6745:6747 ioctl c018620c 80000700 returned -1
[   62.449589][   T40] audit: type=1326 audit(1746544453.488:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6746 comm="syz.0.296" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709e579 code=0x0
[   62.699429][ T6757] vivid-000: =================  START STATUS  =================
[   62.702338][ T6757] vivid-000: Generate PTS: true
[   62.704801][ T6757] vivid-000: Generate SCR: true
[   62.706865][ T6757] tpg source WxH: 640x360 (Y'CbCr)
[   62.708805][ T6757] tpg field: 1
[   62.710093][ T6757] tpg crop: (0,0)/640x360
[   62.711702][ T6757] tpg compose: (0,0)/640x360
[   62.713703][ T6757] tpg colorspace: 8
[   62.715106][ T6757] tpg transfer function: 0/0
[   62.716782][ T6757] tpg Y'CbCr encoding: 0/0
[   62.718482][ T6757] tpg quantization: 0/0
[   62.720089][ T6757] tpg RGB range: 0/2
[   62.721579][ T6757] vivid-000: ==================  END STATUS  ==================
[   63.371641][ T6791] __nla_validate_parse: 9 callbacks suppressed
[   63.371652][ T6791] netlink: 4 bytes leftover after parsing attributes in process `syz.0.314'.
[   63.445529][ T6796] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[   63.448047][ T6796] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   63.454570][ T6796] vhci_hcd vhci_hcd.0: Device attached
[   63.457734][ T6797] vhci_hcd: unknown pdu 1
[   63.461252][   T12] vhci_hcd: stop threads
[   63.462951][   T12] vhci_hcd: release socket
[   63.464635][   T12] vhci_hcd: disconnect device
[   63.579236][ T6807] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   63.614145][ T6807] netlink: 4 bytes leftover after parsing attributes in process `syz.1.320'.
[   63.616982][ T6807] bridge_slave_1: left allmulticast mode
[   63.618804][ T6807] bridge_slave_1: left promiscuous mode
[   63.620721][ T6807] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.624629][ T6807] bridge_slave_0: left allmulticast mode
[   63.626480][ T6807] bridge_slave_0: left promiscuous mode
[   63.628391][ T6807] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.712978][   T40] audit: type=1326 audit(1746544454.748:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6812 comm="syz.2.323" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f67579 code=0x0
[   63.849013][ T6820] netlink: 4 bytes leftover after parsing attributes in process `syz.1.326'.
[   64.243119][   T68] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[   64.317156][ T6851] netlink: 12 bytes leftover after parsing attributes in process `syz.3.338'.
[   64.381852][ T6853] hub 9-0:1.0: USB hub found
[   64.384399][ T6853] hub 9-0:1.0: 1 port detected
[   64.483257][   T68] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[   64.486053][   T68] Bluetooth: hci0: Injecting HCI hardware error event
[   64.489021][ T5293] Bluetooth: hci0: hardware error 0x00
[   64.963480][   T68] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   64.966463][   T68] Bluetooth: hci1: Injecting HCI hardware error event
[   64.969111][   T68] Bluetooth: hci1: hardware error 0x00
[   65.944480][ T6934] netlink: 4 bytes leftover after parsing attributes in process `syz.1.377'.
[   65.948002][ T6934] netlink: 'syz.1.377': attribute type 10 has an invalid length.
[   65.953618][ T6934] 
: (slave wlan1): Enslaving as an active interface with an up link
[   66.119667][ T6943] x_tables: ip_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[   66.563240][ T5293] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[   66.613188][ T6011] usb 8-1: new full-speed USB device number 5 using dummy_hcd
[   66.775551][ T6011] usb 8-1: config 0 has no interfaces?
[   66.779192][ T6011] usb 8-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[   66.782315][ T6011] usb 8-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[   66.784366][   T65] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.785376][ T6011] usb 8-1: Product: syz
[   66.789952][ T6011] usb 8-1: Manufacturer: syz
[   66.792672][ T6011] usb 8-1: config 0 descriptor??
[   66.834109][   T65] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.924020][   T65] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.924516][ T6960] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   66.930247][ T6960] overlayfs: failed to set xattr on upper
[   66.932180][ T6960] overlayfs: ...falling back to redirect_dir=nofollow.
[   66.934612][ T6960] overlayfs: ...falling back to index=off.
[   66.936523][ T6960] overlayfs: ...falling back to uuid=null.
[   66.959499][ T5965] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   66.969419][ T5965] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   66.972226][ T5965] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   66.978782][ T5965] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   66.983161][ T5965] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   66.993124][   T65] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.001141][   T64] usb 8-1: USB disconnect, device number 5
[   67.043534][   T68] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[   67.086829][ T6977] syzkaller1: entered promiscuous mode
[   67.088845][ T6977] syzkaller1: entered allmulticast mode
[   67.112189][ T6963] chnl_net:caif_netlink_parms(): no params data found
[   67.260756][ T6963] bridge0: port 1(bridge_slave_0) entered blocking state
[   67.263383][ T6963] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.266070][ T6963] bridge_slave_0: entered allmulticast mode
[   67.269330][ T6963] bridge_slave_0: entered promiscuous mode
[   67.277073][ T6963] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.279622][ T6963] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.282080][ T6963] bridge_slave_1: entered allmulticast mode
[   67.286641][ T6963] bridge_slave_1: entered promiscuous mode
[   67.290818][   T65] bridge_slave_1: left allmulticast mode
[   67.292944][   T65] bridge_slave_1: left promiscuous mode
[   67.296040][   T65] bridge0: port 2(bridge_slave_1) entered disabled state
[   67.301897][   T65] bridge_slave_0: left allmulticast mode
[   67.305660][   T65] bridge_slave_0: left promiscuous mode
[   67.308170][   T65] bridge0: port 1(bridge_slave_0) entered disabled state
[   67.589733][   T65] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   67.594383][   T65] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   67.598851][   T65] bond0 (unregistering): Released all slaves
[   67.644162][ T6963] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   67.650098][ T6963] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   67.700449][ T6963] team0: Port device team_slave_0 added
[   67.719781][ T6963] team0: Port device team_slave_1 added
[   67.772326][ T6963] batman_adv: batadv0: Adding interface: batadv_slave_0
[   67.775096][ T6963] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.784508][ T6963] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.789144][ T6963] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.791506][ T6963] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.800553][ T6963] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.853887][ T6963] hsr_slave_0: entered promiscuous mode
[   67.862244][ T6963] hsr_slave_1: entered promiscuous mode
[   67.866033][ T6963] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.868525][ T6963] Cannot create hsr debugfs directory
[   67.987448][   T65] hsr_slave_0: left promiscuous mode
[   67.992176][   T65] hsr_slave_1: left promiscuous mode
[   67.995098][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   67.998341][   T65] batman_adv: batadv0: Removing interface: batadv_slave_0
[   68.002348][   T65] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   68.005696][   T65] batman_adv: batadv0: Removing interface: batadv_slave_1
[   68.026620][   T65] veth1_macvtap: left promiscuous mode
[   68.028610][   T65] veth0_macvtap: left promiscuous mode
[   68.030530][   T65] veth1_vlan: left promiscuous mode
[   68.032360][   T65] veth0_vlan: left promiscuous mode
[   68.390701][ T7043] netlink: 28 bytes leftover after parsing attributes in process `syz.1.412'.
[   68.564503][   T65] team0 (unregistering): Port device team_slave_1 removed
[   68.617133][   T65] team0 (unregistering): Port device team_slave_0 removed
[   69.055076][   T68] Bluetooth: hci0: command tx timeout
[   69.090086][ T6963] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   69.095320][ T6963] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   69.099907][ T6963] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   69.106715][ T6963] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   69.162644][ T6963] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.180586][ T6963] 8021q: adding VLAN 0 to HW filter on device team0
[   69.192778][   T40] audit: type=1326 audit(1746544460.228:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7056 comm="syz.3.417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000
[   69.193949][ T1137] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.201147][   T40] audit: type=1326 audit(1746544460.238:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7056 comm="syz.3.417" exe="/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf70fe579 code=0x7fc00000
[   69.202092][ T1137] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.213380][ T1137] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.215761][ T1137] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.226246][   T40] audit: type=1326 audit(1746544460.248:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7056 comm="syz.3.417" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7fc00000
[   69.351512][ T7074] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.355373][ T7074] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.358285][ T7074] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.361160][ T7074] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   69.416448][ T7093] loop2: detected capacity change from 0 to 7
[   69.426417][ T7093] Dev loop2: unable to read RDB block 7
[   69.427813][ T6963] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.428307][ T7093]  loop2: unable to read partition table
[   69.428398][ T7093] loop2: partition table beyond EOD, truncated
[   69.435504][ T7093] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[   69.558900][ T7115] overlayfs: "xino" feature enabled using 2 upper inode bits.
[   69.602913][ T6963] veth0_vlan: entered promiscuous mode
[   69.608960][ T6963] veth1_vlan: entered promiscuous mode
[   69.625028][ T6963] veth0_macvtap: entered promiscuous mode
[   69.630918][ T6963] veth1_macvtap: entered promiscuous mode
[   69.638417][ T6963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.641798][ T6963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.646720][ T6963] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.651669][ T6963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   69.658261][ T6963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.661403][ T6963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   69.665225][ T6963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.669215][ T6963] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.678402][ T6963] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.681382][ T6963] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.685571][ T6963] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.688520][ T6963] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.741684][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.744832][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.757923][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.761040][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.812503][ T7147] netlink: 'syz.4.387': attribute type 1 has an invalid length.
[   69.816765][ T7147] netlink: 168864 bytes leftover after parsing attributes in process `syz.4.387'.
[   69.960147][ T7163] input: syz0 as /devices/virtual/input/input5
[   70.240811][ T7192] netlink: 68 bytes leftover after parsing attributes in process `syz.0.448'.
[   70.316475][ T7199] input: syz0 as /devices/virtual/input/input6
[   70.843261][ T5992] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[   70.887339][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[   70.889748][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[   70.960022][ T7225] ptrace attach of ""[7228] was attempted by "/syz-executor exec"[7225]
[   70.966445][ T7243] netlink: 4 bytes leftover after parsing attributes in process `syz.4.461'.
[   71.004709][ T5992] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   71.008211][ T5992] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   71.011505][ T5992] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   71.020664][ T5992] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   71.058226][ T5992] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   71.064071][ T5992] usb 8-1: config 0 descriptor??
[   71.135329][   T68] Bluetooth: hci0: command tx timeout
[   71.223503][ T7258] 9pnet: p9_errstr2errno: server reported unknown error lèGù,Ó-‡¬k¢š¾šÆQïF‚5œÍê 
[   71.338645][ T7262] ref_ctr_offset mismatch. inode: 0x268 offset: 0x0 ref_ctr_offset(old): 0x100000000 ref_ctr_offset(new): 0x2
[   71.475954][ T5992] plantronics 0003:047F:FFFF.0005: No inputs registered, leaving
[   71.493383][ T5992] plantronics 0003:047F:FFFF.0005: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[   71.558736][ T7284] mmap: syz.1.478 (7284) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   72.183542][ T7081] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   72.244234][ T1140] team0: Port device team_slave_0 removed
[   72.311279][ T7316] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[   72.343135][ T7081] usb 6-1: Using ep0 maxpacket: 8
[   72.346129][ T7081] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   72.349537][ T7081] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   72.354637][ T7081] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   72.358958][ T7081] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   72.364646][ T7081] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   72.368410][ T7081] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   72.580355][ T7081] usb 6-1: GET_CAPABILITIES returned 0
[   72.582277][ T7081] usbtmc 6-1:16.0: can't read capabilities
[   72.791278][ T7081] usb 6-1: USB disconnect, device number 2
[   72.836193][ T5992] usb 8-1: reset high-speed USB device number 6 using dummy_hcd
[   72.983407][ T5992] usb 8-1: device descriptor read/64, error -32
[   73.204259][   T68] Bluetooth: hci0: command tx timeout
[   73.244312][ T5992] usb 8-1: reset high-speed USB device number 6 using dummy_hcd
[   73.373154][ T5992] usb 8-1: device descriptor read/64, error -32
[   73.508354][ T7347] 9pnet: p9_errstr2errno: server reported unknown error í<jqzÂPL¿�òóØáß<Òp—µ ×#‡ý»vëgÚB·B§Ìã[RêðÄ™–ì‰ÚeÖ
[   73.553454][   T64] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   73.613322][ T5992] usb 8-1: reset high-speed USB device number 6 using dummy_hcd
[   73.634280][ T5992] usb 8-1: device descriptor read/8, error -32
[   73.713429][   T64] usb 6-1: Using ep0 maxpacket: 8
[   73.716584][   T64] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   73.719783][   T64] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   73.722810][   T64] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   73.726460][   T64] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   73.731525][   T64] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   73.735422][   T64] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.948470][   T64] usb 6-1: GET_CAPABILITIES returned 0
[   73.950273][   T64] usbtmc 6-1:16.0: can't read capabilities
[   74.201990][ T5825] usb 6-1: USB disconnect, device number 3
[   74.537353][    T9] usb 8-1: USB disconnect, device number 6
[   75.093667][ T7397] syz_tun: entered allmulticast mode
[   75.120031][ T7396] syz_tun: left allmulticast mode
[   75.283395][   T68] Bluetooth: hci0: command tx timeout
[   75.356320][ T7426] Invalid ELF header magic: != ELF
[   75.411059][ T7434] netlink: 4 bytes leftover after parsing attributes in process `syz.3.531'.
[   75.490100][ T7443] netlink: 4 bytes leftover after parsing attributes in process `syz.3.534'.
[   75.688629][   T40] audit: type=1326 audit(1746544466.728:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000
[   75.695561][   T40] audit: type=1326 audit(1746544466.728:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000
[   75.702499][   T40] audit: type=1326 audit(1746544466.728:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000
[   75.709302][   T40] audit: type=1326 audit(1746544466.728:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000
[   75.716544][   T40] audit: type=1326 audit(1746544466.728:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000
[   75.723637][   T40] audit: type=1326 audit(1746544466.728:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000
[   75.730567][   T40] audit: type=1326 audit(1746544466.728:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000
[   75.738231][   T40] audit: type=1326 audit(1746544466.728:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000
[   75.745168][   T40] audit: type=1326 audit(1746544466.728:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000
[   75.751782][   T40] audit: type=1326 audit(1746544466.728:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7463 comm="syz.3.543" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf70fe598 code=0x7ffc0000
[   75.977707][ T7479] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   76.106895][ T7482] netlink: 28 bytes leftover after parsing attributes in process `syz.3.552'.
[   76.110784][ T7482] netlink: 28 bytes leftover after parsing attributes in process `syz.3.552'.
[   76.255820][ T5293] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   76.260102][ T5293] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   76.262805][ T7489] syzkaller0: entered promiscuous mode
[   76.262953][ T5293] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   76.267337][ T7489] syzkaller0: entered allmulticast mode
[   76.268626][ T5293] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   76.273313][ T5293] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   77.107883][ T7505] netlink: 'syz.3.562': attribute type 5 has an invalid length.
[   77.135669][   T46] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.195048][ T7514] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   77.197845][ T7514] overlayfs: failed to set xattr on upper
[   77.200040][ T7514] overlayfs: ...falling back to redirect_dir=nofollow.
[   77.200208][ T7513] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   77.202591][ T7514] overlayfs: ...falling back to uuid=null.
[   77.209402][ T7514] overlayfs: maximum fs stacking depth exceeded
[   77.244153][   T46] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.285804][ T7490] chnl_net:caif_netlink_parms(): no params data found
[   77.307213][   T46] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.386303][ T7490] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.388974][ T7490] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.391620][ T7490] bridge_slave_0: entered allmulticast mode
[   77.394905][ T7490] bridge_slave_0: entered promiscuous mode
[   77.398044][ T7490] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.400384][ T7490] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.402781][ T7490] bridge_slave_1: entered allmulticast mode
[   77.405546][ T7490] bridge_slave_1: entered promiscuous mode
[   77.445937][   T46] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   77.459028][ T7490] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.464783][ T7490] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.502176][ T7490] team0: Port device team_slave_0 added
[   77.506126][ T7490] team0: Port device team_slave_1 added
[   77.544373][ T7490] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.547371][ T7490] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.556373][ T7490] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.561402][ T7490] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.564475][ T7490] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.573293][ T7490] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.664376][ T7541] Bluetooth: MGMT ver 1.23
[   77.665217][ T7490] hsr_slave_0: entered promiscuous mode
[   77.669238][ T7490] hsr_slave_1: entered promiscuous mode
[   77.722111][   T46] bridge_slave_1: left allmulticast mode
[   77.726185][   T46] bridge_slave_1: left promiscuous mode
[   77.728112][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.735823][   T46] bridge_slave_0: left allmulticast mode
[   77.737943][   T46] bridge_slave_0: left promiscuous mode
[   77.739960][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.955873][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   77.960017][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   77.963721][   T46] bond0 (unregistering): Released all slaves
[   78.176133][ T7490] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   78.181294][ T7490] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   78.186302][ T7490] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   78.190360][ T7490] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   78.240775][   T46] hsr_slave_0: left promiscuous mode
[   78.243935][   T46] hsr_slave_1: left promiscuous mode
[   78.245957][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.248427][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.255646][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.258016][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.276398][   T46] veth1_macvtap: left promiscuous mode
[   78.278241][   T46] veth0_macvtap: left promiscuous mode
[   78.280108][   T46] veth1_vlan: left promiscuous mode
[   78.281868][   T46] veth0_vlan: left promiscuous mode
[   78.333210][   T68] Bluetooth: hci1: command tx timeout
[   78.791572][   T46] team0 (unregistering): Port device team_slave_1 removed
[   78.846081][   T46] team0 (unregistering): Port device team_slave_0 removed
[   79.306632][ T7565] netlink: 'syz.3.577': attribute type 12 has an invalid length.
[   79.309687][ T7565] netlink: 'syz.3.577': attribute type 29 has an invalid length.
[   79.312300][ T7565] netlink: 148 bytes leftover after parsing attributes in process `syz.3.577'.
[   79.317908][ T7565] netlink: 'syz.3.577': attribute type 1 has an invalid length.
[   79.320473][ T7565] netlink: 'syz.3.577': attribute type 2 has an invalid length.
[   79.322946][ T7565] netlink: 39 bytes leftover after parsing attributes in process `syz.3.577'.
[   79.350146][ T7490] 8021q: adding VLAN 0 to HW filter on device bond0
[   79.381325][ T7490] 8021q: adding VLAN 0 to HW filter on device team0
[   79.389170][   T65] bridge0: port 1(bridge_slave_0) entered blocking state
[   79.391547][   T65] bridge0: port 1(bridge_slave_0) entered forwarding state
[   79.399068][   T83] bridge0: port 2(bridge_slave_1) entered blocking state
[   79.402472][   T83] bridge0: port 2(bridge_slave_1) entered forwarding state
[   79.510549][ T7490] 8021q: adding VLAN 0 to HW filter on device batadv0
[   79.540564][ T7594] input: syz0 as /devices/virtual/input/input7
[   79.642180][   T66] libceph: connect (1)[c::]:6789 error -101
[   79.645867][   T66] libceph: mon0 (1)[c::]:6789 connect error
[   79.657472][ T7490] veth0_vlan: entered promiscuous mode
[   79.673114][ T7606] ceph: No mds server is up or the cluster is laggy
[   79.681089][ T7490] veth1_vlan: entered promiscuous mode
[   79.712038][ T7490] veth0_macvtap: entered promiscuous mode
[   79.718030][ T7490] veth1_macvtap: entered promiscuous mode
[   79.726533][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   79.731811][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.737646][ T7490] batman_adv: batadv0: Interface activated: batadv_slave_0
[   79.760161][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.766095][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.770175][ T7490] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   79.773933][ T7490] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   79.777906][ T7490] batman_adv: batadv0: Interface activated: batadv_slave_1
[   79.790181][ T7490] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   79.796860][ T7490] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   79.799757][ T7490] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   79.802819][ T7490] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   79.879549][   T65] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.882298][   T65] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.896082][ T1137] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.898834][ T1137] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.949555][   T58] kernel read not supported for file /mdstat (pid: 58 comm: kworker/1:1)
[   80.261577][ T7666] syz_tun: entered allmulticast mode
[   80.271154][ T7665] syz_tun: left allmulticast mode
[   80.403813][ T5293] Bluetooth: hci1: command tx timeout
[   80.676444][ T5293] block nbd4: Receive control failed (result -107)
[   80.693215][ T5993] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[   80.714689][ T7715] block nbd4: shutting down sockets
[   80.846136][ T5993] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[   80.849471][ T5993] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   80.852154][ T5993] usb 6-1: Product: syz
[   80.854556][ T5993] usb 6-1: Manufacturer: syz
[   80.856164][ T5993] usb 6-1: SerialNumber: syz
[   80.861155][ T5993] usb 6-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[   80.881724][ T5993] usb 6-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[   81.090201][   T66] usb 6-1: USB disconnect, device number 4
[   81.125268][  T955] cfg80211: failed to load regulatory.db
[   81.926751][ T5993] ath9k_htc 6-1:1.0: ath9k_htc: Target is unresponsive
[   81.930019][ T5993] ath9k_htc: Failed to initialize the device
[   81.941529][   T66] usb 6-1: ath9k_htc: USB layer deinitialized
[   82.003247][ T5293] Bluetooth: hci4: command 0x1003 tx timeout
[   82.006055][   T68] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   82.177997][ T7789] netlink: 8 bytes leftover after parsing attributes in process `syz.1.628'.
[   82.184814][ T7789] netlink: 32 bytes leftover after parsing attributes in process `syz.1.628'.
[   82.370553][ T7797] batman_adv: Cannot find parent device. Skipping batadv-on-batadv check for ip6gretap1
[   82.376472][ T7797] batman_adv: batadv0: Adding interface: ip6gretap1
[   82.378693][ T7797] batman_adv: batadv0: The MTU of interface ip6gretap1 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.386998][ T7797] batman_adv: batadv0: Interface activated: ip6gretap1
[   82.483172][   T68] Bluetooth: hci1: command tx timeout
[   83.643086][   T64] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[   83.794476][   T64] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   83.797563][   T64] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[   83.800934][   T64] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[   83.804267][   T64] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[   83.808486][   T64] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[   83.813896][   T64] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   83.816948][   T64] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   83.819590][   T64] usb 9-1: Product: syz
[   83.821028][   T64] usb 9-1: Manufacturer: syz
[   83.828522][   T64] cdc_wdm 9-1:1.0: skipping garbage
[   83.830265][   T64] cdc_wdm 9-1:1.0: skipping garbage
[   83.834452][   T64] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[   83.836446][   T64] cdc_wdm 9-1:1.0: Unknown control protocol
[   84.420575][ T7890] netlink: 8 bytes leftover after parsing attributes in process `syz.1.658'.
[   84.563845][   T68] Bluetooth: hci1: command tx timeout
[   84.745955][ T7912] netfs: Couldn't get user pages (rc=-14)
[   84.766556][ T7917] 9pnet_virtio: no channels available for device syz
[   85.068248][ T7939] netlink: 8 bytes leftover after parsing attributes in process `syz.3.679'.
[   85.852383][ T7966] netlink: 12 bytes leftover after parsing attributes in process `syz.1.688'.
[   86.093127][ T6011] usb 10-1: new full-speed USB device number 2 using dummy_hcd
[   86.244430][ T6011] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   86.247776][ T6011] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   86.252005][ T6011] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   86.255715][ T6011] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   86.333458][ T7975] netlink: 'syz.3.691': attribute type 1 has an invalid length.
[   86.337079][ T7975] netlink: 'syz.3.691': attribute type 4 has an invalid length.
[   86.340370][ T7975] netlink: 15334 bytes leftover after parsing attributes in process `syz.3.691'.
[   86.396650][   T64] usb 9-1: USB disconnect, device number 2
[   86.432949][ T7981] netlink: 'syz.4.694': attribute type 1 has an invalid length.
[   86.435782][ T7981] netlink: 'syz.4.694': attribute type 4 has an invalid length.
[   86.438487][ T7981] netlink: 15363 bytes leftover after parsing attributes in process `syz.4.694'.
[   86.463160][ T6011] usb 10-1: usb_control_msg returned -32
[   86.465090][ T6011] usbtmc 10-1:16.0: can't read capabilities
[   86.854459][ T8012] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   86.998191][ T8020] netlink: 304 bytes leftover after parsing attributes in process `syz.3.709'.
[   87.001160][ T8020] netlink: 4 bytes leftover after parsing attributes in process `syz.3.709'.
[   87.025379][ T7136] usb 10-1: USB disconnect, device number 2
[   87.378535][ T8054] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   88.276164][ T8084] netlink: 4 bytes leftover after parsing attributes in process `syz.3.735'.
[   88.613190][   T64] usb 8-1: new full-speed USB device number 7 using dummy_hcd
[   88.764728][   T64] usb 8-1: config 1 interface 0 has no altsetting 0
[   88.768741][   T64] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   88.771661][   T64] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   88.774995][   T64] usb 8-1: Product: syz
[   88.776384][   T64] usb 8-1: Manufacturer: syz
[   88.777951][   T64] usb 8-1: SerialNumber: syz
[   89.249222][ T8130] netlink: 4 bytes leftover after parsing attributes in process `syz.1.754'.
[   89.254362][ T8130] netlink: 8 bytes leftover after parsing attributes in process `syz.1.754'.
[   89.392760][   T64] usblp 8-1:1.0: usblp0: USB Unidirectional printer dev 7 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8
[   89.462685][ T8146] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   89.739576][   T64] usb 8-1: USB disconnect, device number 7
[   89.754703][   T64] usblp0: removed
[   90.207299][ T8201] loop2: detected capacity change from 0 to 7
[   90.214978][ T8201] Dev loop2: unable to read RDB block 7
[   90.216843][ T8201]  loop2: unable to read partition table
[   90.218752][ T8201] loop2: partition table beyond EOD, truncated
[   90.233121][ T8201] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[   90.491190][ T8222] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   90.533130][ T5825] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[   90.625928][   T40] kauditd_printk_skb: 267 callbacks suppressed
[   90.625939][   T40] audit: type=1800 audit(2000000006.159:291): pid=8229 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.792" name="bus" dev="tmpfs" ino=2 res=0 errno=0
[   90.683089][ T5825] usb 8-1: Using ep0 maxpacket: 8
[   90.686509][ T5825] usb 8-1: config index 0 descriptor too short (expected 5924, got 36)
[   90.689288][ T5825] usb 8-1: config 250 has an invalid interface number: 228 but max is -1
[   90.691947][ T5825] usb 8-1: config 250 has 1 interface, different from the descriptor's value: 0
[   90.695353][ T5825] usb 8-1: config 250 has no interface number 0
[   90.697373][ T5825] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[   90.701034][ T5825] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[   90.708068][ T5825] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 256
[   90.711404][ T5825] usb 8-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[   90.716178][ T5825] usb 8-1: config 250 interface 228 has no altsetting 0
[   90.723101][ T5825] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[   90.725996][ T5825] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[   90.728623][ T5825] usb 8-1: Product: syz
[   90.729965][ T5825] usb 8-1: SerialNumber: syz
[   90.735484][ T5825] hub 8-1:250.228: bad descriptor, ignoring hub
[   90.737522][ T5825] hub 8-1:250.228: probe with driver hub failed with error -5
[   90.782141][ T8247] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[   90.937103][ T5825] usblp 8-1:250.228: usblp0: USB Bidirectional printer dev 8 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[   91.220520][   T40] audit: type=1800 audit(2000000006.749:292): pid=8276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.810" name="file0" dev="9p" ino=35913890 res=0 errno=0
[   91.221695][ T8276] netfs: Couldn't get user pages (rc=-14)
[   91.360279][ T8304] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   91.543266][   T40] audit: type=1800 audit(2000000007.069:293): pid=8325 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.823" name="bus" dev="tmpfs" ino=2 res=0 errno=0
[   91.561146][ T8212] usb 8-1: reset high-speed USB device number 8 using dummy_hcd
[   91.930241][    C0] usblp0: nonzero read bulk status received: -71
[   92.155435][ T5825] usb 8-1: USB disconnect, device number 8
[   92.159505][ T5825] usblp0: removed
[   94.211507][ T8518] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   94.465862][   T40] audit: type=1804 audit(2000000009.999:294): pid=8541 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.891" name="/newroot/255/file0" dev="tmpfs" ino=1416 res=1 errno=0
[   94.822200][   T40] audit: type=1804 audit(2000000010.349:295): pid=8574 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.904" name="/" dev="pidfs" ino=8569 res=1 errno=0
[   94.875243][  T834] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[   94.921642][ T8582] 
: renamed from bond0 (while UP)
[   94.937905][ T8584] netlink: 4 bytes leftover after parsing attributes in process `syz.4.910'.
[   95.023397][  T834] usb 6-1: Using ep0 maxpacket: 8
[   95.026358][  T834] usb 6-1: config 0 has an invalid interface number: 1 but max is 0
[   95.029006][  T834] usb 6-1: config 0 has no interface number 0
[   95.031479][  T834] usb 6-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[   95.037800][  T834] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   95.042195][  T834] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   95.048282][  T834] usb 6-1: config 0 descriptor??
[   95.055586][  T834] iowarrior 6-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   95.068912][ T8594] netlink: 8 bytes leftover after parsing attributes in process `syz.4.914'.
[   95.071958][ T8594] netlink: 32 bytes leftover after parsing attributes in process `syz.4.914'.
[   95.077725][ T8594] gtp0: entered promiscuous mode
[   95.079436][ T8594] gtp0: entered allmulticast mode
[   95.262191][ T8610] netlink: 88 bytes leftover after parsing attributes in process `syz.3.923'.
[   95.266431][ T8610] netlink: 8 bytes leftover after parsing attributes in process `syz.3.923'.
[   95.328599][ T8614] only policy match revision 0 supported
[   95.328611][ T8614] unable to load match
[   96.240595][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.243920][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.246553][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.249133][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.251963][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.255057][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.257949][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.260648][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.263970][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.266542][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.269333][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.272839][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.276356][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.279175][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.282034][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.285152][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.287923][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.290791][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.293986][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.296812][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.300036][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.302985][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.306376][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.309492][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.312283][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.315656][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.318426][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.321339][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.324645][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.327431][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.328341][ T5993] usb 6-1: USB disconnect, device number 5
[   96.330181][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.330213][  T834] hid-generic 0004:FFFFFFFF:0000.0006: unknown main item tag 0x0
[   96.340156][  T834] hid-generic 0004:FFFFFFFF:0000.0006: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   96.493431][ T7136] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[   96.675434][ T7136] usb 9-1: config 0 has no interfaces?
[   96.677254][ T7136] usb 9-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[   96.680460][ T7136] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   96.684822][ T7136] usb 9-1: config 0 descriptor??
[   96.842173][   T40] audit: type=1800 audit(2000000012.369:296): pid=8641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.939" name="file1" dev="9p" ino=35913898 res=0 errno=0
[   96.896442][  T834] usb 9-1: USB disconnect, device number 3
[   97.077832][ T8641] syz.3.939 (8641) used greatest stack depth: 20696 bytes left
[   97.263676][ T8676] netlink: 3136 bytes leftover after parsing attributes in process `syz.3.950'.
[   97.594648][ T8702] netlink: 20 bytes leftover after parsing attributes in process `syz.4.964'.
[   97.600636][ T8702] geneve2: entered promiscuous mode
[   97.658800][ T8708] overlayfs: missing 'lowerdir'
[   98.091382][   T40] audit: type=1804 audit(2000000013.619:297): pid=8752 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.982" name="/newroot/86/file0/file0" dev="9p" ino=35913890 res=1 errno=0
[   98.221478][ T8762] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   98.487550][ T8781] loop2: detected capacity change from 0 to 7
[   98.490198][ T8781] Dev loop2: unable to read RDB block 7
[   98.492064][ T8781]  loop2: unable to read partition table
[   98.494277][ T8781] loop2: partition table beyond EOD, truncated
[   98.496323][ T8781] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[   98.503362][ T8782] netlink: 4 bytes leftover after parsing attributes in process `syz.1.992'.
[   98.773142][ T5993] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[   98.923122][ T5993] usb 9-1: Using ep0 maxpacket: 8
[   98.926169][ T5993] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[   98.928674][ T5993] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   98.928939][ T8803] netlink: 'syz.5.1002': attribute type 5 has an invalid length.
[   98.932529][ T5993] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   98.932545][ T5993] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   98.932557][ T5993] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   98.933337][ T5993] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[   98.940479][ T8803] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1002'.
[   98.945385][ T5993] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   98.962282][ T5993] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   98.966394][ T5993] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   98.969962][ T5993] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   98.977196][ T5993] usb 9-1: config 168 descriptor has 1 excess byte, ignoring
[   98.983375][ T5993] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[   98.987142][ T5993] usb 9-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   98.991346][ T5993] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   98.995731][ T5993] usb 9-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[   99.001913][ T5993] usb 9-1: string descriptor 0 read error: -22
[   99.004502][ T5993] usb 9-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[   99.007680][ T5993] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.017043][ T5993] adutux 9-1:168.0: ADU100  now attached to /dev/usb/adutux0
[   99.305209][ T8821] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1007'.
[   99.385235][ T5825] usb 9-1: USB disconnect, device number 4
[   99.976672][   T13] Bluetooth: hci4: Frame reassembly failed (-84)
[   99.978861][ T8845] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  100.721315][ T8860] vlan2: entered allmulticast mode
[  100.724573][ T8860] 
: entered allmulticast mode
[  100.726657][ T8860] bond_slave_0: entered allmulticast mode
[  100.729439][ T8860] bond_slave_1: entered allmulticast mode
[  100.731872][ T8860] mac80211_hwsim hwsim7 wlan1: entered allmulticast mode
[  101.355022][   T64] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  101.358378][   T64] hid-generic 0000:0000:0000.0007: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  101.597515][ T8899] binder: 8898:8899 ioctl c018620c 80000700 returned -1
[  101.653862][ T5825] usb 6-1: new full-speed USB device number 6 using dummy_hcd
[  101.693543][ T5293] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  101.696780][ T5293] Bluetooth: hci1: Injecting HCI hardware error event
[  101.700463][ T5965] Bluetooth: hci1: hardware error 0x00
[  101.762423][ T8908] vivid-000: =================  START STATUS  =================
[  101.765644][ T8908] vivid-000: Generate PTS: true
[  101.767749][ T8908] vivid-000: Generate SCR: true
[  101.769405][ T8908] tpg source WxH: 640x360 (Y'CbCr)
[  101.771283][ T8908] tpg field: 1
[  101.772430][ T8908] tpg crop: (0,0)/640x360
[  101.774091][ T8908] tpg compose: (0,0)/640x360
[  101.775716][ T8908] tpg colorspace: 8
[  101.777001][ T8908] tpg transfer function: 0/0
[  101.778541][ T8908] tpg Y'CbCr encoding: 0/0
[  101.780189][ T8908] tpg quantization: 0/0
[  101.781588][ T8908] tpg RGB range: 0/2
[  101.783212][ T8908] vivid-000: ==================  END STATUS  ==================
[  101.828490][ T5825] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  101.832322][ T5825] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  101.838191][ T5825] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  101.841380][ T5825] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.003159][ T5293] Bluetooth: hci4: command 0x1003 tx timeout
[  102.005599][   T68] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  102.057158][ T5825] usb 6-1: usb_control_msg returned -32
[  102.059602][ T5825] usbtmc 6-1:16.0: can't read capabilities
[  102.411068][ T8942] usbtmc 6-1:16.0: usb_control_msg returned -32
[  102.416695][  T834] usb 6-1: USB disconnect, device number 6
[  102.738017][ T8958] x_tables: ip_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[  102.959411][ T8966] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1068'.
[  102.964076][ T8966] netlink: 'syz.4.1068': attribute type 10 has an invalid length.
[  102.973486][ T8966] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  103.741927][ T5293] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  103.745595][ T5293] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  103.748444][ T5293] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  103.752208][ T5293] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  103.756057][ T5293] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  103.763170][ T5965] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  103.862149][ T9002] chnl_net:caif_netlink_parms(): no params data found
[  103.892112][   T40] audit: type=1326 audit(2000000019.419:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9010 comm="syz.1.1089" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x0
[  103.944696][ T9002] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.947174][ T9002] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.951426][ T9002] bridge_slave_0: entered allmulticast mode
[  103.955599][ T9002] bridge_slave_0: entered promiscuous mode
[  103.960035][ T9002] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.963178][ T9002] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.965644][ T9002] bridge_slave_1: entered allmulticast mode
[  103.968309][ T9002] bridge_slave_1: entered promiscuous mode
[  104.009289][ T9002] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  104.016195][ T9002] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.078962][ T9002] team0: Port device team_slave_0 added
[  104.085662][ T9002] team0: Port device team_slave_1 added
[  104.130539][ T9002] batman_adv: batadv0: Adding interface: batadv_slave_0
[  104.137281][ T9002] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.147037][ T9002] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  104.151242][ T9002] batman_adv: batadv0: Adding interface: batadv_slave_1
[  104.154759][ T9002] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  104.164048][ T9002] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  104.216029][ T9021] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1092'.
[  104.222660][ T9002] hsr_slave_0: entered promiscuous mode
[  104.225032][ T9002] hsr_slave_1: entered promiscuous mode
[  104.227169][ T9002] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  104.229643][ T9002] Cannot create hsr debugfs directory
[  104.351026][ T9002] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  104.355979][ T9002] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  104.360004][ T9002] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  104.363980][ T9002] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  104.410733][ T9002] 8021q: adding VLAN 0 to HW filter on device bond0
[  104.421682][ T9002] 8021q: adding VLAN 0 to HW filter on device team0
[  104.427126][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.429504][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.437070][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.439413][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.546760][ T9002] 8021q: adding VLAN 0 to HW filter on device batadv0
[  104.658026][ T9002] veth0_vlan: entered promiscuous mode
[  104.662849][ T9002] veth1_vlan: entered promiscuous mode
[  104.678557][ T9002] veth0_macvtap: entered promiscuous mode
[  104.682696][ T9002] veth1_macvtap: entered promiscuous mode
[  104.692985][ T9002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.696554][ T9002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.699687][ T9002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  104.703755][ T9002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.707739][ T9002] batman_adv: batadv0: Interface activated: batadv_slave_0
[  104.713463][ T9002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.716780][ T9002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.719835][ T9002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.724078][ T9002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.727235][ T9002] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  104.731127][ T9002] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  104.736864][ T9002] batman_adv: batadv0: Interface activated: batadv_slave_1
[  104.741292][ T9002] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.744311][ T9002] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.748059][ T9002] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.751733][ T9002] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.810033][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.815305][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.840592][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.843366][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.034470][   T40] audit: type=1326 audit(2000000020.569:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9049 comm="syz.3.1099" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x0
[  105.309587][ T9067] netlink: 'syz.5.1107': attribute type 1 has an invalid length.
[  105.312174][ T9067] netlink: 168864 bytes leftover after parsing attributes in process `syz.5.1107'.
[  105.552763][ T9094] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1117'.
[  105.763648][   T68] Bluetooth: hci0: command tx timeout
[  106.088430][ T1137] team0: Port device team_slave_0 removed
[  106.603360][  T955] usb 11-1: new high-speed USB device number 2 using dummy_hcd
[  106.783177][  T955] usb 11-1: Using ep0 maxpacket: 8
[  106.788435][  T955] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  106.792473][  T955] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  106.797062][  T955] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  106.801488][  T955] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  106.807490][  T955] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  106.811450][  T955] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.983155][ T9131] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1133'.
[  107.023551][  T955] usb 11-1: GET_CAPABILITIES returned 0
[  107.026042][  T955] usbtmc 11-1:16.0: can't read capabilities
[  107.228489][ T7081] usb 11-1: USB disconnect, device number 2
[  107.361115][ T9147] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  107.364374][ T9147] overlayfs: failed to set xattr on upper
[  107.366876][ T9147] overlayfs: ...falling back to redirect_dir=nofollow.
[  107.369911][ T9147] overlayfs: ...falling back to uuid=null.
[  107.372524][ T9147] overlayfs: maximum fs stacking depth exceeded
[  107.426663][ T9152] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  107.853203][   T68] Bluetooth: hci0: command tx timeout
[  108.093131][ T7136] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  108.274740][ T7136] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  108.279799][ T7136] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  108.284030][ T7136] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  108.289379][ T7136] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  108.294797][ T7136] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.303532][ T7136] usb 6-1: config 0 descriptor??
[  108.713659][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.716987][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.719622][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.722137][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.725394][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.728888][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.732051][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.734791][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.737312][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.740946][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.745257][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.748364][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.751649][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.755027][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.758174][ T7136] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  108.762592][ T7136] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  108.769880][ T7136] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  108.975542][ T5993] usb 6-1: USB disconnect, device number 7
[  109.847796][ T9281] Bluetooth: MGMT ver 1.23
[  109.924205][   T68] Bluetooth: hci0: command tx timeout
[  110.061858][ T9296] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1190'.
[  110.074089][ T9296] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1190'.
[  110.113279][ T7136] usb 11-1: new high-speed USB device number 3 using dummy_hcd
[  110.274572][ T7136] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  110.279008][ T7136] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  110.282796][ T7136] usb 11-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  110.288173][ T7136] usb 11-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  110.291460][ T7136] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.295496][ T7136] usb 11-1: config 0 descriptor??
[  110.725492][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.733137][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.736899][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.752190][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.755760][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.758969][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.762150][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.765454][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.767971][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.770572][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.775775][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.778974][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.781653][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.785215][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.795431][ T7136] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  110.798194][ T7136] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[  110.821100][ T7136] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  110.977351][  T955] usb 11-1: USB disconnect, device number 3
[  112.013168][ T5965] Bluetooth: hci0: command tx timeout
[  113.190772][   T40] audit: type=1800 audit(2000000028.719:300): pid=9389 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1226" name="bus" dev="tmpfs" ino=2 res=0 errno=0
[  113.603186][   T68] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  113.604577][ T5965] Bluetooth: hci4: command 0x1003 tx timeout
[  113.921822][   T40] audit: type=1800 audit(2000000029.449:301): pid=9436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1246" name="bus" dev="tmpfs" ino=2 res=0 errno=0
[  114.262125][ T9454] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  114.880674][ T9487] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  116.769819][ T9545] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1290'.
[  117.723149][  T955] usb 6-1: new full-speed USB device number 8 using dummy_hcd
[  117.894888][  T955] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  117.899104][  T955] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  117.903992][  T955] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  117.907120][  T955] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.119217][  T955] usb 6-1: usb_control_msg returned -32
[  118.121206][  T955] usbtmc 6-1:16.0: can't read capabilities
[  118.678220][ T7136] usb 6-1: USB disconnect, device number 8
[  118.783972][ T9587] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  119.825928][   T68] block nbd1: Receive control failed (result -107)
[  119.913134][ T9613] nbd1: detected capacity change from 0 to 12
[  119.918626][ T6970] block nbd1: Dead connection, failed to find a fallback
[  119.921135][ T6970] block nbd1: shutting down sockets
[  119.922867][ T6970] blk_print_req_error: 19 callbacks suppressed
[  119.922874][ T6970] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.927997][ T6970] buffer_io_error: 19 callbacks suppressed
[  119.928003][ T6970] Buffer I/O error on dev nbd1, logical block 0, async page read
[  119.932383][ T9618] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies.
[  119.953265][ T9613] nbd1: detected capacity change from 12 to 6
[  119.957526][ T6970] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.960487][ T6970] Buffer I/O error on dev nbd1, logical block 0, async page read
[  119.975426][ T6970] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.978182][  T955] IPVS: starting estimator thread 0...
[  119.979320][ T6970] Buffer I/O error on dev nbd1, logical block 0, async page read
[  119.984679][ T6970] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.987606][ T6970] Buffer I/O error on dev nbd1, logical block 0, async page read
[  119.990810][ T6970] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  119.995982][ T6970] Buffer I/O error on dev nbd1, logical block 0, async page read
[  119.999032][ T6970] ldm_validate_partition_table(): Disk read failed.
[  120.001269][ T6970] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  120.004918][ T6970] Buffer I/O error on dev nbd1, logical block 0, async page read
[  120.008414][ T6970] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  120.012241][ T6970] Buffer I/O error on dev nbd1, logical block 0, async page read
[  120.017490][ T6970] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  120.021359][ T6970] Buffer I/O error on dev nbd1, logical block 0, async page read
[  120.025570][ T6970] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  120.029767][ T6970] Buffer I/O error on dev nbd1, logical block 0, async page read
[  120.033555][ T6970] Dev nbd1: unable to read RDB block 0
[  120.036629][ T6970] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  120.040491][ T6970] Buffer I/O error on dev nbd1, logical block 0, async page read
[  120.044518][ T6970]  nbd1: unable to read partition table
[  120.046431][ T6970] nbd1: partition table beyond EOD, truncated
[  120.049925][ T6970] ldm_validate_partition_table(): Disk read failed.
[  120.052289][ T6970] Dev nbd1: unable to read RDB block 0
[  120.054347][ T6970]  nbd1: unable to read partition table
[  120.056238][ T6970] nbd1: partition table beyond EOD, truncated
[  120.083446][ T9623] IPVS: using max 49 ests per chain, 117600 per kthread
[  120.958706][ T9651] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1333'.
[  121.127063][ T9659] 
: renamed from bond0 (while UP)
[  121.871869][ T9674] only policy match revision 0 supported
[  121.871888][ T9674] unable to load match
[  122.057083][   T68] block nbd6: Receive control failed (result -107)
[  122.177071][ T9688] nbd6: detected capacity change from 0 to 12
[  122.188968][   T40] audit: type=1804 audit(2000000037.719:302): pid=9692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1352" name="/newroot/322/file0/file0" dev="9p" ino=35913890 res=1 errno=0
[  122.215102][ T9681] nbd6: detected capacity change from 12 to 6
[  122.216839][ T6970] block nbd6: Dead connection, failed to find a fallback
[  122.226011][ T6970] block nbd6: shutting down sockets
[  122.229048][ T6970] ldm_validate_partition_table(): Disk read failed.
[  122.232494][ T6970] Dev nbd6: unable to read RDB block 0
[  122.235999][ T6970]  nbd6: unable to read partition table
[  122.238309][ T6970] nbd6: partition table beyond EOD, truncated
[  122.247799][ T6970] ldm_validate_partition_table(): Disk read failed.
[  122.250580][ T6970] Dev nbd6: unable to read RDB block 0
[  122.252690][ T6970]  nbd6: unable to read partition table
[  122.254859][ T6970] nbd6: partition table beyond EOD, truncated
[  122.267929][ T9698] netlink: 88 bytes leftover after parsing attributes in process `syz.5.1357'.
[  122.270982][ T9698] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1357'.
[  122.293893][ T9700] only policy match revision 0 supported
[  122.293912][ T9700] unable to load match
[  124.050349][ T9729] only policy match revision 0 supported
[  124.050361][ T9729] unable to load match
[  124.283123][   T34] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  124.435244][   T34] usb 10-1: Using ep0 maxpacket: 8
[  124.440271][   T34] usb 10-1: config 0 has no interfaces?
[  124.442787][   T34] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  124.446909][   T34] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.452778][   T34] usb 10-1: config 0 descriptor??
[  124.571517][ T9755] vlan2: entered allmulticast mode
[  124.574514][ T9755] bond0: entered allmulticast mode
[  124.576947][ T9755] bond_slave_0: entered allmulticast mode
[  124.579929][ T9755] bond_slave_1: entered allmulticast mode
[  124.676159][  T955] usb 10-1: USB disconnect, device number 3
[  125.616435][ T9789] vlan2: entered allmulticast mode
[  125.618174][ T9789] 
: entered allmulticast mode
[  125.619786][ T9789] bond_slave_0: entered allmulticast mode
[  125.621654][ T9789] bond_slave_1: entered allmulticast mode
[  125.784448][   T58] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  125.869809][ T9802] loop2: detected capacity change from 0 to 7
[  125.872417][ T9802] Dev loop2: unable to read RDB block 7
[  125.874571][ T9802]  loop2: unable to read partition table
[  125.876919][ T9802] loop2: partition table beyond EOD, truncated
[  125.879132][ T9802] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  125.940667][   T58] usb 8-1: Using ep0 maxpacket: 8
[  125.956539][   T58] usb 8-1: config 0 has no interfaces?
[  125.958735][   T58] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  125.961838][   T58] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.971353][   T58] usb 8-1: config 0 descriptor??
[  126.020105][ T9818] netlink: 'syz.1.1408': attribute type 5 has an invalid length.
[  126.023729][ T9818] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1408'.
[  126.128215][ T9826] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1412'.
[  126.189786][   T58] usb 8-1: USB disconnect, device number 9
[  127.113213][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[  127.117002][ T9858] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  127.215995][ T9862] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  127.663292][ T9891] overlayfs: missing 'lowerdir'
[  127.977327][ T9911] 9pnet_virtio: no channels available for device syz
[  128.253708][ T9932] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1458'.
[  128.270958][ T9932] geneve2: entered promiscuous mode
[  128.320243][ T9938] 9pnet_virtio: no channels available for device syz
[  128.354610][   T40] audit: type=1804 audit(2000000043.889:303): pid=9941 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1460" name="/newroot/382/file0/file0" dev="9p" ino=35913890 res=1 errno=0
[  128.381622][ T9943] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  128.569021][ T9951] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1467'.
[  128.743185][   T64] usb 11-1: new high-speed USB device number 4 using dummy_hcd
[  128.903112][   T64] usb 11-1: Using ep0 maxpacket: 8
[  128.906041][   T64] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[  128.908633][   T64] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  128.912324][   T64] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  128.916409][   T64] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  128.920058][   T64] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  128.925045][   T64] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[  128.928058][   T64] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  128.931737][   T64] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  128.935593][   T64] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  128.939248][   T64] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  128.944075][   T64] usb 11-1: config 168 descriptor has 1 excess byte, ignoring
[  128.946526][   T64] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 255, changing to 11
[  128.950457][   T64] usb 11-1: config 168 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  128.954346][   T64] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  128.957948][   T64] usb 11-1: config 168 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  128.963884][   T64] usb 11-1: string descriptor 0 read error: -22
[  128.966024][   T64] usb 11-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  128.969097][   T64] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.977743][   T64] adutux 11-1:168.0: ADU100  now attached to /dev/usb/adutux0
[  129.133299][ T5965] Bluetooth: hci4: command 0x1003 tx timeout
[  129.133700][   T68] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  129.342175][   T64] usb 11-1: USB disconnect, device number 4
[  130.494172][   T68] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  130.498508][   T68] Bluetooth: hci3: Injecting HCI hardware error event
[  130.502917][   T68] Bluetooth: hci3: hardware error 0x00
[  131.026146][  T834] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[  131.037789][  T834] hid-generic 0000:0000:0000.000A: hidraw1: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  131.303178][  T955] usb 8-1: new full-speed USB device number 10 using dummy_hcd
[  131.355859][T10004] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1488'.
[  131.469751][  T955] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  131.472951][  T955] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  131.477769][  T955] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  131.480687][  T955] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.693277][  T955] usb 8-1: usb_control_msg returned -32
[  131.695119][  T955] usbtmc 8-1:16.0: can't read capabilities
[  132.058699][T10033] usbtmc 8-1:16.0: usb_control_msg returned -32
[  132.063173][   T58] usb 8-1: USB disconnect, device number 10
[  132.326076][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  132.328710][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  132.563163][   T68] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  132.633844][T10044] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1498'.
[  132.634580][T10042] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(5)
[  132.639054][T10042] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  132.643830][T10042] vhci_hcd vhci_hcd.0: Device attached
[  132.650827][T10045] vhci_hcd: unknown pdu 1
[  132.655365][   T46] vhci_hcd: stop threads
[  132.657367][   T46] vhci_hcd: release socket
[  132.659942][   T46] vhci_hcd: disconnect device
[  132.680515][   T40] audit: type=1804 audit(2000000048.209:304): pid=10047 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1493" name="/newroot/334/file0/file0" dev="9p" ino=35913890 res=1 errno=0
[  133.333173][   T58] usb 10-1: new full-speed USB device number 4 using dummy_hcd
[  133.485226][   T58] usb 10-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  133.489562][   T58] usb 10-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  133.495603][   T58] usb 10-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  133.499552][   T58] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.713218][   T58] usb 10-1: usb_control_msg returned -32
[  133.715880][   T58] usbtmc 10-1:16.0: can't read capabilities
[  134.067798][T10072] usbtmc 10-1:16.0: usb_control_msg returned -32
[  134.070814][ T6011] usb 10-1: USB disconnect, device number 4
[  134.713246][   T40] audit: type=1326 audit(2000000050.249:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10084 comm="syz.5.1520" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf711e579 code=0x0
[  135.433156][  T955] usb 11-1: new full-speed USB device number 5 using dummy_hcd
[  135.585429][  T955] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  135.591731][  T955] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  135.598890][  T955] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  135.602861][  T955] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.816903][  T955] usb 11-1: usb_control_msg returned -32
[  135.818865][  T955] usbtmc 11-1:16.0: can't read capabilities
[  136.176079][T10127] usbtmc 11-1:16.0: usb_control_msg returned -32
[  136.180016][  T955] usb 11-1: USB disconnect, device number 5
[  136.772983][   T40] audit: type=1326 audit(2000000052.299:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10134 comm="syz.6.1532" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x0
[  138.031703][T10161] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  138.035149][T10161] overlayfs: failed to set xattr on upper
[  138.037041][T10161] overlayfs: ...falling back to redirect_dir=nofollow.
[  138.039341][T10161] overlayfs: ...falling back to index=off.
[  138.041750][T10161] overlayfs: ...falling back to uuid=null.
[  138.073684][T10165] syzkaller1: entered promiscuous mode
[  138.076439][T10165] syzkaller1: entered allmulticast mode
[  138.343775][T10190] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  138.346773][T10190] overlayfs: failed to set xattr on upper
[  138.349222][T10190] overlayfs: ...falling back to redirect_dir=nofollow.
[  138.351695][T10190] overlayfs: ...falling back to index=off.
[  138.354384][T10190] overlayfs: ...falling back to uuid=null.
[  138.473083][ T6011] usb 10-1: new full-speed USB device number 5 using dummy_hcd
[  138.634841][ T6011] usb 10-1: config 0 has no interfaces?
[  138.637805][ T6011] usb 10-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  138.641212][ T6011] usb 10-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  138.644007][ T6011] usb 10-1: Product: syz
[  138.645414][ T6011] usb 10-1: Manufacturer: syz
[  138.648608][ T6011] usb 10-1: config 0 descriptor??
[  138.855995][ T6011] usb 10-1: USB disconnect, device number 5
[  139.153823][T10197] syzkaller1: entered promiscuous mode
[  139.155957][T10197] syzkaller1: entered allmulticast mode
[  139.992726][T10233] syzkaller1: entered promiscuous mode
[  139.994882][T10233] syzkaller1: entered allmulticast mode
[  140.393124][ T5992] usb 11-1: new full-speed USB device number 6 using dummy_hcd
[  140.479360][   T40] audit: type=1326 audit(2000000056.009:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.1.1592" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  140.486421][   T40] audit: type=1326 audit(2000000056.009:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.1.1592" exe="/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf70ce579 code=0x7fc00000
[  140.493605][   T40] audit: type=1326 audit(2000000056.009:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10257 comm="syz.1.1592" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ce579 code=0x7fc00000
[  140.565198][ T5992] usb 11-1: config 0 has no interfaces?
[  140.568813][ T5992] usb 11-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  140.572525][ T5992] usb 11-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  140.580080][ T5992] usb 11-1: Product: syz
[  140.582011][ T5992] usb 11-1: Manufacturer: syz
[  140.585695][ T5992] usb 11-1: config 0 descriptor??
[  140.795985][ T5991] usb 11-1: USB disconnect, device number 6
[  141.355878][T10270] loop2: detected capacity change from 0 to 7
[  141.360013][T10270] Dev loop2: unable to read RDB block 7
[  141.361973][T10270]  loop2: unable to read partition table
[  141.365706][T10270] loop2: partition table beyond EOD, truncated
[  141.366734][T10272] syzkaller1: entered promiscuous mode
[  141.369664][T10272] syzkaller1: entered allmulticast mode
[  141.370785][T10270] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  141.420777][T10279] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  142.123692][   T40] audit: type=1326 audit(2000000057.659:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10303 comm="syz.6.1596" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7fc00000
[  142.131397][   T40] audit: type=1326 audit(2000000057.659:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10303 comm="syz.6.1596" exe="/syz-executor" sig=0 arch=40000003 syscall=329 compat=1 ip=0xf708e579 code=0x7fc00000
[  142.139060][   T40] audit: type=1326 audit(2000000057.659:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10303 comm="syz.6.1596" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7fc00000
[  142.146158][   T40] audit: type=1326 audit(2000000057.659:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10303 comm="syz.6.1596" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7fc00000
[  142.153637][   T40] audit: type=1326 audit(2000000057.659:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10303 comm="syz.6.1596" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7fc00000
[  142.160744][   T40] audit: type=1326 audit(2000000057.659:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10303 comm="syz.6.1596" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7fc00000
[  142.167735][   T40] audit: type=1326 audit(2000000057.659:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10303 comm="syz.6.1596" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7fc00000
[  142.240833][T10317] loop2: detected capacity change from 0 to 7
[  142.244317][T10319] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  142.245682][T10317] Dev loop2: unable to read RDB block 7
[  142.249001][T10317]  loop2: unable to read partition table
[  142.250963][T10317] loop2: partition table beyond EOD, truncated
[  142.253072][T10317] loop_reread_partitions: partition scan of loop2 (þ被xü—ŸÑà– ) failed (rc=-5)
[  142.586758][T10345] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1614'.
[  142.642764][T10348] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.645867][T10348] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.705424][T10361] input: syz0 as /devices/virtual/input/input8
[  142.711091][T10348] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  142.762148][T10348] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  142.765314][T10348] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  142.768199][T10348] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  142.771128][T10348] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  142.969629][T10383] input: syz0 as /devices/virtual/input/input9
[  142.986133][T10385] input: syz0 as /devices/virtual/input/input10
[  143.353878][T10390] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.356606][T10390] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.406860][T10390] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  143.414220][T10390] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  143.459903][T10390] netdevsim netdevsim6 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  143.465002][T10390] netdevsim netdevsim6 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  143.468212][T10390] netdevsim netdevsim6 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  143.471180][T10390] netdevsim netdevsim6 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  143.895626][T10424] input: syz0 as /devices/virtual/input/input11
[  143.909178][T10408] ptrace attach of ""[10409] was attempted by "/syz-executor exec"[10408]
[  144.087647][T10434] 9pnet: p9_errstr2errno: server reported unknown error lèGù,Ó-‡¬k¢š¾šÆQïF‚5œÍê 
[  144.557139][T10449] ptrace attach of ""[10450] was attempted by "/syz-executor exec"[10449]
[  144.688383][T10463] 9pnet: p9_errstr2errno: server reported unknown error lèGù,Ó-‡¬k¢š¾šÆQïF‚5œÍê 
[  144.925008][T10470] ref_ctr_offset mismatch. inode: 0x3eb offset: 0x0 ref_ctr_offset(old): 0x100000000 ref_ctr_offset(new): 0x2
[  145.041080][T10486] input: syz0 as /devices/virtual/input/input12
[  145.393212][T10509] 9pnet: p9_errstr2errno: server reported unknown error í<jqzÂPL¿�òóØáß<Òp—µ ×#‡ý»vëgÚB·B§Ìã[RêðÄ™–ì‰ÚeÖ
[  146.022933][ T1140] team0: Port device team_slave_0 removed
[  146.185901][T10547] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1692'.
[  146.305152][T10550] input: syz0 as /devices/virtual/input/input13
[  146.864858][   T64] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[  147.014570][   T64] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  147.018204][   T64] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  147.021428][   T64] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  147.026144][   T64] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  147.029143][   T64] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  147.037490][   T64] usb 6-1: config 0 descriptor??
[  147.454203][   T64] plantronics 0003:047F:FFFF.000B: No inputs registered, leaving
[  147.478674][   T64] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  147.696058][T10584] syz_tun: entered allmulticast mode
[  147.699656][T10583] syz_tun: left allmulticast mode
[  147.964024][T10597] Invalid ELF header magic: != ELF
[  148.893133][   T64] usb 6-1: reset high-speed USB device number 9 using dummy_hcd
[  149.033315][   T64] usb 6-1: device descriptor read/64, error -32
[  149.293176][   T64] usb 6-1: reset high-speed USB device number 9 using dummy_hcd
[  149.408554][T10619] syz_tun: entered allmulticast mode
[  149.414036][T10618] syz_tun: left allmulticast mode
[  149.423256][   T64] usb 6-1: device descriptor read/64, error -32
[  149.663128][   T64] usb 6-1: reset high-speed USB device number 9 using dummy_hcd
[  149.683302][   T64] usb 6-1: device descriptor read/8, error -32
[  150.053135][  T955] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  150.145580][T10652] syz_tun: entered allmulticast mode
[  150.149027][T10651] syz_tun: left allmulticast mode
[  150.204694][  T955] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  150.208283][  T955] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  150.211518][  T955] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  150.215964][  T955] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  150.218951][  T955] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.226160][  T955] usb 10-1: config 0 descriptor??
[  150.397809][ T5965] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  150.401621][ T5965] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  150.408136][ T5965] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  150.411553][ T5965] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  150.416342][ T5965] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  150.534069][T10658] chnl_net:caif_netlink_parms(): no params data found
[  150.565494][ T5991] usb 6-1: USB disconnect, device number 9
[  150.637705][T10658] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.638863][  T955] plantronics 0003:047F:FFFF.000C: No inputs registered, leaving
[  150.640060][T10658] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.640151][T10658] bridge_slave_0: entered allmulticast mode
[  150.647219][  T955] plantronics 0003:047F:FFFF.000C: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  150.648242][T10658] bridge_slave_0: entered promiscuous mode
[  150.663249][T10658] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.665707][T10658] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.668162][T10658] bridge_slave_1: entered allmulticast mode
[  150.672740][T10658] bridge_slave_1: entered promiscuous mode
[  150.730639][   T46] bridge_slave_1: left allmulticast mode
[  150.733135][   T46] bridge_slave_1: left promiscuous mode
[  150.735729][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.741238][   T46] bridge_slave_0: left allmulticast mode
[  150.743757][   T46] bridge_slave_0: left promiscuous mode
[  150.746422][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.997203][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  151.000342][   T46] bond_slave_0: left allmulticast mode
[  151.003212][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  151.007755][   T46] bond_slave_1: left allmulticast mode
[  151.009762][   T46] bond0 (unregistering): Released all slaves
[  151.017609][T10658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  151.022417][T10658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  151.054951][T10658] team0: Port device team_slave_0 added
[  151.058431][T10658] team0: Port device team_slave_1 added
[  151.087848][T10658] batman_adv: batadv0: Adding interface: batadv_slave_0
[  151.090710][T10658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.099468][T10658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  151.104538][T10658] batman_adv: batadv0: Adding interface: batadv_slave_1
[  151.106928][T10658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.115832][T10658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  151.247239][T10658] hsr_slave_0: entered promiscuous mode
[  151.249603][T10658] hsr_slave_1: entered promiscuous mode
[  151.251754][T10658] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  151.255060][T10658] Cannot create hsr debugfs directory
[  151.272660][ T5965] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  151.277322][ T5965] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  151.283282][ T5965] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  151.287646][ T5965] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  151.300360][ T5965] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  151.457001][   T46] hsr_slave_0: left promiscuous mode
[  151.461070][   T46] hsr_slave_1: left promiscuous mode
[  151.463619][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.493507][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  152.008263][   T46] team0 (unregistering): Port device team_slave_1 removed
[  152.078850][   T46] team0 (unregistering): Port device team_slave_0 removed
[  152.103211][   T34] usb 10-1: reset high-speed USB device number 6 using dummy_hcd
[  152.233211][   T34] usb 10-1: device descriptor read/64, error -32
[  152.473305][   T34] usb 10-1: reset high-speed USB device number 6 using dummy_hcd
[  152.483189][ T5965] Bluetooth: hci0: command tx timeout
[  152.623214][   T34] usb 10-1: device descriptor read/64, error -32
[  152.680491][T10658] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  152.686900][T10658] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  152.690940][T10658] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  152.703466][T10658] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  152.720340][T10678] chnl_net:caif_netlink_parms(): no params data found
[  152.876025][   T34] usb 10-1: reset high-speed USB device number 6 using dummy_hcd
[  152.876739][T10678] bridge0: port 1(bridge_slave_0) entered blocking state
[  152.881330][T10678] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.883831][T10678] bridge_slave_0: entered allmulticast mode
[  152.887592][T10678] bridge_slave_0: entered promiscuous mode
[  152.896297][T10678] bridge0: port 2(bridge_slave_1) entered blocking state
[  152.899504][T10678] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.902922][T10678] bridge_slave_1: entered allmulticast mode
[  152.903560][   T34] usb 10-1: device descriptor read/8, error -32
[  152.910203][T10678] bridge_slave_1: entered promiscuous mode
[  152.946212][T10678] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  152.951777][T10678] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  152.958880][   T46] IPVS: stop unused estimator thread 0...
[  153.019951][T10678] team0: Port device team_slave_0 added
[  153.025802][T10678] team0: Port device team_slave_1 added
[  153.085548][T10678] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.087860][T10678] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.096353][T10678] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.101246][T10678] batman_adv: batadv0: Adding interface: batadv_slave_1
[  153.103949][T10678] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.112149][T10678] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  153.162887][T10678] hsr_slave_0: entered promiscuous mode
[  153.165680][T10678] hsr_slave_1: entered promiscuous mode
[  153.167817][T10678] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  153.170275][T10678] Cannot create hsr debugfs directory
[  153.224729][T10658] 8021q: adding VLAN 0 to HW filter on device bond0
[  153.300372][T10658] 8021q: adding VLAN 0 to HW filter on device team0
[  153.325552][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.328645][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  153.333877][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.336947][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  153.374113][ T5965] Bluetooth: hci2: command tx timeout
[  153.459567][T10658] 8021q: adding VLAN 0 to HW filter on device batadv0
[  153.585786][T10658] veth0_vlan: entered promiscuous mode
[  153.592076][T10658] veth1_vlan: entered promiscuous mode
[  153.608634][T10658] veth0_macvtap: entered promiscuous mode
[  153.612532][T10658] veth1_macvtap: entered promiscuous mode
[  153.623813][T10658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.627590][T10658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.630966][T10658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  153.634577][T10658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.638561][T10658] batman_adv: batadv0: Interface activated: batadv_slave_0
[  153.652126][T10658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  153.656986][T10658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.660279][T10658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  153.663982][T10658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  153.668180][T10658] batman_adv: batadv0: Interface activated: batadv_slave_1
[  153.684911][T10658] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  153.687887][T10658] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  153.690837][T10658] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  153.694036][T10658] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  153.712502][T10678] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  153.733528][T10678] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  153.740232][T10678] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  153.748276][T10678] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  153.756131][   T94] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.758855][   T94] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.775464][   T94] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  153.778127][   T94] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  153.783870][  T834] usb 10-1: USB disconnect, device number 6
[  153.810972][T10678] 8021q: adding VLAN 0 to HW filter on device bond0
[  153.837030][T10678] 8021q: adding VLAN 0 to HW filter on device team0
[  153.852484][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.854964][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[  153.861625][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.864139][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[  153.931667][T10678] 8021q: adding VLAN 0 to HW filter on device batadv0
[  153.966583][T10678] veth0_vlan: entered promiscuous mode
[  153.976598][T10678] veth1_vlan: entered promiscuous mode
[  153.997870][T10678] veth0_macvtap: entered promiscuous mode
[  154.007493][T10678] veth1_macvtap: entered promiscuous mode
[  154.018513][T10678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.025010][T10678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.028192][T10678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.031543][T10678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.035922][T10678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  154.039292][T10678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.044408][T10678] batman_adv: batadv0: Interface activated: batadv_slave_0
[  154.049946][T10678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  154.054542][T10678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.057698][T10678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  154.061070][T10678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.065791][T10678] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  154.069093][T10678] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  154.074099][T10678] batman_adv: batadv0: Interface activated: batadv_slave_1
[  154.079487][T10678] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  154.082345][T10678] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  154.093376][T10678] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  154.096313][T10678] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  154.160421][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.174839][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.189826][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  154.195752][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  154.319938][T10765] ==================================================================
[  154.322616][T10765] BUG: KASAN: global-out-of-bounds in fib6_ifdown+0x7f5/0x8f0
[  154.325141][T10765] Read of size 8 at addr ffffffff9af80c10 by task syz.7.1748/10765
[  154.328953][T10765] 
[  154.330147][T10765] CPU: 3 UID: 0 PID: 10765 Comm: syz.7.1748 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  154.330160][T10765] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.330166][T10765] Call Trace:
[  154.330170][T10765]  <TASK>
[  154.330174][T10765]  dump_stack_lvl+0x116/0x1f0
[  154.330191][T10765]  print_report+0xc3/0x670
[  154.330202][T10765]  ? __virt_addr_valid+0x5e/0x590
[  154.330216][T10765]  ? __phys_addr+0xc6/0x150
[  154.330227][T10765]  ? fib6_ifdown+0x7f5/0x8f0
[  154.330237][T10765]  kasan_report+0xe0/0x110
[  154.330248][T10765]  ? fib6_ifdown+0x7f5/0x8f0
[  154.330259][T10765]  fib6_ifdown+0x7f5/0x8f0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  154.330269][T10765]  ? __pfx_fib6_ifdown+0x10/0x10
[  154.330279][T10765]  fib6_clean_node+0x2a4/0x5b0
[  154.330289][T10765]  ? __pfx_fib6_clean_node+0x10/0x10
[  154.330301][T10765]  fib6_walk_continue+0x44f/0x8d0
[  154.330317][T10765]  fib6_walk+0x182/0x370
[  154.330331][T10765]  ? __pfx_fib6_ifdown+0x10/0x10
[  154.330340][T10765]  fib6_clean_tree+0xd4/0x110
[  154.330355][T10765]  ? __pfx_fib6_clean_tree+0x10/0x10
[  154.330369][T10765]  ? look_up_lock_class+0x59/0x150
[  154.330382][T10765]  ? __pfx_fib6_clean_node+0x10/0x10
[  154.330392][T10765]  ? __pfx_fib6_ifdown+0x10/0x10
[  154.330403][T10765]  ? __pfx_fib6_ifdown+0x10/0x10
[  154.330429][T10765]  __fib6_clean_all+0x107/0x2d0
[  154.330440][T10765]  rt6_disable_ip+0x2ec/0x990
[  154.330453][T10765]  ? __mutex_trylock_common+0xe9/0x250
[  154.330467][T10765]  ? __pfx___mutex_trylock_common+0x10/0x10
[  154.330480][T10765]  ? __pfx_rt6_disable_ip+0x10/0x10
[  154.330494][T10765]  ? rcu_is_watching+0x12/0xc0
[  154.330504][T10765]  addrconf_ifdown.isra.0+0x11d/0x1a90
[  154.330515][T10765]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  154.330529][T10765]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  154.330540][T10765]  ? tls_dev_event+0xfd/0x10b0
[  154.330551][T10765]  addrconf_notify+0x220/0x19e0
[  154.330563][T10765]  ? ip6mr_device_event+0x1bc/0x230
[  154.330577][T10765]  notifier_call_chain+0xb9/0x410
[  154.330588][T10765]  ? __pfx_addrconf_notify+0x10/0x10
[  154.330601][T10765]  call_netdevice_notifiers_info+0xbe/0x140
[  154.330616][T10765]  unregister_netdevice_many_notify+0xf9a/0x26f0
[  154.330631][T10765]  ? __lock_acquire+0xaa4/0x1ba0
[  154.330647][T10765]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  154.330660][T10765]  ? skb_queue_purge_reason+0x2c8/0x420
[  154.330674][T10765]  ? skb_queue_purge_reason+0x2c8/0x420
[  154.330687][T10765]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[  154.330699][T10765]  unregister_netdevice_queue+0x305/0x3f0
[  154.330711][T10765]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  154.330725][T10765]  __tun_detach+0x1249/0x1540
[  154.330742][T10765]  ? __pfx_tun_chr_close+0x10/0x10
[  154.330755][T10765]  tun_chr_close+0xc2/0x230
[  154.330769][T10765]  __fput+0x3ff/0xb70
[  154.330782][T10765]  task_work_run+0x14d/0x240
[  154.330796][T10765]  ? __pfx_task_work_run+0x10/0x10
[  154.330810][T10765]  ? __pfx___do_sys_close_range+0x10/0x10
[  154.330821][T10765]  syscall_exit_to_user_mode+0x27b/0x2a0
[  154.330834][T10765]  __do_fast_syscall_32+0x80/0x120
[  154.330849][T10765]  do_fast_syscall_32+0x32/0x80
[  154.330863][T10765]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  154.330875][T10765] RIP: 0023:0xf7fb1579
[  154.330883][T10765] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  154.330893][T10765] RSP: 002b:00000000ffb16f2c EFLAGS: 00000202 ORIG_RAX: 00000000000001b4
[  154.330902][T10765] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 000000000000001e
[  154.330908][T10765] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  154.330913][T10765] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  154.330919][T10765] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  154.330925][T10765] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  154.330933][T10765]  </TASK>
[  154.330937][T10765] 
[  154.456776][T10765] The buggy address belongs to the variable:
[  154.458724][T10765]  __key.0+0x30/0x40
[  154.460016][T10765] 
[  154.460811][T10765] The buggy address belongs to the physical page:
[  154.462879][T10765] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1af80
[  154.465697][T10765] flags: 0xfff00000002000(reserved|node=0|zone=1|lastcpupid=0x7ff)
[  154.468223][T10765] raw: 00fff00000002000 ffffea00006be008 ffffea00006be008 0000000000000000
[  154.470974][T10765] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[  154.473762][T10765] page dumped because: kasan: bad access detected
[  154.475834][T10765] page_owner info is not present (never set?)
[  154.477786][T10765] 
[  154.478582][T10765] Memory state around the buggy address:
[  154.480385][T10765]  ffffffff9af80b00: f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 00 f9 f9 f9
[  154.482964][T10765]  ffffffff9af80b80: f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 00 00 f9 f9
[  154.485606][T10765] >ffffffff9af80c00: f9 f9 f9 f9 00 f9 f9 f9 f9 f9 f9 f9 00 00 00 00
[  154.488171][T10765]                          ^
[  154.489670][T10765]  ffffffff9af80c80: 00 00 00 00 00 00 00 00 00 00 00 f9 f9 f9 f9 f9
[  154.492272][T10765]  ffffffff9af80d00: 00 00 f9 f9 f9 f9 f9 f9 00 00 f9 f9 f9 f9 f9 f9
[  154.494873][T10765] ==================================================================
[  154.497563][T10765] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  154.499894][T10765] CPU: 3 UID: 0 PID: 10765 Comm: syz.7.1748 Not tainted 6.15.0-rc5-syzkaller-00022-g01f95500a162 #0 PREEMPT(full) 
[  154.503722][T10765] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  154.507182][T10765] Call Trace:
[  154.508283][T10765]  <TASK>
[  154.509283][T10765]  dump_stack_lvl+0x3d/0x1f0
[  154.510814][T10765]  panic+0x71c/0x800
[  154.512118][T10765]  ? __pfx_panic+0x10/0x10
[  154.513772][T10765]  ? mark_held_locks+0x49/0x80
[  154.515334][T10765]  ? fib6_ifdown+0x7f5/0x8f0
[  154.516854][T10765]  ? check_panic_on_warn+0x1f/0xb0
[  154.518529][T10765]  ? fib6_ifdown+0x7f5/0x8f0
[  154.520044][T10765]  check_panic_on_warn+0xab/0xb0
[  154.521691][T10765]  end_report+0x107/0x170
[  154.523135][T10765]  kasan_report+0xee/0x110
[  154.524604][T10765]  ? fib6_ifdown+0x7f5/0x8f0
[  154.526112][T10765]  fib6_ifdown+0x7f5/0x8f0
[  154.527517][T10765]  ? __pfx_fib6_ifdown+0x10/0x10
[  154.529139][T10765]  fib6_clean_node+0x2a4/0x5b0
[  154.530728][T10765]  ? __pfx_fib6_clean_node+0x10/0x10
[  154.532461][T10765]  fib6_walk_continue+0x44f/0x8d0
[  154.534133][T10765]  fib6_walk+0x182/0x370
[  154.535537][T10765]  ? __pfx_fib6_ifdown+0x10/0x10
[  154.537121][T10765]  fib6_clean_tree+0xd4/0x110
[  154.538682][T10765]  ? __pfx_fib6_clean_tree+0x10/0x10
[  154.540401][T10765]  ? look_up_lock_class+0x59/0x150
[  154.542260][T10765]  ? __pfx_fib6_clean_node+0x10/0x10
[  154.543984][T10765]  ? __pfx_fib6_ifdown+0x10/0x10
[  154.545921][T10765]  ? __pfx_fib6_ifdown+0x10/0x10
[  154.547609][T10765]  __fib6_clean_all+0x107/0x2d0
[  154.549324][T10765]  rt6_disable_ip+0x2ec/0x990
[  154.550940][T10765]  ? __mutex_trylock_common+0xe9/0x250
[  154.552798][T10765]  ? __pfx___mutex_trylock_common+0x10/0x10
[  154.554976][T10765]  ? __pfx_rt6_disable_ip+0x10/0x10
[  154.556916][T10765]  ? rcu_is_watching+0x12/0xc0
[  154.558718][T10765]  addrconf_ifdown.isra.0+0x11d/0x1a90
[  154.560559][T10765]  ? __mutex_unlock_slowpath+0x161/0x6a0
[  154.562505][T10765]  ? __pfx_addrconf_ifdown.isra.0+0x10/0x10
[  154.564466][T10765]  ? tls_dev_event+0xfd/0x10b0
[  154.566058][T10765]  addrconf_notify+0x220/0x19e0
[  154.567690][T10765]  ? ip6mr_device_event+0x1bc/0x230
[  154.569467][T10765]  notifier_call_chain+0xb9/0x410
[  154.571117][T10765]  ? __pfx_addrconf_notify+0x10/0x10
[  154.572853][T10765]  call_netdevice_notifiers_info+0xbe/0x140
[  154.574836][T10765]  unregister_netdevice_many_notify+0xf9a/0x26f0
[  154.576929][T10765]  ? __lock_acquire+0xaa4/0x1ba0
[  154.578637][T10765]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  154.580915][T10765]  ? skb_queue_purge_reason+0x2c8/0x420
[  154.582791][T10765]  ? skb_queue_purge_reason+0x2c8/0x420
[  154.584728][T10765]  ? __pfx_skb_queue_purge_reason+0x10/0x10
[  154.586747][T10765]  unregister_netdevice_queue+0x305/0x3f0
[  154.588653][T10765]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  154.590758][T10765]  __tun_detach+0x1249/0x1540
[  154.592390][T10765]  ? __pfx_tun_chr_close+0x10/0x10
[  154.594151][T10765]  tun_chr_close+0xc2/0x230
[  154.595712][T10765]  __fput+0x3ff/0xb70
[  154.597080][T10765]  task_work_run+0x14d/0x240
[  154.598693][T10765]  ? __pfx_task_work_run+0x10/0x10
[  154.600449][T10765]  ? __pfx___do_sys_close_range+0x10/0x10
[  154.602358][T10765]  syscall_exit_to_user_mode+0x27b/0x2a0
[  154.604319][T10765]  __do_fast_syscall_32+0x80/0x120
[  154.606079][T10765]  do_fast_syscall_32+0x32/0x80
[  154.607763][T10765]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  154.609890][T10765] RIP: 0023:0xf7fb1579
[  154.611298][T10765] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  154.617853][T10765] RSP: 002b:00000000ffb16f2c EFLAGS: 00000202 ORIG_RAX: 00000000000001b4
[  154.620706][T10765] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 000000000000001e
[  154.623374][T10765] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  154.626122][T10765] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  154.628842][T10765] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[  154.631557][T10765] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  154.634250][T10765]  </TASK>
[  154.636057][T10765] Kernel Offset: disabled
[  154.637565][T10765] Rebooting in 86400 seconds..

VM DIAGNOSIS:
15:15:45  Registers:
info registers vcpu 0

CPU#0
RAX=00000000001dd7d1 RBX=0000000000000000 RCX=ffffffff8b6953e9 RDX=0000000000000000
RSI=ffffffff8dbdb691 RDI=ffffffff8bf46ca0 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e10
R8 =0000000000000001 R9 =ffffed10056465bd R10=ffff88802b232deb R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90852310 R15=0000000000000000
RIP=ffffffff8b693c7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977ec000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fe4af3c1690 CR3=0000000021eb9000 CR4=00352ef0
DR0=0000000000000001 DR1=0000000000020001 DR2=0000000000000006 DR3=0000000000000001 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=0000000000000001 RCX=ffffffff91a89e80 RDX=1ffffffff23513d0
RSI=0000000000000000 RDI=ffffffff90f5dfe4 RBP=ffffc9000378f450 RSP=ffffc9000378f398
R8 =ffffffff91a89eb6 R9 =0000000000000000 R10=0000000000000000 R11=0000000000083d72
R12=ffffc9000378f458 R13=ffffc9000378f408 R14=ffffc9000378f43d R15=ffffffff91a89e85
RIP=ffffffff81699e28 RFL=00000a03 [-O----C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007feeed397740 ffffffff 00c00000
GS =0000 ffff8880978ec000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000564712c54a18 CR3=00000000482e4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=000000000000c000 Opmask01=00000000ffc0c200 Opmask02=000000000000000f Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 da62b80e0181b1b6 f20d789c338bd15f
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007ffc6e732d90 0000003000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000080fe
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6e6970726100656c 69666f7270000920
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000c0fe
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1600000000000000 00000000000002ff
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1600000000000000 00000000000002ff
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 696e69666e692065 6d69746c70203a73 25007974696e6966 6e6920656d69746c
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4c4b4c434b4c0540 484c514955051f56 00005c514c4b4c43 4b4c0540484c5149
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000001100000021 000000000500010e 0000000000747369 6c5f747365757165
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000065676173 73656d5f70636864
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055c7c7d50379 000055c7c7d503a0 0000000065676173 76656c517063682f
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 725f5ddfdff7a7fd 72615ff7fffdf3ff 656734b4f5f77f7f 7e7f7d7f757779ef
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 0000726565666965
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 0000000000000031 00006d5f65636864
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbfbfbfbfbfbfbf bfbf2b313423342c
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 262821df2e2e33df 3228df3232202b22 df312e232d2435bf 2324353124322431
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4141414141414141 4141414141414141 4141414141414141 4141414141414141
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a 1a1a1a1a1a1a1a1a
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2020202020202020 2020202020202020 2020202020202020 2020202020202020
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=ffff88802b541460 RCX=ffffffff81ae9e69 RDX=ffff8880200aa440
RSI=0000000000000000 RDI=0000000000000005 RBP=0000000000000003 RSP=ffffc9000107f930
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=ffffed10056a828d R13=0000000000000001 R14=dffffc0000000000 R15=ffff88802b43b180
RIP=ffffffff81baacd0 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979ec000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f20196a0 CR3=000000000e180000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=dffffc0000000005 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9
RSI=ffffffff854c2770 RDI=ffffffff9addfbc0 RBP=ffffffff9addfb80 RSP=ffffc9000e23ef18
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3966666666666666
R12=0000000000000000 R13=ffffffff9addfbd0 R14=ffffffff9addfb80 R15=ffffffff9addfe40
RIP=ffffffff854c2797 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097aec000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c37e7b1 CR3=0000000053bae000 CR4=00352ef0
DR0=0000000000000001 DR1=0000000000020001 DR2=0000000000000006 DR3=0000000000000001 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000006000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000