last executing test programs:

2m38.662811323s ago: executing program 32 (id=534):
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000040)={'batadv_slave_0\x00', <r1=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f00000000c0)={r1, 0x11, 0x6}, 0x6d)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r2, 0x541b, &(0x7f0000000000)={<r3=>0xffffffffffffffff, 0x4, 0x3, 0x1})
close_range(r3, 0xffffffffffffffff, 0x0)

2m37.857173387s ago: executing program 33 (id=552):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-serpent-sse2\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1", 0x22}, {&(0x7f0000000540)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66", 0xae}], 0x2}], 0x1, 0x40800)
recvmsg(r1, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000600)=""/66, 0x42}, {&(0x7f0000000680)=""/158, 0x9e}], 0x2}, 0x10041)

2m25.401749401s ago: executing program 34 (id=737):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000740)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x4e23, @broadcast}, 0x2, 0x0, 0x4}}, 0x2e)
r2 = syz_genetlink_get_family_id$l2tp(&(0x7f00000008c0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000600)={0x3c, r2, 0x1, 0x1070bd2c, 0x4, {0x5}, [@L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x5}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}, @L2TP_ATTR_RECV_SEQ={0x5, 0x12, 0x77}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20008080}, 0x30)

2m17.151533733s ago: executing program 4 (id=854):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'team_slave_1\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$team(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r2, 0x8933, &(0x7f0000004700)={'team0\x00', <r4=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={0x60, r3, 0x405, 0x70bd2b, 0x25dfdbfe, {}, [{{0x8, 0x1, r4}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @priority={{{0x24}, {0x5}, {0x8, 0x4, 0xfffffffc}}, {0x8, 0x6, r1}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x2404c080)

2m17.150933236s ago: executing program 4 (id=855):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = syz_io_uring_setup(0x3ff, &(0x7f00000005c0)={0x0, 0x32b2, 0x100, 0x1, 0x3da}, &(0x7f0000000040)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
io_uring_register$IORING_REGISTER_FILES(r1, 0x2, &(0x7f0000000300)=[r0], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000140)=@IORING_OP_READV=@pass_iovec={0x1, 0x1, 0x6000, @fd_index, 0x400000080001001, 0x0})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)

2m17.037123757s ago: executing program 4 (id=857):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeed, 0x8031, 0xffffffffffffffff, 0xf6d0d000)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x1, 0x0, 0x0, 0x2)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)

2m16.551855731s ago: executing program 4 (id=861):
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f000003f000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, 0x0}], 0x1, 0x49, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000200)='./file0\x00', 0x80)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000))
rename(&(0x7f0000000080)='./cgroup\x00', &(0x7f0000000140)='./file0/file0\x00')

2m16.491865345s ago: executing program 4 (id=862):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
r2 = openat$cgroup_procs(r0, &(0x7f0000000080)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f00000000c0), 0x12)
preadv(r2, &(0x7f0000000600)=[{&(0x7f00000001c0)=""/183, 0xb7}], 0x1, 0x21, 0x0)

2m16.151355819s ago: executing program 4 (id=863):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x88840, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f00000011c0)=@vmx={0x9, 0x0, 0x2080, {0xeeec7000, 0x8080000, {0x2}, 0x1, 0x4}, {"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", "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"}})

2m16.088078795s ago: executing program 35 (id=863):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x88840, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
r3 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
ioctl$KVM_GET_NESTED_STATE(r2, 0xc080aebe, &(0x7f00000011c0)=@vmx={0x9, 0x0, 0x2080, {0xeeec7000, 0x8080000, {0x2}, 0x1, 0x4}, {"304402b241eb8ee9210164588a0faa58eeef7c20557599ac2e77647bd7d82ab7ea60f43ad46ccaab1d4f3c04512a8d8c485a1a49cdbc45ce5c6807a794285cd0bd84b176b19af256fa76ddcf316797a4497336c86a1c9eb99feb97e4fe921936036943298451b2097b27ca542017a42d3036ead7a0deecd4033b47f4a67b85fd42ba1bf9baac8968c1472ceef901a49c4385081a86e480409edc753f836dc2e8b6d433145c2fec3229863719a6372895e908ec28a6147861a7e355801134e57feb88ddc1d255e8c99922c3b9c022f31cfcb12298abba35285497fad7e0ef57b3997f964f5b51970c63dd165522c90aa46b69ddbe8413b98968ca69b96990e106b7dadff02b337256a3ace2f780981d0fc78c2120632be36863fa61ccc5979bf219650818035043f89676280fd012ed97e179a693eeb6e8df45d7a7249f4a1be41696acbd2df1eca2f3689613adf19744efb9f196b379323a73b88221736fd292e514abd02ae51bd07f548ebb8f481593dee7ce3aab0a3e9ca52032af5739474bb6298c31743ad4b3fbcf62576ab74d324b838070cc0e14e131297bb09027fcac1faa4f3c9b0b0e45cf994d3ed7a84318daae72591fa76615bc63ac68209a61ea35d647689347cb1fc04f1a45150b24a57f4a7a3f10b03c302353ca0160fd5274213d5960d1237d64f67593cdb953d30291be35035194903823e87bbc1794b2be371fa0a198f7aab05e2a335ee4db59295e13fbd83c23bdb55f9a5d2bb930985e32214ea9872a59d1abf9fe04c059d9196a470821d7c764608f178ccd5e62d321e474c6d81fa29827185d133415f8189df1192192110e6227bd04ec2395339ac788f26c32814162543cd7110d311ec8c18261350045c3924947e3cf6693baff00f4d322a2a776b55bece12483d9e5c58fa6d07259eeb909301c0276f680c7880bb6fdf9320bbe650e570ef9ad1727cb46205672b9583ac4ad31667e4cd1f0df47821dd8f6aad1b0e23d86b7cd7fc4c892201faee746801ccf5a0744c0c19a0867609a4434eb9918fd784f42c303059995fa2958e04551631c416cb5163a7c3b8ad6c4d392323ec6b9bf5a0122f43f2a9cc6234847b610585194b4aa4593c95b44b23cd5ce2d25ec57d823541e4dac4d941054b9f963bd52ad69a5d0dff4180d7399009764736fd3c73da66dae9668073f8bc2324becd82b00f282177dc4f6fecf78d10a4cc6846406d39ffb6cbbb2426154aa12cf5e65a9c64e9da4d7a5cc10e1268a7a395189bb28c070f3a0798051e17a9a6611599056fb339305c3cdf5cadb26528ea04bda5cfd99b21624e8170b78c4a793acab3df9d8c7d9306d1de9bab15bcb269d9f730b4401bf220d94e684bd2e51588401e96e550270350f06c6107fbbad5122221a34179ebc5fae780ecd54eae10b1042007b4927f4ffd2eb00b2b9404965f4ec539633b68faa8cbe7e951638491ef2399953821c6bc222bd562a5f720d8cdc8e812f19a1aff9c050b76fdb8e2c7be67f695510aba224b51b9f216ed26ab58b1ce1224923fc728a32c71a9e31ce04e8f803a8f6afb963844349273e5e2b63ca4396898a2a26e0fc591d205ce374a94770833ac4a131cbb59d53117583a2539af9b83755bf4da264307ee67a292eac5200b5e94b404c3d51024ca23655407386b3f1b86e5847c71bbce693bbf547e5a0afad02190285d6ab5782de946a31da15ee0e9135b0d8e7618be5aa3c1391cc6b6031bd5227d126b5c893e6799151f300fab7445a3726f30ff4cb56b6502d0640dc2c4b511a15b3df7601198451e41316cea80fd25821a116fab646d210b303be2fb000c89a34db7c7d9dc517331140c8c3e97b9109d43942e785e84b7f21f5d35caa508a20e56fbb5a591ecf75d361677f9767ce60ed6627bab5351b972a4afadc80fe63b6d912ad076e52f16304603726bfbd6751b1dc57c46ee5ed62a77219db9be81e3ed56b73c6b462d398b843d66c5ddb12e8f54f1961eae822ca3c9cb7574c65a0fa902d977d3df17f7bc0931fc1d37d27f1adfad4ba098b2df8878c5f5fdff2abf16fc48c11bab50b8cff94ab2414b4d6b9fdf2925e9ae4333e7d00397a98d5e0d354b08c2e9bc7d1c68dca1df51c5a7dc31a719f3619746013f8624d9051b278ed3deac105bfa77c09decd511b3829e40330399cf68279de2be490bf54c880d6ac888ebe00b468a29e3750a3323af40287bc416f62025bf4688c9541b1313f7d013fe33f09f705a3f8d14317ed91c1ee478094e8c927ad09b080e3a467fbe18fc25fc051276c6f7565fc1f364e73b4b4f26165d12c9c858b3b81f79ad07a41dad313d399adeecd57fbef83009a0bb589cd3895bc2a358ff1ff149ec240c26e86b50daa6bb98258ba8c80c8b8987996899c6d1b605f98dc234e7fa88b2369ca2de055323e1de148ea585b52cff6e9691cd1d16b1da9321798803646052f5ed8550784b28fe6700f67d59118faf1b2ed952e76b9e00a1516f00072dfcad3de689bc9006c74ebd950caa1877e153e49c00bbfb558a6a7987a9cc4ef7f7cff1d512b6adadc901fd516e40f06f97ecee6fd31af94ea19a4abf07b336aa3b1d5ef8d1cd4ae720903487bed455c8c90f8f68b77a4f54ed80b5fae55d1fe111f4439e2dc04fa5f0ae9e3abffedc497b24c76ce39b06476ba086e3f7f2969bb4ee74f3c4ee8cddde36ff1b4b89c7b4aba844c0c4bae0c56ba1f96394d78f0c2dfaaea95d66f3df3f016490405c4617b1e59a890ce741c346521ee9eefe5d67aa53996dd4c62af1b22ceb18a4027afb7cf4ae0d01cdebcacf6ac02cfab91ca752d6adf07a8f23d4532d20c05b051c30cb3630b71c14b569d147ace92d9a471496f475752e8265b0d361efb9591b09392a19e51065a48c4d5277e770648522de7ddf530f4b17a844169615da4079c599ba390b3f30a295c6c3a2b0308546210407417a4c6d1855f2018b46b7cb709fd8898ce2f6c5037464da92378a98fe5a8a91de1aa6e79b48fb75497b2dcb8349f502d586e1ee60c3e97568d63c2d7e37d84eb7acc4d7bc13e23776f7111ddb6790ced88dc51c30b2a3d3fe5cbe61d4531bcfbecc4c90e8a924b5fb22439321fbc08b0706cd9dc560425bd18c352b586a805e3193a37532e346d5cd1906403ec040dc918ed4bcfadc88047bf543cc5c21f4a874a8cbba330b2565ae57a5aca9a14cb0f392069d4e087fa6f6762fd05c4ef854d75d19127cef5c15696d2881e596c2ae2e9dde0ef5541bc6ccffa1ee311591fb60a697ee6af7a02f209c7615fa4a4fcddc65f4dc682e6a1eb9c78f6243de35eca026909fb8fdcec53aa3a6adee67a0a31260439f5473e402b2dcb5b7c2ae9c85c7736cb3651a3ba398273424a1664bde867a1b52e2e0c365fec124fa0a7b31c4f4aa99988c0e8cfb62ba347d2deddfc52d178fefc0fac58c72260ec4448592be2dc16f826717e34418860b82c79d2c1b5f1783b6e03d96a57bf607a0b3030dc4ce95348ded7b60e0fa0c4c23f791d5a5159e774e8b8a5ef76cb10108d6da753f518543c339d8aabef39740cd8410cd9ced356d76aaf866d75f01ec7d2bb5cf476facef6d812d37810b96c67c266400ddff506a00643035ae24535c26df5d4116478c62a439e71648a1e593b4693c8296a97da855da35c71aff4d872f22a19d267bdce074003c71874f7a12847e74a96c1d5742b54512df066213c140e4f2fea518979ec5f5154755e26c25c0c10bd8a66ad7d9113fb26cb39b088bc9478fd41b3195b5230b3707697bc9119ecfa4257ad023eb4c3e52d23fab934f8a9e21e5213f69849835c30c40d339f18f642d0f2f91149662f6cbf2757b932ef9ed423f0a26060f1effdbb2d02099b19aeaa805d34bb0839551c6e0c9c72639ca6bdfd09d51ea6633626db1c5ee7dceec7077994dcd16a18485ddaca90bb1f91520afe07c6929d6462fcfbe51f9a2a50e68fc30c65e2d3ab4cdc389090d40b21ee6a6b2327192d5ace3ab15f2c73a938af72029e2a52c495d80b1eb824de5a1ffd65dd4f73f6527eb50ff9b656294ea30d07f5290b8726a3e8c8fd3780d6f4a7ed366d970c93679bf94a13838739a95a6e7b7a11d32f6a6842a10dc1455945a66e662f7395d02c64408efd18d40012e7603974db08126722d517555b1210b2b557cf580d59170b39449fd280cd352412df24ed507818308d91c29d5bf2d88f1c42df0a2d6930dc7fb8d327f9a9cbfc7c0502920c5744168f20fb341a1a14593cc062c6cfa8de5591fa3eec25383fb9357a84ba50db4e1ca372e27fa33fbfd4213621335b71f2ca908ac6921c52f0734c0b24cbb3f93ecd0b683b6752a580143581176b10f6b82bb18202eb473155964b9b0cc5bc7d0f8e1512742a272b3d8437a656c6f7b67f8ff73262b60ef298eb3360093fac23c9cebc2d3b7d6fa775f1215e6afc6b23da7dffb5bc400ef1ec3eb70d2e444c8d12336ddefca4f6c9bcfc1750428cdf8a9a59ad06b30598df9e948c3a368f990a6f5589079d00ad0dad7205127a0bdc98d61aa7259d30c952b339fa9da1661ae3ce425f8b719039a10a4933620f0e3fd9f2058fdfe638fb82b5359b2cff6a71dae6c2f07ade9e60a9328791f402444526b39747429071cbd6ab2e453603b974d2e79218772761e6de6c37631899d6ce4773989f00a2a78cd6dfd7ca6307132c6dba59fafc4aeee9d585e012202f156e145a30bd092368695c4099c3e00275a0cbfef280cef10f87b994f13d0898159bdb2372c43cee90890e082b4b3f20eba2c92098d7550d2d46c9122a3e3d5f11053ec02e30b928219c0ad1c6d8b02277614ef785cadced4dd1e2fd0e2d2179516c65ba6c02a88f5cd16972f5ab8a52e0b6314f2f31b9256c2a773abe92f2178602905ded0a99015356d65b50800c07a31763be79036f23d5b1a0475b26300a3972ad4a693ba99ef518724b65b7aedc20e26e435a4730eca77d55c75ca3025b73ff41064a027f78f77360bb1ae8ca69dd4c588dd56d5f97eb83db896185158f11128bde21d7b849a82f1b037f168805ea4fe6770129629dfd9a6465fb1aa96e347d5d4a3a11cd234397b5d201e514b23b6cb32ae951b83d3d837eb57d5a25a6d21e7e2090ecbeba1647c773c96cc1c3e9f1e9f7c7e4a7bb91d048e229616d727c5d9594b0229ee72a80373d5e356309120b440ccc966c207bc61d1f0747f01c326d1a79a908ccc7357e267948a939e736ce7bf4d07f76d3b7870eedaa9b01504a9735c04662946f335ec2636e1f9c31c3a9cc5f191b461671fbcbc77dafea0873c6f1e1be2fbfb032c69ddefe68547556c785e0b848384e95bed46e63b5fa3abbab7cc8f160fa3684871cea5396d991f57d6f979052a07f250520d3c02c62d64576237235fb0a8f613e371583fe277ca9f4e0cd3eac48498349396436e1259644c441eb07e00f9a997f4f9901281a14e00f631f3bb4f06c83ecca3c64f6e859f8611f4a712ce22a09142eacfbb45ede1ba4061139071320a1f5b4ffd7e205989131648297c7874e4768af20ac8c68809fea17ee8ead6d8cd1ff0517507e647878266575cad5b9d48ad707b6e2e74a65bcfe6c0cf977fadb4fef1317b651424f8211f2edb80c6d065cc68f3939e9bbedf314b8cd989c70c1b6fd70eca1ab7eae37026afa8fd24468b37bcc91a02ed1616ac1be77ab9a1c0c8114c3ab0c20e1a6e1bc81f2e261d89420ff31ca1aed08daf0edfaacf9aa856660fbc1da7c46ad5f9385da5da22953f3d5fc617153cd33", "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"}})

54.046399592s ago: executing program 7 (id=2125):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0xc, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r3, r2, 0x25, 0x4, @void}, 0x10)
syz_emit_ethernet(0xffe, &(0x7f0000003680)=ANY=[], 0x0)

53.904021605s ago: executing program 7 (id=2128):
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x18, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_usb_connect(0x2, 0x2d, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x28, 0x10, 0x801, 0x41, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, 0x2202e}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x20048050}, 0x40014)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500003c000280"], 0x74}}, 0x0)

53.070739207s ago: executing program 7 (id=2134):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000080)='./file0\x00', &(0x7f00000004c0), 0x0, 0x0)
chdir(&(0x7f0000000100)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x42, 0x85)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_tables_targets\x00')
sendfile(r0, r1, 0x0, 0x3)

53.029507151s ago: executing program 7 (id=2136):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x23e9c9e, 0x0)
mount$bind(0x0, &(0x7f00000003c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x28a5291, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/../file0\x00', 0x89901)

52.828308277s ago: executing program 7 (id=2137):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000001180)=0x2000000)
mmap$dsp(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x3, 0x12, r0, 0x0)
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x5008, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0x10000000})
ioctl$SNDCTL_DSP_GETOPTR(r0, 0x800c5012, &(0x7f0000000200))

50.861063064s ago: executing program 7 (id=2161):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f00000002c0)={0x7f, 0x4, 0x0, 0xb9ff, 0x9})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xbfb3)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0))
r1 = syz_open_pts(r0, 0x800)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x17)

50.700929271s ago: executing program 36 (id=2161):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f00000002c0)={0x7f, 0x4, 0x0, 0xb9ff, 0x9})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xbfb3)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0))
r1 = syz_open_pts(r0, 0x800)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x17)

47.104362597s ago: executing program 3 (id=2208):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000008340)={0x2020}, 0x206f)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000081000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000090000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000003dc150f400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000001d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f50000000000000000000000000000000000000000000000000000000000000000000000000000000000c6d90000000000001354c4b6000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001a00", 0x2000, &(0x7f00000012c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0xc0102, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0xb)

46.904431235s ago: executing program 3 (id=2221):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
flock(r0, 0x2)
r1 = open(&(0x7f0000000300)='.\x00', 0x100000, 0x0)
r2 = open(&(0x7f0000000180)='.\x00', 0x10000, 0x0)
flock(r2, 0x1)
flock(r1, 0x1)
flock(r0, 0x1)

46.716222793s ago: executing program 3 (id=2219):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xc4, 0x19, 0x1, 0x70bd2d, 0x0, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@dev={0xac, 0x14, 0x14, 0x25}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@policy_type={0xa, 0x10, {0x1}}]}, 0xc4}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in=@dev={0xac, 0x14, 0x14, 0x15}, 0x0, 0x5, 0x0, 0x0, 0xa, 0x20, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xac, 0xfff, 0x0, 0x0, 0xffffffffffffffff, 0x7fffffff}, {0x2, 0xa00, 0x40800000000000, 0x800000000000000}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@empty, 0x4d2, 0x3c}, 0x0, @in6=@local, 0x0, 0x0, 0x3, 0x3, 0x49}]}]}, 0xfc}, 0x1, 0x0, 0x0, 0x4040}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000064010100000000000000000000000000fc01000000000000000000000000000000000000000000000a0000"], 0xfc}}, 0x0)
r2 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r2, &(0x7f0000000780)={&(0x7f0000000000)=@in6={0xa, 0x4001, 0x0, @empty}, 0x80, 0x0}, 0x20000081)

46.659941199s ago: executing program 3 (id=2224):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x103001, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x219d883, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2263804, 0x0)

46.62278057s ago: executing program 3 (id=2227):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x45a5, 0x0, 0x1, 0x12d}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000640)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffff8, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x1, 0x0, 0x4}]}, 0x8)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_TEE={0x21, 0xda1a0b6210925d15, 0x0, @fd=r0, 0x0, 0x0, 0x1, 0x1})
io_uring_enter(r0, 0x22d0, 0x20, 0x0, 0x0, 0x0)

46.446123748s ago: executing program 3 (id=2232):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0x61}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002480)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x4, 0xa}, {}, {0xfff2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x5, 0xd, 0x5, 0x4}]}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8858}, 0x4884)

46.328650084s ago: executing program 37 (id=2232):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0x61}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000002480)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r3, {0x4, 0xa}, {}, {0xfff2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x5, 0xd, 0x5, 0x4}]}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8858}, 0x4884)

45.437069638s ago: executing program 8 (id=2241):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00001b1000/0x4000)=nil, 0x400000, 0x2, 0x2})
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x1, 0x0, 0x7, 0x2)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)

45.176960422s ago: executing program 8 (id=2242):
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f00000001c0)={0x4000}, 0x10)
r0 = syz_io_uring_setup(0x6d30, &(0x7f0000000700)={0x0, 0xa011, 0x10100, 0x2, 0x164}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000980)='freezer.parent_freezing\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[@ANYBLOB=';'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_LINK_TIMEOUT={0xf, 0x2c, 0x0, 0x0, 0x0, 0x0, 0x1, 0x20, 0x1})
io_uring_enter(r0, 0x5d62, 0x0, 0x0, 0x0, 0x0)

45.126359025s ago: executing program 8 (id=2243):
mprotect(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0)
mlock(&(0x7f0000ffc000/0x2000)=nil, 0x2000)
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000240))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000180)={{&(0x7f0000ffc000/0x3000)=nil, 0x3000}, 0x3})
ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, &(0x7f0000000140)={{&(0x7f0000ffd000/0x1000)=nil, 0x1000}})
mprotect(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0xf)

45.092209056s ago: executing program 8 (id=2244):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000200)='.\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', r1, &(0x7f0000000180)='./file0\x00', 0x100)

44.417297925s ago: executing program 8 (id=2246):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xffde}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000ac0)=@newtfilter={0x54, 0x2c, 0xd27, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xe, 0x7}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0x24, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS_MASK={0x10, 0x55, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x4}]}]}, @TCA_FLOWER_KEY_ENC_OPTS={0x10, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_VXLAN={0xc, 0x2, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_VXLAN_GBP={0x8, 0x1, 0x5}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0)

44.118256046s ago: executing program 8 (id=2248):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f0000000140))
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)={0x1, 0x0, [{0x400000b0, 0x0, 0x3}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

44.027636094s ago: executing program 38 (id=2248):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f0000000140))
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)={0x1, 0x0, [{0x400000b0, 0x0, 0x3}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

19.099676749s ago: executing program 9 (id=2574):
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x10040)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x67, 0x0, 0x2, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xffff}}}}}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f00000003c0)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0xfc, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x8, 0xca, 0x0, 0x1000}}}}}}, 0x0)

19.097105081s ago: executing program 9 (id=2575):
r0 = syz_io_uring_setup(0x74d, &(0x7f0000000100)={0x0, 0x1381, 0x10, 0x3, 0x5cc}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/201, 0xc9}], 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0xc, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x81800, 0x1})
io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5)

19.015469526s ago: executing program 9 (id=2578):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000140)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in=@multicast2, @in6=@mcast1, 0x4e20, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0xfffffffffffffffe}, {0x0, 0x0, 0xfffffffffffffffc, 0xff}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x3c}, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x2, 0x0, 0xb7, 0xfffffffe, 0xffffff7e}}, 0xe8)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x1c)

18.5418918s ago: executing program 9 (id=2584):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000100)='./file0/../file0\x00', 0x0, 0x103001, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000080)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x219d883, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2263804, 0x0)

18.53787183s ago: executing program 9 (id=2585):
syz_io_uring_setup(0x3bd4, &(0x7f0000000180)={0x0, 0xcc19, 0x130c8, 0x6, 0x30e}, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newtaction={0x70, 0x30, 0x0, 0x0, 0x0, {0x9}, [{0x5c, 0x1, [@m_sample={0x58, 0x0, 0x0, 0x0, {{0xb}, {0x2c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8, 0x3, 0xffffffff}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x0, 0x0, 0x0, 0x0, 0x80000}}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x4}}}}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x404008c}, 0x20040000)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="9000000010000305000000000000000000000700", @ANYRES32=0x0, @ANYBLOB="996e06004d4c0700540012800800010068737200480002800500030008000000050003000500000005000300fd00000008000200", @ANYRES32=r0, @ANYBLOB="08000100", @ANYRES32=r1], 0x90}}, 0x0)

18.141138525s ago: executing program 9 (id=2595):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x22d00, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x101401, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0x4004743d, 0x110e22fff6)
ppoll(&(0x7f0000000300)=[{r2, 0xa0}], 0x1, 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

18.088372213s ago: executing program 39 (id=2595):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x22d00, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff6)
r2 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x101401, 0x0)
ioctl$TUNSETOFFLOAD(r2, 0x4004743d, 0x110e22fff6)
ppoll(&(0x7f0000000300)=[{r2, 0xa0}], 0x1, 0x0, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

13.571978666s ago: executing program 5 (id=2668):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
r0 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bond0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001400)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x4}}}, @IFLA_LINK={0x8, 0x5, r1}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x44}}, 0x0)

13.491833271s ago: executing program 5 (id=2669):
syz_io_uring_setup(0x1d1f, &(0x7f0000000200)={0x0, 0xcd1d, 0x10100, 0x0, 0xaa}, 0x0, 0x0)
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7737, 0x80, 0x2, 0x34f}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1900"], 0x48)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x8047bc, 0xcc2b, 0x20, 0x0, 0x0)

13.350176738s ago: executing program 5 (id=2674):
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xf, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000008000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = syz_io_uring_setup(0x487, &(0x7f0000000240)={0x0, 0x59c4, 0x800, 0x1000, 0x5cc}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000000c0)={0x1, &(0x7f0000000200)=[{0x30, 0x4, 0x0, 0x2}]}, 0x8)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_EPOLL_CTL=@del={0x1d, 0x10, 0x0, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x2, 0x0, 0x1})
io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5)

13.306798291s ago: executing program 5 (id=2677):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000300)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x219d80f, 0x0)
mount$bind(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x10a78c0, 0x0)

13.24767788s ago: executing program 5 (id=2679):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaa"], 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x8, 0x6, &(0x7f0000000200)=ANY=[@ANYBLOB="1800008080b63428e900"/20, @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7020000000000008500000051000000bf0900000000000055"], 0x0, 0x7, 0x0, 0x0, 0x41000, 0xf72cb191e650caa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6}, 0x94)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0x2000000000001]}})

13.045621126s ago: executing program 5 (id=2680):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0a000000070000000200000004"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x14, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

12.944027248s ago: executing program 40 (id=2680):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0a000000070000000200000004"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x14, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000001000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r3, &(0x7f00000006c0)={0x0, 0x0, 0x0}, 0x0)

1.047237382s ago: executing program 6 (id=2882):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = landlock_create_ruleset(&(0x7f0000000000)={0x19a1, 0x2, 0x1}, 0x21, 0x0)
landlock_restrict_self(r2, 0x0)
bind$unix(r1, &(0x7f0000003000)=@file={0x1}, 0x6e)
listen(r1, 0x0)
connect$unix(r0, &(0x7f0000000640)=@file={0x1}, 0x6e)

1.046967606s ago: executing program 6 (id=2883):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x3dcf, 0x80, 0x0, 0x357}, &(0x7f0000000440)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2c, 0x0, 0x0, 0x4}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READ_FIXED={0x4, 0x2, 0x44ca772ce766c12c, @fd=r0, 0x9, 0xb01, 0x2, 0x12})
io_uring_enter(r0, 0x47bc, 0x2, 0x8, 0x0, 0x0)

994.480384ms ago: executing program 6 (id=2886):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000040000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x51}, 0x94)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000180)=r2, 0x4)
r3 = socket$kcm(0x10, 0x100000000002, 0x4)
sendmsg$kcm(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000200)='9', 0x1}], 0x1, 0x0, 0x0, 0xc00e}, 0x0)

918.887632ms ago: executing program 6 (id=2887):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000280)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000300)={{0x14}, [@NFT_MSG_NEWRULE={0x84, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x58, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @socket={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_SOCKET_DREG={0x8, 0x2, 0x1, 0x0, 0x3}, @NFTA_SOCKET_KEY={0x8, 0x1, 0x1, 0x0, 0x2}]}}}, {0x30, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0x2}, @NFTA_NAT_TYPE={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_NAT_REG_ADDR_MAX={0x8, 0x4, 0x1, 0x0, 0x10}, @NFTA_NAT_REG_ADDR_MIN={0x8, 0x3, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0xac}}, 0x0)
sendmmsg$sock(r0, &(0x7f00000012c0)=[{{0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000140)="e944403acabb1edeab", 0x9}], 0x1, &(0x7f00000002c0)}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x3, 0x4014)

918.684112ms ago: executing program 6 (id=2888):
r0 = epoll_create(0x2)
r1 = signalfd4(0xffffffffffffffff, &(0x7f0000000100)={[0xffffffffffffffdd]}, 0x8, 0x0)
r2 = signalfd4(0xffffffffffffffff, &(0x7f00000008c0)={[0xdcfe]}, 0x8, 0x80800)
r3 = signalfd(0xffffffffffffffff, &(0x7f00000000c0)={[0x6ba]}, 0x8)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000040), 0xa, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r2}})
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000140))
signalfd4(r1, &(0x7f0000000000)={[0x3]}, 0x8, 0x80800)

898.509592ms ago: executing program 0 (id=2889):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000540)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x80800)
sendmmsg$alg(r1, &(0x7f00000002c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
sendmsg$nl_route_sched(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000008900)=@delchain={0x5a0, 0x65, 0x200, 0x70bd27, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0xd, 0xb}, {0xd, 0x7}, {0xfff1, 0x10}}, [@TCA_RATE={0x6, 0x5, {0x8, 0x4}}, @filter_kind_options=@f_basic={{0xa}, {0x568, 0x2, [@TCA_BASIC_ACT={0x414, 0x3, [@m_mpls={0xa0, 0x20, 0x0, 0x0, {{0x9}, {0x2c, 0x2, 0x0, 0x1, [@TCA_MPLS_PROTO={0x6, 0x4, 0x6001}, @TCA_MPLS_TC={0x5, 0x6, 0x3}, @TCA_MPLS_BOS={0x5, 0x8, 0x1}, @TCA_MPLS_TTL={0x5, 0x7, 0x1}, @TCA_MPLS_TTL={0x5, 0x7, 0x3}]}, {0x49, 0x6, "5fb01aa85ae08b968c00bfffa9e89177cea6b05f79fa50cf168b1400381fae59d7ae5028c2cb48e15c6bcaf1e5fb6095ce734de19f6c66aea5c4ada4cdb4d3894a1500685a"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2}}}}, @m_gact={0xa8, 0x1c, 0x0, 0x0, {{0x9}, {0x58, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x68, 0x0, 0x1, 0x9, 0xff}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0xb58, 0x8}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x13d1, 0x6}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0x1901, 0x7}}, @TCA_GACT_PARMS={0x18, 0x2, {0xffffff81, 0xfffffffe, 0x7, 0x1a54632b, 0x8}}]}, {0x25, 0x6, "fffafc30f81308515ebdd7f07485c6ec3a46426887a0a9391c6cb55882e6bf2515"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0xfbc90779a78df647}}}}, @m_connmark={0x2c8, 0x17, 0x0, 0x0, {{0xd}, {0x4}, {0x295, 0x6, "2582e759734971b2057b819d51f98c8c1b4cdfe9bf4dcbe9b0d3a5a34a585c5922539675af924940ee5cd870d19b6d9e67b3970c113d8d52dba105e0bf6659cc3d4f1fd22b9d8083da32690f8958e258fbb0da84a1191ff49dbe37b306536fb68acdf9d9191a9a022cab1f6764a91f16b832c472bbfa246a3aa1446bd5f2eeaedf81096c5071273240305db42836974c890a09ac2e6bc33c6c15b8df4b7461a8afa26d60cf74497bbb765450334719031a248770937be4c1598d834fe4b7b57b05d6e2aefc6dba8a758763e2cb41473faa6011691f3dba45689ac59244fbcc0e18050b87679236ea538f81e70c590b53c994f32e1ce4ab8fed37d27412507131dc9bc56ad40645ef3d9724e8497a64b49e3abd624bf6ad0886730d9f23d5bd6148b436600fc91badf5f9761fb81385becc54fb87c377c649c2a997c4a9e5febc305060fa12b6bac857aee1215ab3cc62288a2151f44cd1eac07391144f4ff6c48be3abbde8f7a59c9db98f109d4d273cb4316252f2b9a3fa4eebfe0ac214b826522098ac4947cc5191fcb6c60e57726a8e19c1670c71e1b87cd3dd51e81a72686fe54cc871c3691000a59b6df190b4ba3a9368281503b94bfc21e7ceb942520e8398ad318d57fc2b146b0802d29a1e2789d05580d792798b00feef816e405b219b5e88719659d97eaa7954fd79e299e917dd4a237d03b837e1e96b0b8cfffb64fa5c1d6cdf3a1c92677b227f5ac6d61965a178457dc5804d72c5d52f0409471f792750b40c709dd17d957df25fbf45c60240bbc35baeda421dc2c77968161cc78b2f0deec9d61840755d9b0ac48c0e024100af1a0d32f8b21af5541a7a967ef2e410e4949b65ffd7664210e30edcdb11106acc6b0bb4e1556f425cda68faa6498f4aa612e53cfa9156265bcfa52fb21fda"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x1}}}}]}, @TCA_BASIC_ACT={0x150, 0x3, [@m_tunnel_key={0x9c, 0x1f, 0x0, 0x0, {{0xf}, {0x44, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0xfffffd70, 0x70d3, 0x2, 0x7, 0x5}, 0x1}}, @TCA_TUNNEL_KEY_ENC_IPV4_SRC={0x8, 0x3, @rand_addr=0x64010101}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6, 0x9, 0x4e22}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @local}]}, {0x29, 0x6, "d2243e74d161b0ba235708d259e80fa142dcf6e64cf288860cbf5f84c7ff385dff2b21ad64"}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}, @m_connmark={0x84, 0x13, 0x0, 0x0, {{0xd}, {0x3c, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0x8000, 0x40, 0x2, 0x7, 0x6}, 0x24}}, @TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xb340fd8, 0x0, 0x8, 0x50b182be, 0x1}, 0x9}}]}, {0x19, 0x6, "41186380f57c34c82a348a3cfe27ee3ed816dfa7f6"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x4}}}}, @m_ife={0x2c, 0x5, 0x0, 0x0, {{0x8}, {0x4}, {0x4}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}]}}]}, 0x5a0}, 0x1, 0x0, 0x0, 0x4080}, 0xc050)
recvmsg$can_raw(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000ac0)=""/4096, 0x1000}], 0x1}, 0x40)

789.249383ms ago: executing program 0 (id=2892):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000080)={0x1, 0x0, [{0x1, 0x7, 0x7, 0x8001, 0x7}]})
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

788.958174ms ago: executing program 1 (id=2893):
ioctl$KVM_X86_SET_MSR_FILTER(0xffffffffffffffff, 0x4188aec6, &(0x7f0000000440)={0x0, [{0x2, 0x4d88, 0x6, &(0x7f0000000640)="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"}, {0x0, 0x0, 0x10001, 0x0}, {0x0, 0x0, 0x100d5ba, 0x0}, {0x2, 0x0, 0x4, 0x0}, {0x2, 0x0, 0x9, 0x0}, {0x2, 0x0, 0xd0, 0x0}, {0x3, 0x0, 0xff, 0x0}, {0x1, 0x0, 0x1, 0x0}, {0x1, 0x0, 0xf41, 0x0}, {0x4, 0x0, 0x1000, 0x0}, {0x1, 0x0, 0x6, 0x0}, {0x3, 0x0, 0x1000, 0x0}, {0x0, 0x0, 0x9, 0x0}, {0x3, 0x0, 0x1545, 0x0}, {0x2, 0x0, 0xbadb, 0x0}, {0x1, 0x0, 0x40005, 0x0}]})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0xfffff000, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

609.184951ms ago: executing program 0 (id=2897):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC2(r2, 0x4068aea3, &(0x7f0000000140))
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)={0x1, 0x0, [{0x400000b0, 0x0, 0x7fff}]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

608.972054ms ago: executing program 1 (id=2898):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000140)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f00000002c0)={{{@in=@multicast2, @in6=@mcast1, 0x4e20, 0x4, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x3, 0xfffffffffffffffe}, {0x0, 0x0, 0xfffffffffffffffc, 0xff}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x3c}, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x0, 0x2, 0x0, 0xb7, 0xfffffffe, 0xffffff7e}}, 0xe8)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x1c)

548.866444ms ago: executing program 2 (id=2900):
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x10040)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000080)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x1a}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x67, 0x0, 0x2, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xffff}}}}}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f00000003c0)={@local, @remote, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0xfc, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x8, 0xca, 0x0, 0x1000}}}}}}, 0x0)

548.335867ms ago: executing program 2 (id=2901):
r0 = syz_io_uring_setup(0x74d, &(0x7f0000000100)={0x0, 0x1381, 0x10, 0x3, 0x5cc}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000740)=[{&(0x7f00000003c0)=""/201, 0xc9}], 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0xc, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x81800, 0x1})
io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5)

467.090804ms ago: executing program 0 (id=2902):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x800000, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f00000001c0)='./file0\x00', 0x1)
chown(&(0x7f00000003c0)='./file0\x00', 0x0, 0xee01)

466.748227ms ago: executing program 2 (id=2903):
r0 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, &(0x7f0000000100)=@req={0x3fc, 0x0, 0x0, 0x6}, 0x10)
r1 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r1, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
recvmmsg$unix(r0, &(0x7f0000003100)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000480)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000040)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000200)=""/40, 0x28}], 0x1}, 0x20003ff1}], 0x1, 0x0, 0x0)
close(r1)

399.149393ms ago: executing program 0 (id=2904):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r1, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000200)={<r2=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r1, 0x84, 0x7a, &(0x7f0000000340)={<r3=>r2, @in={{0x2, 0x4e21, @empty}}}, &(0x7f0000000040)=0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000380)={r3, @in={{0x2, 0x4e21, @empty}}, 0xb, 0x555e, 0x80000003, 0x3, 0x140, 0x20000004, 0x6}, 0x9c)

306.955506ms ago: executing program 2 (id=2905):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = dup(r0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @empty, 0x3}], 0x1c)
sendmsg$inet6(r0, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
setsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, &(0x7f0000000200)={0x0, @in={{0x2, 0x4e21, @empty}}, 0x5, 0x3, 0xf06, 0x1, 0x94, 0xfffffffd, 0x5}, 0x9c)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000400)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x106, 0xb}}, 0x20)
write$P9_RREAD(r1, &(0x7f0000001180)={0xec0, 0x75, 0x1, {0xeb5, "0ae449f3a9d8b5f78042bc4a59ce5a12dcb560cf462b1e681ad21e0bf579ad72d3ee73bc4c04fc9119ad2da34cec8946ac5e30cd9a8baf3739e951e07f113befad8c3175fb58b17b7720ebd2d606fed92f5e7431de06eef515a846f420e309e742bffa0672a531e1e46bf34e465f1e58c05a4acf682b116b534320782d53616924e1ad63d6462df655f3978f3020878e066293617f19dc3f3c66841b3a469b939a9cf527b2271339e1a3002cb272df6234fc17c46aaa000f03854550251eae23f5b9ba185282e2e613c0f38d1e2bb5b6c641767443f07e5a5092a211a0a20654988867e19f4e632214ee4b20d2aff7173fd737c326505139d5a5cb86f8f5b3f8ea45336f0a685b0cdff882bcf6b49aa26d554df54849a69ce0f59188aa53d3afcca70c1cd8772a266236fc575e496270262d942821c2fbfd87b55ee2f5f6f768a90bfcdc457e7f60ac42502aec555b6497c985f278c58dc5c2d5f837733f9d4d463baf92fb66a5412cc706a0520b8b9a6b6ae1cb05216a9d6634514b28b13f1050dcd1ac99e86e449e62c8eda7ee23de886323de98b261a6ef5968be8b57df14d1b999edd0236c45a33d78e99c648a4f9a4e759dcc5a9885cf7312c56e0fbbd6c0c9c6075701a7f4f7b9df8f36b1415c714a47b2c469a30b6f322aa7ff27c4cbe73680552182777b5dcf5529e4df0c83bb9ca2b46dc0eb9065f8818dc400763f50cd81ab8791ebbde1346206ee6c8b5654de5baf8581b8b0c4a907ded7a27605a3a2aeb1fa5a9c3d9e0f7969f8a1baf968e15a7389b583c57fd9a20e0f037650913410f1b63513e0243cc86efc12cbbb9aac6ef0441ce1c46f94814ed623e76649e1bd2fcb2dbc0d087f205206ce517a03a60af6bd1acfbf134bd3fc1a007d5e89de272dd001b3844a94d89d38b1f8ec6f80a96b37491fa82df04347fee3ddd16abad91e37492ed9c7da2c3fc589310f7245ea77f4be1881ede93199cca54ccc0e9554e843fe3b7cf1c2c258258d687c310b992e33696dfb3818320ce3971a663e1eae1ef8f160f9fe06c25ac786b5cb2e7b98006ffdc2b4e1e2eb90708073a71fb1c454db80f9cd3466253400a362aa3b6892eb5688a1ee43268587249d9081100ef7ad326768cc70b83626098d593c461917f2a178b4eccf4120190bfff55382cfc2f9c1edd897b4cbfa74bd071bb528c9f83642086fe885efc2c063b00bb501ce1c7859a029c0bcf251780270c555bb96d6067871ca9d029a08caa6d97d1e210fc2e36de84032f610a232467c70a48c1e0748efcbff3b39a977cd943019a1f76b5deee9b7a9ccea7d1b2f9d5a47759af0ad51e3c40ff0afc0119f7f63d7774a22d7e6de99004549f48a83a45840b737f060590aae9ba2b0420eea0a659db85802b83316a1ad0c5e0105d9fa0675a2c961fd46d05a984f5367c54db1a79b8785c7696823dc4266f15acb88f4facf0df5954f91ae7406c840462c9343bc7a23740170e9edfd7d98a722b6bb3865f901cb58c1bc17d572d8fe9b5f354dce594173c76f387519f311bc256a05f91882b1ef24842fb9ac7e3e903658be7533466c83a97480c82dc6501de7f5b12dee0660945c7da1fa1250ee6ac4d0291a797668f76a48d06014af69ac7c03006b61d2e5ff7b824c99f1aec00b981eb236bccd02d89c10be7e02ac2378021773e05febb44e665ca20bcb7b19616bcbf15285c09156581f787fa0d21870d012176ed0ddda1d55189500ad5913901cf1a48321b7ca965e1d315bbe32e63688e0479c02510c39026df07c3649dafca14904bcd8d7e05da27f348ffe345f2a7fa78bd7e3b70dcc6f3e5d273b5e305022f3982d41c7dea24a7e928fe9f0f78b039e5121ac38ab2e0e30a3525af9b5b1d92f995353cc371f7976b9ad78ce71dfc0f527bc039987bc0bc7df3538cdd5f3a7b5db856cc0a262b37860b0b379b2a5b56a5862d7de81d41594ca08691b0977a26f194ebd70166e8b09af0963dec1a6a1ebd9b774b5bd820e5ce94815017eaacd950f0061b454b5c174443a7289628b050ddcb95171f5cbd1d352c6edeb32133bc37a23eb14ec826bdeb542358b380bb2e3ce6217da7c282d5e98ea493ed5b2789bb8f1eceefee9e038867d41e05023334f3721f4c643e89da70dfc5af96c90ad567477b5a4487896f157a72603345818d1e75f044e72d00af463f99fefe41f3b1f26eeae5a0130a4561cf72781a725daa697f06ef8ffce03a488402b8ca13a99eda9b6be6491ade6414745ff6657b7b6b32aa0c8f595981cc0471445c822d9a40da7ce578a1f4f2573eabb789ebe2fbf2faad6557ab637b24427d4b67bbaf9d148ad14ddfb538345fe81c88502c32b2e5da87f47bf3b6f2f4721857c3bdc5c06d739a810b52984f146d2023c26bda315d28f288213a37939f12ef1b8b01998e4c48210ffbdf49e3f519b7f8c3e081a09ecf0692a4ba848000dd9c79323f6fddbdbfe48d880d1e670fdbead99b2eb51b6790719c3d1ee7a6c2dd2782b01ebe842e585f4eef69ee0f95b2510a97e716fa82136d4636af3aed438fc22233f649f240a246c1f95a4cbf0827304ccb75fb432538df6cc887857493a57ca513a12c4177f2ab9a7388f5dec3400467312c22a1ae189ab08cb9e931bd6be7d8fda63f900bb6f0278a952381851504648a5f2a1802fe48a8565578f8d839b261aa9eee122575deb9d331c01b644d411c4ae07be98236a594d882961b3e851dcc13bb39c5ac8b1fb4b7fdeb5e5e9f59a53ed1a9d512d933c429871344cd17c0ad0111a6558f058fbe9247557f199a2e16b6b55ce023c275aef819209330a5a049a95b6aa89233aaed941ba3452af163ca654c997e8b59372fe9602e0435a46d3af175db9e7c57968cd1887b0efb06744018d8df1f61f9fd665e3c170b34b2212fbdb91ac32224522e84fec5e8d8a7b32ae5b4a1683f26c3b469cbed229896cbd43a16ad84feb4479e5cb725890cfb799aaa15e46134ea01e7feb212c04f9315b40dfa370808e583f5051443585727de480c3327bcae71a7351eb795d2d7c4bef352cc52ec0a61e93e48796fce5aa7ac2a8c2cfc987b948cbe49c0220a63e85009d66e8a1ab41da29bedf360fa3fa2d514218f26a4f856979f0e118fb762dfd3b6275c6bfaaf9fbebc761e797a8378df4a88f40da9502c6ad759f5c289b196e585d26652717af5104554204d708b5d2e0065dc1e40831a2826d15b0ea7c7434927882b1cf6e215da328271af426165c82fa6cbb728c76eefb7b7191c0a11da220f41a2571b6782f9f945a8201c24ecbae5104f59b99238c6f6d9198ec6b67510e55a45926f2823b45bc18832ecfe83606702ef320515605084bd445de856247e39a968aa12b99438f151ecb1a872a0adadab24e4b91b663bba94300196d8295a024e5635685ee543a09f6b669dfa18017a795e1f7824d9dea1b5cdfdf363d74cbfdba86e649b272f00473faee55a685f8135f90028235ece2f45d7352e56178bd2ca612f325bf88e123431a314dc67345e0551747ef8f8381511ff0751a435ea79e97706231f2ee64e092a0136c702a330664e4fd4a81099f8d7ea4b8c05a91931cbafa1cadb92cee024ccb96d3710e8880921f03fd025ea03c9a5b67c5a2202c9315d21362e472d720f1c8835a43ff0d8c4ae928aeded31e202764b60b1d53654407ae7fbed3d166b128c6eb9c82a4f7621f3c41db85f539dbbef8c78816bce51ecde8dbe6cbbfd321d284348feca64971288780c0cb70a972d78e7f66a93d05b66c5f816ed7d84b0b96a18ea3e9b443fc6efce649f22a9ad7c7c8dff34c5ec3b9116e31e2c6c783b58eb46fafeed61f6d5c009a35e9d1f1db259fffe88702c6d8b6d01191da753c333992f8c56345f9805e22dddb4032d9cd9ca047ad98b5a972a583d7ee0d236709e71bd620940606696d60f81b79bed201e3b24751f170c899ef06903e25aac87ec48e47b3eeacd4ac0f244aa116331dd01a4741c3d1ac70fe4751cafcf9ee25012431039e5297c8bcd4ef67162891e7767d19649dc89c5d33f17100d800e2286125fe6d6bdefd5ac305ecb7b061563e7c6112425fd1141c7a13efab6239291d60f6b31fdde598b752d93f7452d4c73b44b3932552310c9b6397993ef9ef6a0403f5d951ce31588e0aab07f8a4fa4746dda4830df5f4f709e85594ee688437e7b35af697c82a52cff2ad31c087e8cf1257fa6c3ad1f7d171b5f7fd2c347878e60fa7402729f261dc78270162c7f4961e803452007a5a0469dfe3b5a7cb2f7a3bcf830680e82eb05c3f539d05248bf83fc3e8c75213946003c1f053a9aa8e6ac345fbd108eed7ea832829f188c52b089f25f11674a82babd87abf02490a29f85661ea4c950736168dc5158e405a7f7a3f44f2994b47fdfa365f2c36215a048d7279179086d5c8fba3c217eebc82e19f70a705ddbfc8fd721914be229971dd50588a47f7e6b36e5995af9a16ecaec0d965b7bb5d78c1fd122ccc25eda258c4abe82d0d37ee69513e99e54cbf471ccc0e8b2b68abe46e21969d95b82ac5cc7561f86ea38f208f9aec5929259670745dbd13a5ac217fae8410709cdb88178b47bbf1e5db2ffb27784042993d78bdf7a421ebbe9e27a6d166f81848d8a86f39a040a2b522c2f5e92e9e00d8dbcafe9af6ca51039763f9cc47f26a6dad8480ccec0fadcd78577740e9b3cd5fc18b88937b7f46e9e4fbba8ff09dc23af83b83623a683bd8b7e9dcd7ee252c379d9cde8a3c02c5f30232f92ebde0893349ec7c4e7de6842760c8b9e04d0363a3c025529b19d68e552c5ee27845909592c8a82de22daa1e34354c91ad74d11f283809c3afa4fb2072d289bbb760de58dc016512e59ce6db89e8bffccb59c6ce00bc8c03cbeaab22654672d4b706af728a574d9748fff570b12ad616c36b7b5aa38170db2622b4dd5981e5eff1a4b6676d18d0f9aa9e7a1e0958cbfe64463b624adc4fdbeb5282ffa47801812d3413a4da327b71ad62a825e197eff5d72af502c450d04c6a80e71e46392fb7eae03887566dca3283d2dd7dacf92f2b231f17e4179f6d0c689cfe67a839b3296e115a69c55ceebf000c628fed290c25acf1cd16e93b5a0278f959e86f2bb76437dc58040fec44680d0478d249fa821b27de191fddd04f110846bdaa6cefb2dc4e4050c454f76acfe005dc1b8927354dba62c9b8bf84506d58eacccf104ba9f5bc584d4cde2b8213eda7fb5c0bbe6890f2ceeda46d6b41c09260dc2bce233406f9c58f26fb37dde708585d253af6cd479cb3aa71897814d078e8709c758fea9e1335848f"}}, 0xec0)

306.497653ms ago: executing program 2 (id=2906):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
recvfrom(r0, 0x0, 0x0, 0x40000022, &(0x7f0000000240)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x4}, 0x80)
write$P9_RLERRORu(r0, &(0x7f0000000240)=ANY=[], 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1, 0x1}}, 0x40)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r0, 0x0)

200.10058ms ago: executing program 0 (id=2907):
openat$cdrom(0xffffff9c, &(0x7f0000000080), 0x400, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
read(r0, &(0x7f0000000300)=""/34, 0x22)
ioctl$int_in(r0, 0x5452, &(0x7f0000000000)=0xf4e)
writev(r0, &(0x7f0000000100)=[{&(0x7f0000000340)="913efcb4d6780e1819df9035404b4ab1a75022c15dacc2caba1718e3c8b19da17596b78a0fddd747d46af5edb012fe", 0x2f}], 0x1)
r1 = openat$cdrom(0xffffff9c, &(0x7f0000000240), 0x400, 0x0)
ioctl$DVD_AUTH(r1, 0x5390, &(0x7f0000000140)=@hsk={0x2, 0x3, "089b0b3675"})

196.683497ms ago: executing program 2 (id=2908):
r0 = userfaultfd(0x801)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0xc})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00001b5000/0x2000)=nil, 0x2000}, 0x3})
madvise(&(0x7f00001b4000/0x4000)=nil, 0x4000, 0x4)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x9)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, 0x0)

128.555414ms ago: executing program 1 (id=2909):
r0 = fsopen(&(0x7f00000014c0)='proc\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0xa)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x1c8080, 0x81)
lseek(r2, 0x104, 0x2)
getdents64(r2, 0x0, 0x4f)

128.095553ms ago: executing program 1 (id=2910):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x7000001, 0x12, r0, 0x0)
r1 = userfaultfd(0x1)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000180)={0xaa, 0x4a4})
write$FUSE_LK(r0, &(0x7f00000001c0)={0x28, 0x0, 0x0, {{0xb, 0x1b3e, 0x2}}}, 0x28)
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f00000000c0)={{&(0x7f0000ffa000/0x4000)=nil, 0x4000}, 0x1})
ioctl$UFFDIO_ZEROPAGE(r1, 0xc020aa07, &(0x7f0000000280)={{&(0x7f0000ffc000/0x1000)=nil, 0x1000}})

55.457489ms ago: executing program 1 (id=2911):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_qfg={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000001c0)=@newtfilter={0x60, 0x2c, 0xd27, 0x70bd2c, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0x4}, {}, {0x8, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x30, 0x2, [@TCA_FLOWER_KEY_TCP_FLAGS={0x6, 0x47, 0x8}, @TCA_FLOWER_KEY_MPLS_BOS={0x5, 0x44, 0x9}, @TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}, @TCA_FLOWER_KEY_TCP_FLAGS={0x6, 0x47, 0x7}, @TCA_FLOWER_KEY_ETH_SRC_MASK={0xa, 0x7, [0xff, 0xff, 0x0, 0xff, 0x0, 0xff]}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x20000014}, 0x20000000)

115.317µs ago: executing program 1 (id=2912):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x900f, 0x100, 0x4, 0x162}, &(0x7f0000000400)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_TEE={0x21, 0x1, 0x0, @fd, 0x0, 0x0, 0x0, 0x8, 0x1})
io_uring_enter(r1, 0x3517, 0x173d, 0x42, 0x0, 0x0)

0s ago: executing program 6 (id=2913):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x800000, &(0x7f0000000c00)=ANY=[@ANYBLOB="56c78e3c733d76697274696f2c6e6f657874656e642c6163638173733d616e792c63616368653d667363616368652c76657273696f6e3d3970323030302e75"])
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
umount2(&(0x7f00000001c0)='./file0\x00', 0x1)
chown(&(0x7f00000003c0)='./file0\x00', 0x0, 0xee01)

kernel console output (not intermixed with test programs):

[ T9532] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  137.922495][ T9543] 8021q: adding VLAN 0 to HW filter on device bond1
[  137.950175][ T9543] 8021q: adding VLAN 0 to HW filter on device bond1
[  137.952671][ T9543] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  137.957146][ T9543] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  138.021902][  T223] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  138.026345][  T223] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  138.040009][  T223] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  138.053153][  T223] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  138.177071][ T9555] netlink: 64 bytes leftover after parsing attributes in process `syz.7.1313'.
[  138.373774][ T9571] binder: 9570:9571 ioctl c0306201 800001c0 returned -22
[  138.676566][ T9593] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1331'.
[  138.682206][ T9593] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1331'.
[  138.692299][ T9593] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1331'.
[  138.697632][ T9593] netlink: 104 bytes leftover after parsing attributes in process `syz.5.1331'.
[  138.703750][ T6020] usb 11-1: new high-speed USB device number 5 using dummy_hcd
[  138.855055][ T6020] usb 11-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  138.858948][ T6020] usb 11-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  138.862418][ T6020] usb 11-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  138.865833][ T6020] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.870498][ T9575] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  138.874752][ T6020] usb 11-1: Quirk or no altset; falling back to MIDI 1.0
[  139.133418][  T830] usb 11-1: USB disconnect, device number 5
[  140.492118][ T9668] netlink: 212368 bytes leftover after parsing attributes in process `syz.3.1365'.
[  140.585301][ T9676] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1366'.
[  140.625363][ T9678] usb 1-1: USB disconnect, device number 2
[  140.766820][ T9690] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1372'.
[  140.769815][ T9690] bond0: invalid ARP target 0.0.0.0 specified for addition
[  140.772880][ T9690] bond0: option arp_ip_target: invalid value (0)
[  141.164596][ T9715] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1381'.
[  141.169603][ T9715] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1381'.
[  141.213758][   T10] usb 8-1: new high-speed USB device number 9 using dummy_hcd
[  141.385673][   T10] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  141.390328][   T10] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  141.402840][   T10] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  141.412435][   T10] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  141.416115][   T10] usb 8-1: Product: syz
[  141.417939][   T10] usb 8-1: Manufacturer: syz
[  141.418638][ T9723] PF_CAN: dropped non conform CAN FD skbuff: dev type 65534, len 4080
[  141.420020][   T10] usb 8-1: SerialNumber: syz
[  141.434248][   T10] cdc_mbim 8-1:1.0: skipping garbage
[  141.641147][ T9703] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  142.250541][ T9703] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  142.256289][   T10] cdc_mbim 8-1:1.0: cdc-wdm0: USB WDM device
[  142.267795][   T10] wwan wwan0: port wwan0mbim0 attached
[  142.289072][   T10] cdc_mbim 8-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.3-1, CDC MBIM, 6a:dc:96:df:a0:2b
[  142.348123][ T9752] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1398'.
[  142.456037][    C1] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  142.458790][    C1] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  142.461576][    C1] cdc_mbim 8-1:1.0: nonzero urb status received: -71
[  142.464315][    C1] cdc_mbim 8-1:1.0: wdm_int_callback - 0 bytes
[  142.466777][    C1] cdc_mbim 8-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1
[  142.473648][ T6020] usb 8-1: USB disconnect, device number 9
[  142.476163][ T6020] cdc_mbim 8-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.3-1, CDC MBIM
[  142.597214][ T6020] wwan wwan0: port wwan0mbim0 disconnected
[  142.753676][ T8965] usb 11-1: new high-speed USB device number 6 using dummy_hcd
[  142.903742][ T8965] usb 11-1: Using ep0 maxpacket: 32
[  142.907756][ T8965] usb 11-1: config 0 has an invalid interface number: 51 but max is 0
[  142.911219][ T8965] usb 11-1: config 0 has no interface number 0
[  142.916221][ T8965] usb 11-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  142.920089][ T8965] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.923445][ T8965] usb 11-1: Product: syz
[  142.925643][ T8965] usb 11-1: Manufacturer: syz
[  142.927765][ T8965] usb 11-1: SerialNumber: syz
[  142.932490][ T8965] usb 11-1: config 0 descriptor??
[  142.938174][ T8965] quatech2 11-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  143.144454][ T8965] usb 11-1: qt2_attach - failed to power on unit: -71
[  143.147524][ T8965] quatech2 11-1:0.51: probe with driver quatech2 failed with error -71
[  143.167168][ T8965] usb 11-1: USB disconnect, device number 6
[  143.603735][ T5294] Bluetooth: hci4: command 0x1003 tx timeout
[  143.606933][   T63] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  143.783736][  T830] usb 12-1: new high-speed USB device number 5 using dummy_hcd
[  143.941725][ T9811] random: crng reseeded on system resumption
[  143.952692][ T9815] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1420'.
[  143.953701][  T830] usb 12-1: Using ep0 maxpacket: 8
[  143.970321][  T830] usb 12-1: config 0 interface 0 has no altsetting 0
[  143.973232][  T830] usb 12-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  143.977676][  T830] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.983504][  T830] usb 12-1: config 0 descriptor??
[  144.144203][ T3873] usb 8-1: new high-speed USB device number 10 using dummy_hcd
[  144.295173][ T3873] usb 8-1: Using ep0 maxpacket: 32
[  144.303464][ T3873] usb 8-1: config 0 interface 0 has no altsetting 0
[  144.313748][ T3873] usb 8-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  144.317591][ T3873] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.321062][ T3873] usb 8-1: Product: syz
[  144.322835][ T3873] usb 8-1: Manufacturer: syz
[  144.326941][ T3873] usb 8-1: SerialNumber: syz
[  144.331097][ T3873] usb 8-1: config 0 descriptor??
[  144.335850][ T3873] gs_usb 8-1:0.0: Required endpoints not found
[  144.414758][  T830] mcp2221 0003:04D8:00DD.0005: unknown main item tag 0x0
[  144.417803][  T830] mcp2221 0003:04D8:00DD.0005: unknown main item tag 0x0
[  144.420825][  T830] mcp2221 0003:04D8:00DD.0005: unknown main item tag 0x0
[  144.424345][  T830] mcp2221 0003:04D8:00DD.0005: unknown main item tag 0x0
[  144.427466][  T830] mcp2221 0003:04D8:00DD.0005: unknown main item tag 0x0
[  144.431072][  T830] mcp2221 0003:04D8:00DD.0005: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.7-1/input0
[  144.533870][   T10] usb 10-1: new full-speed USB device number 5 using dummy_hcd
[  144.542552][ T8965] usb 8-1: USB disconnect, device number 10
[  144.615147][ T7559] usb 12-1: USB disconnect, device number 5
[  144.695019][   T10] usb 10-1: config index 0 descriptor too short (expected 28277, got 36)
[  144.697745][   T10] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  144.700985][   T10] usb 10-1: config 0 has no interfaces?
[  144.703411][   T10] usb 10-1: New USB device found, idVendor=056a, idProduct=0063, bcdDevice= 0.00
[  144.707515][   T10] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.713835][   T10] usb 10-1: config 0 descriptor??
[  144.919788][ T7559] usb 10-1: USB disconnect, device number 5
[  145.517689][ T9841] binder: 9840:9841 ioctl c0306201 0 returned -14
[  146.030419][ T9874] netlink: 'syz.7.1446': attribute type 9 has an invalid length.
[  146.034023][ T9874] netlink: 'syz.7.1446': attribute type 11 has an invalid length.
[  146.036564][ T9874] netlink: 'syz.7.1446': attribute type 12 has an invalid length.
[  146.039140][ T9874] netlink: 210020 bytes leftover after parsing attributes in process `syz.7.1446'.
[  146.056636][ T9876] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1448'.
[  146.141252][ T9882] overlayfs: statfs failed on './file0'
[  146.547211][   T40] audit: type=1326 audit(1771558470.768:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9908 comm="syz.3.1465" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f34f6c code=0x0
[  146.917211][ T9928] overlayfs: lowerdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  146.972645][ T9934] input: syz1 as /devices/virtual/input/input19
[  147.138235][   T40] audit: type=1326 audit(1771558471.358:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9938 comm="syz.6.1478" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf6feef6c code=0x0
[  147.853735][  T830] usb 8-1: new high-speed USB device number 11 using dummy_hcd
[  148.039170][  T830] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  148.044491][  T830] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  148.049074][  T830] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  148.055069][  T830] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  148.059429][  T830] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.066507][  T830] usb 8-1: config 0 descriptor??
[  148.080867][ T9958] netlink: 'syz.6.1484': attribute type 4 has an invalid length.
[  148.187731][ T9965] kvm: kvm [9964]: vcpu3, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010006) = 0xffe0000000000001
[  148.481724][  T830] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  149.773983][    C2] plantronics 0003:047F:FFFF.0006: usb_submit_urb(ctrl) failed: -1
[  149.793754][  T830] usb 12-1: new high-speed USB device number 6 using dummy_hcd
[  149.933805][ T6003] usb 10-1: new high-speed USB device number 6 using dummy_hcd
[  149.944588][  T830] usb 12-1: Using ep0 maxpacket: 32
[  149.947413][  T830] usb 12-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  149.950414][  T830] usb 12-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  149.954020][  T830] usb 12-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  149.957608][  T830] usb 12-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  149.962976][  T830] usb 12-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  149.965791][  T830] usb 12-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.968232][  T830] usb 12-1: Product: syz
[  149.969460][  T830] usb 12-1: Manufacturer: syz
[  149.970772][  T830] usb 12-1: SerialNumber: syz
[  149.978430][    C2] imon 12-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  149.983926][  T830] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:155.0/input/input20
[  150.085639][ T6003] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  150.089814][ T6003] usb 10-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  150.093925][ T6003] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  150.101438][ T6003] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.41
[  150.105493][ T6003] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=11
[  150.109125][ T6003] usb 10-1: Product: syz
[  150.110972][ T6003] usb 10-1: Manufacturer: syz
[  150.112979][ T6003] usb 10-1: SerialNumber: syz
[  150.203691][  T830] imon 12-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  150.206442][  T830]  (id 0x00)
[  150.274338][  T830] rc_core: IR keymap rc-imon-pad not found
[  150.276719][  T830] Registered IR keymap rc-empty
[  150.278403][  T830] imon 12-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  150.282555][  T830] imon 12-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  150.335363][ T6003] usblp 10-1:1.0: usblp1: USB Unidirectional printer dev 6 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  150.416875][  T830] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:155.0/rc/rc0
[  150.445064][  T830] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:155.0/rc/rc0/input21
[  150.454032][  T830] imon 12-1:155.0: iMON device (15c2:ffdc, intf0) on usb<12:6> initialized
[  150.555918][ T8965] usb 8-1: USB disconnect, device number 11
[  150.581695][T10027] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1513'.
[  150.589690][ T6003] usb 12-1: USB disconnect, device number 6
[  150.638543][ T8550] usb 10-1: USB disconnect, device number 6
[  150.653096][ T8550] usblp1: removed
[  150.693686][ T5976] usb 11-1: new high-speed USB device number 7 using dummy_hcd
[  150.865362][ T5976] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  150.869090][ T5976] usb 11-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  150.872208][ T5976] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  150.876351][ T5976] usb 11-1: config 0 descriptor??
[  151.090711][ T5976] usbhid 11-1:0.0: can't add hid device: -71
[  151.093368][ T5976] usbhid 11-1:0.0: probe with driver usbhid failed with error -71
[  151.108243][ T5976] usb 11-1: USB disconnect, device number 7
[  151.593722][ T5976] usb 11-1: new high-speed USB device number 8 using dummy_hcd
[  151.604001][ T8965] usb 12-1: new high-speed USB device number 7 using dummy_hcd
[  151.743773][ T5976] usb 11-1: Using ep0 maxpacket: 32
[  151.747079][ T5976] usb 11-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.750980][ T5976] usb 11-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[  151.753909][ T8965] usb 12-1: Using ep0 maxpacket: 8
[  151.755002][ T5976] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.759413][ T8965] usb 12-1: config 0 interface 0 has no altsetting 0
[  151.762799][ T8965] usb 12-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  151.762871][ T5976] usb 11-1: config 0 descriptor??
[  151.766968][ T8965] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.773443][ T5976] ldusb 11-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  151.776185][ T8965] usb 12-1: config 0 descriptor??
[  151.779161][ T5976] ldusb 11-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  152.194978][ T8965] mcp2221 0003:04D8:00DD.0007: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.7-1/input0
[  152.229598][ T8550] usb 11-1: USB disconnect, device number 8
[  152.238186][ T8550] ldusb 11-1:0.0: LD USB Device #0 now disconnected
[  152.391198][ T6003] usb 12-1: USB disconnect, device number 7
[  152.809906][T10060] netlink: 44 bytes leftover after parsing attributes in process `syz.5.1527'.
[  153.723798][T10084] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1537'.
[  153.730248][T10084] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1537'.
[  153.739915][T10084] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1537'.
[  153.749173][ T8550] IPVS: starting estimator thread 0...
[  153.854001][T10087] IPVS: using max 30 ests per chain, 72000 per kthread
[  154.771642][T10114] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1548'.
[  154.879227][T10120] netlink: 'syz.5.1552': attribute type 9 has an invalid length.
[  154.882132][T10120] netlink: 'syz.5.1552': attribute type 11 has an invalid length.
[  154.885675][T10120] netlink: 'syz.5.1552': attribute type 12 has an invalid length.
[  154.888627][T10120] netlink: 210020 bytes leftover after parsing attributes in process `syz.5.1552'.
[  154.891973][T10120] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1552'.
[  154.894079][ T8965] usb 12-1: new high-speed USB device number 8 using dummy_hcd
[  155.055241][ T8965] usb 12-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  155.061372][ T8965] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  155.073878][ T8965] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  155.077726][ T8965] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  155.091492][ T8965] usb 12-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  155.094486][ T8965] usb 12-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  155.097270][ T8965] usb 12-1: Manufacturer: syz
[  155.102731][ T8965] usb 12-1: config 0 descriptor??
[  155.530669][ T8965] appleir 0003:05AC:8243.0008: unknown main item tag 0x0
[  155.545382][ T8965] appleir 0003:05AC:8243.0008: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.7-1/input0
[  155.605330][T10149] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1563'.
[  155.806779][ T8550] usb 12-1: USB disconnect, device number 8
[  156.263760][ T8550] usb 11-1: new high-speed USB device number 9 using dummy_hcd
[  156.358366][   T40] audit: type=1326 audit(1771558480.578:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10203 comm="syz.7.1570" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f68f6c code=0x0
[  156.425289][ T8550] usb 11-1: Using ep0 maxpacket: 8
[  156.435207][ T8550] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[  156.438029][ T8550] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  156.441592][ T8550] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  156.451475][ T8550] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  156.455203][ T8550] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  156.459607][ T8550] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  156.462851][ T8550] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.515467][T10218] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  156.519214][T10218] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  156.531903][T10218] overlayfs: d_ino too big (., ino=4611686018427387905, xinobits=3)
[  156.535659][T10218] overlayfs: d_ino too big (.., ino=4611686018427387905, xinobits=3)
[  156.539233][T10218] overlayfs: d_ino too big (258, ino=9223372036854777184, xinobits=3)
[  156.542876][T10218] overlayfs: d_ino too big (syzcgroup, ino=9223372036854775816, xinobits=3)
[  156.550072][T10218] overlayfs: d_ino too big (syz-inputs, ino=9223372036854775815, xinobits=3)
[  156.554297][T10218] overlayfs: d_ino too big (sys, ino=9223372036854775814, xinobits=3)
[  156.557711][T10218] overlayfs: d_ino too big (selinux, ino=9223372036854775813, xinobits=3)
[  156.561477][T10218] overlayfs: d_ino too big (proc, ino=9223372036854775812, xinobits=3)
[  156.565337][T10218] overlayfs: d_ino too big (dev, ino=9223372036854775811, xinobits=3)
[  156.569014][T10218] overlayfs: d_ino too big (instances, ino=4611686018427390181, xinobits=3)
[  156.671110][ T8550] usb 11-1: GET_CAPABILITIES returned 0
[  156.673370][ T8550] usbtmc 11-1:16.0: can't read capabilities
[  156.743712][   T10] usb 8-1: new high-speed USB device number 12 using dummy_hcd
[  156.877664][ T6020] usb 11-1: USB disconnect, device number 9
[  156.906444][   T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  156.910473][   T10] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.914127][   T10] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  156.919290][   T10] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  156.919316][T10225] mmap: syz.5.1578 (10225) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  156.922910][   T10] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.933824][   T10] usb 8-1: config 0 descriptor??
[  157.353739][   T10] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  157.690927][T10250] netlink: 212328 bytes leftover after parsing attributes in process `syz.6.1586'.
[  157.694209][T10250] netlink: Conntrack attr has 4 unknown bytes
[  157.703854][T10248] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(6)
[  157.706132][T10248] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[  157.710475][T10248] vhci_hcd vhci_hcd.0: Device attached
[  157.714982][T10251] vhci_hcd: connection closed
[  157.720383][  T551] vhci_hcd vhci_hcd.7: stop threads
[  157.725143][  T551] vhci_hcd vhci_hcd.7: release socket
[  157.727400][  T551] vhci_hcd vhci_hcd.7: disconnect device
[  157.749264][T10254] input: syz0 as /devices/virtual/input/input22
[  157.849583][   T10] usb 8-1: USB disconnect, device number 12
[  158.149646][T10269] netlink: 'syz.6.1594': attribute type 12 has an invalid length.
[  158.152164][T10269] netlink: 'syz.6.1594': attribute type 29 has an invalid length.
[  158.154576][T10269] netlink: 148 bytes leftover after parsing attributes in process `syz.6.1594'.
[  158.157926][T10269] netlink: 'syz.6.1594': attribute type 1 has an invalid length.
[  158.161372][T10269] netlink: 'syz.6.1594': attribute type 2 has an invalid length.
[  158.164671][T10269] netlink: 11 bytes leftover after parsing attributes in process `syz.6.1594'.
[  158.287206][   T40] audit: type=1326 audit(1771558482.508:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.6.1597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  158.296212][   T40] audit: type=1326 audit(1771558482.508:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.6.1597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  158.305077][   T40] audit: type=1326 audit(1771558482.508:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.6.1597" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  158.315452][   T40] audit: type=1326 audit(1771558482.508:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.6.1597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  158.325573][   T40] audit: type=1326 audit(1771558482.508:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.6.1597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  158.335237][   T40] audit: type=1326 audit(1771558482.508:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.6.1597" exe="/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  158.343700][   T40] audit: type=1326 audit(1771558482.508:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.6.1597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  158.352807][   T40] audit: type=1326 audit(1771558482.508:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.6.1597" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  158.361324][   T40] audit: type=1326 audit(1771558482.508:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10274 comm="syz.6.1597" exe="/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  158.676481][ T6020] usb 12-1: new high-speed USB device number 9 using dummy_hcd
[  158.771206][T10308] trusted_key: syz.5.1613 sent an empty control message without MSG_MORE.
[  158.772337][T10311] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1614'.
[  158.830635][   T29] hid-generic FFFF:0003:0000.000A: unknown main item tag 0x0
[  158.836257][   T29] hid-generic FFFF:0003:0000.000A: unknown main item tag 0x0
[  158.845751][ T6020] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.849280][ T6020] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.852353][ T6020] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  158.856985][   T29] hid-generic FFFF:0003:0000.000A: hidraw0: <UNKNOWN> HID v0.03 Device [syz1] on syz1
[  158.862212][ T6020] usb 12-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  158.864962][ T6020] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.868638][ T6020] usb 12-1: config 0 descriptor??
[  158.894439][T10319] fido_id[10319]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  158.976884][T10326] netlink: 27 bytes leftover after parsing attributes in process `syz.5.1619'.
[  159.287827][ T6020] plantronics 0003:047F:FFFF.000B: reserved main item tag 0xd
[  159.297357][ T6020] plantronics 0003:047F:FFFF.000B: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[  159.546191][ T3873] usb 12-1: USB disconnect, device number 9
[  159.928364][T10340] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4277939134 (8555878268 ns) > initial count (5867140230 ns). Using initial count to start timer.
[  160.621195][T10374] netlink: 'syz.5.1635': attribute type 1 has an invalid length.
[  160.624941][T10374] netlink: 16126 bytes leftover after parsing attributes in process `syz.5.1635'.
[  161.446103][T10394] random: crng reseeded on system resumption
[  162.487856][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  162.487867][   T40] audit: type=1326 audit(1771558486.708:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.5.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[  162.500070][   T40] audit: type=1326 audit(1771558486.708:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.5.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[  162.507679][   T40] audit: type=1326 audit(1771558486.708:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.5.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[  162.516036][   T40] audit: type=1326 audit(1771558486.708:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.5.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=432 compat=1 ip=0xf704ef6c code=0x7ffc0000
[  162.524591][   T40] audit: type=1326 audit(1771558486.708:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.5.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[  162.535433][   T40] audit: type=1326 audit(1771558486.708:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.5.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[  162.544909][   T40] audit: type=1326 audit(1771558486.708:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.5.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[  162.554579][   T40] audit: type=1326 audit(1771558486.708:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.5.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf704ef6c code=0x7ffc0000
[  162.567332][   T40] audit: type=1326 audit(1771558486.708:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.5.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[  162.573420][   T40] audit: type=1326 audit(1771558486.708:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.5.1663" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x7ffc0000
[  162.870928][T10474] bridge_slave_0: left allmulticast mode
[  162.872752][T10474] bridge_slave_0: left promiscuous mode
[  162.875207][T10474] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.879031][T10474] bridge_slave_1: left allmulticast mode
[  162.881079][T10474] bridge_slave_1: left promiscuous mode
[  162.883024][T10474] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.888086][T10474] bond0: (slave bond_slave_0): Releasing backup interface
[  162.891913][T10474] bond0: (slave bond_slave_1): Releasing backup interface
[  162.897655][T10474] team0: Port device team_slave_0 removed
[  162.901134][T10474] team0: Port device team_slave_1 removed
[  162.904397][T10474] batman_adv: batadv0: Removing interface: batadv_slave_0
[  162.907273][T10474] batman_adv: batadv0: Removing interface: batadv_slave_1
[  162.910070][T10474] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  163.743668][ T3873] usb 10-1: new high-speed USB device number 7 using dummy_hcd
[  163.910961][T10512] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1688'.
[  163.916017][ T3873] usb 10-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  163.919907][ T3873] usb 10-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  163.923671][ T3873] usb 10-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  163.926772][ T3873] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.932298][T10505] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  163.937322][ T3873] usb 10-1: Quirk or no altset; falling back to MIDI 1.0
[  164.196239][   T10] usb 10-1: USB disconnect, device number 7
[  164.353845][   T29] usb 8-1: new high-speed USB device number 13 using dummy_hcd
[  164.515812][   T29] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  164.521727][   T29] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  164.526101][   T29] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  164.529746][   T29] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.534759][T10518] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  164.540921][   T29] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[  164.733650][   T10] usb 12-1: new high-speed USB device number 10 using dummy_hcd
[  164.753753][   T50] usb 8-1: USB disconnect, device number 13
[  164.883760][   T10] usb 12-1: Using ep0 maxpacket: 16
[  164.887627][   T10] usb 12-1: config 0 interface 0 has no altsetting 0
[  164.894396][   T10] usb 12-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00
[  164.898267][   T10] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.915876][   T10] usb 12-1: config 0 descriptor??
[  165.160115][T10570] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1712'.
[  165.403139][   T10] input: HID 0458:5013 as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/0003:0458:5013.000C/input/input24
[  165.454087][   T29] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[  165.479235][   T10] input: HID 0458:5013 as /devices/platform/dummy_hcd.7/usb12/12-1/12-1:0.0/0003:0458:5013.000C/input/input25
[  165.523733][ T6020] usb 11-1: new high-speed USB device number 10 using dummy_hcd
[  165.548088][   T10] kye 0003:0458:5013.000C: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0458:5013] on usb-dummy_hcd.7-1/input0
[  165.595451][   T50] usb 12-1: USB disconnect, device number 10
[  165.616097][   T29] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  165.619063][   T29] usb 10-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  165.625384][   T29] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  165.628261][   T29] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  165.631554][   T29] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  165.636773][   T29] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  165.639606][   T29] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  165.642013][   T29] usb 10-1: Product: syz
[  165.643397][   T29] usb 10-1: Manufacturer: syz
[  165.649268][   T29] cdc_wdm 10-1:1.0: skipping garbage
[  165.650984][   T29] cdc_wdm 10-1:1.0: skipping garbage
[  165.655433][   T29] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device
[  165.657344][   T29] cdc_wdm 10-1:1.0: Unknown control protocol
[  165.693696][ T6020] usb 11-1: Using ep0 maxpacket: 8
[  165.696847][ T6020] usb 11-1: config 179 has an invalid interface number: 65 but max is 0
[  165.699449][ T6020] usb 11-1: config 179 has no interface number 0
[  165.701449][ T6020] usb 11-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  165.704943][ T6020] usb 11-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  165.708760][ T6020] usb 11-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  165.712028][ T6020] usb 11-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[  165.717079][ T6020] usb 11-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  165.722960][ T6020] usb 11-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  165.726463][ T6020] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.734504][T10576] raw-gadget.2 gadget.6: fail, usb_ep_enable returned -22
[  165.856998][ T8550] usb 10-1: USB disconnect, device number 8
[  165.947468][ T6020] input: Generic X-Box pad as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:179.65/input/input26
[  166.144055][ T6020] usb 11-1: USB disconnect, device number 10
[  166.146673][    C1] xpad 11-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  166.146720][    C1] xpad 11-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  166.294339][T10584] Process accounting resumed
[  166.317112][T10589] loop5: detected capacity change from 0 to 7
[  166.321688][T10589] Dev loop5: unable to read RDB block 7
[  166.324283][T10589]  loop5: unable to read partition table
[  166.326677][T10589] loop5: partition table beyond EOD, truncated
[  166.329182][T10589] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  166.513703][ T6020] usb 10-1: new high-speed USB device number 9 using dummy_hcd
[  166.649646][T10601] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1723'.
[  166.653747][T10601] netlink: 'syz.7.1723': attribute type 6 has an invalid length.
[  166.665947][ T6020] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  166.667566][T10601] vxlan1: entered promiscuous mode
[  166.669754][ T6020] usb 10-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  166.683654][ T6020] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  166.686718][ T6020] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  166.690755][ T6020] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  166.695940][ T6020] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  166.699186][ T6020] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  166.701823][ T6020] usb 10-1: Product: syz
[  166.703273][ T6020] usb 10-1: Manufacturer: syz
[  166.712114][ T6020] cdc_wdm 10-1:1.0: skipping garbage
[  166.715079][ T6020] cdc_wdm 10-1:1.0: skipping garbage
[  166.719251][ T6020] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device
[  166.722027][ T6020] cdc_wdm 10-1:1.0: Unknown control protocol
[  166.917013][   T10] usb 10-1: USB disconnect, device number 9
[  167.525920][T10626] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1733'.
[  167.913748][   T50] usb 10-1: new full-speed USB device number 10 using dummy_hcd
[  167.958880][T10655] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  168.074863][   T50] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has an invalid bInterval 0, changing to 4
[  168.083750][   T50] usb 10-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid maxpacket 15380, setting to 1023
[  168.087591][   T50] usb 10-1: config 0 interface 0 has no altsetting 0
[  168.105399][   T50] usb 10-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  168.109081][   T50] usb 10-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  168.111625][   T50] usb 10-1: Product: syz
[  168.112964][   T50] usb 10-1: Manufacturer: syz
[  168.115690][   T50] usb 10-1: SerialNumber: syz
[  168.126369][   T50] usb 10-1: config 0 descriptor??
[  168.137782][   T50] usb 10-1: selecting invalid altsetting 0
[  168.342604][T10634] usb 10-1: cannot submit urb 0, error -2: endpoint not enabled
[  168.349787][   T50] usb 10-1: USB disconnect, device number 10
[  168.358976][T10678] input: syz0 as /devices/virtual/input/input27
[  168.456753][T10688] input: syz0 as /devices/virtual/input/input28
[  168.459155][T10689] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1759'.
[  168.462685][T10684] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.463216][T10684] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.467513][T10689] netlink: 56 bytes leftover after parsing attributes in process `syz.6.1759'.
[  168.515598][T10691] netfs: Couldn't get user pages (rc=-14)
[  168.516898][T10684] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  168.517793][T10691] netfs: Zero-sized read [R=e]
[  168.528904][T10684] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  168.572795][T10684] vxlan0: left promiscuous mode
[  168.579872][T10689] geneve2: entered promiscuous mode
[  168.582142][T10689] geneve2: entered allmulticast mode
[  168.587694][   T46] netdevsim netdevsim6 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  168.590609][   T46] netdevsim netdevsim6 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  168.593837][   T46] netdevsim netdevsim6 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  168.597036][   T46] netdevsim netdevsim6 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  169.171982][T10723] netlink: 128 bytes leftover after parsing attributes in process `syz.7.1776'.
[  169.653718][   T10] usb 12-1: new high-speed USB device number 11 using dummy_hcd
[  169.731884][T10765] i2c i2c-1: dtv_property_process_set: SET cmd 0x00000000 undefined
[  169.825811][   T10] usb 12-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  169.830566][   T10] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  169.836100][   T10] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  169.840273][   T10] usb 12-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  169.845874][   T10] usb 12-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  169.849761][   T10] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.856122][   T10] usb 12-1: config 0 descriptor??
[  170.276742][   T10] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.7-1/input0
[  170.633731][ T8026] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[  170.783821][ T8026] usb 10-1: Using ep0 maxpacket: 8
[  170.787602][ T8026] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  170.792194][ T8026] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  170.796312][ T8026] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.801809][ T8026] usb 10-1: config 0 descriptor??
[  171.027199][ T8026] iowarrior 10-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior1
[  171.175347][T10806] binder: 10805:10806 ioctl c0306201 0 returned -14
[  171.611094][   T50] usb 10-1: USB disconnect, device number 11
[  171.768362][T10833] netlink: 212368 bytes leftover after parsing attributes in process `syz.5.1821'.
[  172.156808][T10855] netlink: 'syz.6.1832': attribute type 13 has an invalid length.
[  172.159090][T10855] macvtap0: entered promiscuous mode
[  172.160692][T10855] macvtap0: entered allmulticast mode
[  172.356683][ T3873] usb 12-1: USB disconnect, device number 11
[  172.498030][T10879] ip6gretap1: entered promiscuous mode
[  172.499646][T10879] ip6gretap1: entered allmulticast mode
[  172.826765][T10900] syzkaller1: entered promiscuous mode
[  172.828553][T10900] syzkaller1: entered allmulticast mode
[  173.382082][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  173.382093][   T40] audit: type=1326 audit(1771558497.598:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10914 comm="syz.5.1856" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf704ef6c code=0x0
[  173.973835][ T6020] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[  174.123688][ T6020] usb 8-1: Using ep0 maxpacket: 32
[  174.126856][ T6020] usb 8-1: config 0 has no interfaces?
[  174.130432][ T6020] usb 8-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  174.134077][ T6020] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.137110][ T6020] usb 8-1: Product: syz
[  174.138476][ T6020] usb 8-1: Manufacturer: syz
[  174.140040][ T6020] usb 8-1: SerialNumber: syz
[  174.143080][ T6020] usb 8-1: config 0 descriptor??
[  174.351143][ T8550] usb 8-1: USB disconnect, device number 14
[  175.043203][T10962] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  175.048445][T10962] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  175.059181][T10962] ovl_remap_lower_ino: 36 callbacks suppressed
[  175.059201][T10962] overlayfs: d_ino too big (., ino=4611686018427387905, xinobits=3)
[  175.064819][T10962] overlayfs: d_ino too big (.., ino=4611686018427387905, xinobits=3)
[  175.068391][T10962] overlayfs: d_ino too big (484, ino=9223372036854778310, xinobits=3)
[  175.071666][T10962] overlayfs: d_ino too big (syzcgroup, ino=9223372036854775816, xinobits=3)
[  175.075466][T10962] overlayfs: d_ino too big (syz-inputs, ino=9223372036854775815, xinobits=3)
[  175.078344][T10962] overlayfs: d_ino too big (sys, ino=9223372036854775814, xinobits=3)
[  175.080779][T10962] overlayfs: d_ino too big (selinux, ino=9223372036854775813, xinobits=3)
[  175.083224][T10962] overlayfs: d_ino too big (proc, ino=9223372036854775812, xinobits=3)
[  175.088411][T10962] overlayfs: d_ino too big (dev, ino=9223372036854775811, xinobits=3)
[  175.091662][T10962] overlayfs: d_ino too big (instances, ino=4611686018427390181, xinobits=3)
[  175.637849][T10993] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1885'.
[  175.898786][T11007] netlink: 212344 bytes leftover after parsing attributes in process `syz.6.1891'.
[  175.935715][T11010] netlink: 'syz.6.1893': attribute type 9 has an invalid length.
[  175.938531][T11010] netlink: 'syz.6.1893': attribute type 11 has an invalid length.
[  175.941238][T11010] netlink: 'syz.6.1893': attribute type 12 has an invalid length.
[  175.944044][T11010] netlink: 210020 bytes leftover after parsing attributes in process `syz.6.1893'.
[  175.947125][T11010] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1893'.
[  176.106026][   T40] audit: type=1326 audit(1771558500.328:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11027 comm="syz.6.1900" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x0
[  176.469003][T11049] kvm: apic: phys broadcast and lowest prio
[  176.683900][ T8550] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[  176.835666][ T8550] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  176.838783][ T8550] usb 10-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  176.841964][ T8550] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  176.847799][ T8550] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  176.850916][ T8550] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  176.853556][ T8550] usb 10-1: Product: syz
[  176.855030][ T8550] usb 10-1: Manufacturer: syz
[  176.856526][ T8550] usb 10-1: SerialNumber: syz
[  176.860973][ T8550] hub 10-1:1.0: bad descriptor, ignoring hub
[  176.862870][ T8550] hub 10-1:1.0: probe with driver hub failed with error -5
[  177.068383][ T8550] usblp 10-1:1.0: usblp0: USB Unidirectional printer dev 12 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  177.641789][T11100] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1932'.
[  177.651660][T11100] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1932'.
[  177.676610][T11048] usb 10-1: reset high-speed USB device number 12 using dummy_hcd
[  177.684999][T11048] usb 10-1: device reset changed ep0 maxpacket size!
[  177.691903][ T7559] usb 10-1: USB disconnect, device number 12
[  177.698497][ T7559] usblp0: removed
[  177.833857][ T7559] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  177.925706][T11108] mkiss: ax0: crc mode is auto.
[  177.993705][ T7559] usb 10-1: Using ep0 maxpacket: 16
[  178.001241][ T7559] usb 10-1: unable to get BOS descriptor or descriptor too short
[  178.007562][ T7559] usb 10-1: unable to read config index 0 descriptor/start: -71
[  178.010652][ T7559] usb 10-1: can't read configurations, error -71
[  178.393934][ T6020] usb 8-1: new high-speed USB device number 15 using dummy_hcd
[  178.546399][ T6020] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  178.549290][ T6020] usb 8-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  178.552732][ T6020] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[  178.556020][ T6020] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  178.559465][ T6020] usb 8-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  178.565044][ T6020] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  178.568022][ T6020] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  178.570797][ T6020] usb 8-1: Product: syz
[  178.572495][ T6020] usb 8-1: Manufacturer: syz
[  178.582026][ T6020] cdc_wdm 8-1:1.0: skipping garbage
[  178.584497][ T6020] cdc_wdm 8-1:1.0: skipping garbage
[  178.588152][ T6020] cdc_wdm 8-1:1.0: cdc-wdm0: USB WDM device
[  178.590615][ T6020] cdc_wdm 8-1:1.0: Unknown control protocol
[  178.784892][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  178.787253][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  178.789682][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  178.791959][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  178.794189][    C1] cdc_wdm 8-1:1.0: nonzero urb status received: -71
[  178.794241][ T3873] usb 8-1: USB disconnect, device number 15
[  178.796572][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - 0 bytes
[  178.796589][    C1] cdc_wdm 8-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  179.029767][T11144] netlink: 'syz.5.1948': attribute type 1 has an invalid length.
[  179.065942][T11144] gretap1: entered allmulticast mode
[  179.069403][T11144] bond1: (slave gretap1): making interface the new active one
[  179.072169][T11144] bond1: (slave gretap1): Enslaving as an active interface with an up link
[  179.503745][ T3873] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[  179.653694][ T3873] usb 10-1: Using ep0 maxpacket: 32
[  179.657176][ T3873] usb 10-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  179.661136][ T3873] usb 10-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  179.665788][ T3873] usb 10-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  179.669696][ T3873] usb 10-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  179.676975][ T3873] usb 10-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  179.680819][ T3873] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.684414][ T3873] usb 10-1: Product: syz
[  179.685894][ T3873] usb 10-1: Manufacturer: syz
[  179.687484][ T3873] usb 10-1: SerialNumber: syz
[  179.693499][    C3] imon 10-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  179.699596][ T3873] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:155.0/input/input30
[  179.724047][T11161] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1955'.
[  179.729039][T11162] netlink: 212348 bytes leftover after parsing attributes in process `syz.3.1956'.
[  179.913692][ T3873] imon 10-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  179.917392][ T3873]  (id 0x00)
[  179.974084][ T3873] rc_core: IR keymap rc-imon-pad not found
[  179.976591][ T3873] Registered IR keymap rc-empty
[  179.978852][ T3873] imon 10-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  179.983250][ T3873] imon 10-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  180.114318][ T3873] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:155.0/rc/rc0
[  180.119077][ T3873] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:155.0/rc/rc0/input31
[  180.125252][ T3873] imon 10-1:155.0: iMON device (15c2:ffdc, intf0) on usb<10:15> initialized
[  180.298688][ T3873] usb 10-1: USB disconnect, device number 15
[  180.989235][T11191] netlink: 'syz.7.1966': attribute type 4 has an invalid length.
[  181.057632][T11197] syzkaller1: entered promiscuous mode
[  181.059485][T11197] syzkaller1: entered allmulticast mode
[  181.368952][   T40] audit: type=1326 audit(1771558505.588:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11174 comm="syz.6.1969" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7fc00000
[  182.156290][   T40] audit: type=1804 audit(1771558506.378:81): pid=11250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1990" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="ramfs" ino=40777 res=1 errno=0
[  182.500493][T11273] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2000'.
[  182.504605][T11273] netlink: 'syz.6.2000': attribute type 6 has an invalid length.
[  182.516286][T11273] vxlan1: entered promiscuous mode
[  182.519576][  T551] netdevsim netdevsim6 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  182.523052][  T551] netdevsim netdevsim6 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  182.528150][  T551] netdevsim netdevsim6 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  182.531544][  T551] netdevsim netdevsim6 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  183.553476][T11308] netlink: 25 bytes leftover after parsing attributes in process `syz.6.2014'.
[  183.683969][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  183.793725][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  184.013717][ T8026] usb 11-1: new high-speed USB device number 11 using dummy_hcd
[  184.114497][T11326] ceph: No mds server is up or the cluster is laggy
[  184.173662][ T8026] usb 11-1: Using ep0 maxpacket: 16
[  184.176640][ T8026] usb 11-1: config 0 interface 0 has no altsetting 0
[  184.178987][ T8026] usb 11-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00
[  184.181963][ T8026] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.186997][ T8026] usb 11-1: config 0 descriptor??
[  184.373800][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  184.463797][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  184.620375][ T8026] input: HID 0458:5013 as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/0003:0458:5013.000E/input/input32
[  184.633027][T11344] tipc: Started in network mode
[  184.635340][T11344] tipc: Node identity 7f000001, cluster identity 4711
[  184.638750][T11344] tipc: Enabled bearer <udp:syz2>, priority 10
[  184.646017][T11344] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  184.692057][ T8026] input: HID 0458:5013 as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:0.0/0003:0458:5013.000E/input/input33
[  184.759884][ T8026] kye 0003:0458:5013.000E: input,hiddev0,hidraw0: USB HID v0.00 Device [HID 0458:5013] on usb-dummy_hcd.6-1/input0
[  184.814478][   T10] usb 11-1: USB disconnect, device number 11
[  184.878430][T11359] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3642988519 (466302530432 ns) > initial count (459226025088 ns). Using initial count to start timer.
[  185.009087][T11362] lo: entered allmulticast mode
[  185.012866][T11361] lo: left allmulticast mode
[  185.634871][   T10] tipc: Node number set to 2130706433
[  185.856426][T11410] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2053'.
[  187.019010][T11449] netlink: 212348 bytes leftover after parsing attributes in process `syz.7.2071'.
[  187.026395][T11449] netlink: Conntrack attr type has unexpected length (type=2, length=0, expected=2)
[  187.199427][T11455] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2074'.
[  187.565199][T11476] input: syz0 as /devices/virtual/input/input34
[  187.939058][T11497] bridge_slave_0: left allmulticast mode
[  187.941088][T11497] bridge_slave_0: left promiscuous mode
[  187.943328][T11497] bridge0: port 1(bridge_slave_0) entered disabled state
[  187.953753][T11497] bridge_slave_1: left allmulticast mode
[  187.955489][T11497] bridge_slave_1: left promiscuous mode
[  187.957238][T11497] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.963390][T11497] bond0: (slave bond_slave_0): Releasing backup interface
[  187.972982][T11497] bond0: (slave bond_slave_1): Releasing backup interface
[  187.980840][T11497] team0: Port device team_slave_0 removed
[  187.985396][T11497] team0: Port device team_slave_1 removed
[  187.987682][T11497] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  187.990535][T11497] batman_adv: batadv0: Removing interface: batadv_slave_0
[  187.997735][T11497] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  188.000083][T11497] batman_adv: batadv0: Removing interface: batadv_slave_1
[  188.003959][T11497] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  188.185966][T11500] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2093'.
[  188.190585][T11500] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2093'.
[  188.382889][T11505] Illegal XDP return value 4294967274 on prog  (id 148) dev syz_tun, expect packet loss!
[  188.733714][ T5976] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  188.736313][   T50] usb 12-1: new high-speed USB device number 12 using dummy_hcd
[  188.796782][T11523] kvm: user requested TSC rate below hardware speed
[  188.807591][T11523] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  188.893673][ T5976] usb 10-1: Using ep0 maxpacket: 8
[  188.895721][   T50] usb 12-1: Using ep0 maxpacket: 8
[  188.901299][   T50] usb 12-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  188.905618][   T50] usb 12-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  188.908615][   T50] usb 12-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.911675][ T5976] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  188.916212][   T50] usb 12-1: config 0 descriptor??
[  188.919362][ T5976] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  188.927764][ T5976] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.935949][ T5976] usb 10-1: config 0 descriptor??
[  189.134753][   T50] iowarrior 12-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  189.154104][ T5976] iowarrior 10-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior1
[  189.400655][ T8550] usb 10-1: USB disconnect, device number 16
[  189.425502][ T6020] usb 12-1: USB disconnect, device number 12
[  189.904646][ T6020] libceph: connect (1)[c::]:6789 error -101
[  189.907526][ T6020] libceph: mon0 (1)[c::]:6789 connect error
[  189.955170][T11544] ceph: No mds server is up or the cluster is laggy
[  190.642849][T11585] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2128'.
[  190.645921][T11585] netlink: 56 bytes leftover after parsing attributes in process `syz.7.2128'.
[  190.692196][ T5976] libceph: connect (1)[c::]:6789 error -101
[  190.695110][ T5976] libceph: mon0 (1)[c::]:6789 connect error
[  190.734893][T11587] ceph: No mds server is up or the cluster is laggy
[  190.773323][T11584] vxlan0: left promiscuous mode
[  190.811025][T11584] vxlan1: left promiscuous mode
[  190.826455][T11585] geneve2: entered promiscuous mode
[  190.832720][T11585] geneve2: entered allmulticast mode
[  190.836369][ T1170] netdevsim netdevsim7 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  190.839742][ T1170] netdevsim netdevsim7 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  190.843870][ T1170] netdevsim netdevsim7 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  190.846949][ T1170] netdevsim netdevsim7 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  192.454897][T11639] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2150'.
[  192.457748][T11639] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2150'.
[  193.422810][  T551] netdevsim netdevsim7 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.494096][  T551] netdevsim netdevsim7 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.589163][T11662] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  193.589673][T11660] overlayfs: failed to verify upper (414/file1, ino=2211, err=-116)
[  193.604438][  T551] netdevsim netdevsim7 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.609768][T11660] overlayfs: failed to verify index dir 'upper' xattr
[  193.619916][T11660] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[  193.688146][  T551] netdevsim netdevsim7 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  193.851568][ T5294] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  193.855715][ T5294] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  193.859684][ T5294] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  193.863800][ T5294] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  193.866697][ T5294] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  193.877606][   T63] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  193.882657][   T63] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  193.885169][   T63] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  193.888292][   T63] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  193.892388][   T63] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  193.921697][    C2] bridge0: received packet on bridge_slave_0 with own address as source address (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  194.178048][  T551] bond0 (unregistering): Released all slaves
[  194.483113][T11671] chnl_net:caif_netlink_parms(): no params data found
[  194.643793][T11671] bridge0: port 1(bridge_slave_0) entered blocking state
[  194.646973][T11671] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.650291][T11671] bridge_slave_0: entered allmulticast mode
[  194.655211][T11671] bridge_slave_0: entered promiscuous mode
[  194.660578][T11671] bridge0: port 2(bridge_slave_1) entered blocking state
[  194.663644][T11671] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.666767][T11671] bridge_slave_1: entered allmulticast mode
[  194.671117][T11671] bridge_slave_1: entered promiscuous mode
[  194.703843][  T551] hsr_slave_0: left promiscuous mode
[  194.707116][  T551] hsr_slave_1: left promiscuous mode
[  194.968447][T11671] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  194.977271][T11671] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  195.006283][T11671] team0: Port device team_slave_0 added
[  195.009562][T11671] team0: Port device team_slave_1 added
[  195.037982][T11671] batman_adv: batadv0: Adding interface: batadv_slave_0
[  195.039660][   T40] audit: type=1326 audit(1771558775.253:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11722 comm="syz.5.2177" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf704ef6c code=0x0
[  195.040229][T11671] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  195.062213][T11671] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  195.068588][T11671] batman_adv: batadv0: Adding interface: batadv_slave_1
[  195.071684][T11671] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  195.079982][T11671] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  195.107794][T11671] hsr_slave_0: entered promiscuous mode
[  195.111352][T11671] hsr_slave_1: entered promiscuous mode
[  195.114271][T11671] debugfs: 'hsr0' already exists in 'hsr'
[  195.116750][T11671] Cannot create hsr debugfs directory
[  195.292242][T11671] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  195.303700][T11671] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  195.309892][T11671] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  195.320926][T11671] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  195.387181][T11671] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.390153][T11671] bridge0: port 2(bridge_slave_1) entered forwarding state
[  195.393199][T11671] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.395951][T11671] bridge0: port 1(bridge_slave_0) entered forwarding state
[  195.444291][T11671] 8021q: adding VLAN 0 to HW filter on device bond0
[  195.456988][  T551] bridge0: port 1(bridge_slave_0) entered disabled state
[  195.459790][  T551] bridge0: port 2(bridge_slave_1) entered disabled state
[  195.468882][T11671] 8021q: adding VLAN 0 to HW filter on device team0
[  195.486964][  T551] bridge0: port 1(bridge_slave_0) entered blocking state
[  195.489542][  T551] bridge0: port 1(bridge_slave_0) entered forwarding state
[  195.498508][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[  195.501717][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[  195.664655][T11671] 8021q: adding VLAN 0 to HW filter on device batadv0
[  195.851784][T11671] veth0_vlan: entered promiscuous mode
[  195.860565][T11671] veth1_vlan: entered promiscuous mode
[  195.883863][T11671] veth0_macvtap: entered promiscuous mode
[  195.892041][T11671] veth1_macvtap: entered promiscuous mode
[  195.907662][T11671] batman_adv: batadv0: Interface activated: batadv_slave_0
[  195.914814][T11671] batman_adv: batadv0: Interface activated: batadv_slave_1
[  195.922551][   T12] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  195.926769][   T12] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  195.929590][   T12] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  195.936163][   T12] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  195.992669][  T551] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  195.995980][  T551] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  196.010198][   T63] Bluetooth: hci2: command tx timeout
[  196.012712][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  196.015283][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  196.320165][ T8026] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[  196.469886][ T8026] usb 10-1: Using ep0 maxpacket: 8
[  196.472931][ T8026] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  196.476472][ T8026] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  196.489928][ T8026] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.505768][ T8026] usb 10-1: config 0 descriptor??
[  196.730143][ T8026] iowarrior 10-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  196.945656][ T5976] usb 10-1: USB disconnect, device number 17
[  196.948314][    C3] iowarrior 10-1:0.0: iowarrior_callback - usb_submit_urb failed with result -19
[  197.136310][T11821] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2202'.
[  197.520718][T11840] kvm: apic: phys broadcast and lowest prio
[  197.565505][T11848] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2213'.
[  197.737144][T11864] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2219'.
[  197.750989][T11864] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2219'.
[  197.929969][   T29] usb 13-1: new high-speed USB device number 2 using dummy_hcd
[  198.069377][T11885] block nbd6: shutting down sockets
[  198.089331][   T63] Bluetooth: hci2: command tx timeout
[  198.109015][   T29] usb 13-1: Using ep0 maxpacket: 32
[  198.112297][   T29] usb 13-1: config 0 has no interfaces?
[  198.115917][   T29] usb 13-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  198.129049][   T29] usb 13-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.132347][   T29] usb 13-1: Product: syz
[  198.133900][   T29] usb 13-1: Manufacturer: syz
[  198.135820][   T29] usb 13-1: SerialNumber: syz
[  198.141882][   T29] usb 13-1: config 0 descriptor??
[  198.227071][ T5294] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  198.230963][ T5294] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  198.234942][ T5294] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  198.240957][ T5294] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  198.243545][ T5294] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  198.361624][   T29] usb 13-1: USB disconnect, device number 2
[  199.051169][ T1416] ieee802154 phy0 wpan0: encryption failed: -22
[  199.053312][ T1416] ieee802154 phy1 wpan1: encryption failed: -22
[  199.977309][T11899] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2237'.
[  199.981465][T11899] bridge: RTM_NEWNEIGH with invalid ether address
[  199.984183][T11900] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2237'.
[  199.987768][T11900] bridge: RTM_NEWNEIGH with invalid ether address
[  200.058799][T11892] chnl_net:caif_netlink_parms(): no params data found
[  200.081256][T11923] netlink: 'syz.5.2247': attribute type 1 has an invalid length.
[  200.102266][T11923] 8021q: adding VLAN 0 to HW filter on device bond2
[  200.126366][T11923] bond2: (slave gretap2): Enslaving as an active interface with an up link
[  200.138274][T11923] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2247'.
[  200.147453][T11923] bond2 (unregistering): (slave gretap2): Releasing backup interface
[  200.153852][T11923] bond2 (unregistering): Released all slaves
[  200.210209][T11892] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.213275][T11892] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.216319][T11892] bridge_slave_0: entered allmulticast mode
[  200.221164][T11892] bridge_slave_0: entered promiscuous mode
[  200.227254][T11892] bridge0: port 2(bridge_slave_1) entered blocking state
[  200.230623][T11892] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.233700][T11892] bridge_slave_1: entered allmulticast mode
[  200.237663][T11892] bridge_slave_1: entered promiscuous mode
[  200.263595][T11892] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  200.270207][T11892] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  200.277973][ T1340] usb 11-1: new high-speed USB device number 12 using dummy_hcd
[  200.296667][T11892] team0: Port device team_slave_0 added
[  200.301532][T11892] team0: Port device team_slave_1 added
[  200.318058][   T63] Bluetooth: hci0: command tx timeout
[  200.380085][   T60] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.392956][T11892] batman_adv: batadv0: Adding interface: batadv_slave_0
[  200.396002][T11892] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  200.407933][T11892] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  200.414103][T11892] batman_adv: batadv0: Adding interface: batadv_slave_1
[  200.417053][T11892] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  200.427593][T11892] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  200.428057][ T1340] usb 11-1: Using ep0 maxpacket: 32
[  200.435805][ T1340] usb 11-1: config 0 has no interfaces?
[  200.440452][ T1340] usb 11-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  200.444341][ T1340] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  200.447841][ T1340] usb 11-1: Product: syz
[  200.449793][ T1340] usb 11-1: Manufacturer: syz
[  200.451707][ T1340] usb 11-1: SerialNumber: syz
[  200.455852][ T1340] usb 11-1: config 0 descriptor??
[  200.482008][   T60] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.497138][T11892] hsr_slave_0: entered promiscuous mode
[  200.500639][T11892] hsr_slave_1: entered promiscuous mode
[  200.503640][T11892] debugfs: 'hsr0' already exists in 'hsr'
[  200.506084][T11892] Cannot create hsr debugfs directory
[  200.546485][ T5294] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  200.551296][ T5294] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  200.556356][ T5294] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  200.561671][ T5294] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  200.565134][ T5294] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  200.601643][   T60] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.668117][ T8965] usb 11-1: USB disconnect, device number 12
[  200.722382][   T60] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  200.786484][T11892] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  200.808943][T11892] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  200.813406][T11892] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  200.824708][T11892] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  200.870030][T11929] chnl_net:caif_netlink_parms(): no params data found
[  200.949555][T11892] bridge0: port 2(bridge_slave_1) entered blocking state
[  200.951942][T11892] bridge0: port 2(bridge_slave_1) entered forwarding state
[  200.954433][T11892] bridge0: port 1(bridge_slave_0) entered blocking state
[  200.956822][T11892] bridge0: port 1(bridge_slave_0) entered forwarding state
[  200.982780][   T60] bridge_slave_1: left allmulticast mode
[  200.984771][   T60] bridge_slave_1: left promiscuous mode
[  200.987327][   T60] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.993314][   T60] bridge_slave_0: left allmulticast mode
[  200.995580][   T60] bridge_slave_0: left promiscuous mode
[  200.999380][   T60] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.173932][   T60] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  201.180009][   T60] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  201.188887][   T60] bond0 (unregistering): Released all slaves
[  201.223934][  T223] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.250727][  T223] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.250813][T11946] overlayfs: failed to verify upper (373/file1, ino=1991, err=-116)
[  201.257598][T11946] overlayfs: failed to verify index dir 'upper' xattr
[  201.260047][T11946] overlayfs: try deleting index dir or mounting with '-o index=off' to disable inodes index.
[  201.297906][T11929] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.300403][T11929] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.303745][T11929] bridge_slave_0: entered allmulticast mode
[  201.306578][T11929] bridge_slave_0: entered promiscuous mode
[  201.311718][T11929] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.314020][T11929] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.316637][T11929] bridge_slave_1: entered allmulticast mode
[  201.319979][T11929] bridge_slave_1: entered promiscuous mode
[  201.388128][T11929] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  201.416997][T11929] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.433779][T11892] 8021q: adding VLAN 0 to HW filter on device bond0
[  201.452599][T11929] team0: Port device team_slave_0 added
[  201.460586][T11929] team0: Port device team_slave_1 added
[  201.486077][T11892] 8021q: adding VLAN 0 to HW filter on device team0
[  201.494168][T11929] batman_adv: batadv0: Adding interface: batadv_slave_0
[  201.497123][T11929] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  201.508626][T11929] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  201.514936][T11929] batman_adv: batadv0: Adding interface: batadv_slave_1
[  201.518270][T11929] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  201.529641][T11929] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  201.567478][ T5989] usb 10-1: new high-speed USB device number 18 using dummy_hcd
[  201.572495][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  201.575298][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  201.620490][T11929] hsr_slave_0: entered promiscuous mode
[  201.623271][T11929] hsr_slave_1: entered promiscuous mode
[  201.625578][T11929] debugfs: 'hsr0' already exists in 'hsr'
[  201.627862][T11929] Cannot create hsr debugfs directory
[  201.647206][  T223] bridge0: port 2(bridge_slave_1) entered blocking state
[  201.650436][  T223] bridge0: port 2(bridge_slave_1) entered forwarding state
[  201.659057][   T60] hsr_slave_0: left promiscuous mode
[  201.661841][   T60] hsr_slave_1: left promiscuous mode
[  201.664558][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  201.669643][   T60] batman_adv: batadv0: Removing interface: batadv_slave_0
[  201.673345][   T60] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  201.676321][   T60] batman_adv: batadv0: Removing interface: batadv_slave_1
[  201.684376][   T60] veth1_macvtap: left promiscuous mode
[  201.686700][   T60] veth0_macvtap: left promiscuous mode
[  201.688678][   T60] veth1_vlan: left promiscuous mode
[  201.690364][   T60] veth0_vlan: left promiscuous mode
[  201.722789][ T5989] usb 10-1: Using ep0 maxpacket: 32
[  201.728048][ T5989] usb 10-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config
[  201.731259][ T5989] usb 10-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82
[  201.735526][ T5989] usb 10-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  201.739638][ T5989] usb 10-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11
[  201.745784][ T5989] usb 10-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30
[  201.748946][ T5989] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.751531][ T5989] usb 10-1: Product: syz
[  201.752928][ T5989] usb 10-1: Manufacturer: syz
[  201.754443][ T5989] usb 10-1: SerialNumber: syz
[  201.764282][    C3] imon 10-1:155.0: imon usb_rx_callback_intf0: status(-71)
[  201.770585][ T5989] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:155.0/input/input35
[  201.848834][   T60] team0 (unregistering): Port device team_slave_1 removed
[  201.856995][   T60] team0 (unregistering): Port device team_slave_0 removed
[  201.997693][ T5989] imon 10-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR
[  202.000420][ T5989]  (id 0x00)
[  202.058794][ T5989] rc_core: IR keymap rc-imon-pad not found
[  202.060811][ T5989] Registered IR keymap rc-empty
[  202.062967][ T5989] imon 10-1:155.0: Looks like you're trying to use an IR protocol this device does not support
[  202.067993][ T5989] imon 10-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol
[  202.211555][ T5989] rc rc0: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:155.0/rc/rc0
[  202.219095][ T5989] input: iMON Remote (15c2:ffdc) as /devices/platform/dummy_hcd.5/usb10/10-1/10-1:155.0/rc/rc0/input36
[  202.229423][ T5989] imon 10-1:155.0: iMON device (15c2:ffdc, intf0) on usb<10:18> initialized
[  202.256590][T11892] 8021q: adding VLAN 0 to HW filter on device batadv0
[  202.406944][ T5294] Bluetooth: hci0: command tx timeout
[  202.420888][T11892] veth0_vlan: entered promiscuous mode
[  202.429201][T11892] veth1_vlan: entered promiscuous mode
[  202.451317][T11892] veth0_macvtap: entered promiscuous mode
[  202.458935][T11892] veth1_macvtap: entered promiscuous mode
[  202.472892][T11892] batman_adv: batadv0: Interface activated: batadv_slave_0
[  202.484635][T11892] batman_adv: batadv0: Interface activated: batadv_slave_1
[  202.493017][   T60] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  202.495648][ T5989] usb 10-1: USB disconnect, device number 18
[  202.497863][T11954] imon:send_packet: packet tx failed (-71)
[  202.502219][   T60] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  202.505985][   T60] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  202.513477][   T60] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  202.528515][T11954] imon:vfd_write: send packet #0 failed
[  202.539578][T11995] imon:send_packet: error submitting urb(-19)
[  202.557406][T11995] imon:vfd_write: send packet #0 failed
[  202.570651][  T551] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  202.574062][  T551] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  202.608880][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  202.611872][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  202.637236][ T5294] Bluetooth: hci2: command tx timeout
[  202.916349][T12029] kvm: kvm [12028]: vcpu0, guest rIP: 0xfff0 Unhandled WRMSR(0xc0010002) = 0x80ffffff
[  203.149371][T12045] tipc: Started in network mode
[  203.151470][T12045] tipc: Node identity 4, cluster identity 4711
[  203.154047][T12045] tipc: Node number set to 4
[  203.252985][T11929] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  203.262458][T11929] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  203.267372][T11929] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  203.272103][T11929] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  203.355427][T11929] 8021q: adding VLAN 0 to HW filter on device bond0
[  203.374916][T11929] 8021q: adding VLAN 0 to HW filter on device team0
[  203.382030][ T1170] bridge0: port 1(bridge_slave_0) entered blocking state
[  203.384911][ T1170] bridge0: port 1(bridge_slave_0) entered forwarding state
[  203.399076][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.401873][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  203.590116][T11929] 8021q: adding VLAN 0 to HW filter on device batadv0
[  203.633829][T11929] veth0_vlan: entered promiscuous mode
[  203.649359][T11929] veth1_vlan: entered promiscuous mode
[  203.674461][T11929] veth0_macvtap: entered promiscuous mode
[  203.680003][T11929] veth1_macvtap: entered promiscuous mode
[  203.692723][T11929] batman_adv: batadv0: Interface activated: batadv_slave_0
[  203.701676][T11929] batman_adv: batadv0: Interface activated: batadv_slave_1
[  203.709077][   T60] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  203.712109][   T60] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  203.725144][   T60] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  203.731782][   T60] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  203.784204][  T551] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  203.791747][  T551] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  203.827322][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  203.830637][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  204.359286][   T40] audit: type=1326 audit(1771558784.588:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12081 comm="syz.9.2274" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708ef6c code=0x7fc00000
[  204.485938][ T5294] Bluetooth: hci0: command tx timeout
[  204.726056][ T5294] Bluetooth: hci2: command tx timeout
[  204.865833][ T6002] usb 10-1: new high-speed USB device number 19 using dummy_hcd
[  204.988664][T12172] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3642988519 (466302530432 ns) > initial count (459226025088 ns). Using initial count to start timer.
[  205.025829][ T6002] usb 10-1: Using ep0 maxpacket: 8
[  205.029737][ T6002] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  205.034263][ T6002] usb 10-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  205.039812][ T6002] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.045135][ T6002] usb 10-1: config 0 descriptor??
[  205.274372][ T6002] iowarrior 10-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  205.505288][ T1340] usb 11-1: new high-speed USB device number 13 using dummy_hcd
[  205.667271][ T1340] usb 11-1: unable to get BOS descriptor or descriptor too short
[  205.670672][ T1340] usb 11-1: config 1 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 127, changing to 10
[  205.674451][ T1340] usb 11-1: config 1 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 1048, setting to 1024
[  205.681076][ T1340] usb 11-1: config 1 interface 0 has no altsetting 0
[  205.685187][ T1340] usb 11-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.40
[  205.688818][ T1340] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.692063][ T1340] usb 11-1: Product: syz
[  205.693813][ T1340] usb 11-1: Manufacturer: syz
[  205.695986][ T1340] usb 11-1: SerialNumber: syz
[  205.708277][T12186] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  205.783229][ T1023] usb 10-1: USB disconnect, device number 19
[  206.120907][ T1340] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.6/usb11/11-1/11-1:1.0/input/input37
[  206.318072][   T29] usb 11-1: USB disconnect, device number 13
[  206.320465][T12212] netlink: 16150 bytes leftover after parsing attributes in process `syz.5.2305'.
[  206.554812][ T5294] Bluetooth: hci0: command tx timeout
[  206.806322][ T5294] Bluetooth: hci2: command tx timeout
[  207.047029][T12248] all: renamed from bridge_slave_1 (while UP)
[  207.070761][T12250] netlink: 25 bytes leftover after parsing attributes in process `syz.2.2320'.
[  207.107880][T12254] mkiss: ax0: crc mode is auto.
[  207.246681][T12270] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2328'.
[  207.476277][T12293] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2335'.
[  207.564693][   T54] usb 14-1: new high-speed USB device number 2 using dummy_hcd
[  207.628877][T12301] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[  207.663560][T12310] netlink: 7 bytes leftover after parsing attributes in process `syz.6.2341'.
[  207.745245][   T54] usb 14-1: config 128 has an invalid interface number: 148 but max is 0
[  207.747885][   T54] usb 14-1: config 128 has no interface number 0
[  207.749934][   T54] usb 14-1: config 128 interface 148 altsetting 9 endpoint 0x7 has invalid wMaxPacketSize 0
[  207.753281][   T54] usb 14-1: config 128 interface 148 altsetting 9 endpoint 0x5 has an invalid bInterval 129, changing to 11
[  207.757440][   T54] usb 14-1: config 128 interface 148 has no altsetting 0
[  207.761695][   T54] usb 14-1: New USB device found, idVendor=0cf3, idProduct=e019, bcdDevice=fb.4f
[  207.765609][   T54] usb 14-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.768343][   T54] usb 14-1: Product: syz
[  207.769758][   T54] usb 14-1: Manufacturer: syz
[  207.771339][   T54] usb 14-1: SerialNumber: syz
[  207.985713][   T54] usb 14-1: USB disconnect, device number 2
[  208.433998][ T7035] usb 14-1: new high-speed USB device number 3 using dummy_hcd
[  208.548825][T12318] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.552908][T12318] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.595854][ T7035] usb 14-1: Using ep0 maxpacket: 8
[  208.609854][ T7035] usb 14-1: config 128 has an invalid interface number: 148 but max is 0
[  208.613430][ T7035] usb 14-1: config 128 has no interface number 0
[  208.622365][ T7035] usb 14-1: config 128 interface 148 altsetting 9 endpoint 0x7 has invalid wMaxPacketSize 0
[  208.627593][ T7035] usb 14-1: config 128 interface 148 altsetting 9 endpoint 0x5 has an invalid bInterval 129, changing to 11
[  208.632441][ T7035] usb 14-1: config 128 interface 148 has no altsetting 0
[  208.638018][ T7035] usb 14-1: New USB device found, idVendor=ee8d, idProduct=e01e, bcdDevice=fb.4f
[  208.642230][ T7035] usb 14-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  208.645869][ T7035] usb 14-1: Product: syz
[  208.647735][ T7035] usb 14-1: Manufacturer: syz
[  208.649754][ T7035] usb 14-1: SerialNumber: syz
[  208.857808][   T54] libceph: connect (1)[c::]:6789 error -101
[  208.860544][   T54] libceph: mon0 (1)[c::]:6789 connect error
[  208.883797][ T7035] usb 14-1: USB disconnect, device number 3
[  208.905799][ T6002] libceph: connect (1)[c::]:6789 error -101
[  208.908159][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[  209.124872][   T54] libceph: connect (1)[c::]:6789 error -101
[  209.127267][   T54] libceph: mon0 (1)[c::]:6789 connect error
[  209.163826][ T6002] libceph: connect (1)[c::]:6789 error -101
[  209.166946][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[  209.527027][ T1023] usb 11-1: new high-speed USB device number 14 using dummy_hcd
[  209.633405][   T54] libceph: connect (1)[c::]:6789 error -101
[  209.635567][   T54] libceph: mon0 (1)[c::]:6789 connect error
[  209.673409][ T1023] usb 11-1: Using ep0 maxpacket: 8
[  209.677344][T12339] ceph: No mds server is up or the cluster is laggy
[  209.680805][T12342] ceph: No mds server is up or the cluster is laggy
[  209.683541][ T6002] libceph: connect (1)[c::]:6789 error -101
[  209.685520][ T1023] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[  209.686333][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[  209.689447][ T1023] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  209.689471][ T1023] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  209.702446][ T1023] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  209.707593][ T1023] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  209.712913][ T1023] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  209.723279][ T1023] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  209.893927][T12392] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2370'.
[  209.902604][T12392] vxlan0: entered promiscuous mode
[  209.907394][   T60] netdevsim netdevsim9 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  209.911230][   T60] netdevsim netdevsim9 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  209.915830][   T60] netdevsim netdevsim9 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  209.920056][   T60] netdevsim netdevsim9 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  209.951837][ T1023] usb 11-1: GET_CAPABILITIES returned 0
[  209.953790][ T1023] usbtmc 11-1:16.0: can't read capabilities
[  210.271497][T12365] usbtmc 11-1:16.0: usb_control_msg returned -71
[  210.271722][ T1340] usb 11-1: USB disconnect, device number 14
[  210.277541][T12401] usbtmc 11-1:16.0: send_request_dev_dep_msg_in returned -19
[  210.734734][T12409] netlink: 35 bytes leftover after parsing attributes in process `syz.5.2376'.
[  210.966083][T12417] netlink: 212348 bytes leftover after parsing attributes in process `syz.9.2379'.
[  211.071272][T12427] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  211.078304][T12427] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  211.870853][T12479] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2404'.
[  212.491939][ T7035] usb 14-1: new high-speed USB device number 4 using dummy_hcd
[  212.583708][T12500] fuse: root generation should be zero
[  212.661883][ T7035] usb 14-1: Using ep0 maxpacket: 32
[  212.668322][ T7035] usb 14-1: config index 0 descriptor too short (expected 29220, got 36)
[  212.671114][ T7035] usb 14-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  212.674174][ T7035] usb 14-1: config 0 has 1 interface, different from the descriptor's value: 81
[  212.677519][ T7035] usb 14-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  212.680707][ T7035] usb 14-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  212.684355][ T7035] usb 14-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  212.688625][ T7035] usb 14-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  212.692192][ T7035] usb 14-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  212.696396][ T7035] usb 14-1: config 0 descriptor??
[  212.904232][T12492] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  212.908102][T12492] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  212.912151][ T7035] usblp 14-1:0.0: usblp0: USB Bidirectional printer dev 4 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  212.930989][ T1340] usb 14-1: USB disconnect, device number 4
[  212.940307][ T1340] usblp0: removed
[  213.274256][T12526] netlink: 212348 bytes leftover after parsing attributes in process `syz.5.2424'.
[  213.310787][T12528] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2425'.
[  213.944830][T12555] netlink: 'syz.5.2434': attribute type 1 has an invalid length.
[  213.964901][T12559] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  213.970854][T12555] bond2: (slave bridge2): making interface the new active one
[  213.978799][T12555] bond2: (slave bridge2): Enslaving as an active interface with an up link
[  214.505993][T12579] netlink: 'syz.9.2441': attribute type 1 has an invalid length.
[  214.525536][T12579] bond1: entered promiscuous mode
[  214.527742][T12579] bond1: entered allmulticast mode
[  214.530197][T12579] 8021q: adding VLAN 0 to HW filter on device bond1
[  214.560318][T12579] erspan1: entered allmulticast mode
[  214.566744][T12579] bond1: (slave erspan1): making interface the new active one
[  214.569866][T12579] erspan1: entered promiscuous mode
[  214.573661][T12579] bond1: (slave erspan1): Enslaving as an active interface with an up link
[  215.147318][T12611] IPv6: NLM_F_CREATE should be specified when creating new route
[  215.150467][  T830] usb 14-1: new high-speed USB device number 5 using dummy_hcd
[  215.186321][T12614] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  215.193921][T12614] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  215.330538][  T830] usb 14-1: Using ep0 maxpacket: 16
[  215.339398][  T830] usb 14-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  215.344336][  T830] usb 14-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[  215.348167][  T830] usb 14-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.353965][  T830] usb 14-1: config 0 descriptor??
[  215.520280][ T7035] usb 11-1: new high-speed USB device number 15 using dummy_hcd
[  215.691050][ T7035] usb 11-1: Using ep0 maxpacket: 8
[  215.694302][ T7035] usb 11-1: config index 0 descriptor too short (expected 301, got 45)
[  215.696987][ T7035] usb 11-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  215.700426][ T7035] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  215.703652][ T7035] usb 11-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  215.706886][ T7035] usb 11-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  215.711261][ T7035] usb 11-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  215.714185][ T7035] usb 11-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  215.762585][  T830] kye 0003:0458:5016.000F: control desc unexpectedly large
[  215.771136][  T830] input: HID 0458:5016 as /devices/platform/dummy_hcd.9/usb14/14-1/14-1:0.0/0003:0458:5016.000F/input/input38
[  215.840483][  T830] input: HID 0458:5016 as /devices/platform/dummy_hcd.9/usb14/14-1/14-1:0.0/0003:0458:5016.000F/input/input39
[  215.919277][  T830] kye 0003:0458:5016.000F: input,hiddev0,hidraw0: USB HID v0.09 Device [HID 0458:5016] on usb-dummy_hcd.9-1/input0
[  215.931636][ T7035] usb 11-1: GET_CAPABILITIES returned 0
[  215.933472][ T7035] usbtmc 11-1:16.0: can't read capabilities
[  216.134575][ T7035] usb 11-1: USB disconnect, device number 15
[  216.219111][  T830] usb 14-1: USB disconnect, device number 5
[  216.768534][T12670] syzkaller1: entered promiscuous mode
[  216.770964][T12670] syzkaller1: entered allmulticast mode
[  216.958254][ T5989] IPVS: starting estimator thread 0...
[  217.049729][T12683] IPVS: using max 23 ests per chain, 55200 per kthread
[  217.243287][T12691] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2477'.
[  217.286211][  T223] IPVS: stop unused estimator thread 0...
[  217.855489][T12704] overlayfs: failed to get inode (-116)
[  217.858394][T12704] overlayfs: failed to get inode (-116)
[  218.063264][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  218.338245][T12725] policy can only be matched on NF_INET_PRE_ROUTING
[  218.338264][T12725] unable to load match
[  218.380596][T12726] syzkaller0: entered promiscuous mode
[  218.383127][T12726] syzkaller0: entered allmulticast mode
[  219.889443][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  222.574609][T12833] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2532'.
[  222.580218][T12833] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2532'.
[  222.804894][T12851] netlink: 32 bytes leftover after parsing attributes in process `syz.9.2536'.
[  222.860358][T12856] netlink: 'syz.9.2539': attribute type 1 has an invalid length.
[  222.884798][T12856] 8021q: adding VLAN 0 to HW filter on device bond2
[  222.944349][T12856] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  222.962943][T12856] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2539'.
[  222.970727][T12856] bond2 (unregistering): (slave gretap1): Releasing backup interface
[  222.975678][T12856] bond2 (unregistering): Released all slaves
[  223.165142][T12871] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  223.246125][T12872] uprobe: syz.9.2548:12872 failed to unregister, leaking uprobe
[  223.638453][T12889] tipc: Started in network mode
[  223.640198][T12889] tipc: Node identity 7f000001, cluster identity 4711
[  223.642697][T12889] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  223.650918][T12889] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  223.655159][T12889] tipc: Enabled bearer <udp:syz0>, priority 10
[  223.976143][ T1340] usb 14-1: new high-speed USB device number 6 using dummy_hcd
[  223.986824][ T8965] usb 10-1: new high-speed USB device number 20 using dummy_hcd
[  224.127398][ T1340] usb 14-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  224.131648][ T1340] usb 14-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  224.135995][ T1340] usb 14-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  224.137264][ T8965] usb 10-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  224.139823][ T1340] usb 14-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  224.142456][ T8965] usb 10-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  224.142469][ T8965] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 66
[  224.142498][ T8965] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 52, changing to 9
[  224.142514][ T8965] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8241, setting to 1024
[  224.143666][ T8965] usb 10-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  224.147616][T12895] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  224.154182][ T8965] usb 10-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  224.159723][ T1340] usb 14-1: Quirk or no altset; falling back to MIDI 1.0
[  224.164416][ T8965] usb 10-1: Product: syz
[  224.174359][ T8965] usb 10-1: Manufacturer: syz
[  224.185823][ T8965] cdc_wdm 10-1:1.0: skipping garbage
[  224.187548][ T8965] cdc_wdm 10-1:1.0: skipping garbage
[  224.191158][ T8965] cdc_wdm 10-1:1.0: cdc-wdm0: USB WDM device
[  224.193306][ T8965] cdc_wdm 10-1:1.0: Unknown control protocol
[  224.387414][ T1340] usb 14-1: USB disconnect, device number 6
[  224.439712][    C0] cdc_wdm 10-1:1.0: wdm_int_callback - 0 bytes
[  224.640306][    C0] cdc_wdm 10-1:1.0: nonzero urb status received: -71
[  224.640506][ T8028] usb 10-1: USB disconnect, device number 20
[  224.642461][    C0] cdc_wdm 10-1:1.0: wdm_int_callback - 0 bytes
[  224.646537][    C0] cdc_wdm 10-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19
[  224.766257][ T1023] tipc: Node number set to 2130706433
[  224.822054][T12911] kvm: emulating exchange as write
[  224.914609][T12914] overlayfs: refusing to follow metacopy origin for (/file1)
[  226.490427][   T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  226.494676][   T63] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  226.500268][   T63] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  226.504884][   T63] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  226.508277][   T63] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  226.646357][T13013] chnl_net:caif_netlink_parms(): no params data found
[  226.721458][T13013] bridge0: port 1(bridge_slave_0) entered blocking state
[  226.727863][T13013] bridge0: port 1(bridge_slave_0) entered disabled state
[  226.731047][T13013] bridge_slave_0: entered allmulticast mode
[  226.735440][T13013] bridge_slave_0: entered promiscuous mode
[  226.740189][T13013] bridge0: port 2(bridge_slave_1) entered blocking state
[  226.743343][T13013] bridge0: port 2(bridge_slave_1) entered disabled state
[  226.747624][T13013] bridge_slave_1: entered allmulticast mode
[  226.751518][T13013] bridge_slave_1: entered promiscuous mode
[  226.781613][T13013] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  226.788411][T13013] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  226.814904][T13013] team0: Port device team_slave_0 added
[  226.819862][T13013] team0: Port device team_slave_1 added
[  226.843419][T13013] batman_adv: batadv0: Adding interface: batadv_slave_0
[  226.845960][T13013] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  226.856784][T13013] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  226.862587][T13013] batman_adv: batadv0: Adding interface: batadv_slave_1
[  226.865905][T13013] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  226.875745][T13013] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  226.900537][T13013] hsr_slave_0: entered promiscuous mode
[  226.902864][T13013] hsr_slave_1: entered promiscuous mode
[  226.905199][T13013] debugfs: 'hsr0' already exists in 'hsr'
[  226.907041][T13013] Cannot create hsr debugfs directory
[  227.361034][T13043] tipc: Started in network mode
[  227.362717][T13043] tipc: Node identity a60eed7c5035, cluster identity 4711
[  227.367499][T13043] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  227.371988][T13043] tipc: Disabling bearer <eth:syzkaller0>
[  227.488665][T13013] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  227.517969][T13013] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  227.525381][T13013] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  227.537358][T13013] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  227.687374][T13013] 8021q: adding VLAN 0 to HW filter on device bond0
[  227.699120][T13013] 8021q: adding VLAN 0 to HW filter on device team0
[  227.709478][  T551] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.712575][  T551] bridge0: port 1(bridge_slave_0) entered forwarding state
[  227.740928][ T1170] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.744007][ T1170] bridge0: port 2(bridge_slave_1) entered forwarding state
[  227.779731][T13013] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  227.783668][T13013] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  227.879866][T13081] Freezing with imperfect legacy cgroup freezer. See cgroup.freeze of cgroup v2
[  228.020186][T13013] 8021q: adding VLAN 0 to HW filter on device batadv0
[  228.061397][T13013] veth0_vlan: entered promiscuous mode
[  228.075252][T13013] veth1_vlan: entered promiscuous mode
[  228.117864][T13013] veth0_macvtap: entered promiscuous mode
[  228.121936][T13013] veth1_macvtap: entered promiscuous mode
[  228.142847][T13013] batman_adv: batadv0: Interface activated: batadv_slave_0
[  228.149664][T13013] batman_adv: batadv0: Interface activated: batadv_slave_1
[  228.159730][ T1170] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  228.162538][ T1170] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  228.166667][   T60] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  228.169438][   T60] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  228.226715][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  228.230295][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  228.250799][ T1170] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  228.253399][ T1170] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  228.444250][ T9185] af_packet: tpacket_rcv: packet too big, clamped from 96 to 4294967272. macoff=96
[  228.449098][T13123] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2619'.
[  228.540153][   T40] audit: type=1800 audit(1771558808.770:84): pid=13133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2622" name="bus" dev="tmpfs" ino=28 res=0 errno=0
[  228.547020][ T5294] Bluetooth: hci0: command tx timeout
[  228.885927][T13160] netlink: 'syz.5.2630': attribute type 1 has an invalid length.
[  229.212804][T13185] overlayfs: failed to get inode (-116)
[  229.216670][T13185] overlayfs: failed to get inode (-116)
[  230.399935][T13235] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=198462431 (396924862 ns) > initial count (148514 ns). Using initial count to start timer.
[  230.622843][ T5294] Bluetooth: hci0: command tx timeout
[  230.875392][   T63] Bluetooth: hci4: sending frame failed (-49)
[  230.877768][ T5294] Bluetooth: hci4: Entering manufacturer mode failed (-49)
[  230.930226][T13267] batman_adv: batadv0: Adding interface: macvlan4
[  230.932339][T13267] batman_adv: batadv0: The MTU of interface macvlan4 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  230.942524][T13267] batman_adv: batadv0: Not using interface macvlan4 (retrying later): interface not active
[  231.619217][   T63] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  231.623594][   T63] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  231.626624][   T63] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  231.630129][   T63] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  231.633004][   T63] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  231.792392][T13303] chnl_net:caif_netlink_parms(): no params data found
[  231.845291][T13303] bridge0: port 1(bridge_slave_0) entered blocking state
[  231.848297][T13303] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.851425][T13303] bridge_slave_0: entered allmulticast mode
[  231.855792][T13303] bridge_slave_0: entered promiscuous mode
[  231.859999][T13303] bridge0: port 2(bridge_slave_1) entered blocking state
[  231.863048][T13303] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.865499][T13303] bridge_slave_1: entered allmulticast mode
[  231.868229][T13303] bridge_slave_1: entered promiscuous mode
[  231.884487][T13303] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  231.891284][T13303] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  231.911926][T13303] team0: Port device team_slave_0 added
[  231.916244][T13303] team0: Port device team_slave_1 added
[  231.932197][ T6002] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  231.936022][T13303] batman_adv: batadv0: Adding interface: batadv_slave_0
[  231.938849][T13303] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  231.948795][T13303] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  231.955038][T13303] batman_adv: batadv0: Adding interface: batadv_slave_1
[  231.957307][T13303] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  231.965694][T13303] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  232.005130][T13303] hsr_slave_0: entered promiscuous mode
[  232.009083][T13303] hsr_slave_1: entered promiscuous mode
[  232.011497][T13303] debugfs: 'hsr0' already exists in 'hsr'
[  232.014537][T13303] Cannot create hsr debugfs directory
[  232.082007][ T6002] usb 5-1: Using ep0 maxpacket: 32
[  232.090723][ T6002] usb 5-1: config 0 interface 0 has no altsetting 0
[  232.101007][ T6002] usb 5-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  232.105192][ T6002] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.108436][ T6002] usb 5-1: Product: syz
[  232.110192][ T6002] usb 5-1: Manufacturer: syz
[  232.112546][ T6002] usb 5-1: SerialNumber: syz
[  232.116825][ T6002] usb 5-1: config 0 descriptor??
[  232.124370][ T6002] gs_usb 5-1:0.0: Required endpoints not found
[  232.423559][ T9185] usb 5-1: USB disconnect, device number 3
[  232.544984][T13341] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  232.654435][T13303] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  232.661725][T13303] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  232.667858][T13303] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  232.674802][T13303] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  232.701958][   T63] Bluetooth: hci0: command tx timeout
[  232.747150][T13303] 8021q: adding VLAN 0 to HW filter on device bond0
[  232.762993][T13303] 8021q: adding VLAN 0 to HW filter on device team0
[  232.768517][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  232.771378][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  232.787804][  T101] bridge0: port 2(bridge_slave_1) entered blocking state
[  232.790990][  T101] bridge0: port 2(bridge_slave_1) entered forwarding state
[  232.920341][T13303] 8021q: adding VLAN 0 to HW filter on device batadv0
[  232.979782][T13303] veth0_vlan: entered promiscuous mode
[  232.986394][T13303] veth1_vlan: entered promiscuous mode
[  233.005909][T13303] veth0_macvtap: entered promiscuous mode
[  233.014018][T13303] veth1_macvtap: entered promiscuous mode
[  233.025698][T13303] batman_adv: batadv0: Interface activated: batadv_slave_0
[  233.040029][T13303] batman_adv: batadv0: Interface activated: batadv_slave_1
[  233.051632][   T12] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  233.055334][   T12] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  233.059015][   T12] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  233.074222][   T12] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  233.223090][ T1170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  233.226431][ T1170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  233.243351][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  233.247049][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  233.400295][   T40] audit: type=1326 audit(1771558813.632:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13407 comm="syz.1.2682" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f82f6c code=0x0
[  233.587281][T13425] bridge_slave_0: left allmulticast mode
[  233.592017][T13425] bridge_slave_0: left promiscuous mode
[  233.593990][T13425] bridge0: port 1(bridge_slave_0) entered disabled state
[  233.598500][T13425] bridge_slave_1: left allmulticast mode
[  233.600459][T13425] bridge_slave_1: left promiscuous mode
[  233.602438][T13425] bridge0: port 2(bridge_slave_1) entered disabled state
[  233.607658][T13425] bond0: (slave bond_slave_0): Releasing backup interface
[  233.613412][T13425] bond0: (slave bond_slave_1): Releasing backup interface
[  233.619298][T13425] team0: Port device team_slave_0 removed
[  233.626384][T13425] team0: Port device team_slave_1 removed
[  233.628850][T13425] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  233.632012][T13425] batman_adv: batadv0: Removing interface: batadv_slave_0
[  233.636319][T13425] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  233.638897][T13425] batman_adv: batadv0: Removing interface: batadv_slave_1
[  233.643461][T13425] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  233.671322][   T63] Bluetooth: hci3: command tx timeout
[  233.832919][T13440] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2716'.
[  234.502605][T13495] netlink: 'syz.2.2732': attribute type 10 has an invalid length.
[  234.512182][T13495] 8021q: adding VLAN 0 to HW filter on device team0
[  234.518266][T13495] bond0: (slave team0): Enslaving as an active interface with an up link
[  234.780869][   T63] Bluetooth: hci0: command tx timeout
[  234.930597][ T6118] usb 11-1: new high-speed USB device number 16 using dummy_hcd
[  235.092077][ T6118] usb 11-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  235.096974][ T6118] usb 11-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  235.112528][ T6118] usb 11-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  235.116572][ T6118] usb 11-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  235.122487][ T6118] usb 11-1: Product: syz
[  235.125590][ T6118] usb 11-1: Manufacturer: syz
[  235.127769][ T6118] usb 11-1: SerialNumber: syz
[  235.182152][ T6118] cdc_mbim 11-1:1.0: skipping garbage
[  235.229959][T13527] netlink: 'syz.0.2746': attribute type 1 has an invalid length.
[  235.275111][T13527] bond1: (slave ip6gretap1): making interface the new active one
[  235.278894][T13527] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  235.283689][T13527] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[  235.287172][T13527] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  235.361503][T13509] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  235.740188][   T63] Bluetooth: hci3: command tx timeout
[  235.971465][T13509] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  235.975361][ T6118] cdc_mbim 11-1:1.0: cdc-wdm0: USB WDM device
[  235.989783][ T6118] wwan wwan0: port wwan0mbim0 attached
[  236.006162][ T6118] cdc_mbim 11-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.6-1, CDC MBIM, d2:eb:62:02:60:05
[  236.149425][T13562] vcan0: tx drop: invalid sa for name 0xffffffffffffffff
[  236.175878][    C0] cdc_mbim 11-1:1.0: nonzero urb status received: -71
[  236.178165][    C0] cdc_mbim 11-1:1.0: wdm_int_callback - 0 bytes
[  236.180600][    C0] cdc_mbim 11-1:1.0: nonzero urb status received: -71
[  236.182878][    C0] cdc_mbim 11-1:1.0: wdm_int_callback - 0 bytes
[  236.185104][    C0] cdc_mbim 11-1:1.0: nonzero urb status received: -71
[  236.187357][    C0] cdc_mbim 11-1:1.0: wdm_int_callback - 0 bytes
[  236.189540][    C0] cdc_mbim 11-1:1.0: nonzero urb status received: -71
[  236.191765][    C0] cdc_mbim 11-1:1.0: wdm_int_callback - 0 bytes
[  236.193841][    C0] cdc_mbim 11-1:1.0: nonzero urb status received: -71
[  236.196049][    C0] cdc_mbim 11-1:1.0: wdm_int_callback - 0 bytes
[  236.198243][    C0] cdc_mbim 11-1:1.0: nonzero urb status received: -71
[  236.200520][    C0] cdc_mbim 11-1:1.0: wdm_int_callback - 0 bytes
[  236.202718][    C0] cdc_mbim 11-1:1.0: nonzero urb status received: -71
[  236.204963][    C0] cdc_mbim 11-1:1.0: wdm_int_callback - 0 bytes
[  236.207215][    C0] cdc_mbim 11-1:1.0: nonzero urb status received: -71
[  236.209440][    C0] cdc_mbim 11-1:1.0: wdm_int_callback - 0 bytes
[  236.212105][    C0] cdc_mbim 11-1:1.0: nonzero urb status received: -71
[  236.214316][    C0] cdc_mbim 11-1:1.0: wdm_int_callback - 0 bytes
[  236.216855][    C0] cdc_mbim 11-1:1.0: nonzero urb status received: -71
[  236.219107][    C0] cdc_mbim 11-1:1.0: wdm_int_callback - 0 bytes
[  236.227860][T13567] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2760'.
[  236.284898][ T5645] 8021q: adding VLAN 0 to HW filter on device wwan0
[  236.964772][T13622] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2779'.
[  236.971584][T13622] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2779'.
[  236.977017][T13622] tipc: Enabled bearer <udp:syz1>, priority 10
[  237.023396][T13624] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2780'.
[  237.681801][ T6118] usb 11-1: USB disconnect, device number 16
[  237.684569][ T6118] cdc_mbim 11-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.6-1, CDC MBIM
[  237.804000][ T6118] wwan wwan0: port wwan0mbim0 disconnected
[  237.819151][   T63] Bluetooth: hci3: command tx timeout
[  238.087607][T13682] tipc: Failed to remove unknown binding: 66,1,1/4:3979611596/3979611598
[  238.090925][   T10] tipc: Node number set to 4131122556
[  238.093198][T13682] tipc: Failed to remove unknown binding: 66,1,1/4:3979611596/3979611598
[  238.259922][T13694] netlink: 'syz.6.2801': attribute type 7 has an invalid length.
[  238.263325][T13694] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2801'.
[  238.746835][   T40] audit: type=1804 audit(1771558818.985:86): pid=13718 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.2808" name="file0" dev="ramfs" ino=57405 res=1 errno=0
[  238.871223][T13724] FAULT_FLAG_ALLOW_RETRY missing 801
[  238.874433][T13724] CPU: 1 UID: 0 PID: 13724 Comm: syz.2.2811 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  238.874464][T13724] Tainted: [L]=SOFTLOCKUP
[  238.874471][T13724] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  238.874482][T13724] Call Trace:
[  238.874488][T13724]  <TASK>
[  238.874497][T13724]  dump_stack_lvl+0x100/0x190
[  238.874530][T13724]  handle_userfault.cold+0x56/0x67
[  238.874563][T13724]  ? do_raw_spin_unlock+0x145/0x1e0
[  238.874592][T13724]  ? _raw_spin_unlock+0x28/0x50
[  238.874620][T13724]  ? __free_frozen_pages+0x884/0x10d0
[  238.874642][T13724]  ? __pfx_handle_userfault+0x10/0x10
[  238.874680][T13724]  ? rcu_read_unlock+0x2d/0xb0
[  238.874703][T13724]  ? rcu_read_unlock+0x2d/0xb0
[  238.874731][T13724]  do_anonymous_page+0x18fb/0x1fb0
[  238.874763][T13724]  __handle_mm_fault+0x1d42/0x2b60
[  238.874792][T13724]  ? __pfx___handle_mm_fault+0x10/0x10
[  238.874839][T13724]  ? pte_offset_map_lock+0x174/0x320
[  238.874870][T13724]  ? find_held_lock+0x2b/0x80
[  238.874906][T13724]  ? follow_page_pte+0x5b3/0x1400
[  238.874925][T13724]  handle_mm_fault+0x36d/0xa20
[  238.874947][T13724]  __get_user_pages+0xf9c/0x34d0
[  238.874973][T13724]  ? __pfx___get_user_pages+0x10/0x10
[  238.874995][T13724]  populate_vma_page_range+0x267/0x3f0
[  238.875015][T13724]  ? __pfx_populate_vma_page_range+0x10/0x10
[  238.875036][T13724]  ? vma_set_page_prot+0xb1/0x120
[  238.875073][T13724]  mprotect_fixup+0x832/0xb70
[  238.875100][T13724]  ? __pfx_mprotect_fixup+0x10/0x10
[  238.875124][T13724]  ? __pfx_mas_prev+0x10/0x10
[  238.875151][T13724]  do_mprotect_pkey+0x9e1/0xe70
[  238.875182][T13724]  ? __pfx_do_mprotect_pkey+0x10/0x10
[  238.875215][T13724]  ? find_held_lock+0x2b/0x80
[  238.875242][T13724]  ? hook_file_ioctl_common+0x146/0x410
[  238.875304][T13724]  __ia32_sys_mprotect+0x75/0xb0
[  238.875326][T13724]  ? lockdep_hardirqs_on+0x78/0x100
[  238.875345][T13724]  __do_fast_syscall_32+0xe3/0x8c0
[  238.875366][T13724]  do_fast_syscall_32+0x32/0x70
[  238.875388][T13724]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  238.875411][T13724] RIP: 0023:0xf704ef6c
[  238.875426][T13724] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  238.875442][T13724] RSP: 002b:00000000f543d50c EFLAGS: 00000292 ORIG_RAX: 000000000000007d
[  238.875460][T13724] RAX: ffffffffffffffda RBX: 0000000080ffc000 RCX: 0000000000004000
[  238.875471][T13724] RDX: 000000000000000f RSI: 0000000000000000 RDI: 0000000000000000
[  238.875481][T13724] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  238.875491][T13724] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  238.875502][T13724] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  238.875527][T13724]  </TASK>
[  239.316984][T13737] fuse: Bad value for 'fd'
[  239.898227][   T63] Bluetooth: hci3: command tx timeout
[  239.988353][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  240.121774][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  240.499309][   T40] audit: type=1804 audit(1771558820.746:87): pid=13806 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.2834" name="file0" dev="hugetlbfs" ino=57459 res=1 errno=0
[  240.715181][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  241.492006][T13852] overlayfs: failed to clone upperpath
[  241.504097][T13847] syzkaller0: entered promiscuous mode
[  241.506381][T13847] syzkaller0: entered allmulticast mode
[  241.598602][   T40] audit: type=1326 audit(1771558821.836:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13858 comm="syz.6.2854" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  241.608347][   T40] audit: type=1326 audit(1771558821.836:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13858 comm="syz.6.2854" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  241.615226][   T40] audit: type=1326 audit(1771558821.836:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13858 comm="syz.6.2854" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  241.623150][   T40] audit: type=1326 audit(1771558821.836:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13858 comm="syz.6.2854" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf6feef87 code=0x7ffc0000
[  241.630091][   T40] audit: type=1326 audit(1771558821.836:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13858 comm="syz.6.2854" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  241.636883][   T40] audit: type=1326 audit(1771558821.836:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13858 comm="syz.6.2854" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf6feef87 code=0x7ffc0000
[  241.643760][   T40] audit: type=1326 audit(1771558821.836:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13858 comm="syz.6.2854" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf6feef6c code=0x7ffc0000
[  241.667242][ T5989] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  241.827412][ T5989] usb 6-1: Using ep0 maxpacket: 8
[  241.842558][ T5989] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  241.846173][ T5989] usb 6-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  241.852380][ T5989] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.867331][ T5989] usb 6-1: config 0 descriptor??
[  242.103077][ T5989] iowarrior 6-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0
[  242.132783][T13871] fuse: Bad value for 'fd'
[  242.626113][   T10] usb 6-1: USB disconnect, device number 6
[  243.190079][T13903] netlink: 7 bytes leftover after parsing attributes in process `syz.1.2872'.
[  243.224628][T13905] netlink: 32 bytes leftover after parsing attributes in process `syz.6.2873'.
[  243.714215][T13946] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[  244.560888][T14016] cgroup: fork rejected by pids controller in /syz1
[  244.571447][T14016] BUG: unable to handle page fault for address: ffff88801bab3050
[  244.574717][T14016] #PF: supervisor write access in kernel mode
[  244.578467][T14016] #PF: error_code(0x0003) - permissions violation
[  244.581942][T14016] PGD 1b689067 P4D 1b689067 PUD 1b68a067 PMD 1d2a0063 PTE 800000001bab3121
[  244.584902][T14016] Oops: Oops: 0003 [#1] SMP KASAN NOPTI
[  244.586695][T14016] CPU: 2 UID: 0 PID: 14016 Comm: syz.1.2912 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  244.590497][T14016] Tainted: [L]=SOFTLOCKUP
[  244.592314][T14016] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[  244.596340][T14016] RIP: 0010:__schedule+0x3eb9/0x60e0
[  244.598498][T14016] Code: 00 e9 7b cf ff ff 4c 89 e0 4c 8d ae 90 0b 00 00 be 08 00 00 00 48 89 8d 68 ff ff ff 48 c1 f8 06 49 8d 7c c5 00 e8 b7 99 e5 f6 <f0> 4d 0f b3 65 00 48 8b 8d 68 ff ff ff 48 b8 00 00 00 00 00 fc ff
[  244.605176][T14016] RSP: 0000:ffffc9000f7f7678 EFLAGS: 00010046
[  244.607116][T14016] RAX: 0000000000000001 RBX: ffff888026c64e80 RCX: ffffffff8b8dce69
[  244.610270][T14016] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff88801bab3050
[  244.613470][T14016] RBP: ffffc9000f7f77d0 R08: 0000000000000001 R09: ffffed100375660a
[  244.616808][T14016] R10: ffff88801bab3057 R11: 0000000000000002 R12: 0000000040000001
[  244.620140][T14016] R13: ffff888013ab3050 R14: ffff888026c64900 R15: ffff88802b43b280
[  244.623573][T14016] FS:  0000000000000000(0000) GS:ffff888097351000(0063) knlGS:00000000f5446b40
[  244.627383][T14016] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  244.630219][T14016] CR2: ffff88801bab3050 CR3: 0000000055299000 CR4: 0000000000352ef0
[  244.633573][T14016] Call Trace:
[  244.635069][T14016]  <TASK>
[  244.636359][T14016]  ? find_held_lock+0x2b/0x80
[  244.638224][T14016]  ? is_bpf_text_address+0x8a/0x1a0
[  244.639913][T14016]  ? __lock_acquire+0x4a5/0x2630
[  244.641488][T14016]  ? __pfx___schedule+0x10/0x10
[  244.643296][T14016]  ? preempt_schedule_thunk+0x16/0x30
[  244.645234][T14016]  preempt_schedule_common+0x42/0xc0
[  244.646942][T14016]  preempt_schedule_thunk+0x16/0x30
[  244.648930][T14016]  _raw_spin_unlock_irq+0x44/0x50
[  244.651081][T14016]  copy_process+0x402/0x7a10
[  244.652791][T14016]  ? create_worker_cont+0x35e/0x420
[  244.654918][T14016]  ? kasan_save_stack+0x3f/0x50
[  244.656919][T14016]  ? kasan_save_stack+0x30/0x50
[  244.658923][T14016]  ? kasan_save_track+0x14/0x30
[  244.660476][T14016]  ? kasan_save_free_info+0x3b/0x70
[  244.662307][T14016]  ? __kasan_slab_free+0x5f/0x80
[  244.664232][T14016]  ? kfree+0x1f6/0x6b0
[  244.665976][T14016]  ? create_worker_cont+0x35e/0x420
[  244.668180][T14016]  ? task_work_run+0x150/0x240
[  244.670174][T14016]  ? get_signal+0x1bd/0x21e0
[  244.672132][T14016]  ? arch_do_signal_or_restart+0x91/0x770
[  244.674596][T14016]  ? do_int80_emulation+0x4b8/0x6b0
[  244.676824][T14016]  ? asm_int80_emulation+0x1a/0x20
[  244.679023][T14016]  ? __pfx_copy_process+0x10/0x10
[  244.681145][T14016]  ? __pfx_io_wq_worker+0x10/0x10
[  244.683306][T14016]  create_io_thread+0xc2/0x110
[  244.685377][T14016]  ? __pfx_create_io_thread+0x10/0x10
[  244.687663][T14016]  ? __pfx_io_wq_worker+0x10/0x10
[  244.689827][T14016]  ? create_worker_cont+0x35e/0x420
[  244.692009][T14016]  ? kfree+0x1f6/0x6b0
[  244.693745][T14016]  create_worker_cont+0xe5/0x420
[  244.695877][T14016]  ? __pfx_create_worker_cont+0x10/0x10
[  244.698207][T14016]  ? __pfx___might_resched+0x10/0x10
[  244.700585][T14016]  ? rcu_is_watching+0x12/0xc0
[  244.702628][T14016]  task_work_run+0x150/0x240
[  244.704587][T14016]  ? __pfx_task_work_run+0x10/0x10
[  244.706845][T14016]  get_signal+0x1bd/0x21e0
[  244.708707][T14016]  ? __might_fault+0xc5/0x140
[  244.710669][T14016]  ? do_sigaltstack.constprop.0+0x4c0/0x670
[  244.713190][T14016]  ? __pfx_get_signal+0x10/0x10
[  244.715293][T14016]  ? do_futex+0x192/0x350
[  244.717136][T14016]  arch_do_signal_or_restart+0x91/0x770
[  244.719497][T14016]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  244.722098][T14016]  ? __pfx___ia32_sys_futex_time32+0x10/0x10
[  244.724624][T14016]  exit_to_user_mode_loop+0x86/0x4a0
[  244.726876][T14016]  do_int80_emulation+0x4b8/0x6b0
[  244.729008][T14016]  asm_int80_emulation+0x1a/0x20
[  244.731139][T14016] RIP: 0023:0xf7f82f6c
[  244.732874][T14016] Code: d2 74 05 c1 e8 0c 89 02 8b 5d fc 31 c0 c9 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1f 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 58 b8 77 00 00 00 cd 80 0f 0b 8d b6 00 00 00 00 b8 ad
[  244.740279][T14016] RSP: 002b:00000000f54465bc EFLAGS: 00000292 ORIG_RAX: 00000000000000f0
[  244.742849][T14016] RAX: fffffffffffffe00 RBX: 00000000f7444f88 RCX: 0000000000000080
[  244.745338][T14016] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000f7444f8c
[  244.747701][T14016] RBP: 0000000000000081 R08: 0000000000000000 R09: 0000000000000000
[  244.750154][T14016] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  244.752615][T14016] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  244.755148][T14016]  </TASK>
[  244.756161][T14016] Modules linked in:
[  244.757577][T14016] CR2: ffff88801bab3050
[  244.758965][T14016] ---[ end trace 0000000000000000 ]---
[  244.760680][T14016] RIP: 0010:__schedule+0x3eb9/0x60e0
[  244.762387][T14016] Code: 00 e9 7b cf ff ff 4c 89 e0 4c 8d ae 90 0b 00 00 be 08 00 00 00 48 89 8d 68 ff ff ff 48 c1 f8 06 49 8d 7c c5 00 e8 b7 99 e5 f6 <f0> 4d 0f b3 65 00 48 8b 8d 68 ff ff ff 48 b8 00 00 00 00 00 fc ff
[  244.768353][T14016] RSP: 0000:ffffc9000f7f7678 EFLAGS: 00010046
[  244.770246][T14016] RAX: 0000000000000001 RBX: ffff888026c64e80 RCX: ffffffff8b8dce69
[  244.772730][T14016] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff88801bab3050
[  244.775235][T14016] RBP: ffffc9000f7f77d0 R08: 0000000000000001 R09: ffffed100375660a
[  244.777738][T14016] R10: ffff88801bab3057 R11: 0000000000000002 R12: 0000000040000001
[  244.780237][T14016] R13: ffff888013ab3050 R14: ffff888026c64900 R15: ffff88802b43b280
[  244.782701][T14016] FS:  0000000000000000(0000) GS:ffff888097351000(0063) knlGS:00000000f5446b40
[  244.785515][T14016] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  244.787603][T14016] CR2: ffff88801bab3050 CR3: 0000000055299000 CR4: 0000000000352ef0
[  244.790101][T14016] Kernel panic - not syncing: Fatal exception
[  245.876402][T14016] Shutting down cpus with NMI
[  245.878705][T14016] Kernel Offset: disabled
[  245.880068][T14016] Rebooting in 86400 seconds..

VM DIAGNOSIS:
03:36:08  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=0000000000000003 RCX=ffffffff81b6d6e3 RDX=ffffffff8e4975c0
RSI=ffffffff81b7099c RDI=ffffffff8e4975c0 RBP=ffff88802b43b2c8 RSP=ffffc90000007a18
R8 =0000000000000000 R9 =0000000000000003 R10=0000000000000003 R11=ffff88801cbb93a8
R12=0000000000000003 R13=0000000000000003 R14=ffff88802b23c1c0 R15=0000000000000000
RIP=ffffffff81b7099d RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097151000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000034014ff8 CR3=0000000055299000 CR4=00352ef0
DR0=0000000000000003 DR1=00000000000001f8 DR2=000000000000008e DR3=000000000000057a 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 51690fb465fc9e67 106e18fd2a51d0bb
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6fbc70f0c3939eb6 9586ed8fa23fcea0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b7f2f6b4ca2e3b07 7e4ffa6899d00b71
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2a4a0e6282dd2c36 b29415e7d22b7869
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000000000c7c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00d6a70065155000 0000955e00000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 604adc005f118700 6ea2a6000108af00
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00b2620000000000 0000955e00000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000955e00000000 69d602000000955e
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5cb76ad78312cb78 f9e230749d01befe
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 270a349ab24a03ad c43b134903312380
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000018664c RBX=ffff88801c722480 RCX=ffffffff8b8ccc75 RDX=0000000000000001
RSI=ffffffff8c1aeaa0 RDI=ffffffff81dde1cb RBP=0000000000000001 RSP=ffffc9000046fdf0
R8 =0000000000000000 R9 =ffffed1005666795 R10=ffff88802b333cab R11=0000000000000001
R12=ffffed10038e4490 R13=0000000000000001 R14=ffffffff90d98910 R15=0000000000000000
RIP=ffffffff8b8cb5df RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097251000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f53bbff4 CR3=0000000043d31000 CR4=00352ef0
DR0=0000000000000003 DR1=00000000000001f8 DR2=000000000000008e DR3=000000000000057a 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=000000000000005b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85768405 RDI=ffffffff9b486f80 RBP=ffffffff9b486f40 RSP=ffffc9000f7f6ec8
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=727265203a465023
R12=0000000000000000 R13=000000000000005b R14=0000000000000010 R15=ffffffff857683a0
RIP=ffffffff8576842f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097351000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=ffff88801bab3050 CR3=0000000055299000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000001530e4 RBX=ffff88801c7d2480 RCX=ffffffff8b8ccc75 RDX=0000000000000001
RSI=ffffffff8c1aeaa0 RDI=ffffffff81dde1cb RBP=0000000000000003 RSP=ffffc9000048fdf0
R8 =0000000000000000 R9 =ffffed10056a6795 R10=ffff88802b533cab R11=0000000000000003
R12=ffffed10038fa490 R13=0000000000000003 R14=ffffffff90d98910 R15=0000000000000000
RIP=ffffffff8b8cb5df RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097451000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71a7110 CR3=00000000402f6000 CR4=00352ef0
DR0=ffffffffffffffff DR1=000000000000ffff DR2=0000000000007c84 DR3=0000000000000026 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000