last executing test programs:

4m13.64025181s ago: executing program 32 (id=432):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x1, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x2e}}, 0x7}, 0x1c)
ioctl$int_in(r0, 0x5452, &(0x7f0000000040)=0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0xfff}, 0x1c)
recvfrom(r0, 0x0, 0x0, 0x22, 0x0, 0x0)
shutdown(r0, 0x1)

4m5.817916712s ago: executing program 1 (id=544):
socket$inet_tcp(0x2, 0x1, 0x0)
socket(0x22, 0x2, 0x24)
r0 = syz_io_uring_setup(0x498, &(0x7f0000000200)={0x0, 0x7279, 0x0, 0x4, 0x125}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xffffffff, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

4m5.701440363s ago: executing program 1 (id=545):
r0 = epoll_create1(0x80000)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000001080)='/sys/power/wakeup_count', 0x0, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000000c0)={0xe000001a})
finit_module(r1, 0x0, 0x3)
read$char_usb(r1, &(0x7f0000000100)=""/174, 0xae)
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f0000000000))

4m5.53661231s ago: executing program 1 (id=546):
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
mknod$loop(&(0x7f0000000000)='./file0/file0\x00', 0x20, 0x0)

4m5.07861119s ago: executing program 1 (id=549):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

4m4.734392766s ago: executing program 1 (id=551):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB=' '], 0x40}}], 0x1, 0x40000)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000))
r1 = syz_create_resource$binfmt(&(0x7f0000000400)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
openat$binfmt(0xffffffffffffff9c, r1, 0x41, 0x1ff)
renameat2(0xffffffffffffff9c, &(0x7f0000000280)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)

4m4.681041535s ago: executing program 1 (id=552):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x20000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000280)={0x1, 0x0, [{0x3, 0x5, 0x0, 0x0, @adapter={0x5, 0x7ffffff7ffffffff, 0x8000000000000001, 0x80, 0x3}}]})

3m49.665386718s ago: executing program 33 (id=552):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x20000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, &(0x7f0000000280)={0x1, 0x0, [{0x3, 0x5, 0x0, 0x0, @adapter={0x5, 0x7ffffff7ffffffff, 0x8000000000000001, 0x80, 0x3}}]})

3m0.429558675s ago: executing program 3 (id=1469):
socket$nl_generic(0x10, 0x3, 0x10)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$VIDIOC_TRY_FMT(0xffffffffffffffff, 0xc0cc5640, &(0x7f0000000240)={0x5, @win={{0x8001, 0x2, 0x7, 0x1}, 0xc, 0x7, &(0x7f0000000100)={{0x9, 0x100, 0x374f, 0x8}}, 0x5, 0x0, 0x48}})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="0b00000000010000000100000900000001"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000000), &(0x7f00000002c0), 0x8, r0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x1b, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x3, r0}, 0x38)

3m0.364967518s ago: executing program 3 (id=1470):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)={0x2c, r2, 0x1, 0xfffbfffc, 0x200, {0x3}, [@TIPC_NLA_BEARER={0x18, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x11, 0x1, @l2={'eth', 0x3a, 'macvlan1\x00'}}]}]}, 0x2c}}, 0x4)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f00000004c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800}, 0xc, &(0x7f0000000000)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x24000801)
sendmsg$IPVS_CMD_GET_DAEMON(r1, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x40000)

3m0.30323539s ago: executing program 3 (id=1472):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000002c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x1}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}, @NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xb}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x64}, 0x1, 0x0, 0x0, 0x4044050}, 0x40)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000005c0)={0x14, 0xa, 0xa, 0x101}, 0x14}}, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r2, 0xffffffffffffffff, 0x0)

3m0.299504224s ago: executing program 3 (id=1473):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000340)='./file0\x00', &(0x7f00000001c0)='./file0/../file0/../file0/../file0\x00')

3m0.224256376s ago: executing program 3 (id=1474):
sendmsg$TEAM_CMD_NOOP(0xffffffffffffffff, 0x0, 0x4000004)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
timer_create(0x3, 0x0, &(0x7f0000000300))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
setrlimit(0xf, &(0x7f00000000c0)={0x0, 0x3})
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000c80)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x55}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

3m0.143259287s ago: executing program 3 (id=1476):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
read$alg(r1, &(0x7f0000001540)=""/4131, 0x1023)
sendmmsg$alg(r1, &(0x7f00000027c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10, 0x8000}], 0x1, 0x4000000)
sendmmsg$alg(r1, &(0x7f0000003100)=[{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f00000005c0)="2007d9bcebc20a20cee6ecd7104fefe1e5e96a3a7e54b3d41f918c664966ecd102a16a78859f106c7cdd3cb80cdf154c24d3a9246c55", 0x36}, {&(0x7f00000007c0)="b55c3af53c29d3dc2e3acd8be2ce7e4fd827aa15b934995717626534a21ee5294b67467c9d8c280b2e8ccbfb55f5f95d559d3ea13035b2628997e65cda1a68b26a2ae2d61ef0ee089d807ad3f0cb594e484535786d855939be71b7ec6b34d38f57d1fd6fd78a8476d19c10af0eb6e348a9500f6ed92aea5c750f6e6d0ae944c66d3a979c4216cd3d35176b02f30511bd2810403bc3bd9f119954043e08ebab3f094557d36134258838281381eeaf7800d70663cb7cd9008f3b85f33e5d35eb7ce38f99be9020807b8d39aa49d80bee93bdd8e0c8544e", 0xd6}, {&(0x7f0000000600)="9dfb149f52d21643330657f60662c26c7fe88ced4fcdb2ca2a50664d445434bfa668027f1ba14a9b541876dd98e96393ef58e26a5fe4141c", 0x38}, {&(0x7f0000003140)="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", 0x97d}], 0x4, 0x0, 0x0, 0x4000001}], 0x1, 0x4000005)

3m0.073594135s ago: executing program 34 (id=1476):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'xts(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000000)="adcd1a9a3fc36e961ed00fe41b0cd695", 0x20)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
read$alg(r1, &(0x7f0000001540)=""/4131, 0x1023)
sendmmsg$alg(r1, &(0x7f00000027c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=[@op={0x10, 0x117, 0x3, 0x1}], 0x10, 0x8000}], 0x1, 0x4000000)
sendmmsg$alg(r1, &(0x7f0000003100)=[{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f00000005c0)="2007d9bcebc20a20cee6ecd7104fefe1e5e96a3a7e54b3d41f918c664966ecd102a16a78859f106c7cdd3cb80cdf154c24d3a9246c55", 0x36}, {&(0x7f00000007c0)="b55c3af53c29d3dc2e3acd8be2ce7e4fd827aa15b934995717626534a21ee5294b67467c9d8c280b2e8ccbfb55f5f95d559d3ea13035b2628997e65cda1a68b26a2ae2d61ef0ee089d807ad3f0cb594e484535786d855939be71b7ec6b34d38f57d1fd6fd78a8476d19c10af0eb6e348a9500f6ed92aea5c750f6e6d0ae944c66d3a979c4216cd3d35176b02f30511bd2810403bc3bd9f119954043e08ebab3f094557d36134258838281381eeaf7800d70663cb7cd9008f3b85f33e5d35eb7ce38f99be9020807b8d39aa49d80bee93bdd8e0c8544e", 0xd6}, {&(0x7f0000000600)="9dfb149f52d21643330657f60662c26c7fe88ced4fcdb2ca2a50664d445434bfa668027f1ba14a9b541876dd98e96393ef58e26a5fe4141c", 0x38}, {&(0x7f0000003140)="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", 0x97d}], 0x4, 0x0, 0x0, 0x4000001}], 0x1, 0x4000005)

1m21.303495657s ago: executing program 6 (id=3042):
r0 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, 0x0, 0x18)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
dup(r0)
r1 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x510a, 0x400, 0x3, 0x288}, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)

1m21.083870282s ago: executing program 6 (id=3044):
r0 = socket$netlink(0x10, 0x3, 0x9)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000340)={0x20000001})
io_setup(0x2, &(0x7f0000000000)=<r2=>0x0)
sendfile(r0, 0xffffffffffffffff, &(0x7f0000000040)=0x4, 0x100)
syz_clone3(&(0x7f0000000300)={0x23800000, &(0x7f0000000040)=<r3=>0xffffffffffffffff, 0x0, 0x0, {0x27}, 0x0, 0x0, 0x0, 0x0}, 0x58)
io_submit(r2, 0x1, &(0x7f0000001300)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x6, r3, 0x0}])
sendmsg$AUDIT_TTY_SET(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x18, 0x3f9, 0x2, 0x8070bd2d, 0x25dfdbff, {0x1}}, 0x18}}, 0x40800)

1m20.874480445s ago: executing program 6 (id=3045):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd(0x40048c67)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000080)={0x3, 0x0, 0x4, r2, 0x8})
r3 = eventfd(0x1)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000180)={0x4, 0x2, 0x1, r3})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000240)={0x27800000000, 0x0, 0x1, r2, 0x1})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000040)={0x27800000000, 0x0, 0x1, r2, 0x5})

1m20.772009931s ago: executing program 6 (id=3046):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x9b301a, 0x0)
mount$bind(&(0x7f00000004c0)='./file0/file0\x00', &(0x7f0000000500)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f00000003c0)='./file0\x00', 0xa)

1m20.77166633s ago: executing program 6 (id=3047):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=@newqdisc={0x68, 0x24, 0xe0b, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{0x1ff, 0x6, 0xfffffffd, 0x0, 0xfffffffd, 0x32d}, [@TCA_NETEM_LOSS={0x1c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GI={0x18, 0x1, {0xfffff800, 0x8, 0x99f5, 0x2, 0x2}}]}]}}}]}, 0x68}}, 0x0)
sendto$packet(r0, &(0x7f0000000580)="44c394f305916c4516999da20800", 0x36, 0x0, &(0x7f0000000440)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14)

1m20.5848596s ago: executing program 6 (id=3048):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="000086dd03000a000000140000006c07010033d43afffe800000000000000000000000000010ff02000000000000000000000000000189"], 0x340a)

1m20.51005286s ago: executing program 35 (id=3048):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="000086dd03000a000000140000006c07010033d43afffe800000000000000000000000000010ff02000000000000000000000000000189"], 0x340a)

1m18.760840099s ago: executing program 5 (id=3063):
creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
socket$phonet_pipe(0x23, 0x5, 0x2)
r0 = syz_io_uring_setup(0x223, &(0x7f0000000480)={0x0, 0x57ee, 0x80, 0x2, 0x150}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2e, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_OPENAT2={0x1c, 0x41, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x12345})
io_uring_enter(r0, 0x47bc, 0xfffffffe, 0x42, 0x0, 0x5a)

1m18.66515429s ago: executing program 5 (id=3064):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$alg(0x26, 0x5, 0x0)
close(0x3)
bind$alg(r1, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-serpent-sse2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
r2 = accept4(r1, 0x0, 0x0, 0x0)
sendmsg$alg(r2, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000180)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x800}, 0x4000010)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfdc4, 0x3e8, 0x0, 0xfffffffffffffd25)

1m18.589524939s ago: executing program 5 (id=3065):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x0)
close(0x3)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
bind$inet6(r0, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r0, 0x1)

1m18.488262608s ago: executing program 5 (id=3068):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x9b301a, 0x0)
mount$bind(&(0x7f00000004c0)='./file0/file0\x00', &(0x7f0000000500)='./file0/../file0\x00', 0x0, 0x2125099, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f00000003c0)='./file0\x00', 0xa)

1m18.373923106s ago: executing program 5 (id=3069):
r0 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, 0x0, 0x18)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
dup(r0)
r1 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x510a, 0x400, 0x3, 0x288}, &(0x7f0000000180)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)

1m17.543142884s ago: executing program 5 (id=3071):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x45)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r1)
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x46014}, 0x2404c880)
recvmmsg(r1, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)

1m17.263216774s ago: executing program 36 (id=3071):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x45)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), r1)
sendmsg$NL80211_CMD_CONNECT(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)=ANY=[], 0x34}, 0x1, 0x0, 0x0, 0x46014}, 0x2404c880)
recvmmsg(r1, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)

36.363236832s ago: executing program 8 (id=3675):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0xffffffffffffffff, {0x5, 0x2000000000000005, 0xfffffffffffffffc, 0x0, 0x0, 0x10000000, {0x2, 0xd08, 0x3, 0x4, 0x0, 0xfffffffffffffffe, 0x47, 0x0, 0x126, 0x6000, 0x10000, r2, 0x0, 0x902, 0x1}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x400040, 0x80, 0x2, 0xfffffffb, 0x2, 0x0, 0x0, 0x0, 0x3}}, 0x50)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3)
ioctl$TIOCGPTPEER(r3, 0x928, 0x3)

36.209014039s ago: executing program 8 (id=3677):
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1000, 0x103)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x80800, 0x0)
r1 = signalfd(0xffffffffffffffff, &(0x7f0000000000)={[0x5]}, 0x8)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
mount$9p_fd(0x0, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x10, &(0x7f00000004c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
creat(&(0x7f00000002c0)='./file1\x00', 0x1)

35.334482193s ago: executing program 8 (id=3687):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="01000000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, &(0x7f0000000040)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@newlink={0x58, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x18, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1f, 0x1f}}, @IFLA_VLAN_ID={0x6, 0x1, 0x1}]}}}, @IFLA_LINK={0x8, 0x5, r4}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x58}, 0x1, 0x0, 0x0, 0x600}, 0x0)

35.186869488s ago: executing program 8 (id=3688):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000140)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x181097, 0x0)
umount2(&(0x7f00000003c0)='./file0\x00', 0xa)

35.150549575s ago: executing program 8 (id=3689):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x1a, 0xb}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0xea, 0x2, 0x0, 0x0, 0x9, 0x5}, {0x12, 0x2, 0x3, 0x3, 0x8001, 0x1400}, 0xa5, 0x5, 0xffffffd}}, @TCA_TBF_BURST={0x8, 0x6, 0x8054}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40000}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newqdisc={0x3c, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffe0, 0xa}, {0xf, 0x3}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_CE_THRESHOLD={0x8}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8855}, 0x4004040)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)

34.762675151s ago: executing program 8 (id=3690):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r1, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)=[{0xc, 0x109, 0x8}], 0xc}, 0x0, 0x4000001})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)

34.672209041s ago: executing program 37 (id=3690):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x3}, &(0x7f0000000340)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000300)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r1, 0x0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000b80)=[{0xc, 0x109, 0x8}], 0xc}, 0x0, 0x4000001})
io_uring_enter(r2, 0x3516, 0x0, 0x0, 0x0, 0xfffffdcf)

28.756675517s ago: executing program 4 (id=3759):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000001340)=@base={0xb, 0x8, 0x2, 0x9, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x5f, 0x0, 0x0, 0x21, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xa9)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000002800128009000100626f6e64"], 0x48}}, 0x0)
sendmmsg$inet(r2, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)

28.669083927s ago: executing program 4 (id=3760):
r0 = socket(0x10, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x9, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0xffff}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)=@newtfilter={0x3c, 0x2c, 0xd3f, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r4, {0xfff3, 0xfff2}, {}, {0x5, 0x8}}, [@filter_kind_options=@f_basic={{0xa}, {0xc, 0x2, [@TCA_BASIC_CLASSID={0x8, 0x1, {0x1, 0xffe0}}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8848}, 0x4000010)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

28.556497647s ago: executing program 4 (id=3761):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed, 0x0, 0x0, 0x0, 0x0, 0xc3100, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @cgroup_sock}, 0x94)
ioctl$KVM_SET_CPUID2(r4, 0x4048aecb, &(0x7f0000000080)=ANY=[])
close_range(r0, 0xffffffffffffffff, 0x0)

28.416811436s ago: executing program 4 (id=3763):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r0, &(0x7f00000062c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x80000}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000970700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000160000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000eeffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001900000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x20, 0x0, 0x400000000000, {0x0, 0x7}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0xb)
readv(r2, &(0x7f00000000c0)=[{&(0x7f0000000080)=""/5, 0x5}], 0x1)

28.230558598s ago: executing program 4 (id=3768):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x800000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0)

28.181490528s ago: executing program 4 (id=3769):
r0 = syz_io_uring_setup(0x24ff, &(0x7f0000000300)={0x0, 0xf36b, 0x10100, 0x0, 0x155}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xb, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001801000020207025000000000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x47, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1b, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, {0x7}})
io_uring_enter(r0, 0x2d3e, 0x2936, 0x0, 0x0, 0x0)

13.074512036s ago: executing program 38 (id=3769):
r0 = syz_io_uring_setup(0x24ff, &(0x7f0000000300)={0x0, 0xf36b, 0x10100, 0x0, 0x155}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xb, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180800000000000000000000000000001801000020207025000000000020"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x47, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_REMOVE_BUFFERS={0x1f, 0x1b, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, {0x7}})
io_uring_enter(r0, 0x2d3e, 0x2936, 0x0, 0x0, 0x0)

2.33423409s ago: executing program 9 (id=4086):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000080)=@framed, 0x0, 0x0, 0x0, 0x0, 0xc3100, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
r2 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, @cgroup_sock}, 0x94)
ioctl$KVM_SET_CPUID2(r4, 0x4048aecb, &(0x7f0000000080)=ANY=[])
close_range(r0, 0xffffffffffffffff, 0x0)

2.306951424s ago: executing program 0 (id=4088):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x758e, 0x100, 0x0, 0x34f}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x13, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000002c0)={0x1, &(0x7f0000000200)=[{0x32, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_LINK_TIMEOUT={0xf, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x8})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

2.20531726s ago: executing program 9 (id=4089):
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000700)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2])
creat(&(0x7f0000000300)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x88040, 0x0)

2.154396658s ago: executing program 9 (id=4091):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5000000010000100"/20, @ANYRES32=r4, @ANYBLOB="fd00000000000000300012800b00010065727370616e00002000028004001200"], 0x50}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x6b, 0xe)

2.070567334s ago: executing program 0 (id=4093):
r0 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x1, {0x42, 0x1, 0x4}}, 0x10)
bind$tipc(r1, &(0x7f0000000440)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x2, 0x3}}, 0x10)
bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x2, {0x42, 0x1, 0x3}}, 0x10)
bind$tipc(r0, 0x0, 0x0)

2.069929703s ago: executing program 0 (id=4095):
socket$alg(0x26, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0xe, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000340), 0xfffffffffffffe19}, 0x42)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83}, 0x1c)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="050000000000000061110c00000000008510000002000000850000000500000095000000000000009500a5050000000077d8f3b423cdac8d80000000000000002be16ad10a48b243ccc42606d25dfd73a015e0ca7fc2506a0f7535f7866907dc0200000000000000ae669e17fd6587d452d6453559c3421eed73d56615fe6c54c3b3ffe1b4ce25d7c983c044c03bf3a48dfe47ec9dd6c091c30b93bfae76d9ebacd3ed3e26e7a23129d6606fd28a69989d552af6bda9df2c3af36effff9af2551ce896165127cb3f011a7d06602e2fc40848228567ffb400000000003ed38ae89d24e1cebfba2f87925bfacba83109751fe6c05405d027edd68149ee99eef6a6992308a4fc0b7c70bc677d6dd4aed4af7500d7900a820b6347184e9a217b5614cd50cbe43a1ed2526814bc0000e9e086ce48e90defb6670c3df2624f56da648d28ad0a97aec7291c25447c106a99893e10db21901eb397b2f5fd71400fa7a050fbbef9e326ea27e513e96068fd1e8a43e89f9c85c822a961546ed5363c17ff1432d08806bc376e3e49ee52b59d13182e1f24ed200ada10eb1affb87ba55b2d72078e9f40b4ae7d01000000d11cd22c35d32940000088dde499000000fdffffff00000000000f000000ef0000000000000000000000000c52f4ebd2c893bb97a068bd10734a83584898eccb26f7b789cfc4cd995fa3e11a5c74c85404e2df3ad37b729ac83b0dcb4f48f3c3356b9997fc455a17690b6f7f9ccbe4b1701941b18aba6b16455a66c3b84b138efc20a546d3d5227e23b03f2a834391ade2ff3e93ee296c4082ee73e7c353312c9d75711ce1623e9c54bdff59d2a69dcb7d84c235b23a4480c2461b405cfd1a38992f295ad3adc94cd07c850d1ce6d0b2fea02c24e9280333152fb794e4ddea02017a6c139b50101caecaf2abc0847a1ff2f7fc3c2b99a96fc4275ad107274e2934a87a4ddcdb112754ca5bdec0ead14b6c0f19a43a2f05c7f0be31491eb8c9ff68236c8600040000000000000000000066e034c81c3cab64e4fc8dc55ce0ada18dcbf31c6e82893add3bee3e10fc873d1d922b0877cbcd95b839d3059d5140a1f742f6e75741e39e5cb6a193e06a1043375b0f61b5d4e17c81baa31b924d84f224baf1221c15fa12313ffbfa7c2730309f66705b71e6205e7cbf3643561eabb9a63fcd604d5cc27e1317ad94cf438d71873e540be16b6ca205081173bd03c4754fc4674812daab482fd390a1c903b5d28a1eb247b5837d7603b92495d5c569f6433c3fca5206cb0000003fdbbd3892c52c2e7612e05de32322e980a3d69931e2c9312dd517c96f2ee90362476ed853c4c9b7d4ebf13cbaa795860e92a3d7d004f2c491db38eb769f094d5d48b262cc35c40682138cf13a49aa9f27abec00002f01ba1251aaf2385416ca719300"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0x8000000000, 0x1}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x3, 0x0, 0x0, 0x7fffffff, 0xfffffffffffffffc}, 0x0, 0x0)

1.155294248s ago: executing program 0 (id=4099):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
syz_emit_ethernet(0xd0, &(0x7f00000004c0)={@link_local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00af00", 0x9a, 0x3a, 0xff, @remote, @local, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @empty, [{0x3, 0x10, "2553e1adb2111ada8a500cb7b9d777b11876e37d94067c6caedd576a3e2515e6431045223c6b417c293b43c6c7d12ae6590077c374a2da5f3fed004104294079574b01f8565760efa0c83221b15828e82051783eaac7ac67b44602bab09da943b6f99c777d29418ec4f37add413a9396c584aa940d642c5288c3b87a37c39e7a"}]}}}}}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=@newqdisc={0x54, 0x24, 0xe0b, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x24, 0x2, {{0x1ff, 0x6, 0xfffffffd, 0x0, 0xfffffffd, 0x32d}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}]}}}]}, 0x54}}, 0x0)
sendto$packet(r0, &(0x7f0000000580)="44c394f305916c4516999da20800", 0x36, 0x0, &(0x7f0000000440)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14)

1.155168372s ago: executing program 9 (id=4100):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x8, 0x4)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c)
listen(r1, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @random="0000101d00", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x23, 0x28, 0x64, 0x0, 0x7, 0x6, 0x0, @rand_addr=0x64010102, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x8, 0x87, 0x0, 0xe7}}}}}}, 0x0)

1.1549752s ago: executing program 2 (id=4101):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_CAP_X2APIC_API(r1, 0x4068aea3, &(0x7f0000002a80)={0x81, 0x0, 0x3})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000180)={0x0, 0x0, @ioapic={0x8000000, 0xfffffffa, 0x3, 0x6, 0x0, [{0x5, 0x2, 0x0, '\x00', 0x2}, {0x3, 0x7, 0x2, '\x00', 0x1}, {0xc9, 0x7, 0x4, '\x00', 0xd1}, {0x3, 0x3, 0x3, '\x00', 0x8}, {0x8, 0x9, 0xc, '\x00', 0x40}, {0x0, 0xfc, 0x5, '\x00', 0x9}, {0x6, 0x40, 0x41, '\x00', 0x8}, {0x6, 0x14, 0x7, '\x00', 0x80}, {0x7f, 0x40, 0x41, '\x00', 0x7}, {0x0, 0x5, 0x2, '\x00', 0x9}, {0x26, 0x18, 0x8, '\x00', 0x2}, {0x0, 0x1, 0xb, '\x00', 0x7f}, {0x3, 0x53, 0x2, '\x00', 0x3}, {0xff, 0x7, 0xa, '\x00', 0x13}, {0x8, 0x5, 0x3a, '\x00', 0x7}, {0xd5, 0xd1, 0xe6, '\x00', 0x1d}, {0xd3, 0x8, 0x6, '\x00', 0x8}, {0x6, 0x4, 0xe, '\x00', 0x9}, {0x4, 0x1, 0x8, '\x00', 0x1}, {0x4, 0x2, 0xe, '\x00', 0x4}, {0x7, 0x9, 0x8}, {0x40, 0x6, 0xa}, {0x5, 0x6}, {0x8, 0x2, 0xc0, '\x00', 0x8}]}})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8d})
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)=@x86={0x3})

1.154869692s ago: executing program 7 (id=4102):
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000580)=ANY=[@ANYBLOB='\\\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000001400000008000a00fc00000018000180140002006e657464657673696d300000000000000800050000fcffff08000700fc000000080011000700000008000e00800000000800", @ANYRES16=r0], 0x5c}, 0x1, 0x0, 0x0, 0x800}, 0x0)

1.10445536s ago: executing program 2 (id=4103):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0xfffffffe, 0x8}}]}}]}, 0x48}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0e000000040000000800000001"], 0x50)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@newtfilter={0x68, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xfff1, 0x4}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x38, 0x2, [@TCA_CGROUP_ACT={0x34}]}}]}, 0x68}}, 0x0)

1.103568297s ago: executing program 9 (id=4104):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x2)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

1.10324012s ago: executing program 7 (id=4105):
open(&(0x7f00000001c0)='./file0\x00', 0x80ff, 0x88)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0xe0000000, 0x28014010, 0x2, 0x2, 0x0, 0xd, 0x0, 0x0, 0x20, 0x9}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
dup3(r0, r2, 0x6700000000000000)
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f0000001500)={&(0x7f0000000200)={0x50, 0xffffffffffffffda, 0x6, {0x7, 0x2b, 0x5f, 0x400202, 0x0, 0xfe, 0x8000, 0x8, 0x0, 0x0, 0x4, 0x40000}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1.070720967s ago: executing program 0 (id=4106):
openat$misdntimer(0xffffffffffffff9c, &(0x7f0000001440), 0x0, 0x0)
openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/seq/timer\x00', 0x0, 0x0)
openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
epoll_create1(0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
socket$inet6_tcp(0xa, 0x1, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x1, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x4, 0x200000400000000, 0x4, 0x344}, 0x0, 0x0)

1.068699887s ago: executing program 7 (id=4107):
iopl(0x3)
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dcdb)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close(r0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x1a1)
fcntl$setlease(r2, 0x400, 0x1)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

966.99495ms ago: executing program 2 (id=4108):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000001c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000100)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @private=0x800001c, @multicast1}, {0x0, 0x17c1, 0x8}}}}}, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, 0x0)
close(r1)
socket(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}})
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x280)

913.905919ms ago: executing program 2 (id=4109):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
fcntl$dupfd(r0, 0x0, r0)
bind$alg(0xffffffffffffffff, &(0x7f0000000200)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
r1 = syz_io_uring_setup(0x3de6, &(0x7f0000000100)={0x0, 0x0, 0x1000, 0x0, 0x1bb}, &(0x7f00000002c0)=<r2=>0x0, &(0x7f0000000640)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x8, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r1, 0x47bc, 0x20, 0x0, 0x0, 0x0)

673.722428ms ago: executing program 2 (id=4110):
creat(&(0x7f0000000100)='./file0\x00', 0x1c)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000300)={0x18, 0x0, 0x0, {0xfffffffffffffffa}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000002100)=ANY=[@ANYBLOB="b0000000000000001659ec0889419429aa5db97288b0f8a87ea8e66d9a8b"], 0xb0)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000180)=ANY=[@ANYRES64=r2], 0x10)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000500)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@posixacl}]}})

189.117167ms ago: executing program 0 (id=4111):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
ioctl$AUTOFS_IOC_SETTIMEOUT(0xffffffffffffffff, 0x80049367, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
listen(r0, 0xe)
syz_emit_vhci(&(0x7f0000000100)=ANY=[@ANYBLOB="043e130100c90001"], 0x16)
ppoll(&(0x7f00000000c0)=[{0xffffffffffffffff, 0x80}, {r0, 0x60}], 0x2, 0x0, 0x0, 0x0)

188.67943ms ago: executing program 2 (id=4112):
syz_usb_connect(0x2, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="120100001a77aa4094225b4210a2010203010902240001000000000904000002"], 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000002100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a5c000000090a010400000000000000000a0000040900010073797a310000000008000540000000040900020073797a310000000008000a40fffffffc200011800e000100636f6e6e6c696d69740000000c00028008000140fffff27414000000110001"], 0x84}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="000086dd03000a000000140000006c07010033d43afffe800000000000000000000000000010ff02000000000000000000000000000189"], 0x340a)

110.059947ms ago: executing program 7 (id=4113):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
setsockopt$SO_RDS_MSG_RXPATH_LATENCY(0xffffffffffffffff, 0x114, 0xa, 0x0, 0x2)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000340)=@gcm_256={{0x303}, '\x00', "ec094e071cc80f218d360356a936a7e3971a8c35c47e580400", '\x00', "fffffffffffffffd"}, 0x38)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000200)=0xffffffffffffffff, 0x4)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)

1.294496ms ago: executing program 9 (id=4114):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = syz_io_uring_setup(0x88b, &(0x7f0000002780)={0x0, 0x5a83, 0x0, 0x3, 0x1b9}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47f6, 0x0, 0x2, 0x0, 0x0)
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})

929.778µs ago: executing program 7 (id=4115):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000080)=0x8, 0x4)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0xe22}, 0x1c)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
setsockopt$sock_int(r1, 0x1, 0x31, &(0x7f0000001600), 0x4)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001500add427323b472545b4560a117fffffff81000e220e227f000008925aa80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000deff0000000200000000", 0x58}], 0x1)

0s ago: executing program 7 (id=4116):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
syz_emit_ethernet(0xd0, &(0x7f00000004c0)={@link_local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00af00", 0x9a, 0x3a, 0xff, @remote, @local, {[], @ndisc_na={0x88, 0x0, 0x0, 0x0, '\x00', @empty, [{0x3, 0x10, "2553e1adb2111ada8a500cb7b9d777b11876e37d94067c6caedd576a3e2515e6431045223c6b417c293b43c6c7d12ae6590077c374a2da5f3fed004104294079574b01f8565760efa0c83221b15828e82051783eaac7ac67b44602bab09da943b6f99c777d29418ec4f37add413a9396c584aa940d642c5288c3b87a37c39e7a"}]}}}}}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=@newqdisc={0x54, 0x24, 0xe0b, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x24, 0x2, {{0x1ff, 0x6, 0xfffffffd, 0x0, 0xfffffffd, 0x32d}, [@TCA_NETEM_ECN={0x8, 0x7, 0x1}]}}}]}, 0x54}}, 0x0)
sendto$packet(r0, &(0x7f0000000580)="44c394f305916c4516999da20800", 0x36, 0x0, &(0x7f0000000440)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xc}}, 0x14)

kernel console output (not intermixed with test programs):

read started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 20
[  194.175348][T11343] netlink: 224 bytes leftover after parsing attributes in process `syz.6.2040'.
[  194.176239][T11344] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 21
[  194.176856][T11345] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 22
[  194.177583][T11346] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 23
[  194.178210][T11347] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 24
[  194.180505][T11348] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 25
[  194.180944][T11349] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 26
[  194.181512][T11350] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 27
[  194.181909][T11351] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 28
[  194.182564][T11352] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 29
[  194.183226][T11353] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 30
[  194.183723][T11354] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 31
[  194.184110][T11355] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 32
[  194.184516][T11356] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 33
[  194.184900][T11357] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 34
[  194.185279][T11358] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 35
[  194.185677][T11359] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 36
[  194.186054][T11360] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 37
[  194.186450][T11361] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 38
[  194.186852][T11362] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 39
[  194.187202][T11363] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 40
[  194.187543][T11364] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 41
[  194.190111][T11365] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 42
[  194.190915][T11366] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 43
[  194.191550][T11367] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 44
[  194.192284][T11368] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 45
[  194.192809][T11369] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 46
[  194.193393][T11370] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 47
[  194.194041][T11371] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 48
[  194.195090][T11372] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 49
[  194.195868][T11373] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 50
[  194.196455][T11374] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 51
[  194.197317][T11375] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 52
[  194.199754][T11376] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 53
[  194.204943][T11378] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 55
[  194.205376][T11377] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 54
[  194.205499][T11379] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 56
[  194.205939][T11380] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 57
[  194.206341][T11381] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 58
[  194.206782][T11382] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 59
[  194.208410][T11383] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 60
[  194.208813][T11384] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 61
[  194.209304][T11385] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 62
[  194.209719][T11386] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_to_hsr, syncid = 0, id = 63
[  194.501907][T11402] netlink: 'syz.5.2048': attribute type 10 has an invalid length.
[  194.505907][T11402] syz_tun: entered promiscuous mode
[  194.514378][T11402] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  194.930202][T11416] ceph: No mds server is up or the cluster is laggy
[  195.090235][ T1344] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[  195.249079][ T1344] usb 10-1: config 0 has no interfaces?
[  195.253971][ T1344] usb 10-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  195.257009][ T1344] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  195.259488][ T1344] usb 10-1: Product: syz
[  195.261005][ T1344] usb 10-1: Manufacturer: syz
[  195.262694][ T1344] usb 10-1: SerialNumber: syz
[  195.265876][ T1344] usb 10-1: config 0 descriptor??
[  196.907167][ T5993] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  196.907445][ T5336] Bluetooth: hci4: command 0x1003 tx timeout
[  196.928074][ T6031] usb 10-1: USB disconnect, device number 10
[  198.426143][T11516] input: syz1 as /devices/virtual/input/input16
[  198.640542][T11531] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2100'.
[  198.718295][T11540] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2100'.
[  198.721196][T11540] nbd: nbd64 already in use
[  198.757782][T11545] bridge0: entered allmulticast mode
[  198.827212][  T840] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[  198.835212][ T8683] udevd[8683]: inotify_add_watch(7, /dev/nbd64, 10) failed: No such file or directory
[  198.978000][  T840] usb 10-1: Using ep0 maxpacket: 8
[  198.981886][  T840] usb 10-1: config 0 has an invalid interface number: 55 but max is 0
[  198.984874][  T840] usb 10-1: config 0 has no interface number 0
[  198.989999][  T840] usb 10-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  198.994089][  T840] usb 10-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  199.000466][  T840] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  199.004306][  T840] usb 10-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  199.009371][  T840] usb 10-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  199.012636][  T840] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.026836][  T840] usb 10-1: config 0 descriptor??
[  199.038351][  T840] ldusb 10-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  199.062912][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  199.065989][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  199.069831][T11572] tipc: Started in network mode
[  199.071511][T11572] tipc: Node identity , cluster identity 4711
[  199.073493][T11572] tipc: Failed to obtain node identity
[  199.075405][T11572] tipc: Enabling of bearer <eth:gre0> rejected, failed to enable media
[  199.142340][T11577] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2118'.
[  199.149416][T11577] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2118'.
[  199.153876][T11577] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2118'.
[  199.864034][  T840] usb 10-1: USB disconnect, device number 11
[  199.873147][  T840] ldusb 10-1:0.55: LD USB Device #0 now disconnected
[  199.947206][ T6031] usb 11-1: new high-speed USB device number 5 using dummy_hcd
[  200.102784][ T6031] usb 11-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  200.107435][ T6031] usb 11-1: config 0 has no interfaces?
[  200.109626][ T6031] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  200.113409][ T6031] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.118307][ T6031] usb 11-1: config 0 descriptor??
[  200.326024][  T840] usb 11-1: USB disconnect, device number 5
[  200.407138][ T5989] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  200.559060][ T5989] usb 9-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  200.562984][ T5989] usb 9-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  200.567412][ T5989] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 66
[  200.571025][ T5989] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  200.575488][ T5989] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  200.582401][ T5989] usb 9-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  200.586638][ T5989] usb 9-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  200.591014][ T5989] usb 9-1: Product: syz
[  200.592983][ T5989] usb 9-1: Manufacturer: syz
[  200.602346][ T5989] cdc_wdm 9-1:1.0: skipping garbage
[  200.604428][ T5989] cdc_wdm 9-1:1.0: skipping garbage
[  200.608772][ T5989] cdc_wdm 9-1:1.0: cdc-wdm0: USB WDM device
[  200.611670][ T5989] cdc_wdm 9-1:1.0: Unknown control protocol
[  200.891735][ T5989] usb 9-1: USB disconnect, device number 9
[  201.120005][   T40] kauditd_printk_skb: 11 callbacks suppressed
[  201.120018][   T40] audit: type=1326 audit(1759348630.265:4108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11663 comm="syz.6.2152" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f94579 code=0x0
[  203.277777][T11711] ptrace attach of ""[11712] was attempted by "/syz-executor exec"[11711]
[  203.541640][T11734] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2175'.
[  203.552582][T11734] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2175'.
[  203.624268][T11739] tipc: Started in network mode
[  203.626652][T11739] tipc: Node identity , cluster identity 4711
[  203.632382][T11739] tipc: Failed to obtain node identity
[  203.634768][T11739] tipc: Enabling of bearer <eth:gre0> rejected, failed to enable media
[  204.627419][T11748] syz.6.2183: page allocation failure: order:0, mode:0x10cc0(GFP_KERNEL|__GFP_NORETRY), nodemask=(null),cpuset=/,mems_allowed=0-1
[  204.633181][T11748] CPU: 0 UID: 0 PID: 11748 Comm: syz.6.2183 Not tainted syzkaller #0 PREEMPT(full) 
[  204.633209][T11748] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  204.633222][T11748] Call Trace:
[  204.633229][T11748]  <TASK>
[  204.633237][T11748]  dump_stack_lvl+0x16c/0x1f0
[  204.633274][T11748]  warn_alloc+0x248/0x3a0
[  204.633313][T11748]  ? __pfx_warn_alloc+0x10/0x10
[  204.633338][T11748]  ? psi_memstall_leave+0x19f/0x2d0
[  204.633361][T11748]  ? __pfx___alloc_pages_direct_compact+0x10/0x10
[  204.633383][T11748]  ? psi_memstall_leave+0x1e1/0x2d0
[  204.633406][T11748]  ? psi_memstall_leave+0x1e6/0x2d0
[  204.633432][T11748]  __alloc_frozen_pages_noprof+0xea2/0x23f0
[  204.633466][T11748]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  204.633503][T11748]  ? __sanitizer_cov_trace_switch+0x16/0x90
[  204.633533][T11748]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  204.633562][T11748]  ? policy_nodemask+0xea/0x4e0
[  204.633590][T11748]  alloc_pages_mpol+0x1fb/0x550
[  204.633616][T11748]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  204.633641][T11748]  ? lockdep_hardirqs_on+0x7c/0x110
[  204.633674][T11748]  alloc_pages_noprof+0x131/0x390
[  204.633700][T11748]  kimage_alloc_pages+0x75/0x350
[  204.633733][T11748]  kimage_alloc_control_pages+0x153/0xa00
[  204.633758][T11748]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[  204.633784][T11748]  do_kexec_load+0x478/0x8a0
[  204.633805][T11748]  ? __pfx_do_kexec_load+0x10/0x10
[  204.633832][T11748]  __ia32_compat_sys_kexec_load+0x37f/0x400
[  204.633855][T11748]  ? __pfx___ia32_compat_sys_kexec_load+0x10/0x10
[  204.633880][T11748]  ? rcu_is_watching+0x12/0xc0
[  204.633902][T11748]  __do_fast_syscall_32+0x7c/0x300
[  204.633923][T11748]  do_fast_syscall_32+0x32/0x80
[  204.633952][T11748]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  204.633981][T11748] RIP: 0023:0xf7f94579
[  204.633999][T11748] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  204.634022][T11748] RSP: 002b:00000000f546555c EFLAGS: 00000296 ORIG_RAX: 000000000000011b
[  204.634043][T11748] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000000000003
[  204.634057][T11748] RDX: 0000000080001080 RSI: 00000000003e0000 RDI: 0000000000000000
[  204.634070][T11748] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  204.634083][T11748] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  204.634097][T11748] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  204.634126][T11748]  </TASK>
[  204.634134][T11748] Mem-Info:
[  204.757334][T11748] active_anon:137 inactive_anon:8675 isolated_anon:0
[  204.757334][T11748]  active_file:5586 inactive_file:14221 isolated_file:0
[  204.757334][T11748]  unevictable:1768 dirty:14 writeback:2
[  204.757334][T11748]  slab_reclaimable:6418 slab_unreclaimable:60037
[  204.757334][T11748]  mapped:22431 shmem:4368 pagetables:1604
[  204.757334][T11748]  sec_pagetables:321 bounce:0
[  204.757334][T11748]  kernel_misc_reclaimable:0
[  204.757334][T11748]  free:22717 free_pcp:958 free_cma:0
[  204.786105][T11748] Node 0 active_anon:0kB inactive_anon:200kB active_file:72kB inactive_file:52kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:7088kB dirty:4kB writeback:0kB shmem:6056kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:8560kB pagetables:2176kB sec_pagetables:1176kB all_unreclaimable? no Balloon:0kB
[  204.800389][T11748] Node 1 active_anon:472kB inactive_anon:34600kB active_file:23064kB inactive_file:55736kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:82536kB dirty:52kB writeback:8kB shmem:11416kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:7700kB pagetables:4240kB sec_pagetables:108kB all_unreclaimable? no Balloon:0kB
[  204.827281][T11748] Node 0 DMA free:1896kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:24kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:140kB local_pcp:124kB free_cma:0kB
[  204.841055][T11748] lowmem_reserve[]: 0 288 288 288 288
[  204.850248][T11748] Node 0 DMA32 free:15000kB boost:0kB min:13220kB low:16524kB high:19828kB reserved_highatomic:2048KB free_highatomic:328KB active_anon:104kB inactive_anon:204kB active_file:420kB inactive_file:8kB unevictable:3536kB writepending:4kB present:1032196kB managed:295072kB mlocked:0kB bounce:0kB free_pcp:2004kB local_pcp:1692kB free_cma:0kB
[  204.872021][T11748] lowmem_reserve[]: 0 0 0 0 0
[  204.873657][T11748] Node 1 DMA32 free:75472kB boost:22528kB min:69668kB low:81452kB high:93236kB reserved_highatomic:2048KB free_highatomic:320KB active_anon:472kB inactive_anon:34600kB active_file:23064kB inactive_file:54704kB unevictable:3536kB writepending:60kB present:1048432kB managed:948220kB mlocked:0kB bounce:0kB free_pcp:1572kB local_pcp:152kB free_cma:0kB
[  204.886022][T11748] lowmem_reserve[]: 0 0 0 0 0
[  204.910635][T11748] Node 0 DMA: 0*4kB 2*8kB (UM) 1*16kB (M) 7*32kB (U) 0*64kB 1*128kB (M) 0*256kB 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 1920kB
[  204.925068][T11748] Node 0 DMA32: 2*4kB (ME) 25*8kB (UMEH) 69*16kB (MEH) 112*32kB (MEH) 41*64kB (UME) 19*128kB (MEH) 8*256kB (UM) 1*512kB (U) 0*1024kB 0*2048kB 0*4096kB = 12512kB
[  204.939430][T11748] Node 1 DMA32: 979*4kB (MEH) 734*8kB (UMEH) 345*16kB (UME) 231*32kB (UMEH) 131*64kB (MEH) 102*128kB (ME) 62*256kB (UME) 23*512kB (UME) 3*1024kB (UM) 0*2048kB 0*4096kB = 74860kB
[  204.954778][T11748] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  204.958741][T11748] Node 0 hugepages_total=2 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[  204.961919][T11748] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  204.965504][T11748] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  204.985374][T11748] 24735 total pagecache pages
[  204.986919][T11748] 508 pages in swap cache
[  204.997579][T11748] Free swap  = 118312kB
[  204.999731][T11748] Total swap = 124996kB
[  205.001985][T11748] 524155 pages RAM
[  205.003746][T11748] 0 pages HighMem/MovableOnly
[  205.005476][T11748] 209492 pages reserved
[  205.019499][T11748] 0 pages cma reserved
[  205.941806][T11748] kexec: Could not allocate control_code_buffer
[  208.117862][   T40] audit: type=1326 audit(1759348637.265:4109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.5.2209" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  208.137627][   T40] audit: type=1326 audit(1759348637.275:4110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.5.2209" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  208.159985][   T40] audit: type=1326 audit(1759348637.275:4111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.5.2209" exe="/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  208.169590][   T40] audit: type=1326 audit(1759348866.277:4112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.5.2209" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  208.180381][   T40] audit: type=1326 audit(1759348866.277:4113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.5.2209" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  208.189678][   T40] audit: type=1326 audit(1759348866.277:4114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.5.2209" exe="/syz-executor" sig=0 arch=40000003 syscall=170 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  208.203304][   T40] audit: type=1326 audit(1759348866.277:4115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.5.2209" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  208.214237][   T40] audit: type=1326 audit(1759348866.277:4116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.5.2209" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  208.225392][   T40] audit: type=1326 audit(1759348866.277:4117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.5.2209" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  208.236270][   T40] audit: type=1326 audit(1759348866.277:4118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11820 comm="syz.5.2209" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  208.420498][T11835] uprobe: syz.6.2212:11835 failed to unregister, leaking uprobe
[  209.613273][T11862] netlink: 'syz.4.2232': attribute type 1 has an invalid length.
[  209.650395][T11862] bond2: (slave geneve2): making interface the new active one
[  209.653056][T11862] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  209.656681][ T1140] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 20004 - 0
[  209.660829][ T1140] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 20004 - 0
[  209.664745][ T1140] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 20004 - 0
[  209.669100][ T1140] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 20004 - 0
[  210.309931][T11918] netlink: 'syz.4.2249': attribute type 1 has an invalid length.
[  210.325143][T11918] 8021q: adding VLAN 0 to HW filter on device bond3
[  210.379870][T11918] bond3: (slave veth3): Enslaving as an active interface with a down link
[  210.415112][T11918] bond3: (slave syz_tun): making interface the new active one
[  210.423430][T11918] syz_tun: entered promiscuous mode
[  210.425967][T11918] bond3: (slave syz_tun): Enslaving as an active interface with an up link
[  210.540643][T11929] netlink: 'syz.4.2253': attribute type 1 has an invalid length.
[  210.556306][T11929] 8021q: adding VLAN 0 to HW filter on device bond4
[  210.581371][T11929] bond4: (slave gretap1): making interface the new active one
[  210.585774][T11929] bond4: (slave gretap1): Enslaving as an active interface with an up link
[  210.646932][T11936] team0: Port device vlan0 added
[  210.718673][T11945] syzkaller1: entered promiscuous mode
[  210.721998][T11945] syzkaller1: entered allmulticast mode
[  211.074880][T11973] fuse: Bad value for 'fd'
[  212.089571][T12030] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2291'.
[  212.173742][T12035] netlink: 'syz.2.2294': attribute type 1 has an invalid length.
[  212.178250][T12035] netlink: 'syz.2.2294': attribute type 4 has an invalid length.
[  212.180941][T12035] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.2294'.
[  212.469736][T12064] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2312'.
[  212.475520][T12064] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2312'.
[  212.529320][T12070] overlayfs: failed to clone upperpath
[  212.532311][T12071] netlink: 'syz.4.2306': attribute type 4 has an invalid length.
[  212.648814][T12081] overlayfs: failed to clone upperpath
[  213.169522][T12133] fuse: Bad value for 'fd'
[  213.627196][ T5336] Bluetooth: hci0: command 0x0000 tx timeout
[  214.050113][T12174] syzkaller1: entered promiscuous mode
[  214.053009][T12174] syzkaller1: entered allmulticast mode
[  214.413845][T12186] 9pnet_fd: Insufficient options for proto=fd
[  214.462804][T12192] 9pnet_fd: Insufficient options for proto=fd
[  214.544639][T12196] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  214.550524][T12196] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  214.576460][T12196] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  214.582839][T12196] overlayfs: failed to look up (tracing) for ino (-66)
[  215.381798][T12238] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  215.386233][T12238] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  215.398607][T12240] netlink: 96 bytes leftover after parsing attributes in process `syz.4.2375'.
[  215.405835][T12238] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  215.410797][T12238] overlayfs: failed to look up (tracing) for ino (-66)
[  215.516893][T12250] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[  215.702883][   T40] kauditd_printk_skb: 6 callbacks suppressed
[  215.702897][   T40] audit: type=1800 audit(1759348873.837:4125): pid=12259 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.2384" name="bus" dev="overlay" ino=1922 res=0 errno=0
[  216.100899][T12270] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  216.105559][T12270] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  216.127675][T12270] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[  216.130982][T12270] overlayfs: failed to look up (tracing) for ino (-66)
[  216.227518][T12276] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  220.039624][T12373] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2430'.
[  220.394188][T12394] netlink: 'syz.6.2441': attribute type 10 has an invalid length.
[  220.397679][T12394] syz_tun: entered promiscuous mode
[  220.406354][T12394] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  220.736901][T12419] all: renamed from lo (while UP)
[  221.077209][  T841] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  221.138394][T12438] ceph: No mds server is up or the cluster is laggy
[  221.156043][T12448] lo: Caught tx_queue_len zero misconfig
[  221.230525][  T841] usb 9-1: config 0 has no interfaces?
[  221.234480][  T841] usb 9-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  221.238526][  T841] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  221.241653][  T841] usb 9-1: Product: syz
[  221.243634][  T841] usb 9-1: Manufacturer: syz
[  221.245650][  T841] usb 9-1: SerialNumber: syz
[  221.264899][  T841] usb 9-1: config 0 descriptor??
[  221.479228][  T841] usb 9-1: USB disconnect, device number 10
[  221.591781][  T170] syz_tun: left promiscuous mode
[  221.871485][T12485] ceph: No mds server is up or the cluster is laggy
[  222.075131][   T40] audit: type=1326 audit(1759348880.207:4126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12506 comm="syz.4.2485" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x0
[  222.859709][T12542] syz_tun: left promiscuous mode
[  222.866695][T12542] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.871583][T12542] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.919639][T12542] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  222.926140][T12542] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  222.977546][    T9] usb 11-1: new high-speed USB device number 6 using dummy_hcd
[  223.033258][   T12] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  223.040033][   T12] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  223.044331][   T12] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  223.049520][   T12] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  223.154047][    T9] usb 11-1: config 0 has no interfaces?
[  223.161894][    T9] usb 11-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  223.163558][T12550] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2508'.
[  223.166914][    T9] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  223.174392][    T9] usb 11-1: Product: syz
[  223.176754][    T9] usb 11-1: Manufacturer: syz
[  223.178831][    T9] usb 11-1: SerialNumber: syz
[  223.183567][T12550] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2508'.
[  223.188103][    T9] usb 11-1: config 0 descriptor??
[  223.189402][T12550] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2508'.
[  223.557640][    T9] usb 11-1: USB disconnect, device number 6
[  224.306273][T12629] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2521'.
[  224.546412][T12656] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2534'.
[  224.551745][T12656] netlink: 'syz.6.2534': attribute type 7 has an invalid length.
[  224.554992][T12656] netlink: 'syz.6.2534': attribute type 8 has an invalid length.
[  224.558725][T12656] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2534'.
[  224.691847][T12671] netlink: 'syz.4.2541': attribute type 12 has an invalid length.
[  224.695164][T12671] netlink: 'syz.4.2541': attribute type 29 has an invalid length.
[  224.703252][T12671] netlink: 148 bytes leftover after parsing attributes in process `syz.4.2541'.
[  224.707498][T12671] netlink: 'syz.4.2541': attribute type 2 has an invalid length.
[  224.710162][T12671] netlink: 43 bytes leftover after parsing attributes in process `syz.4.2541'.
[  224.838069][   T40] audit: type=1326 audit(1759348882.977:4127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12668 comm="syz.2.2540" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7fc00000
[  225.511158][   T40] audit: type=1326 audit(1759348883.647:4128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12668 comm="syz.2.2540" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70be579 code=0x7fc00000
[  226.642676][  T841] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  226.821830][  T841] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.837697][  T841] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  226.840466][  T841] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.843000][  T841] usb 9-1: Product: syz
[  226.844374][  T841] usb 9-1: Manufacturer: syz
[  226.846260][  T841] usb 9-1: SerialNumber: syz
[  226.983536][T12773] overlayfs: failed to clone upperpath
[  227.117716][T12778] tipc: Failed to remove unknown binding: 66,1,1/0:2014037989/2014037991
[  227.138656][T12778] tipc: Failed to remove unknown binding: 66,1,1/0:2014037989/2014037991
[  227.906203][  T841] cdc_ncm 9-1:1.0: MAC-Address: 42:42:42:42:42:42
[  227.908912][  T841] cdc_ncm 9-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048
[  227.911189][  T841] cdc_ncm 9-1:1.0: setting rx_max = 2048
[  228.315238][  T841] cdc_ncm 9-1:1.0: setting tx_max = 88
[  228.337581][  T841] cdc_ncm 9-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.4-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  228.348015][  T841] usb 9-1: USB disconnect, device number 11
[  228.351406][  T841] cdc_ncm 9-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.4-1, CDC NCM (NO ZLP)
[  228.522732][T12804] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2593'.
[  228.574370][T12805] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  228.579356][T12805] block device autoloading is deprecated and will be removed.
[  228.641616][T12811] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2595'.
[  228.645749][T12811] netlink: 'syz.6.2595': attribute type 7 has an invalid length.
[  228.649331][T12809] team0: Port device team_slave_0 removed
[  228.649878][T12809] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  228.660897][T12811] netlink: 'syz.6.2595': attribute type 8 has an invalid length.
[  228.664203][T12811] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2595'.
[  228.674383][T12811] erspan0: entered promiscuous mode
[  228.678347][T12811] batadv_slave_1: entered promiscuous mode
[  228.681576][T12811] gretap0: entered promiscuous mode
[  228.685926][T12811] debugfs: 'hsr0' already exists in 'hsr'
[  228.695816][T12811] Cannot create hsr debugfs directory
[  228.718226][T12813] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2597'.
[  228.798174][T12819] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  228.802102][T12819] IPv6: NLM_F_CREATE should be set when creating new route
[  229.995932][T12859] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2615'.
[  230.060769][T12859] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2615'.
[  230.132920][ T5993] Bluetooth: hci3: Unable to find connection for big 0x00
[  230.264683][T12876] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  230.269193][T12876] overlayfs: failed to set xattr on upper
[  230.271337][T12876] overlayfs: ...falling back to redirect_dir=nofollow.
[  230.273455][T12876] overlayfs: ...falling back to metacopy=off.
[  230.275439][T12876] overlayfs: ...falling back to index=off.
[  230.277667][T12876] overlayfs: ...falling back to uuid=null.
[  230.324307][T12883] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2625'.
[  230.331143][T12883] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2625'.
[  230.335902][   T40] audit: type=1326 audit(1759348888.467:4129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12880 comm="syz.5.2624" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  230.349414][   T40] audit: type=1326 audit(1759348888.477:4130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12880 comm="syz.5.2624" exe="/syz-executor" sig=0 arch=40000003 syscall=372 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  230.359406][   T40] audit: type=1326 audit(1759348888.477:4131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12880 comm="syz.5.2624" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  230.372992][   T40] audit: type=1326 audit(1759348888.477:4132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12880 comm="syz.5.2624" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  230.384382][T12886] vcan0: tx drop: invalid sa for name 0x0000000000000003
[  230.723838][T12907] netlink: 'syz.4.2635': attribute type 4 has an invalid length.
[  230.727228][T12907] netlink: 'syz.4.2635': attribute type 4 has an invalid length.
[  230.785307][T12909] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2636'.
[  230.790610][T12909] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2636'.
[  231.072766][T12920] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  231.075758][T12920] overlayfs: failed to set xattr on upper
[  231.083538][T12920] overlayfs: ...falling back to redirect_dir=nofollow.
[  231.086522][T12920] overlayfs: ...falling back to metacopy=off.
[  231.089519][T12920] overlayfs: ...falling back to index=off.
[  231.091468][T12920] overlayfs: ...falling back to uuid=null.
[  233.135567][T13019] vcan0: tx drop: invalid sa for name 0x0000000000000003
[  233.242623][T13031] netlink: 'syz.6.2687': attribute type 1 has an invalid length.
[  233.286570][T13031] bond2: (slave geneve2): making interface the new active one
[  233.291501][T13031] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  233.311261][ T1231] netdevsim netdevsim6 eth0: set [1, 1] type 2 family 0 port 20004 - 0
[  233.315159][ T1231] netdevsim netdevsim6 eth1: set [1, 1] type 2 family 0 port 20004 - 0
[  233.319424][ T1231] netdevsim netdevsim6 eth2: set [1, 1] type 2 family 0 port 20004 - 0
[  233.323062][ T1231] netdevsim netdevsim6 eth3: set [1, 1] type 2 family 0 port 20004 - 0
[  233.526758][T13046] netlink: 'syz.5.2694': attribute type 6 has an invalid length.
[  236.225447][T13146] batman_adv: batadv0: Adding interface: dummy0
[  236.228233][T13146] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  236.240281][T13146] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  236.590564][T13162] __nla_validate_parse: 14 callbacks suppressed
[  236.590582][T13162] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2750'.
[  237.884051][T13222] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2763'.
[  238.210346][T13230] binder: 13229:13230 ioctl c0306201 80000040 returned -11
[  238.217576][T13230] binder: 13229:13230 ioctl c0306201 80000640 returned -22
[  238.346492][T13238] netlink: 'syz.6.2770': attribute type 1 has an invalid length.
[  238.349483][T13238] netlink: 'syz.6.2770': attribute type 4 has an invalid length.
[  238.352595][T13238] netlink: 9462 bytes leftover after parsing attributes in process `syz.6.2770'.
[  238.388881][T13241] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2769'.
[  238.397253][T13241] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2769'.
[  238.670460][T13260] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2779'.
[  238.685845][T13262] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  238.688971][T13262] IPv6: NLM_F_CREATE should be set when creating new route
[  238.744674][T13267] team0: Port device team_slave_0 removed
[  238.747299][T13267] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check.
[  239.602996][T13328] overlayfs: failed to clone upperpath
[  240.045174][T13357] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2821'.
[  240.169758][T13361] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2822'.
[  240.189617][T13363] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  240.768301][T13392] 9pnet_fd: Insufficient options for proto=fd
[  245.259119][T13510] all: renamed from lo
[  245.345606][T13515] netlink: 'syz.5.2868': attribute type 1 has an invalid length.
[  245.395018][T13515] bond6: (slave geneve2): making interface the new active one
[  245.399751][T13515] bond6: (slave geneve2): Enslaving as an active interface with an up link
[  245.404236][   T54] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 20004 - 0
[  245.411189][   T54] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 20004 - 0
[  245.417401][   T54] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 20004 - 0
[  245.421446][   T54] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 20004 - 0
[  246.002170][T13550] netlink: 'syz.2.2889': attribute type 1 has an invalid length.
[  246.061160][T13550] bond7: (slave geneve3): making interface the new active one
[  246.064965][T13550] bond7: (slave geneve3): Enslaving as an active interface with an up link
[  246.074601][   T54] netdevsim netdevsim2 eth0: set [1, 1] type 2 family 0 port 20004 - 0
[  246.079235][   T54] netdevsim netdevsim2 eth1: set [1, 1] type 2 family 0 port 20004 - 0
[  246.082782][   T54] netdevsim netdevsim2 eth2: set [1, 1] type 2 family 0 port 20004 - 0
[  246.086736][   T54] netdevsim netdevsim2 eth3: set [1, 1] type 2 family 0 port 20004 - 0
[  246.441753][T13583] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2903'.
[  246.499244][T13585] netlink: 'syz.4.2904': attribute type 1 has an invalid length.
[  246.980153][T13604] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2911'.
[  246.983170][T13604] netlink: 'syz.5.2911': attribute type 7 has an invalid length.
[  246.986256][T13604] netlink: 'syz.5.2911': attribute type 8 has an invalid length.
[  246.989868][T13604] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2911'.
[  249.455069][T13685] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2937'.
[  249.591718][T13696] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2942'.
[  249.595811][T13696] netlink: 'syz.2.2942': attribute type 7 has an invalid length.
[  249.599039][T13696] netlink: 'syz.2.2942': attribute type 8 has an invalid length.
[  249.601985][T13696] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2942'.
[  249.613460][T13696] erspan0: entered promiscuous mode
[  249.616775][T13696] batadv_slave_1: entered promiscuous mode
[  249.633560][T13696] gretap0: entered promiscuous mode
[  250.781188][T13733] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2958'.
[  250.784252][T13733] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2958'.
[  251.610033][T13754] sch_fq: defrate 53322 ignored.
[  251.802951][T13763] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  251.809103][T13763] block device autoloading is deprecated and will be removed.
[  253.265416][T13822] batman_adv: batadv0: Adding interface: dummy0
[  253.269171][T13822] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  253.279498][T13822] batman_adv: batadv0: Interface activated: dummy0
[  255.391824][T13886] batman_adv: batadv0: Adding interface: dummy0
[  255.394530][T13886] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  255.406725][T13886] batman_adv: batadv0: Interface activated: dummy0
[  255.721356][T13902] sch_fq: defrate 53322 ignored.
[  257.236567][T13926] lo: Caught tx_queue_len zero misconfig
[  257.239564][T13926] sch_fq: defrate 53322 ignored.
[  257.323007][T13936] batman_adv: batadv0: Adding interface: dummy0
[  257.325590][T13936] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  257.343582][T13936] batman_adv: batadv0: Interface activated: dummy0
[  257.375208][   T40] audit: type=1326 audit(1759348915.507:4133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.5.3021" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  257.382778][   T40] audit: type=1326 audit(1759348915.507:4134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.5.3021" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  257.393169][   T40] audit: type=1326 audit(1759348915.507:4135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.5.3021" exe="/syz-executor" sig=0 arch=40000003 syscall=397 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  257.402856][   T40] audit: type=1326 audit(1759348915.537:4136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.5.3021" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  257.413787][   T40] audit: type=1326 audit(1759348915.537:4137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.5.3021" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  257.424261][   T40] audit: type=1326 audit(1759348915.547:4138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.5.3021" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  257.435014][   T40] audit: type=1326 audit(1759348915.547:4139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.5.3021" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  257.444668][   T40] audit: type=1326 audit(1759348915.547:4140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.5.3021" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  257.454380][   T40] audit: type=1326 audit(1759348915.547:4141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.5.3021" exe="/syz-executor" sig=0 arch=40000003 syscall=398 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  257.464627][   T40] audit: type=1326 audit(1759348915.547:4142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13919 comm="syz.5.3021" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7ff2579 code=0x7ffc0000
[  257.863986][T13957] netlink: 12 bytes leftover after parsing attributes in process `syz.6.3034'.
[  258.098489][T13969] netlink: 'syz.6.3039': attribute type 11 has an invalid length.
[  258.101409][T13969] netlink: 199836 bytes leftover after parsing attributes in process `syz.6.3039'.
[  258.236395][T13971] fuse: root generation should be zero
[  258.736421][T11282] bond0: (slave syz_tun): Releasing backup interface
[  258.835001][   T54] netdevsim netdevsim6 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  258.840760][   T54] netdevsim netdevsim6 eth3 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  258.906348][   T54] netdevsim netdevsim6 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  258.911567][   T54] netdevsim netdevsim6 eth2 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  258.979923][   T54] netdevsim netdevsim6 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  258.985121][   T54] netdevsim netdevsim6 eth1 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  259.069949][   T54] netdevsim netdevsim6 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  259.074726][   T54] netdevsim netdevsim6 eth0 (unregistering): unset [1, 1] type 2 family 0 port 20004 - 0
[  259.180882][ T5336] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  259.185617][ T5336] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  259.192441][ T5336] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  259.198254][ T5336] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  259.202830][ T5336] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  259.399450][T13999] chnl_net:caif_netlink_parms(): no params data found
[  259.524271][T13999] bridge0: port 1(bridge_slave_0) entered blocking state
[  259.527357][T13999] bridge0: port 1(bridge_slave_0) entered disabled state
[  259.530768][T13999] bridge_slave_0: entered allmulticast mode
[  259.534789][T13999] bridge_slave_0: entered promiscuous mode
[  259.543616][T13999] bridge0: port 2(bridge_slave_1) entered blocking state
[  259.548485][T13999] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.552067][T13999] bridge_slave_1: entered allmulticast mode
[  259.555964][T13999] bridge_slave_1: entered promiscuous mode
[  259.624552][T13999] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  259.632247][T13999] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  259.703508][T13999] team0: Port device team_slave_0 added
[  259.708955][T13999] team0: Port device team_slave_1 added
[  259.773785][T13999] batman_adv: batadv0: Adding interface: batadv_slave_0
[  259.777249][T13999] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.792624][T13999] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  259.799067][T13999] batman_adv: batadv0: Adding interface: batadv_slave_1
[  259.801569][T13999] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.810482][T13999] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.893506][T13999] hsr_slave_0: entered promiscuous mode
[  259.896507][T13999] hsr_slave_1: entered promiscuous mode
[  259.899599][T13999] debugfs: 'hsr0' already exists in 'hsr'
[  259.901500][T13999] Cannot create hsr debugfs directory
[  260.074725][T13999] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  260.082716][T13999] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  260.087424][T13999] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  260.092967][T13999] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  260.184358][T13999] 8021q: adding VLAN 0 to HW filter on device bond0
[  260.205595][T13999] 8021q: adding VLAN 0 to HW filter on device team0
[  260.214573][   T84] bridge0: port 1(bridge_slave_0) entered blocking state
[  260.217775][   T84] bridge0: port 1(bridge_slave_0) entered forwarding state
[  260.228358][ T1182] bridge0: port 2(bridge_slave_1) entered blocking state
[  260.230755][ T1182] bridge0: port 2(bridge_slave_1) entered forwarding state
[  260.464574][T13999] 8021q: adding VLAN 0 to HW filter on device batadv0
[  260.501838][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  260.504632][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  260.624090][   T54] bridge_slave_1: left allmulticast mode
[  260.626651][   T54] bridge_slave_1: left promiscuous mode
[  260.630519][   T54] bridge0: port 2(bridge_slave_1) entered disabled state
[  260.641220][   T54] bridge_slave_0: left allmulticast mode
[  260.643649][   T54] bridge_slave_0: left promiscuous mode
[  260.646225][   T54] bridge0: port 1(bridge_slave_0) entered disabled state
[  260.803767][   T54] bond1 (unregistering): (slave ip6erspan0): Releasing active interface
[  260.934095][   T54] erspan0 (unregistering): left promiscuous mode
[  260.957249][   T54] gretap0 (unregistering): left promiscuous mode
[  261.015941][   T54] bond2 (unregistering): (slave geneve2): Releasing active interface
[  261.042930][T14053] input: syz0 as /devices/virtual/input/input17
[  261.297178][ T5336] Bluetooth: hci2: command tx timeout
[  261.560218][   T54] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  261.567297][   T54] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  261.573895][   T54] bond0 (unregistering): Released all slaves
[  261.728153][   T54] bond1 (unregistering): Released all slaves
[  261.737199][   T54] bond2 (unregistering): Released all slaves
[  261.774895][T12918] bond0: (slave syz_tun): Releasing backup interface
[  261.833825][T13999] veth0_vlan: entered promiscuous mode
[  261.843632][T13999] veth1_vlan: entered promiscuous mode
[  261.884522][T13999] veth0_macvtap: entered promiscuous mode
[  261.896804][T13999] veth1_macvtap: entered promiscuous mode
[  261.902879][T14061] overlayfs: failed to clone upperpath
[  261.914528][   T54] IPVS: stopping master sync thread 11386 ...
[  261.938469][   T54] IPVS: stopping master sync thread 11385 ...
[  261.946713][T13999] batman_adv: batadv0: Interface activated: batadv_slave_0
[  261.950693][   T54] IPVS: stopping master sync thread 11384 ...
[  261.957237][   T54] IPVS: stopping master sync thread 11383 ...
[  261.962776][   T54] IPVS: stopping master sync thread 11382 ...
[  261.966673][T13999] batman_adv: batadv0: Interface activated: batadv_slave_1
[  261.974766][   T54] IPVS: stopping master sync thread 11381 ...
[  261.979200][   T54] IPVS: stopping master sync thread 11380 ...
[  261.981984][   T54] IPVS: stopping master sync thread 11379 ...
[  261.986343][   T54] IPVS: stopping master sync thread 11378 ...
[  261.989714][   T54] IPVS: stopping master sync thread 11377 ...
[  261.990084][ T1182] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  261.995900][ T1182] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  261.997747][   T54] IPVS: stopping master sync thread 11376 ...
[  262.002732][   T54] IPVS: stopping master sync thread 11375 ...
[  262.005253][   T54] IPVS: stopping master sync thread 11374 ...
[  262.007989][   T54] IPVS: stopping master sync thread 11373 ...
[  262.010387][   T54] IPVS: stopping master sync thread 11372 ...
[  262.012744][   T54] IPVS: stopping master sync thread 11371 ...
[  262.015788][   T54] IPVS: stopping master sync thread 11370 ...
[  262.019654][   T54] IPVS: stopping master sync thread 11369 ...
[  262.020148][ T1182] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  262.023347][   T54] IPVS: stopping master sync thread 11368 ...
[  262.026513][ T1182] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  262.029004][   T54] IPVS: stopping master sync thread 11367 ...
[  262.035369][   T54] IPVS: stopping master sync thread 11366 ...
[  262.039756][   T54] IPVS: stopping master sync thread 11365 ...
[  262.048374][   T54] IPVS: stopping master sync thread 11364 ...
[  262.051245][   T54] IPVS: stopping master sync thread 11363 ...
[  262.053856][   T54] IPVS: stopping master sync thread 11362 ...
[  262.058303][   T54] IPVS: stopping master sync thread 11361 ...
[  262.067423][   T54] IPVS: stopping master sync thread 11360 ...
[  262.069857][   T54] IPVS: stopping master sync thread 11359 ...
[  262.074484][   T54] IPVS: stopping master sync thread 11358 ...
[  262.077344][   T54] IPVS: stopping master sync thread 11357 ...
[  262.087756][   T54] IPVS: stopping master sync thread 11356 ...
[  262.090495][   T54] IPVS: stopping master sync thread 11355 ...
[  262.094105][   T54] IPVS: stopping master sync thread 11354 ...
[  262.104645][   T54] IPVS: stopping master sync thread 11353 ...
[  262.107450][   T54] IPVS: stopping master sync thread 11352 ...
[  262.120047][   T54] IPVS: stopping master sync thread 11351 ...
[  262.131898][   T54] IPVS: stopping master sync thread 11350 ...
[  262.137627][   T54] IPVS: stopping master sync thread 11349 ...
[  262.139884][   T54] IPVS: stopping master sync thread 11348 ...
[  262.143637][   T54] IPVS: stopping master sync thread 11347 ...
[  262.146264][   T54] IPVS: stopping master sync thread 11346 ...
[  262.152966][   T54] IPVS: stopping master sync thread 11345 ...
[  262.156139][   T54] IPVS: stopping master sync thread 11344 ...
[  262.159222][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  262.161747][   T54] IPVS: stopping master sync thread 11342 ...
[  262.165086][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  262.169108][   T54] IPVS: stopping master sync thread 11341 ...
[  262.173057][   T54] IPVS: stopping master sync thread 11340 ...
[  262.178077][   T54] IPVS: stopping master sync thread 11339 ...
[  262.180907][   T54] IPVS: stopping master sync thread 11338 ...
[  262.183095][   T54] IPVS: stopping master sync thread 11337 ...
[  262.186270][   T54] IPVS: stopping master sync thread 11335 ...
[  262.188537][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  262.190763][   T54] IPVS: stopping master sync thread 11333 ...
[  262.192253][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  262.198375][   T54] IPVS: stopping master sync thread 11332 ...
[  262.200996][   T54] IPVS: stopping master sync thread 11331 ...
[  262.204735][   T54] IPVS: stopping master sync thread 11330 ...
[  262.229308][   T54] IPVS: stopping master sync thread 11329 ...
[  262.232465][   T54] IPVS: stopping master sync thread 11328 ...
[  262.237064][   T54] IPVS: stopping master sync thread 11327 ...
[  262.241644][   T54] IPVS: stopping master sync thread 11326 ...
[  262.247472][   T54] IPVS: stopping master sync thread 11325 ...
[  262.257236][   T54] IPVS: stopping master sync thread 11324 ...
[  262.263456][   T54] IPVS: stopping master sync thread 11323 ...
[  262.277129][   T54] IPVS: stopping master sync thread 11322 ...
[  262.280106][   T54] IPVS: stopping master sync thread 11321 ...
[  262.284008][   T54] IPVS: stopping master sync thread 11320 ...
[  262.452013][ T5993] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  262.466272][ T5993] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  262.476103][ T5993] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  262.483702][ T5993] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  262.490138][ T5993] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  262.690189][   T54] batadv_slave_1: left promiscuous mode
[  262.699096][   T54] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  262.703155][   T54] batman_adv: batadv0: Removing interface: batadv_slave_0
[  262.742232][   T54] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  262.745290][   T54] batman_adv: batadv0: Removing interface: batadv_slave_1
[  262.757574][   T54] batman_adv: batadv0: Interface deactivated: dummy0
[  262.760120][   T54] batman_adv: batadv0: Removing interface: dummy0
[  262.771471][T14093] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3077'.
[  262.791238][   T54] veth1_macvtap: left promiscuous mode
[  262.793130][   T54] veth0_macvtap: left promiscuous mode
[  262.795109][   T54] veth1_vlan: left promiscuous mode
[  262.809535][   T54] veth0_vlan: left promiscuous mode
[  262.996503][   T54] team0 (unregistering): Port device vlan0 removed
[  263.391069][ T5993] Bluetooth: hci2: command tx timeout
[  263.513981][T14104] netlink: 2028 bytes leftover after parsing attributes in process `syz.7.3079'.
[  263.517982][T14104] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3079'.
[  264.009623][   T54] team0 (unregistering): Port device team_slave_1 removed
[  264.229506][T14111] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3082'.
[  264.578197][ T5993] Bluetooth: hci1: command tx timeout
[  264.729687][T14125] loop2: detected capacity change from 0 to 7
[  264.733336][T14125]  loop2:
[  264.735019][T14125] loop2: partition table partially beyond EOD, truncated
[  265.464510][ T5993] Bluetooth: hci2: command tx timeout
[  265.483493][T14080] chnl_net:caif_netlink_parms(): no params data found
[  265.736220][T14157] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  265.820695][T14080] bridge0: port 1(bridge_slave_0) entered blocking state
[  265.825781][T14080] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.829030][T14080] bridge_slave_0: entered allmulticast mode
[  265.833235][T14080] bridge_slave_0: entered promiscuous mode
[  265.842953][T14080] bridge0: port 2(bridge_slave_1) entered blocking state
[  265.847753][T14080] bridge0: port 2(bridge_slave_1) entered disabled state
[  265.852077][T14080] bridge_slave_1: entered allmulticast mode
[  265.856036][T14080] bridge_slave_1: entered promiscuous mode
[  265.949876][T14080] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  265.962076][T14080] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  266.664777][ T5993] Bluetooth: hci1: command tx timeout
[  266.872645][T14080] team0: Port device team_slave_0 added
[  266.878411][T14175] ip6tnl0: Master is either lo or non-ether device
[  266.887579][T14080] team0: Port device team_slave_1 added
[  266.979856][T14080] batman_adv: batadv0: Adding interface: batadv_slave_0
[  266.982438][T14080] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  266.992073][T14080] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  267.019476][T14080] batman_adv: batadv0: Adding interface: batadv_slave_1
[  267.022998][T14080] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  267.038534][T14080] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  267.102825][T14181] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3104'.
[  267.106852][T14181] netlink: 196 bytes leftover after parsing attributes in process `syz.7.3104'.
[  267.113715][T14181] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3104'.
[  267.120326][T14181] netlink: 196 bytes leftover after parsing attributes in process `syz.7.3104'.
[  267.130150][T14080] hsr_slave_0: entered promiscuous mode
[  267.134017][T14080] hsr_slave_1: entered promiscuous mode
[  267.137976][T14080] debugfs: 'hsr0' already exists in 'hsr'
[  267.140051][T14080] Cannot create hsr debugfs directory
[  267.371982][T14201] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3111'.
[  267.409749][T14080] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  267.416400][T14080] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  267.429087][T14080] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  267.436267][T14080] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  267.537418][ T5993] Bluetooth: hci2: command tx timeout
[  267.546743][T14080] 8021q: adding VLAN 0 to HW filter on device bond0
[  267.582101][T14080] 8021q: adding VLAN 0 to HW filter on device team0
[  267.594714][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  267.597751][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  267.608806][ T1182] bridge0: port 2(bridge_slave_1) entered blocking state
[  267.611942][ T1182] bridge0: port 2(bridge_slave_1) entered forwarding state
[  267.698718][T14080] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  267.925247][T14080] 8021q: adding VLAN 0 to HW filter on device batadv0
[  267.968064][T14241] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3124'.
[  267.981751][T14243] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  267.982047][ T5966] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  268.057464][T14248] input: syz1 as /devices/virtual/input/input18
[  268.347394][T14265] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3132'.
[  268.403301][T14080] veth0_vlan: entered promiscuous mode
[  268.416402][T14080] veth1_vlan: entered promiscuous mode
[  268.446347][T14080] veth0_macvtap: entered promiscuous mode
[  268.454269][T14080] veth1_macvtap: entered promiscuous mode
[  268.465143][T14080] batman_adv: batadv0: Interface activated: batadv_slave_0
[  268.478435][T14080] batman_adv: batadv0: Interface activated: batadv_slave_1
[  268.488615][  T170] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  268.492808][  T170] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  268.499312][  T170] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  268.502273][  T170] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  268.573030][ T1182] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  268.575950][ T1182] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  268.601850][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  268.605350][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  268.737796][ T5993] Bluetooth: hci1: command tx timeout
[  269.030340][T14316] netlink: 'syz.4.3152': attribute type 1 has an invalid length.
[  269.053623][T14316] 8021q: adding VLAN 0 to HW filter on device bond6
[  269.097702][T14316] bond6: (slave veth7): Enslaving as an active interface with a down link
[  269.149290][T14316] bond6: (slave wlan1): Enslaving as an active interface with a down link
[  269.272112][T14335] netlink: 'syz.2.3161': attribute type 21 has an invalid length.
[  269.275846][T14335] netlink: 'syz.2.3161': attribute type 1 has an invalid length.
[  269.413053][T14346] netlink: 'syz.7.3165': attribute type 1 has an invalid length.
[  269.416550][T14346] netlink: 'syz.7.3165': attribute type 4 has an invalid length.
[  269.420152][T14346] netlink: 9462 bytes leftover after parsing attributes in process `syz.7.3165'.
[  269.426444][T14346] netlink: 'syz.7.3165': attribute type 1 has an invalid length.
[  269.431026][T14346] netlink: 'syz.7.3165': attribute type 4 has an invalid length.
[  269.434924][T14346] netlink: 9462 bytes leftover after parsing attributes in process `syz.7.3165'.
[  269.690041][T14365] uprobe: syz.4.3173:14365 failed to unregister, leaking uprobe
[  270.827177][ T5993] Bluetooth: hci1: command tx timeout
[  270.841178][T14409] netlink: 76 bytes leftover after parsing attributes in process `syz.2.3187'.
[  270.961079][ T5993] block nbd4: Receive control failed (result -32)
[  271.004073][T14418] block nbd4: NBD_DISCONNECT
[  271.006767][T14418] block nbd4: Send disconnect failed -32
[  271.011041][T14418] block nbd4: shutting down sockets
[  271.125267][T14426] binder: 14424:14426 ioctl c0306201 80002800 returned -14
[  271.892495][T14463] netlink: 'syz.2.3206': attribute type 10 has an invalid length.
[  271.903351][T14463] 8021q: adding VLAN 0 to HW filter on device team0
[  271.911404][T14463] bond0: (slave team0): Enslaving as an active interface with an up link
[  272.687134][ T1334] usb 13-1: new full-speed USB device number 2 using dummy_hcd
[  272.849725][ T1334] usb 13-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  272.853878][ T1334] usb 13-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  272.859931][ T1334] usb 13-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  272.863797][ T1334] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.076890][ T1334] usb 13-1: usb_control_msg returned -32
[  273.079532][ T1334] usbtmc 13-1:16.0: can't read capabilities
[  273.352774][T14508] ip6tnl0: Master is either lo or non-ether device
[  273.432488][T14515] usbtmc 13-1:16.0: usbtmc_ioctl_request failed -32
[  273.438174][   T53] usb 13-1: USB disconnect, device number 2
[  273.990326][T14536] tipc: Started in network mode
[  273.992980][T14536] tipc: Node identity b9, cluster identity 4711
[  273.996027][T14536] tipc: Node number set to 185
[  274.105820][T14545] netlink: 96 bytes leftover after parsing attributes in process `syz.4.3239'.
[  274.157239][T14548] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3241'.
[  274.295879][T14562] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3246'.
[  274.303792][T14562] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3246'.
[  274.330483][T14565] netlink: 2020 bytes leftover after parsing attributes in process `syz.4.3244'.
[  274.333587][T14565] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3244'.
[  274.511964][T14573] bridge: RTM_NEWNEIGH with invalid ether address
[  274.897708][T14589] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3256'.
[  275.390169][   T40] kauditd_printk_skb: 1 callbacks suppressed
[  275.390184][   T40] audit: type=1326 audit(1759348939.535:4144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14610 comm="syz.8.3266" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa4598 code=0x7ffc0000
[  275.417209][   T40] audit: type=1326 audit(1759348939.535:4145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14610 comm="syz.8.3266" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa4598 code=0x7ffc0000
[  275.428022][   T40] audit: type=1326 audit(1759348939.535:4146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14610 comm="syz.8.3266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  275.441208][   T40] audit: type=1326 audit(1759348939.535:4147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14610 comm="syz.8.3266" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa4598 code=0x7ffc0000
[  275.451477][   T40] audit: type=1326 audit(1759348939.535:4148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14610 comm="syz.8.3266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  275.463444][   T40] audit: type=1326 audit(1759348939.535:4149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14610 comm="syz.8.3266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  275.474154][   T40] audit: type=1326 audit(1759348939.535:4150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14610 comm="syz.8.3266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  275.485325][   T40] audit: type=1326 audit(1759348939.535:4151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14610 comm="syz.8.3266" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa4598 code=0x7ffc0000
[  275.495717][   T40] audit: type=1326 audit(1759348939.535:4152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14610 comm="syz.8.3266" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  275.508385][   T40] audit: type=1326 audit(1759348939.535:4153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14610 comm="syz.8.3266" exe="/syz-executor" sig=0 arch=40000003 syscall=119 compat=1 ip=0xf7fa4598 code=0x7ffc0000
[  275.529301][T14616] netlink: 96 bytes leftover after parsing attributes in process `syz.7.3268'.
[  275.912504][T14633] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3273'.
[  275.958595][T14633] netlink: 'syz.7.3273': attribute type 1 has an invalid length.
[  276.127629][T14639] tipc: Started in network mode
[  276.129753][T14639] tipc: Node identity b9, cluster identity 4711
[  276.132527][T14639] tipc: Node number set to 185
[  276.461093][T14653] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3281'.
[  276.473131][T14653] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3281'.
[  276.521410][T14656] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3282'.
[  276.826610][T14673] tipc: Started in network mode
[  276.829940][T14673] tipc: Node identity b9, cluster identity 4711
[  276.836479][T14673] tipc: Node number set to 185
[  277.947186][ T5336] Bluetooth: hci0: command 0x0000 tx timeout
[  278.458632][T14721] tipc: Started in network mode
[  278.461196][T14721] tipc: Node identity b9, cluster identity 4711
[  278.464994][T14721] tipc: Node number set to 185
[  278.474224][T14724] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3308'.
[  278.529674][T14724] netlink: 'syz.8.3308': attribute type 1 has an invalid length.
[  279.041616][T14737] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  279.041687][ T5966] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  279.049888][T14737] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  279.050035][ T5966] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  279.052851][T14737] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  279.055419][ T5966] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  279.475368][ T5993] block nbd7: Receive control failed (result -32)
[  279.531018][T14748] block nbd7: NBD_DISCONNECT
[  279.533849][T14748] block nbd7: Send disconnect failed -32
[  279.537395][T14748] block nbd7: shutting down sockets
[  279.777111][ T6031] usb 13-1: new full-speed USB device number 3 using dummy_hcd
[  279.867079][ T1334] usb 12-1: new high-speed USB device number 2 using dummy_hcd
[  279.930172][ T6031] usb 13-1: unable to get BOS descriptor or descriptor too short
[  279.933783][ T6031] usb 13-1: not running at top speed; connect to a high speed hub
[  279.938578][ T6031] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  279.942556][ T6031] usb 13-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  279.948423][ T6031] usb 13-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  279.951852][ T6031] usb 13-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.954662][ T6031] usb 13-1: Product: syz
[  279.956075][ T6031] usb 13-1: Manufacturer: syz
[  279.957906][ T6031] usb 13-1: SerialNumber: syz
[  279.962667][T14754] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  280.031597][ T1334] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  280.036251][ T1334] usb 12-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  280.040145][ T1334] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.047534][ T1334] usb 12-1: config 0 descriptor??
[  280.181034][ T6031] cdc_ncm 13-1:1.0: bind() failure
[  280.187549][ T6031] cdc_ncm 13-1:1.1: CDC Union missing and no IAD found
[  280.190462][ T6031] cdc_ncm 13-1:1.1: bind() failure
[  280.199178][ T6031] usb 13-1: USB disconnect, device number 3
[  280.261316][ T1334] usbhid 12-1:0.0: can't add hid device: -71
[  280.263301][ T1334] usbhid 12-1:0.0: probe with driver usbhid failed with error -71
[  280.268406][ T1334] usb 12-1: USB disconnect, device number 2
[  280.366402][T14763] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3316'.
[  280.445738][T14767] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3324'.
[  280.700707][ T6031] usb 12-1: new high-speed USB device number 3 using dummy_hcd
[  280.877310][ T6031] usb 12-1: Using ep0 maxpacket: 16
[  280.881956][ T6031] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  280.886432][ T6031] usb 12-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[  280.891927][ T6031] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.897362][ T6031] usb 12-1: config 0 descriptor??
[  280.947086][   T53] usb 13-1: new high-speed USB device number 4 using dummy_hcd
[  281.099869][   T53] usb 13-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  281.104033][   T53] usb 13-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  281.110818][   T53] usb 13-1: config 1 has 1 interface, different from the descriptor's value: 66
[  281.114598][   T53] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  281.119053][   T53] usb 13-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  281.125641][   T53] usb 13-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  281.130043][   T53] usb 13-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  281.133574][   T53] usb 13-1: Product: syz
[  281.135332][   T53] usb 13-1: Manufacturer: syz
[  281.149176][   T53] cdc_wdm 13-1:1.0: skipping garbage
[  281.151752][   T53] cdc_wdm 13-1:1.0: skipping garbage
[  281.156519][   T53] cdc_wdm 13-1:1.0: cdc-wdm0: USB WDM device
[  281.160285][   T53] cdc_wdm 13-1:1.0: Unknown control protocol
[  281.326765][ T6031] kye 0003:0458:5016.000A: control desc unexpectedly large
[  281.336255][ T6031] input: HID 0458:5016 as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/0003:0458:5016.000A/input/input19
[  281.418381][ T6031] input: HID 0458:5016 as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/0003:0458:5016.000A/input/input20
[  281.478951][ T5993] Bluetooth: hci0: unexpected event for opcode 0x0c5b
[  281.539648][ T6031] kye 0003:0458:5016.000A: input,hiddev1,hidraw1: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.7-1/input0
[  282.637882][T14813] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3333'.
[  282.824436][ T6031] usb 12-1: USB disconnect, device number 3
[  282.972016][T14824] sch_fq: defrate 53322 ignored.
[  283.379531][T14834] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  283.379659][ T5966] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  283.737417][T14845] netlink: 'syz.2.3347': attribute type 1 has an invalid length.
[  283.740212][T14845] netlink: 'syz.2.3347': attribute type 4 has an invalid length.
[  283.742944][T14845] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.3347'.
[  283.750306][ T1344] usb 13-1: USB disconnect, device number 4
[  283.767126][T14845] netlink: 'syz.2.3347': attribute type 1 has an invalid length.
[  283.769863][T14845] netlink: 'syz.2.3347': attribute type 4 has an invalid length.
[  283.773429][T14845] netlink: 9462 bytes leftover after parsing attributes in process `syz.2.3347'.
[  283.833729][T14847] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3348'.
[  283.852040][T14849] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3349'.
[  284.179243][   T40] kauditd_printk_skb: 3016 callbacks suppressed
[  284.179255][   T40] audit: type=1800 audit(1759348948.325:7170): pid=14867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.3356" name="bus" dev="overlay" ino=279 res=0 errno=0
[  285.155265][T14905] gretap0: entered allmulticast mode
[  285.164470][T14904] gretap0: left allmulticast mode
[  285.572503][T14929] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3382'.
[  286.995021][T14996] netlink: 2028 bytes leftover after parsing attributes in process `syz.7.3405'.
[  286.998497][T14996] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3405'.
[  287.062997][T14997] netlink: 20 bytes leftover after parsing attributes in process `syz.4.3406'.
[  288.165483][T15007] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3410'.
[  288.665728][T15009] netlink: 32 bytes leftover after parsing attributes in process `syz.7.3410'.
[  288.930622][T15030] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3417'.
[  288.934642][T15030] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3417'.
[  289.272995][T15056] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3430'.
[  289.276448][T15056] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3430'.
[  290.565917][T15120] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  291.007101][   T53] usb 13-1: new high-speed USB device number 5 using dummy_hcd
[  291.038808][    C3] vcan0: j1939_tp_rxtimer: 0xffff888060905c00: rx timeout, send abort
[  291.167439][   T53] usb 13-1: Using ep0 maxpacket: 32
[  291.184590][   T53] usb 13-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  291.197221][   T53] usb 13-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  291.200714][   T53] usb 13-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  291.204149][   T53] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.208373][   T53] usb 13-1: config 0 descriptor??
[  291.541708][    C3] vcan0: j1939_tp_rxtimer: 0xffff888060905c00: abort rx timeout. Force session deactivation
[  291.544152][T15165] overlayfs: failed to clone upperpath
[  291.600407][T10130] libceph: connect (1)[c::]:6789 error -22
[  291.602657][T10130] libceph: mon0 (1)[c::]:6789 connect error
[  291.701313][T15169] ceph: No mds server is up or the cluster is laggy
[  292.045747][T15202] __nla_validate_parse: 5 callbacks suppressed
[  292.045769][T15202] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3490'.
[  292.163870][   T53] usbhid 13-1:0.0: can't add hid device: -71
[  292.179718][   T53] usbhid 13-1:0.0: probe with driver usbhid failed with error -71
[  292.202914][   T53] usb 13-1: USB disconnect, device number 5
[  292.269569][T15218] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3496'.
[  292.814521][T15241] overlayfs: failed to clone upperpath
[  293.147003][T15193] comedi comedi2: reset error (fatal)
[  293.322172][T15258] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3512'.
[  293.381858][T15262] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3513'.
[  293.819914][T15282] bond3: (slave syz_tun): Releasing active interface
[  294.257540][T15292] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3524'.
[  294.346217][T15298] netlink: 168 bytes leftover after parsing attributes in process `syz.7.3527'.
[  294.355129][T15298] netlink: 168 bytes leftover after parsing attributes in process `syz.7.3527'.
[  294.458153][T15305] Bluetooth: hci0: unsupported parameter 27905
[  294.463747][T15305] Bluetooth: hci0: unsupported parameter 102
[  294.466838][T15305] Bluetooth: hci0: unsupported parameter 27905
[  294.469744][T15305] Bluetooth: hci0: unsupported parameter 102
[  294.530018][   T40] audit: type=1326 audit(1759348958.675:7171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15308 comm="syz.4.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  294.540277][   T40] audit: type=1326 audit(1759348958.675:7172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15308 comm="syz.4.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  294.551102][   T40] audit: type=1326 audit(1759348958.675:7173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15308 comm="syz.4.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70be579 code=0x7ffc0000
[  294.563390][   T40] audit: type=1326 audit(1759348958.675:7174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15308 comm="syz.4.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  294.573177][   T40] audit: type=1326 audit(1759348958.675:7175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15308 comm="syz.4.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  294.582668][   T40] audit: type=1326 audit(1759348958.675:7176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15308 comm="syz.4.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70be579 code=0x7ffc0000
[  294.591414][   T40] audit: type=1326 audit(1759348958.675:7177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15308 comm="syz.4.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  294.603725][   T40] audit: type=1326 audit(1759348958.675:7178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15308 comm="syz.4.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf70be579 code=0x7ffc0000
[  294.614241][   T40] audit: type=1326 audit(1759348958.675:7179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15308 comm="syz.4.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  294.628900][   T40] audit: type=1326 audit(1759348958.675:7180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15308 comm="syz.4.3532" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  294.786893][T15331] 9pnet: p9_errstr2errno: server reported unknown error 184467440
[  295.022037][T15345] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  295.025001][T15345] overlayfs: failed to set xattr on upper
[  295.027860][T15345] overlayfs: ...falling back to redirect_dir=nofollow.
[  295.262867][T15360] "syz.7.3553" (15360) uses obsolete ecb(arc4) skcipher
[  295.268406][T15358] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3552'.
[  295.567126][   T56] usb 12-1: new high-speed USB device number 4 using dummy_hcd
[  295.726448][   T56] usb 12-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  295.732975][   T56] usb 12-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  295.743029][   T56] usb 12-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  295.748095][   T56] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.755976][T15362] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  295.762876][   T56] usb 12-1: Quirk or no altset; falling back to MIDI 1.0
[  295.873087][T15383] netlink: 892 bytes leftover after parsing attributes in process `syz.4.3562'.
[  295.879427][T15383] netlink: 892 bytes leftover after parsing attributes in process `syz.4.3562'.
[  295.969348][   T56] usb 12-1: USB disconnect, device number 4
[  297.518024][T15442] __nla_validate_parse: 1 callbacks suppressed
[  297.518045][T15442] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3584'.
[  297.701977][T15455] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3590'.
[  298.609549][T15492] sch_tbf: burst 274 is lower than device lo mtu (65550) !
[  299.048811][T15510] netlink: 24 bytes leftover after parsing attributes in process `syz.8.3610'.
[  299.181919][T15514] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  299.185716][T15514] overlayfs: failed to set xattr on upper
[  299.188149][T15514] overlayfs: ...falling back to redirect_dir=nofollow.
[  299.190653][T15514] overlayfs: ...falling back to index=off.
[  299.193293][T15514] overlayfs: ...falling back to uuid=null.
[  299.197638][T15514] overlayfs: maximum fs stacking depth exceeded
[  299.231621][T15518] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3613'.
[  299.239032][T15519] Failed to get privilege flags for destination (handle=0x2:0x0)
[  299.511431][T15530] netlink: 136784 bytes leftover after parsing attributes in process `syz.2.3619'.
[  299.516324][T15530] netlink: zone id is out of range
[  299.519660][T15530] netlink: zone id is out of range
[  299.521933][T15530] netlink: zone id is out of range
[  299.524364][T15530] netlink: zone id is out of range
[  299.526572][T15530] netlink: zone id is out of range
[  299.530617][T15530] netlink: zone id is out of range
[  299.533403][T15530] netlink: zone id is out of range
[  299.535956][T15530] netlink: zone id is out of range
[  299.538700][T15530] netlink: zone id is out of range
[  299.540826][T15530] netlink: zone id is out of range
[  299.547206][ T6031] usb 13-1: new high-speed USB device number 6 using dummy_hcd
[  299.620151][T15535] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3621'.
[  299.707118][ T6031] usb 13-1: Using ep0 maxpacket: 8
[  299.714460][ T6031] usb 13-1: config 0 has an invalid interface number: 55 but max is 0
[  299.723112][ T6031] usb 13-1: config 0 has no interface number 0
[  299.725753][ T6031] usb 13-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  299.735103][ T6031] usb 13-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[  299.740919][ T6031] usb 13-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  299.745053][ T6031] usb 13-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[  299.750977][ T6031] usb 13-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[  299.754201][ T6031] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  299.759643][ T6031] usb 13-1: config 0 descriptor??
[  299.773024][ T6031] ldusb 13-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[  300.030841][   T40] kauditd_printk_skb: 29 callbacks suppressed
[  300.030969][   T40] audit: type=1326 audit(1759348964.175:7210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15554 comm="syz.2.3631" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7fc00000
[  300.058025][ T6031] usb 13-1: USB disconnect, device number 6
[  300.063657][ T6031] ldusb 13-1:0.55: LD USB Device #0 now disconnected
[  300.098725][   T40] audit: type=1326 audit(1759348964.245:7211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15554 comm="syz.2.3631" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7fc00000
[  300.129736][   T40] audit: type=1326 audit(1759348964.275:7212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15554 comm="syz.2.3631" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7fc00000
[  300.138258][T15567] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  300.142596][T15567] block device autoloading is deprecated and will be removed.
[  300.157056][   T40] audit: type=1326 audit(1759348964.275:7213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15554 comm="syz.2.3631" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7fc00000
[  300.727878][   T40] audit: type=1326 audit(1759348964.875:7214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15554 comm="syz.2.3631" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7fc00000
[  300.737360][   T40] audit: type=1326 audit(1759348964.875:7215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15554 comm="syz.2.3631" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70be579 code=0x7fc00000
[  300.767855][T15571] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3634'.
[  300.789442][T15575] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3637'.
[  300.898534][T15582] overlayfs: failed to clone upperpath
[  300.908415][   T40] audit: type=1326 audit(1759348965.045:7216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15583 comm="syz.8.3643" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  300.923029][   T40] audit: type=1326 audit(1759348965.045:7217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15583 comm="syz.8.3643" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  300.934670][   T40] audit: type=1326 audit(1759348965.045:7218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15583 comm="syz.8.3643" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  300.949109][   T40] audit: type=1326 audit(1759348965.045:7219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=15583 comm="syz.8.3643" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa4579 code=0x7ffc0000
[  300.972168][T15591] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3645'.
[  301.199509][T15598] netlink: 'syz.2.3648': attribute type 12 has an invalid length.
[  301.233851][T15601] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3650'.
[  301.238962][T15602] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  301.253418][T15602] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  302.037087][   T53] usb 13-1: new high-speed USB device number 7 using dummy_hcd
[  302.188207][   T53] usb 13-1: Using ep0 maxpacket: 8
[  302.197103][   T53] usb 13-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  302.200713][   T53] usb 13-1: config 0 has no interfaces?
[  302.203677][   T53] usb 13-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  302.206795][   T53] usb 13-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  302.211019][   T53] usb 13-1: config 0 descriptor??
[  302.227948][T15641] overlayfs: failed to clone upperpath
[  302.427639][ T6062] usb 13-1: USB disconnect, device number 7
[  302.568414][T15658] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  302.571479][T15658] block device autoloading is deprecated and will be removed.
[  302.617563][T15657] md2: using deprecated bitmap file support
[  302.622599][T15657] md2: error: failed to get bitmap file
[  303.107456][   T29] usb 12-1: new high-speed USB device number 5 using dummy_hcd
[  303.128505][T15674] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  303.132804][T15674] block device autoloading is deprecated and will be removed.
[  303.268772][   T29] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  303.270440][T15678] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  303.273282][   T29] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  303.276574][T15678] overlayfs: failed to set xattr on upper
[  303.276588][T15678] overlayfs: ...falling back to redirect_dir=nofollow.
[  303.276597][T15678] overlayfs: ...falling back to index=off.
[  303.276604][T15678] overlayfs: ...falling back to uuid=null.
[  303.276612][T15678] overlayfs: ...falling back to xino=off.
[  303.293685][   T29] usb 12-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[  303.296710][   T29] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.302702][   T29] usb 12-1: config 0 descriptor??
[  303.334828][T15681] overlayfs: failed to clone upperpath
[  304.096782][T15703] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3687'.
[  304.119913][T15703] 8021q: adding VLAN 0 to HW filter on device bond1
[  304.148839][T15703] vlan2: entered allmulticast mode
[  304.150830][T15703] bond1: entered allmulticast mode
[  304.693477][ T1140] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.812064][ T1140] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.922075][ T1140] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.945611][ T5336] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  304.955436][ T5336] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  304.960336][ T5336] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  304.970321][ T5336] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  304.974323][ T5336] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  305.035806][ T1140] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.238142][T15722] chnl_net:caif_netlink_parms(): no params data found
[  305.317622][ T1140] bridge_slave_1: left allmulticast mode
[  305.319865][ T1140] bridge_slave_1: left promiscuous mode
[  305.322244][ T1140] bridge0: port 2(bridge_slave_1) entered disabled state
[  305.327480][ T1140] bridge_slave_0: left allmulticast mode
[  305.330524][ T1140] bridge_slave_0: left promiscuous mode
[  305.333864][ T1140] bridge0: port 1(bridge_slave_0) entered disabled state
[  305.781090][   T29] usbhid 12-1:0.0: can't add hid device: -71
[  305.783671][   T29] usbhid 12-1:0.0: probe with driver usbhid failed with error -71
[  305.789711][   T29] usb 12-1: USB disconnect, device number 5
[  305.959456][T15775] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3718'.
[  305.975127][ T1140] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  305.984350][ T1140] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  305.989868][ T1140] bond0 (unregistering): Released all slaves
[  305.993578][T15776] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  305.996755][T15776] block device autoloading is deprecated and will be removed.
[  306.077753][T15780] netlink: 'syz.7.3719': attribute type 1 has an invalid length.
[  306.135958][ T1140] bond1 (unregistering): Released all slaves
[  306.214848][T15780] bond1: entered promiscuous mode
[  306.216788][T15780] 8021q: adding VLAN 0 to HW filter on device bond1
[  306.301899][T15722] bridge0: port 1(bridge_slave_0) entered blocking state
[  306.305266][T15722] bridge0: port 1(bridge_slave_0) entered disabled state
[  306.310562][T15722] bridge_slave_0: entered allmulticast mode
[  306.314861][T15722] bridge_slave_0: entered promiscuous mode
[  306.330078][T15783] bond1: (slave bridge5): making interface the new active one
[  306.333280][T15783] bridge5: entered promiscuous mode
[  306.336444][T15783] bond1: (slave bridge5): Enslaving as an active interface with an up link
[  306.424983][ T1140] tipc: Left network mode
[  306.425159][T15722] bridge0: port 2(bridge_slave_1) entered blocking state
[  306.430169][T15722] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.432809][T15722] bridge_slave_1: entered allmulticast mode
[  306.435605][T15722] bridge_slave_1: entered promiscuous mode
[  306.485753][T15798] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  306.504112][   T40] kauditd_printk_skb: 13 callbacks suppressed
[  306.504133][   T40] audit: type=1804 audit(1759348970.645:7233): pid=15803 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.3724" name="file0" dev="tmpfs" ino=5610 res=1 errno=0
[  306.510848][T15803] ref_ctr going negative. vaddr: 0x80ffc002, curr val: -29824, delta: 1
[  306.522527][T15803] ref_ctr increment failed for inode: 0x15ea offset: 0x7 ref_ctr_offset: 0x2 of mm: 0xffff88804f496b80
[  306.550917][T15722] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  306.559749][T15722] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  306.626835][T15722] team0: Port device team_slave_0 added
[  306.633518][T15722] team0: Port device team_slave_1 added
[  306.705629][T15722] batman_adv: batadv0: Adding interface: batadv_slave_0
[  306.708737][T15722] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  306.717738][T15722] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  306.724247][T15722] batman_adv: batadv0: Adding interface: batadv_slave_1
[  306.727987][T15722] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  306.739589][T15722] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  306.795365][ T1140] hsr_slave_0: left promiscuous mode
[  306.798224][ T1140] hsr_slave_1: left promiscuous mode
[  306.800953][ T1140] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  306.803907][ T1140] batman_adv: batadv0: Removing interface: batadv_slave_0
[  306.807401][ T1140] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  306.810216][ T1140] batman_adv: batadv0: Removing interface: batadv_slave_1
[  306.851912][ T1140] veth1_macvtap: left promiscuous mode
[  306.854317][ T1140] veth0_macvtap: left promiscuous mode
[  306.856815][ T1140] veth1_vlan: left promiscuous mode
[  306.859433][ T1140] veth0_vlan: left promiscuous mode
[  307.069177][ T5993] Bluetooth: hci1: command tx timeout
[  308.412326][ T1140] team0 (unregistering): Port device team_slave_1 removed
[  308.599094][ T1140] team0 (unregistering): Port device team_slave_0 removed
[  308.603430][T15866] netlink: 32 bytes leftover after parsing attributes in process `syz.2.3745'.
[  309.137339][ T5993] Bluetooth: hci1: command tx timeout
[  309.371625][T15870] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3746'.
[  309.436366][T15871] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3746'.
[  309.757660][T15722] hsr_slave_0: entered promiscuous mode
[  309.761337][T15722] hsr_slave_1: entered promiscuous mode
[  309.764451][T15722] debugfs: 'hsr0' already exists in 'hsr'
[  309.766885][T15722] Cannot create hsr debugfs directory
[  309.796252][T15851] netlink: 44 bytes leftover after parsing attributes in process `syz.4.3740'.
[  310.139291][T15891] overlayfs: failed to clone upperpath
[  310.279561][T15722] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  310.286412][T15722] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  310.300450][T15722] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  310.309985][T15722] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  310.382489][T15722] 8021q: adding VLAN 0 to HW filter on device bond0
[  310.393104][T15722] 8021q: adding VLAN 0 to HW filter on device team0
[  310.404545][   T84] bridge0: port 1(bridge_slave_0) entered blocking state
[  310.407606][   T84] bridge0: port 1(bridge_slave_0) entered forwarding state
[  310.420508][   T54] bridge0: port 2(bridge_slave_1) entered blocking state
[  310.424512][   T54] bridge0: port 2(bridge_slave_1) entered forwarding state
[  310.481230][T15915] netlink: 8 bytes leftover after parsing attributes in process `syz.4.3757'.
[  310.656678][T15722] 8021q: adding VLAN 0 to HW filter on device batadv0
[  310.719606][T15930] netlink: 24 bytes leftover after parsing attributes in process `syz.4.3759'.
[  310.936005][T15722] veth0_vlan: entered promiscuous mode
[  310.948380][T15722] veth1_vlan: entered promiscuous mode
[  310.969647][T15722] veth0_macvtap: entered promiscuous mode
[  310.975636][T15722] veth1_macvtap: entered promiscuous mode
[  310.991719][T15722] batman_adv: batadv0: Interface activated: batadv_slave_0
[  311.003895][T15722] batman_adv: batadv0: Interface activated: batadv_slave_1
[  311.013836][   T84] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  311.018973][   T84] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  311.028883][   T84] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  311.040836][   T84] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  311.071350][  T170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  311.074333][  T170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  311.113084][  T170] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  311.116628][  T170] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  311.217250][ T5993] Bluetooth: hci1: command tx timeout
[  311.305353][T15965] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3770'.
[  311.998521][T15973] : renamed from dummy0 (while UP)
[  312.429078][T16001] netlink: 80 bytes leftover after parsing attributes in process `syz.2.3780'.
[  312.461894][T16003] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3781'.
[  312.537679][T16007] Bluetooth: hci0: unsupported parameter 28022
[  312.540881][T16007] Bluetooth: hci0: invalid len left 4, exp >= 105
[  312.622685][T16016] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3784'.
[  312.764639][T16021] overlayfs: failed to clone upperpath
[  312.836229][T16025] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3788'.
[  313.297268][ T5993] Bluetooth: hci1: command tx timeout
[  313.520922][T16049] overlayfs: failed to clone upperpath
[  314.369851][T16075] gretap0: entered allmulticast mode
[  314.373643][T16074] gretap0: left allmulticast mode
[  314.635629][T16088] Bluetooth: hci4: Frame reassembly failed (-90)
[  314.640170][   T54] Bluetooth: hci4: Frame reassembly failed (-84)
[  315.282497][T16101] bridge: RTM_NEWNEIGH with invalid ether address
[  315.525710][T16110] 9pnet_fd: Insufficient options for proto=fd
[  316.657300][ T5993] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  316.657625][ T5336] Bluetooth: hci4: command 0x1003 tx timeout
[  316.839161][T16132] block nbd9: NBD_DISCONNECT
[  316.841949][T16132] block nbd9: Disconnected due to user request.
[  316.844996][T16132] block nbd9: shutting down sockets
[  318.646092][T16177] __nla_validate_parse: 1 callbacks suppressed
[  318.646112][T16177] netlink: 24 bytes leftover after parsing attributes in process `syz.7.3851'.
[  318.746598][   T40] audit: type=1804 audit(1759348982.885:7234): pid=16181 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.3853" name="/newroot/172/file0" dev="tmpfs" ino=981 res=1 errno=0
[  320.543233][T16237] overlayfs: failed to clone upperpath
[  320.903633][T16260] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  320.949073][T16260] syzkaller0: entered promiscuous mode
[  320.951757][T16260] syzkaller0: entered allmulticast mode
[  320.955475][T16260] tipc: Resetting bearer <eth:syzkaller0>
[  321.001895][T16259] tipc: Resetting bearer <eth:syzkaller0>
[  321.945720][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  321.948081][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  323.026483][T16259] tipc: Disabling bearer <eth:syzkaller0>
[  323.118188][T16286] netlink: 2028 bytes leftover after parsing attributes in process `syz.2.3889'.
[  323.122059][T16286] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3889'.
[  323.938303][   T29] usb 12-1: new high-speed USB device number 6 using dummy_hcd
[  323.956776][T16323] overlayfs: failed to clone upperpath
[  324.120162][   T29] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  324.124044][   T29] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  324.127619][   T29] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  324.131826][   T29] usb 12-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  324.134910][   T29] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  324.142056][   T29] usb 12-1: config 0 descriptor??
[  324.271641][T16339] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3905'.
[  324.276356][T16339] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3905'.
[  324.555877][   T29] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[  324.558380][   T29] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[  324.560898][   T29] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[  324.563587][   T29] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[  324.566260][   T29] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[  324.568963][   T29] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[  324.571370][   T29] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[  324.573784][   T29] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[  324.577022][   T29] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[  324.580270][   T29] plantronics 0003:047F:FFFF.000B: unknown main item tag 0x0
[  324.588465][   T29] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[  324.812167][ T1344] usb 12-1: USB disconnect, device number 6
[  325.345581][T16355] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3911'.
[  325.372743][T16355] 8021q: adding VLAN 0 to HW filter on device bond8
[  325.405529][T16355] macvlan0: entered promiscuous mode
[  325.408378][T16355] macvlan0: entered allmulticast mode
[  325.412593][T16355] bond8: entered promiscuous mode
[  325.415703][T16355] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  325.431647][T16355] bond8: left promiscuous mode
[  325.630857][T16381] netlink: 'syz.2.3922': attribute type 10 has an invalid length.
[  325.652995][T16381] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  326.547386][ T5336] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  326.553866][ T5336] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  326.560547][ T5336] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  326.566472][ T5336] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  326.570704][ T5336] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  326.715437][T16413] chnl_net:caif_netlink_parms(): no params data found
[  326.796243][T16413] bridge0: port 1(bridge_slave_0) entered blocking state
[  326.799578][T16413] bridge0: port 1(bridge_slave_0) entered disabled state
[  326.802365][T16413] bridge_slave_0: entered allmulticast mode
[  326.805545][T16413] bridge_slave_0: entered promiscuous mode
[  326.809094][T16413] bridge0: port 2(bridge_slave_1) entered blocking state
[  326.811676][T16413] bridge0: port 2(bridge_slave_1) entered disabled state
[  326.814721][T16413] bridge_slave_1: entered allmulticast mode
[  326.818068][T16413] bridge_slave_1: entered promiscuous mode
[  326.859248][T16413] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  326.864618][T16413] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  326.920291][T16413] team0: Port device team_slave_0 added
[  326.925606][T16413] team0: Port device team_slave_1 added
[  326.986694][T16413] batman_adv: batadv0: Adding interface: batadv_slave_0
[  326.989152][T16413] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  326.998832][T16413] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  327.003560][T16413] batman_adv: batadv0: Adding interface: batadv_slave_1
[  327.005930][T16413] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  327.016000][T16413] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  327.078772][T16413] hsr_slave_0: entered promiscuous mode
[  327.082765][T16413] hsr_slave_1: entered promiscuous mode
[  327.085726][T16413] debugfs: 'hsr0' already exists in 'hsr'
[  327.088791][T16413] Cannot create hsr debugfs directory
[  327.390729][T16442] overlayfs: failed to clone upperpath
[  327.825038][T16413] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  327.829848][T16413] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  327.835002][T16413] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  327.842328][T16413] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  327.946699][T16413] 8021q: adding VLAN 0 to HW filter on device bond0
[  327.966433][T16413] 8021q: adding VLAN 0 to HW filter on device team0
[  327.972760][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  327.975617][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  327.986483][T16492] net_ratelimit: 4112 callbacks suppressed
[  327.986494][T16492] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[  327.988704][   T84] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.994356][   T84] bridge0: port 2(bridge_slave_1) entered forwarding state
[  328.033805][T16413] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  328.170861][T16413] 8021q: adding VLAN 0 to HW filter on device batadv0
[  328.197544][T16413] veth0_vlan: entered promiscuous mode
[  328.204204][T16413] veth1_vlan: entered promiscuous mode
[  328.222218][T16413] veth0_macvtap: entered promiscuous mode
[  328.229306][T16413] veth1_macvtap: entered promiscuous mode
[  328.250509][T16413] batman_adv: batadv0: Interface activated: batadv_slave_0
[  328.261986][T16413] batman_adv: batadv0: Interface activated: batadv_slave_1
[  328.274164][   T54] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  328.291102][   T54] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  328.294945][   T54] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  328.315939][   T54] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  328.325148][T16517] netlink: 4 bytes leftover after parsing attributes in process `syz.7.3961'.
[  328.331409][T16517] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3961'.
[  328.423917][  T170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  328.426411][  T170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  328.477856][   T54] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  328.487985][   T54] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  328.516668][T16530] overlayfs: failed to clone upperpath
[  328.521761][T16530] overlayfs: failed to clone upperpath
[  328.666304][ T5993] Bluetooth: hci4: command tx timeout
[  328.675453][T16546] overlayfs: failed to clone upperpath
[  329.091986][T16561] overlayfs: failed to clone upperpath
[  330.620953][T16535] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  330.747426][ T5993] Bluetooth: hci4: command tx timeout
[  331.097119][ T5989] usb 14-1: new full-speed USB device number 2 using dummy_hcd
[  331.285875][ T5989] usb 14-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  331.289458][ T5989] usb 14-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[  331.293901][ T5989] usb 14-1: config 1 has 1 interface, different from the descriptor's value: 66
[  331.297616][ T5989] usb 14-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 12336, setting to 64
[  331.301162][   T40] audit: type=1326 audit(1759348995.445:7235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16627 comm="syz.2.3994" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7fc00000
[  331.304085][ T5989] usb 14-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  331.315362][ T5989] usb 14-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  331.319352][ T5989] usb 14-1: Product: syz
[  331.321066][ T5989] usb 14-1: Manufacturer: syz
[  331.334817][ T5989] cdc_wdm 14-1:1.0: skipping garbage
[  331.336682][ T5989] cdc_wdm 14-1:1.0: skipping garbage
[  331.343476][ T5989] cdc_wdm 14-1:1.0: cdc-wdm0: USB WDM device
[  331.345434][ T5989] cdc_wdm 14-1:1.0: Unknown control protocol
[  331.581881][   T29] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  331.584635][    C0] cdc_wdm 14-1:1.0: nonzero urb status received: -71
[  331.589146][    C0] cdc_wdm 14-1:1.0: wdm_int_callback - 0 bytes
[  331.592055][    C0] cdc_wdm 14-1:1.0: nonzero urb status received: -71
[  331.594558][    C0] cdc_wdm 14-1:1.0: wdm_int_callback - 0 bytes
[  331.597046][    C0] cdc_wdm 14-1:1.0: nonzero urb status received: -71
[  331.599448][    C0] cdc_wdm 14-1:1.0: wdm_int_callback - 0 bytes
[  331.602278][    C0] cdc_wdm 14-1:1.0: nonzero urb status received: -71
[  331.605080][    C0] cdc_wdm 14-1:1.0: wdm_int_callback - 0 bytes
[  331.608482][    C0] cdc_wdm 14-1:1.0: nonzero urb status received: -71
[  331.611410][    C0] cdc_wdm 14-1:1.0: wdm_int_callback - 0 bytes
[  331.614382][    C0] cdc_wdm 14-1:1.0: nonzero urb status received: -71
[  331.617550][    C0] cdc_wdm 14-1:1.0: wdm_int_callback - 0 bytes
[  331.620670][    C0] cdc_wdm 14-1:1.0: nonzero urb status received: -71
[  331.623661][    C0] cdc_wdm 14-1:1.0: wdm_int_callback - 0 bytes
[  331.626479][    C0] cdc_wdm 14-1:1.0: nonzero urb status received: -71
[  331.629159][    C0] cdc_wdm 14-1:1.0: wdm_int_callback - 0 bytes
[  331.631915][ T1344] usb 14-1: USB disconnect, device number 2
[  331.757284][   T29] usb 5-1: Using ep0 maxpacket: 16
[  331.762411][   T29] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  331.767661][   T29] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  331.770444][   T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  331.773006][   T29] usb 5-1: Product: syz
[  331.774330][   T29] usb 5-1: Manufacturer: syz
[  331.775764][   T29] usb 5-1: SerialNumber: syz
[  331.779350][   T29] usb 5-1: config 0 descriptor??
[  331.784220][   T29] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  331.787968][   T29] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  331.974613][   T40] audit: type=1326 audit(1759348996.115:7236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16627 comm="syz.2.3994" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70be579 code=0x7fc00000
[  332.031932][T16660] overlayfs: failed to clone upperpath
[  332.164817][T16671] overlayfs: failed to clone upperpath
[  332.250484][T16675] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4006'.
[  332.273971][T16677] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4007'.
[  332.278882][T16677] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4007'.
[  332.391516][   T29] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  332.691364][T16693] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3070988179 (3070988179 ns) > initial count (1876204212 ns). Using initial count to start timer.
[  332.815245][   T29] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[  332.817634][ T5993] Bluetooth: hci4: command tx timeout
[  332.819977][   T29] em28xx 5-1:0.0: board has no eeprom
[  332.891920][T16701] syz_tun: entered allmulticast mode
[  332.895645][T16700] syz_tun: left allmulticast mode
[  332.897474][   T29] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  332.902248][   T29] em28xx 5-1:0.0: dvb set to bulk mode.
[  332.904712][ T6061] em28xx 5-1:0.0: Binding DVB extension
[  332.917482][   T29] usb 5-1: USB disconnect, device number 2
[  332.926558][   T29] em28xx 5-1:0.0: Disconnecting em28xx
[  332.950872][ T6061] em28xx 5-1:0.0: Registering input extension
[  332.954189][   T29] em28xx 5-1:0.0: Closing input extension
[  333.009413][   T29] em28xx 5-1:0.0: Freeing device
[  333.437159][ T6062] usb 14-1: new high-speed USB device number 3 using dummy_hcd
[  333.590648][ T6062] usb 14-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  333.605796][ T6062] usb 14-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  333.611185][ T6062] usb 14-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  333.626317][ T6062] usb 14-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.637256][T16719] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  333.640691][T16743] overlayfs: failed to clone upperpath
[  333.644918][ T6062] usb 14-1: Quirk or no altset; falling back to MIDI 1.0
[  333.880019][   T29] usb 14-1: USB disconnect, device number 3
[  334.439467][T16755] tipc: Failed to remove unknown binding: 66,1,1/185:3098286711/3098286713
[  334.444820][T16755] tipc: Failed to remove unknown binding: 66,1,1/185:3098286711/3098286713
[  334.448416][T16755] tipc: Failed to remove unknown binding: 66,1,1/185:3098286711/3098286713
[  334.700706][T16773] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4045'.
[  334.706626][T16773] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4045'.
[  334.897180][ T5993] Bluetooth: hci4: command tx timeout
[  335.100529][T16787] md: md2 stopped.
[  335.157248][T16787] md2: using deprecated bitmap file support
[  335.159723][T16787] md2: error: bitmap file must be a regular file
[  335.404359][T16800] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4056'.
[  335.412898][T16800] netlink: 28 bytes leftover after parsing attributes in process `syz.9.4056'.
[  335.541941][ T5993] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci3/hci3:201'
[  335.545213][ T5993] CPU: 0 UID: 0 PID: 5993 Comm: kworker/u33:6 Not tainted syzkaller #0 PREEMPT(full) 
[  335.545230][ T5993] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  335.545239][ T5993] Workqueue: hci3 hci_rx_work
[  335.545270][ T5993] Call Trace:
[  335.545276][ T5993]  <TASK>
[  335.545281][ T5993]  dump_stack_lvl+0x16c/0x1f0
[  335.545301][ T5993]  sysfs_warn_dup+0x7f/0xa0
[  335.545322][ T5993]  sysfs_create_dir_ns+0x24b/0x2b0
[  335.545336][ T5993]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  335.545350][ T5993]  ? find_held_lock+0x2b/0x80
[  335.545366][ T5993]  ? do_raw_spin_unlock+0x172/0x230
[  335.545386][ T5993]  kobject_add_internal+0x2c4/0x9b0
[  335.545402][ T5993]  kobject_add+0x16e/0x240
[  335.545415][ T5993]  ? __pfx_kobject_add+0x10/0x10
[  335.545427][ T5993]  ? do_raw_spin_unlock+0x172/0x230
[  335.545444][ T5993]  ? kobject_put+0xab/0x5a0
[  335.545458][ T5993]  device_add+0x288/0x1aa0
[  335.545472][ T5993]  ? __pfx_dev_set_name+0x10/0x10
[  335.545485][ T5993]  ? __pfx_device_add+0x10/0x10
[  335.545497][ T5993]  ? mgmt_send_event_skb+0x2fb/0x460
[  335.545516][ T5993]  hci_conn_add_sysfs+0x17e/0x230
[  335.545533][ T5993]  le_conn_complete_evt+0x1260/0x2150
[  335.545551][ T5993]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  335.545565][ T5993]  ? hci_event_packet+0x459/0x11c0
[  335.545583][ T5993]  hci_le_conn_complete_evt+0x23c/0x370
[  335.545600][ T5993]  hci_le_meta_evt+0x357/0x5e0
[  335.545616][ T5993]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  335.545632][ T5993]  hci_event_packet+0x682/0x11c0
[  335.545646][ T5993]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  335.545662][ T5993]  ? __pfx_hci_event_packet+0x10/0x10
[  335.545678][ T5993]  ? kcov_remote_start+0x3c9/0x6d0
[  335.545694][ T5993]  ? lockdep_hardirqs_on+0x7c/0x110
[  335.545714][ T5993]  hci_rx_work+0x2c5/0x16b0
[  335.545730][ T5993]  ? rcu_is_watching+0x12/0xc0
[  335.545744][ T5993]  process_one_work+0x9cc/0x1b70
[  335.545761][ T5993]  ? __pfx_process_one_work+0x10/0x10
[  335.545775][ T5993]  ? assign_work+0x1a0/0x250
[  335.545801][ T5993]  worker_thread+0x6c8/0xf10
[  335.545817][ T5993]  ? __kthread_parkme+0x19e/0x250
[  335.545833][ T5993]  ? __pfx_worker_thread+0x10/0x10
[  335.545844][ T5993]  kthread+0x3c2/0x780
[  335.545863][ T5993]  ? __pfx_kthread+0x10/0x10
[  335.545881][ T5993]  ? rcu_is_watching+0x12/0xc0
[  335.545893][ T5993]  ? __pfx_kthread+0x10/0x10
[  335.545911][ T5993]  ret_from_fork+0x56d/0x730
[  335.545929][ T5993]  ? __pfx_kthread+0x10/0x10
[  335.545948][ T5993]  ret_from_fork_asm+0x1a/0x30
[  335.545978][ T5993]  </TASK>
[  335.546003][ T5993] kobject: kobject_add_internal failed for hci3:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  335.646096][ T5993] Bluetooth: hci3: failed to register connection device
[  335.671942][T16818] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4064'.
[  335.777177][ T6062] usb 14-1: new high-speed USB device number 4 using dummy_hcd
[  335.937274][ T6062] usb 14-1: Using ep0 maxpacket: 32
[  335.942628][ T6062] usb 14-1: config 0 has an invalid interface number: 1 but max is 0
[  335.945558][ T6062] usb 14-1: config 0 has no interface number 0
[  335.950787][ T6062] usb 14-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[  335.954814][ T6062] usb 14-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  335.958771][ T6062] usb 14-1: Product: syz
[  335.960399][ T6062] usb 14-1: Manufacturer: syz
[  335.962056][ T6062] usb 14-1: SerialNumber: syz
[  335.967396][ T6062] usb 14-1: config 0 descriptor??
[  335.971325][ T6062] usb 14-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[  335.974033][ T6062] usb 14-1: selecting invalid altsetting 1
[  335.975852][ T6062] usb 14-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[  335.983545][ T6062] usb 14-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[  335.987806][ T6062] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[  335.991034][ T6062] usb 14-1: media controller created
[  336.010182][ T6062] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  336.190841][ T6062] usb 14-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[  336.193684][ T6062] zl10353_read_register: readreg error (reg=127, ret==-71)
[  336.196689][ T6062] usb 14-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[  336.222555][ T6062] usb 14-1: USB disconnect, device number 4
[  336.573705][T16845] netlink: 'syz.2.4072': attribute type 1 has an invalid length.
[  336.591254][T16845] bond9: entered promiscuous mode
[  336.593359][T16845] 8021q: adding VLAN 0 to HW filter on device bond9
[  336.625764][T16845] bond9: (slave bridge16): making interface the new active one
[  336.630094][T16845] bridge16: entered promiscuous mode
[  336.633246][T16845] bond9: (slave bridge16): Enslaving as an active interface with an up link
[  336.727907][T16850] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4075'.
[  337.099095][T16877] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4087'.
[  337.425645][T16897] netlink: 24 bytes leftover after parsing attributes in process `syz.9.4091'.
[  337.580330][T16899] fuse: Bad value for 'fd'
[  338.300232][T16910] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4099'.
[  338.326399][T16914] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4103'.
[  339.312893][ T5336] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[  339.316301][ T5336] CPU: 2 UID: 0 PID: 5336 Comm: kworker/u33:1 Not tainted syzkaller #0 PREEMPT(full) 
[  339.316328][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.316342][ T5336] Workqueue: hci4 hci_rx_work
[  339.316373][ T5336] Call Trace:
[  339.316382][ T5336]  <TASK>
[  339.316390][ T5336]  dump_stack_lvl+0x16c/0x1f0
[  339.316424][ T5336]  sysfs_warn_dup+0x7f/0xa0
[  339.316450][ T5336]  sysfs_create_dir_ns+0x24b/0x2b0
[  339.316472][ T5336]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  339.316494][ T5336]  ? find_held_lock+0x2b/0x80
[  339.316518][ T5336]  ? do_raw_spin_unlock+0x172/0x230
[  339.316548][ T5336]  kobject_add_internal+0x2c4/0x9b0
[  339.316573][ T5336]  kobject_add+0x16e/0x240
[  339.316591][ T5336]  ? __pfx_kobject_add+0x10/0x10
[  339.316611][ T5336]  ? do_raw_spin_unlock+0x172/0x230
[  339.316640][ T5336]  ? kobject_put+0xab/0x5a0
[  339.316665][ T5336]  device_add+0x288/0x1aa0
[  339.316687][ T5336]  ? __pfx_dev_set_name+0x10/0x10
[  339.316710][ T5336]  ? __pfx_device_add+0x10/0x10
[  339.316730][ T5336]  ? mgmt_send_event_skb+0x2fb/0x460
[  339.316761][ T5336]  hci_conn_add_sysfs+0x17e/0x230
[  339.316787][ T5336]  le_conn_complete_evt+0x1260/0x2150
[  339.316813][ T5336]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  339.316831][ T5336]  ? hci_event_packet+0x459/0x11c0
[  339.316859][ T5336]  hci_le_conn_complete_evt+0x23c/0x370
[  339.316887][ T5336]  hci_le_meta_evt+0x357/0x5e0
[  339.316912][ T5336]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  339.316959][ T5336]  hci_event_packet+0x682/0x11c0
[  339.316991][ T5336]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  339.317019][ T5336]  ? __pfx_hci_event_packet+0x10/0x10
[  339.317062][ T5336]  ? kcov_remote_start+0x3c9/0x6d0
[  339.317089][ T5336]  ? lockdep_hardirqs_on+0x7c/0x110
[  339.317125][ T5336]  hci_rx_work+0x2c5/0x16b0
[  339.317152][ T5336]  ? rcu_is_watching+0x12/0xc0
[  339.317175][ T5336]  process_one_work+0x9cc/0x1b70
[  339.317203][ T5336]  ? __pfx_process_one_work+0x10/0x10
[  339.317228][ T5336]  ? assign_work+0x1a0/0x250
[  339.317257][ T5336]  worker_thread+0x6c8/0xf10
[  339.317282][ T5336]  ? __kthread_parkme+0x19e/0x250
[  339.317303][ T5336]  ? __pfx_worker_thread+0x10/0x10
[  339.317318][ T5336]  kthread+0x3c2/0x780
[  339.317342][ T5336]  ? __pfx_kthread+0x10/0x10
[  339.317370][ T5336]  ? rcu_is_watching+0x12/0xc0
[  339.317388][ T5336]  ? __pfx_kthread+0x10/0x10
[  339.317416][ T5336]  ret_from_fork+0x56d/0x730
[  339.317443][ T5336]  ? __pfx_kthread+0x10/0x10
[  339.317470][ T5336]  ret_from_fork_asm+0x1a/0x30
[  339.317506][ T5336]  </TASK>
[  339.442377][T16941] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4116'.
[  339.447305][ T5336] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  339.447385][ T5336] Bluetooth: hci4: failed to register connection device
[  339.502905][ T5336] ==================================================================
[  339.507089][ T5336] BUG: KASAN: slab-use-after-free in l2cap_connect_cfm+0xdb9/0xf80
[  339.510746][ T5336] Read of size 8 at addr ffff88804e064480 by task kworker/u33:1/5336
[  339.516026][ T5336] 
[  339.517556][ T5336] CPU: 2 UID: 0 PID: 5336 Comm: kworker/u33:1 Not tainted syzkaller #0 PREEMPT(full) 
[  339.517583][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.517597][ T5336] Workqueue: hci4 hci_rx_work
[  339.517627][ T5336] Call Trace:
[  339.517634][ T5336]  <TASK>
[  339.517640][ T5336]  dump_stack_lvl+0x116/0x1f0
[  339.517676][ T5336]  print_report+0xcd/0x630
[  339.517700][ T5336]  ? __virt_addr_valid+0x81/0x610
[  339.517722][ T5336]  ? __phys_addr+0xe8/0x180
[  339.517742][ T5336]  ? l2cap_connect_cfm+0xdb9/0xf80
[  339.517763][ T5336]  kasan_report+0xe0/0x110
[  339.517784][ T5336]  ? l2cap_connect_cfm+0xdb9/0xf80
[  339.517806][ T5336]  l2cap_connect_cfm+0xdb9/0xf80
[  339.517829][ T5336]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  339.517851][ T5336]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  339.517871][ T5336]  le_conn_complete_evt+0x1ba6/0x2150
[  339.517895][ T5336]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  339.517916][ T5336]  ? hci_event_packet+0x459/0x11c0
[  339.517938][ T5336]  hci_le_conn_complete_evt+0x23c/0x370
[  339.517962][ T5336]  hci_le_meta_evt+0x357/0x5e0
[  339.517986][ T5336]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  339.518008][ T5336]  hci_event_packet+0x682/0x11c0
[  339.518029][ T5336]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  339.518052][ T5336]  ? __pfx_hci_event_packet+0x10/0x10
[  339.518075][ T5336]  ? kcov_remote_start+0x3c9/0x6d0
[  339.518099][ T5336]  ? lockdep_hardirqs_on+0x7c/0x110
[  339.518127][ T5336]  hci_rx_work+0x2c5/0x16b0
[  339.518150][ T5336]  ? rcu_is_watching+0x12/0xc0
[  339.518169][ T5336]  process_one_work+0x9cc/0x1b70
[  339.518205][ T5336]  ? __pfx_process_one_work+0x10/0x10
[  339.518226][ T5336]  ? assign_work+0x1a0/0x250
[  339.518252][ T5336]  worker_thread+0x6c8/0xf10
[  339.518308][ T5336]  ? __kthread_parkme+0x19e/0x250
[  339.518334][ T5336]  ? __pfx_worker_thread+0x10/0x10
[  339.518349][ T5336]  kthread+0x3c2/0x780
[  339.518373][ T5336]  ? __pfx_kthread+0x10/0x10
[  339.518396][ T5336]  ? rcu_is_watching+0x12/0xc0
[  339.518413][ T5336]  ? __pfx_kthread+0x10/0x10
[  339.518436][ T5336]  ret_from_fork+0x56d/0x730
[  339.518463][ T5336]  ? __pfx_kthread+0x10/0x10
[  339.518485][ T5336]  ret_from_fork_asm+0x1a/0x30
[  339.518510][ T5336]  </TASK>
[  339.518516][ T5336] 
[  339.605937][ T5336] Allocated by task 5336:
[  339.607575][ T5336]  kasan_save_stack+0x33/0x60
[  339.609317][ T5336]  kasan_save_track+0x14/0x30
[  339.611450][ T5336]  __kasan_kmalloc+0xaa/0xb0
[  339.613790][ T5336]  l2cap_chan_create+0x44/0x920
[  339.615490][ T5336]  l2cap_sock_alloc.constprop.0+0xf5/0x1d0
[  339.617468][ T5336]  l2cap_sock_new_connection_cb+0x101/0x240
[  339.619659][ T5336]  l2cap_connect_cfm+0x4c7/0xf80
[  339.621619][ T5336]  le_conn_complete_evt+0x1ba6/0x2150
[  339.623825][ T5336]  hci_le_conn_complete_evt+0x23c/0x370
[  339.626058][ T5336]  hci_le_meta_evt+0x357/0x5e0
[  339.627930][ T5336]  hci_event_packet+0x682/0x11c0
[  339.629712][ T5336]  hci_rx_work+0x2c5/0x16b0
[  339.631661][ T5336]  process_one_work+0x9cc/0x1b70
[  339.633502][ T5336]  worker_thread+0x6c8/0xf10
[  339.635530][ T5336]  kthread+0x3c2/0x780
[  339.637083][ T5336]  ret_from_fork+0x56d/0x730
[  339.638959][ T5336]  ret_from_fork_asm+0x1a/0x30
[  339.640557][ T5336] 
[  339.641402][ T5336] Freed by task 16931:
[  339.643146][ T5336]  kasan_save_stack+0x33/0x60
[  339.645673][ T5336]  kasan_save_track+0x14/0x30
[  339.647659][ T5336]  kasan_save_free_info+0x3b/0x60
[  339.649537][ T5336]  __kasan_slab_free+0x60/0x70
[  339.651188][ T5336]  kfree+0x2b4/0x4d0
[  339.652854][ T5336]  l2cap_chan_put+0x216/0x2c0
[  339.654783][ T5336]  l2cap_sock_cleanup_listen+0x4d/0x2a0
[  339.656828][ T5336]  l2cap_sock_release+0x69/0x250
[  339.658423][ T5336]  __sock_release+0xb0/0x270
[  339.659938][ T5336]  sock_close+0x1c/0x30
[  339.661604][ T5336]  __fput+0x402/0xb70
[  339.663175][ T5336]  task_work_run+0x150/0x240
[  339.665082][ T5336]  exit_to_user_mode_loop+0xeb/0x110
[  339.667284][ T5336]  __do_fast_syscall_32+0x240/0x300
[  339.669212][ T5336]  do_fast_syscall_32+0x32/0x80
[  339.671371][ T5336]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  339.674639][ T5336] 
[  339.675863][ T5336] The buggy address belongs to the object at ffff88804e064000
[  339.675863][ T5336]  which belongs to the cache kmalloc-2k of size 2048
[  339.682605][ T5336] The buggy address is located 1152 bytes inside of
[  339.682605][ T5336]  freed 2048-byte region [ffff88804e064000, ffff88804e064800)
[  339.690091][ T5336] 
[  339.691245][ T5336] The buggy address belongs to the physical page:
[  339.694067][ T5336] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4e060
[  339.697684][ T5336] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  339.701118][ T5336] flags: 0x4fff00000000040(head|node=1|zone=1|lastcpupid=0x7ff)
[  339.703542][ T5336] page_type: f5(slab)
[  339.705438][ T5336] raw: 04fff00000000040 ffff88801b842f00 dead000000000100 dead000000000122
[  339.709960][ T5336] raw: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[  339.712807][ T5336] head: 04fff00000000040 ffff88801b842f00 dead000000000100 dead000000000122
[  339.715570][ T5336] head: 0000000000000000 0000000080080008 00000000f5000000 0000000000000000
[  339.718588][ T5336] head: 04fff00000000003 ffffea0001381801 00000000ffffffff 00000000ffffffff
[  339.722443][ T5336] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[  339.726964][ T5336] page dumped because: kasan: bad access detected
[  339.730107][ T5336] page_owner tracks the page as allocated
[  339.732426][ T5336] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5978, tgid 5978 (syz-executor), ts 62290270815, free_ts 60055558137
[  339.741324][ T5336]  post_alloc_hook+0x1c0/0x230
[  339.743337][ T5336]  get_page_from_freelist+0x132b/0x38e0
[  339.745637][ T5336]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  339.748275][ T5336]  alloc_pages_mpol+0x1fb/0x550
[  339.750304][ T5336]  new_slab+0x247/0x330
[  339.751936][ T5336]  ___slab_alloc+0xcf2/0x1750
[  339.753467][ T5336]  __slab_alloc.constprop.0+0x56/0xb0
[  339.755253][ T5336]  __kmalloc_cache_noprof+0xfb/0x3e0
[  339.756972][ T5336]  rtnl_newlink+0x11b/0x2000
[  339.758930][ T5336]  rtnetlink_rcv_msg+0x95e/0xe90
[  339.761069][ T5336]  netlink_rcv_skb+0x155/0x420
[  339.763269][ T5336]  netlink_unicast+0x5aa/0x870
[  339.765198][ T5336]  netlink_sendmsg+0x8d1/0xdd0
[  339.766858][ T5336]  __sys_sendto+0x4a0/0x520
[  339.768298][ T5336]  __ia32_compat_sys_socketcall+0x625/0x770
[  339.770708][ T5336]  __do_fast_syscall_32+0x7c/0x300
[  339.772390][ T5336] page last free pid 5965 tgid 5965 stack trace:
[  339.774546][ T5336]  __free_frozen_pages+0x7d5/0x10f0
[  339.776251][ T5336]  __folio_put+0x329/0x450
[  339.777684][ T5336]  skb_release_data+0x81a/0x9e0
[  339.779336][ T5336]  skb_attempt_defer_free+0x1b0/0x620
[  339.781623][ T5336]  tcp_recvmsg_locked+0x1248/0x2870
[  339.784043][ T5336]  tcp_recvmsg+0x12f/0x680
[  339.786655][ T5336]  inet_recvmsg+0x12a/0x6a0
[  339.789422][ T5336]  sock_recvmsg+0x1b2/0x250
[  339.791497][ T5336]  sock_read_iter+0x2b9/0x3b0
[  339.793471][ T5336]  vfs_read+0xa98/0xcf0
[  339.795255][ T5336]  ksys_read+0x1f8/0x250
[  339.797013][ T5336]  do_syscall_64+0xcd/0x4c0
[  339.798964][ T5336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  339.801221][ T5336] 
[  339.801916][ T5336] Memory state around the buggy address:
[  339.803641][ T5336]  ffff88804e064380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  339.807432][ T5336]  ffff88804e064400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  339.811841][ T5336] >ffff88804e064480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  339.815757][ T5336]                    ^
[  339.817484][ T5336]  ffff88804e064500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  339.820706][ T5336]  ffff88804e064580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  339.824071][ T5336] ==================================================================
[  339.828200][ T5336] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  339.832242][ T5336] CPU: 1 UID: 0 PID: 5336 Comm: kworker/u33:1 Not tainted syzkaller #0 PREEMPT(full) 
[  339.837287][ T5336] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  339.842091][ T5336] Workqueue: hci4 hci_rx_work
[  339.844332][ T5336] Call Trace:
[  339.845885][ T5336]  <TASK>
[  339.847526][ T5336]  dump_stack_lvl+0x3d/0x1f0
[  339.850108][ T5336]  vpanic+0x6e8/0x7a0
[  339.852499][ T5336]  ? __pfx_vpanic+0x10/0x10
[  339.854761][ T5336]  ? __pfx_vprintk_emit+0x10/0x10
[  339.856994][ T5336]  ? l2cap_connect_cfm+0xdb9/0xf80
[  339.859436][ T5336]  panic+0xca/0xd0
[  339.861178][ T5336]  ? __pfx_panic+0x10/0x10
[  339.863453][ T5336]  ? l2cap_connect_cfm+0xdb9/0xf80
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  339.866521][ T5336]  ? preempt_schedule_common+0x44/0xc0
[  339.870524][ T5336]  ? preempt_schedule_thunk+0x16/0x30
[  339.873018][ T5336]  check_panic_on_warn+0xab/0xb0
[  339.875286][ T5336]  end_report+0x107/0x170
[  339.877314][ T5336]  kasan_report+0xee/0x110
[  339.879331][ T5336]  ? l2cap_connect_cfm+0xdb9/0xf80
[  339.881714][ T5336]  l2cap_connect_cfm+0xdb9/0xf80
[  339.884102][ T5336]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  339.887028][ T5336]  ? __pfx_l2cap_connect_cfm+0x10/0x10
[  339.890216][ T5336]  le_conn_complete_evt+0x1ba6/0x2150
[  339.892971][ T5336]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  339.895666][ T5336]  ? hci_event_packet+0x459/0x11c0
[  339.898205][ T5336]  hci_le_conn_complete_evt+0x23c/0x370
[  339.900861][ T5336]  hci_le_meta_evt+0x357/0x5e0
[  339.903575][ T5336]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[  339.907594][ T5336]  hci_event_packet+0x682/0x11c0
[  339.910513][ T5336]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  339.913318][ T5336]  ? __pfx_hci_event_packet+0x10/0x10
[  339.916228][ T5336]  ? kcov_remote_start+0x3c9/0x6d0
[  339.918668][ T5336]  ? lockdep_hardirqs_on+0x7c/0x110
[  339.921175][ T5336]  hci_rx_work+0x2c5/0x16b0
[  339.924025][ T5336]  ? rcu_is_watching+0x12/0xc0
[  339.927328][ T5336]  process_one_work+0x9cc/0x1b70
[  339.930386][ T5336]  ? __pfx_process_one_work+0x10/0x10
[  339.933109][ T5336]  ? assign_work+0x1a0/0x250
[  339.935439][ T5336]  worker_thread+0x6c8/0xf10
[  339.937454][ T5336]  ? __kthread_parkme+0x19e/0x250
[  339.939804][ T5336]  ? __pfx_worker_thread+0x10/0x10
[  339.942311][ T5336]  kthread+0x3c2/0x780
[  339.944307][ T5336]  ? __pfx_kthread+0x10/0x10
[  339.946618][ T5336]  ? rcu_is_watching+0x12/0xc0
[  339.949567][ T5336]  ? __pfx_kthread+0x10/0x10
[  339.953024][ T5336]  ret_from_fork+0x56d/0x730
[  339.956012][ T5336]  ? __pfx_kthread+0x10/0x10
[  339.958184][ T5336]  ret_from_fork_asm+0x1a/0x30
[  339.960426][ T5336]  </TASK>
[  339.962496][ T5336] Kernel Offset: disabled
[  339.964669][ T5336] Rebooting in 86400 seconds..

VM DIAGNOSIS:
19:02:19  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff88802b23b640 RCX=ffffffff81af27a3 RDX=ffff88801debc880
RSI=ffffffff81af277d RDI=0000000000000005 RBP=ffffc9000044fd08 RSP=ffffc9000044fbc0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000001 R11=fffffbfff1cb9876
R12=1ffff92000089f80 R13=0000000000000003 R14=0000000000000001 R15=ffffed10056476c9
RIP=ffffffff81af277f RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880974b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002f6faffc CR3=000000006fcb3000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000001 RBX=ffffffff8e5c1520 RCX=0000000000000002 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff8e5c1520 RBP=0000000000000002 RSP=ffffc90003d5f678
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000001 R11=00000000000115bc
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81976174 RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880975b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7316e44 CR3=000000005fcef000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000003a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8561ebe5 RDI=ffffffff9b103780 RBP=ffffffff9b103740 RSP=ffffc9000cbaf290
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3065343038386552
R12=0000000000000000 R13=000000000000003a R14=ffffffff9b103740 R15=ffffffff8561eb80
RIP=ffffffff8561ec0f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880976b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002ec1cffc CR3=000000000e380000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 27f1a8ef0cd9fced d57ab83a2398b508
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0b2d2cbc632d451d b35a12ae9789321c
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 c22c9cbbfeb1d339 1103195b6aa8db64
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 e6846dab3c93479f c79afd86a6cfc6c2
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000001fc0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cee2c235de5e55ed ebd640ea55ed0e00
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cee35dcd0000cee4 57000000a0000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cee42c6a0e000000 04000000bc000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cee5936dceeab1d1 f4eade5e04000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 de35127904257580 e55302fd052892b0
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7747a4a7022863b3 3f2336e5cccd3185
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000000 RBX=ffffea00019d3b40 RCX=ffffffff82049cd8 RDX=ffff8880286b4880
RSI=ffffffff82049cf0 RDI=0000000000000007 RBP=0000000000000001 RSP=ffffc90006617638
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=ffffea00019d3b40 R13=0000000000000000 R14=0000000000000000 R15=ffffea00019d3b40
RIP=ffffffff81bb07d6 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7ef55c0 CR3=00000000503d9000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000