last executing test programs:

8.919100117s ago: executing program 3 (id=123):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000005c0)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "80"}}, 0x119)
ioctl$LOOP_SET_CAPACITY(r3, 0x4c07)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_FILTER(r5, 0x0, 0x2, &(0x7f0000000440)={0xfffa, [0x0, 0xffffffff], 0x1000}, 0x10)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
socket$packet(0x11, 0x2, 0x300)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mq_open(0x0, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x80000000001})
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)

6.38883198s ago: executing program 3 (id=147):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000005c0)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "80"}}, 0x119)
ioctl$LOOP_SET_CAPACITY(r3, 0x4c07)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
setsockopt$bt_hci_HCI_FILTER(r5, 0x0, 0x2, &(0x7f0000000440)={0xfffa, [0x0, 0xffffffff], 0x1000}, 0x10)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
socket$packet(0x11, 0x2, 0x300)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mq_open(0x0, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x80000000001})
r6 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000200)={r6, r6, r6}, &(0x7f0000000040)=""/217, 0xd9, &(0x7f00000001c0)={&(0x7f0000000140)={'sha384-avx\x00'}})

5.455039832s ago: executing program 3 (id=152):
r0 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f0000000180)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "cb96a945ab526fe377145584b62491050e011fd59d1396798a98902d3fafc9e09a29e6671ad9f5f25693b12e5d0ac30e15fd59e58f7200"}, 0x48, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f00000013c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r3 = openat$cgroup_ro(r1, &(0x7f00000000c0)='cgroup.events\x00', 0x0, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000000)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r2, &(0x7f0000006300)={0x2020, 0x0, <r4=>0x0}, 0x2020)
mount$nfs(0x0, &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x300040, 0x0)
write$FUSE_WRITE(r2, &(0x7f0000000080)={0x18, 0x0, r4, {0x7}}, 0x18)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
ioctl$HIDIOCGRDESC(r3, 0x90044802, &(0x7f00000004c0)={0xb75, "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"})
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x2, 0x18, &(0x7f0000000400)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r5}}, {}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {}, {}, {}, {0x7, 0x0, 0x0, 0x9}, {}, {}, {0x85, 0x0, 0x0, 0x86}}], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r1, 0x0)
r6 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f0000000180)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "cb96a945ab526fe377145584b62491050e011fd59d1396798a98902d3fafc9e09a29e6671ad9f5f25693b12e5d0ac30e15fd59e58f7200"}, 0x48, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f0000000280)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r6, r7, 0x0)
r8 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f0000000180)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "cb96a945ab526fe377145584b62491050e011f5e1c8614016f7591f00bd59d1396798a98902d3fafc9e09a29e6671ad9f5f25693b12e5d0ac30e15fd59e58f72"}, 0x48, 0xfffffffffffffffe)
r9 = add_key$fscrypt_v1(&(0x7f0000000140), &(0x7f0000000180)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "cb96a945ab526fe377145584b62491050e011fd59d1396798a98902d3fafc9e09a29e6671ad9f5f25693b12e5d0ac30e15fd59e58f7200"}, 0x48, 0xfffffffffffffffe)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
ioctl$SIOCSIFHWADDR(r10, 0x8b0b, &(0x7f0000000080)={'wlan1\x00', @random="02000000000a"})
pipe2$watch_queue(&(0x7f0000000280)={0xffffffffffffffff, <r11=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r9, r11, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, r8, r1, 0x60ffffffffff)
r12 = syz_open_dev$vim2m(&(0x7f0000000280), 0x0, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r12, 0xc0405602, &(0x7f0000000140)={0x0, 0x1, 0x0, "ee471a55b5e2c266422ef07bbfd7a61e37466e060403bbd8115bd48970e86a02"})

4.669307436s ago: executing program 2 (id=154):
mknod$loop(&(0x7f0000000280)='./file0\x00', 0x0, 0x1)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x200041, &(0x7f0000002140)=ANY=[@ANYRESDEC=0x0, @ANYBLOB=',g', @ANYRESDEC=0x0])
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmsg$802154_dgram(r0, 0x0, 0x8000)
mq_open(0x0, 0x841, 0xa, 0x0)
syz_clone3(0x0, 0x0)
r1 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup2(r1, r2)
syz_genetlink_get_family_id$mptcp(0x0, r3)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r4}, 0xc)
r5 = dup(0xffffffffffffffff)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
timer_create(0x0, 0x0, 0x0)
r6 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r6, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @multicast2}}, 0x24)
sendmmsg(r6, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="f3ffffff0f0100000100000024000000"], 0x10, 0xe000}, 0x5}], 0x1, 0xfffe)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000005e00)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r7, 0x541b, &(0x7f0000000000)={<r8=>0xffffffffffffffff})
close_range(r8, 0xffffffffffffffff, 0x0)
sendmsg$NBD_CMD_RECONFIGURE(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f0000000180)={&(0x7f0000000080)={0x60, 0x0, 0x0, 0x70bd2c, 0x25dfdbfe, {}, [@NBD_ATTR_SIZE_BYTES={0xc}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x6}, @NBD_ATTR_TIMEOUT={0xc, 0x4, 0x6}, @NBD_ATTR_DEAD_CONN_TIMEOUT={0xc, 0x8, 0x3}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_INDEX={0x8, 0x1, 0x0}, @NBD_ATTR_BLOCK_SIZE_BYTES={0xc, 0x3, 0x7}]}, 0x60}}, 0x48000)

4.530095236s ago: executing program 2 (id=155):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000005c0)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "80"}}, 0x119)
ioctl$LOOP_SET_CAPACITY(r3, 0x4c07)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_FILTER(r5, 0x0, 0x2, &(0x7f0000000440)={0xfffa, [0x0, 0xffffffff], 0x1000}, 0x10)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
socket$packet(0x11, 0x2, 0x300)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mq_open(0x0, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x80000000001})
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)

4.469425467s ago: executing program 3 (id=156):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000005c0)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "80"}}, 0x119)
ioctl$LOOP_SET_CAPACITY(r3, 0x4c07)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
socket$packet(0x11, 0x2, 0x300)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mq_open(0x0, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x80000000001})
r7 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000200)={r7, r7, r7}, &(0x7f0000000040)=""/217, 0xd9, &(0x7f00000001c0)={&(0x7f0000000140)={'sha384-avx\x00'}})

3.069623719s ago: executing program 0 (id=159):
r0 = syz_open_dev$radio(&(0x7f0000000140), 0x3, 0x2)
io_setup(0x3, &(0x7f0000000180)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f00000000c0)={0x0, 0x300, 0x0, 0x5, 0x0, r0, 0x0}])
sendmsg$IPSET_CMD_RENAME(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x40c0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
syz_emit_vhci(&(0x7f00000006c0)=ANY=[@ANYBLOB, @ANYRES16=r2, @ANYRES64=r2, @ANYRES32=r2, @ANYRESHEX=r2, @ANYBLOB="95f2726d17966fc57ab02aee8545d78210bcf6d3484beced258fdd44cc1149a2be8bc60b22bba8a12a33551dba59ca02eff46f3b6074d7118768b7c3cc0d17df8e1dd246c2448c78501d7984ca7e7a0a38455e49daf761bc4428b7995a5e3232f247a879d0891a38792ae70ca522c95f63f40df38081a5101c5a79408a9e39cb3ca35761f21723bff2524b27d5f40ece2ef49a5df37241c64c61ece6eb938c64c415a3e4", @ANYRES8=0x0], 0x22)
mmap(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x100010, r2, 0x8aa07000)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
preadv(0xffffffffffffffff, &(0x7f00000015c0), 0x0, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0x800f)
ioctl$MON_IOCX_GET(0xffffffffffffffff, 0x40189206, &(0x7f0000000200)={&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @iso}, &(0x7f0000000300)=""/108, 0x6c})
syz_emit_vhci(&(0x7f0000000100)=ANY=[], 0x7)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f00000002c0)={@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0xe, 0x1, 0x0, 0x3c39f40b60fb300e, 0x997, 0x958e}, 0x20)
ioctl$sock_ifreq(0xffffffffffffffff, 0x8910, &(0x7f0000000000)={'veth0_vlan\x00', @ifru_ivalue=0x8})
openat$vcsu(0xffffff9c, 0x0, 0x200400, 0x0)
r3 = syz_open_dev$vbi(&(0x7f0000000000), 0x3, 0x2)
ioctl$VIDIOC_S_CTRL(r3, 0xc008561c, &(0x7f0000000080)={0xf0f041, 0x410})

2.219611377s ago: executing program 2 (id=162):
pipe2(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x800)
ioperm(0x0, 0xb2, 0x4)
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x20000000, 0x0)
io_setup(0x2, &(0x7f0000000380)=<r1=>0x0)
r2 = syz_io_uring_setup(0x3af0, &(0x7f0000000200)={0x0, 0x1a0, 0x800, 0x0, 0x2a2}, &(0x7f0000000100), &(0x7f0000000440)=<r3=>0x0)
syz_io_uring_setup(0xa91, &(0x7f00000002c0)={0x0, 0x800, 0x0, 0x0, 0xcc}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000280))
syz_io_uring_submit(r4, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, 0x6e6a9ace1e35a607})
io_uring_enter(r2, 0xec4, 0x0, 0x0, 0x0, 0x0)
io_submit(r1, 0x1, &(0x7f00000000c0)=[&(0x7f00000001c0)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
fcntl$setpipe(r0, 0x407, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000200)={[0xfffffbfd]}, 0x0, 0x8)
r5 = getpid()
r6 = gettid()
r7 = syz_usb_connect$hid(0x0, 0x3f, &(0x7f0000000900)=ANY=[@ANYBLOB="1201500200000010ef0e010040000102030109022d0001018c093e472ab577089940491c08e003090400000203010206092106000601228101090581030004a61a0d09050203bf3002090890329e9aa62829e9a2313874d0ca909f544f9a1d783640cc215bafc6db34ffc3cb7f2d747dc8e05d8b3839d85a5d8ef1dec1f1ed44dd93f98567682c9c7efd02f90fb99da9fe0f21845f885a9f67637b2dd36db0d7936c9c4e7d51e9d1e18ad2ad6d89a349900236e98bd1e651c525f84c1594a5b2c617992d9d3409ed"], &(0x7f0000000400)={0xa, &(0x7f0000000280)={0xa, 0x6, 0x250, 0x7, 0xfe, 0xbd, 0xff, 0x3}, 0xf, &(0x7f00000002c0)={0x5, 0xf, 0xf, 0x1, [@ss_cap={0xa, 0x10, 0x3, 0x2, 0x1, 0x40, 0x1, 0x101}]}, 0x3, [{0x4, &(0x7f0000000300)=@lang_id={0x4, 0x3, 0x41e}}, {0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x422}}, {0x69, &(0x7f0000000c00)=ANY=[@ANYBLOB="69031c260f84ad65ff9b8e23ea7d986bc3a9cf5adc05c81781a60dfdfa56ddc88865a9fcd944656551d0d6a1686af399c584e119b13b0e45effd1b35b456f6605e6d5a0cae136b5cdb3c1b31c9c4fa53c99b84835a97491f357834f833232ebf9906b8f16d9413f8ba389a5a1c4ff71479c374f0a5cbad18f285d82f0cad2c2f8da0e2fc26126512942bf0ecc519441039de6d9b024ffd892fcb17f647ded5c215c3fece77a19d5c2f9af470d641159ec2b7e850deb64495d3446bd0770919fef47cd51c5924dd78ad5f6be56a770ef14ca50e1e8552a249454218ac4db579fb5fa5b8934edb487d12a6e80c47f5a6ef2af3c814d36db581ca2a6e1a7d3848a52f03ab4097e8ef936d7e499e205db2783c000000000000000000f2f6fc544abe004df03ffe79a16e2c77eade19de399a1e308f6f9797d45a2050a3a5795d38f18e6ce3361ec56486950cd165f969ab3ae39b7d5dad14988bbcd26bb8c97f9af8f4593076e0e956b04753bff3d73498b9a332bff06781a17fa89712bea5485ff638cef829bb11f90566b690d3113f9a6cd5bf7343c8bb3d160613085ddc9743f19ef8626ac1e2cfe6b65074f54738c2a81c7f6642c48e719beff3c49c36ac59ef69e3509b1febfec760751f42b777bf114739ec1851a66b829be5c567a7abc4a9f941a27ca3a81d8f409b436050c5482680c3db15930ea11dcbfba050825ced9e91ad6f10060dae79cd18a795bb7c1d9580874c94654fe97dcb640dfc6d667ed6c9641523cac4ab4e2b8256ef974c9274dbd31b24f1496cdebbbc92529fc4ef4f88d4cd87b71a37"]}]})
syz_usb_control_io$hid(r7, &(0x7f0000000600)={0x24, &(0x7f0000000ac0)=ANY=[@ANYBLOB="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"], &(0x7f0000000540)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x445}}, &(0x7f0000000a00)=ANY=[@ANYBLOB="00221f000000776940c6a4472e6349c4abac0ead848bdd5c507d92fd5aa3a968c8aa664165a8f05d8d90bc4f3f64a93bffe82d7e8b329200f15b11c99e409bfef8536100a5bb9fb508097bea77c523e67e8a9b077f3c6545b1eefd0e409b52afb0b9433939eba891bfc74877c7d3f3e946f488480bb85540066ac5761b3bc8b1367dfd360704c47f2e19e1438eac8069b6d7151d9c27464af84c6cb08d1e90e04546f7005c8718ead2512a2c791c14451e621f"], &(0x7f00000005c0)={0x0, 0x21, 0x9, {0x9, 0x21, 0x0, 0x10, 0x1, {0x22, 0xca}}}}, &(0x7f0000000840)={0x2c, &(0x7f0000000640)={0x40, 0xc, 0x46, "cf802f310b732611e356277427197ae6bc32f01ec46a664e5df06c982a1f49fcbdcb24cb0493c9c7451324682c76b3f2187af2c619b2d04db0faced85ec50344619e122a07a3"}, &(0x7f00000006c0)={0x0, 0xa, 0x1, 0x7f}, &(0x7f0000000700)={0x0, 0x8, 0x1, 0x4}, &(0x7f0000000740)={0x20, 0x1, 0xab, "c7e58e22bd0a7901c9ce95a97d38c0552a60eb41a27bfd21152ef18cc8a88e8aa87454b2c8fcc891fd74850886ce4c69c04c29a6aaec6892aefa4aaaa51f06d6277261a3032ea8136a79ce81763dc0fab51b0ebefa1d1703e194b5199a02a8894d5bed52786d5e4abbc904d8fd31643c6fb8e0d0690e8c6fbcda121cf450e1dbb2f13799de1a2db8d52df8638920426e81bd5b5b6e726c1234922c714ac2f7335a6ea9eb9c9d2873ab1ef9"}, &(0x7f0000000800)={0x20, 0x3, 0x1, 0xfc}})
rt_tgsigqueueinfo(r5, r6, 0x7, &(0x7f00000000c0)={0x0, 0x0, 0xc})
r8 = gettid()
r9 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000880), 0x800, 0x0)
setsockopt$inet6_tcp_int(r9, 0x6, 0x1e, &(0x7f00000008c0)=0x1c4d, 0x4)
tkill(r8, 0x12)
syz_genetlink_get_family_id$gtp(0x0, 0xffffffffffffffff)
r10 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="18001c000000000000000000000000009500000000000000"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sys_exit\x00', r10}, 0x10)
r11 = socket(0x10, 0x2, 0x1)
getsockopt$sock_cred(r11, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r12=>0x0}, &(0x7f0000cab000)=0xc)
setuid(r12)
r13 = add_key$keyring(&(0x7f0000000180), &(0x7f00000001c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$get_persistent(0x16, r12, r13)
fsmount(0xffffffffffffffff, 0x0, 0x0)

2.219393876s ago: executing program 0 (id=163):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r0, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000240)={0x14, r1, 0x303, 0x0, 0x0, {0x13}}, 0x14}, 0x1, 0x0, 0xc00e}, 0x0)

2.126795881s ago: executing program 0 (id=164):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0) (async)
bpf$MAP_CREATE(0x0, 0x0, 0x48) (async, rerun: 64)
pipe(&(0x7f0000000040)) (async, rerun: 64)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) (async)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt$inet_int(r2, 0x0, 0x5, 0x0, &(0x7f0000000840)) (async, rerun: 32)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) (rerun: 32)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x300}, 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0) (async)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) (async)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NET_DM_CMD_STOP(r4, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x14, 0x0, 0x400, 0x70bd2b, 0x25dfdbfe, {}, ["", "", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4084}, 0x4004) (async)
openat$udambuf(0xffffff9c, &(0x7f0000000000), 0x2) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000032680)=""/102392, 0x18ff8) (async, rerun: 32)
syz_io_uring_setup(0x55b1, &(0x7f0000000040)={0x0, 0x0, 0x100, 0x2, 0x1, 0x0, r0}, 0x0, 0x0) (rerun: 32)

2.12654754s ago: executing program 0 (id=165):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x2, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="3c000000680001000000000000000000020000000000000006000700020000000c000880080012000000000008000600f200000008000500", @ANYRES64=r0], 0x3c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@ipv4_delroute={0x24, 0x18, 0x901, 0x0, 0x0, {}, [@RTA_DST={0x8, 0x1, @dev}]}, 0x24}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c1300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000048aa005e850000002d0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x8, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00'}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000039c0)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r3, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000140), 0x0, 0x63, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x4c)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
ioctl$TIOCL_BLANKSCREEN(0xffffffffffffffff, 0x541c, &(0x7f0000000240))
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x14)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000180)={{}, 'syz1\x00', 0x40})
ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000005880)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @notrack={{0xc}, @val={0x4}}}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x60}, 0x1, 0x0, 0x0, 0x4040841}, 0x24008840)
write$input_event(0xffffffffffffffff, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x5412, &(0x7f00000006c0)=0x16)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0x2cf, 0x0, 0x0, 0x3e6b, 0x0, "334fa01d904ef47668ed9ba4a6175877a6a4b7"})
dup(0xffffffffffffffff)

2.059376295s ago: executing program 0 (id=166):
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2, 0x1010, r1, 0xc98e2000)
setsockopt$llc_int(r1, 0x10c, 0x9, &(0x7f0000000180), 0x4)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000001a80)=""/102379, 0x18feb}], 0x1, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x80803, 0x83)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@private1, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xff}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@mcast2, 0x0, 0x32}, 0x0, @in=@multicast1}}, 0xe8)
connect$inet6(r2, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
socket$inet_smc(0x2b, 0x1, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000140)={0x1, @pix_mp={0x0, 0x0, 0x41564e57, 0x4, 0x0, [], 0xff}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bind$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_buf(r4, 0x0, 0x8008000000010, &(0x7f0000005e40)="17000000020001000003d68c5ee17688a2003208020300ecff3f0200000300000a000000009afc5ad9485bbb6a880000d6c8db0000dba67e06018000020000f10607bdff59100ac45761407a681f009cee4a5acb3da400001fb70067", 0x5c)
r5 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r5, &(0x7f0000000000)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_sha384\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r5, 0x117, 0x1, 0x0, 0x0)
r6 = accept4(r5, 0x0, 0x0, 0x0)
recvmsg(r6, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000180)='/', 0x1}], 0x1}, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000005c0), 0x40000000000026c, 0x0, 0x0)

1.849522698s ago: executing program 3 (id=167):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x0)
socket$can_j1939(0x1d, 0x2, 0x7)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x0, 0x0, 0x0, 0x8000, 0x200, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
syz_open_procfs$namespace(0x0, &(0x7f0000000100)='ns/net\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
waitid(0x0, 0x0, 0x0, 0x4, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x88}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
write(0xffffffffffffffff, &(0x7f0000000000), 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={0x0, &(0x7f00000005c0)=""/157, 0x0, 0x9d, 0x1, 0x3, 0x0, @void, @value}, 0x20)
bpf$OBJ_GET_MAP(0x7, &(0x7f0000000700)=@generic={&(0x7f00000006c0)='./file0\x00', 0x0, 0x10}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
mkdirat$cgroup(0xffffffffffffffff, &(0x7f00000000c0)='syz0\x00', 0x1ff)
r4 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r4, &(0x7f0000000140)=ANY=[@ANYBLOB='b 75:*\trrr'], 0xa)
write$cgroup_devices(r4, &(0x7f0000000080)={'b', ' *:* ', 'wm\x00'}, 0x9)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ac0)={0x18, 0xc, &(0x7f00000008c0)=@raw=[@exit, @exit, @call={0x85, 0x0, 0x0, 0x69}, @tail_call, @exit, @jmp={0x5, 0x1, 0x6, 0x9, 0xb, 0x2, 0x8}, @map_fd={0x18, 0x9}], &(0x7f0000000940)='syzkaller\x00', 0x9, 0x36, &(0x7f0000000980)=""/54, 0x41100, 0x8, '\x00', 0x0, 0x0, r3, 0x8, 0x0, 0x0, 0x10, &(0x7f00000009c0)={0x4, 0x4, 0x5, 0x4}, 0x10, 0x0, 0x0, 0x0, &(0x7f0000000b80)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff], 0x0, 0x10, 0x3, @void, @value}, 0x90)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000008c0)={0x0, &(0x7f0000000280)}, 0x8)

1.467654261s ago: executing program 1 (id=169):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newqdisc={0x3c, 0x24, 0x400, 0x70bd29, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x1, 0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_NAT={0x8, 0xb, 0x1}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x24008080}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
poll(&(0x7f0000000040), 0x55, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="50000000100001040000000000000000000000e0", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x50}}, 0x0)

1.247307795s ago: executing program 0 (id=170):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000005c0)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "80"}}, 0x119)
ioctl$LOOP_SET_CAPACITY(r3, 0x4c07)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_FILTER(r5, 0x0, 0x2, &(0x7f0000000440)={0xfffa, [0x0, 0xffffffff], 0x1000}, 0x10)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
socket$packet(0x11, 0x2, 0x300)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mq_open(0x0, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x80000000001})
add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)

1.2470551s ago: executing program 1 (id=171):
syz_emit_ethernet(0xbe, &(0x7f00000000c0)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e22, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "00000000000000000000009400"}}}}}}, 0x0)

1.246765389s ago: executing program 1 (id=172):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket(0x200000100000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000002c0)=@ipv6_newaddr={0x54, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x0, 0x0, 0x0, r2}, [@IFA_LOCAL={0x14, 0x2, @local}, @IFA_CACHEINFO={0x14, 0x6, {0x15, 0xfffff001, 0xf000}}, @IFA_ADDRESS={0x14, 0x1, @remote}]}, 0x54}}, 0x0)

1.059798301s ago: executing program 1 (id=173):
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
madvise(&(0x7f0000efb000/0x1000)=nil, 0x1000, 0x16)
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x25})
getsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc018aa06, &(0x7f0000000140)={{&(0x7f0000c3a000/0x3000)=nil, 0x3000}, 0x1})
mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x102, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) (async)
madvise(&(0x7f0000efb000/0x1000)=nil, 0x1000, 0x16) (async)
userfaultfd(0x80801) (async)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x25}) (async)
getsockopt$PNPIPE_HANDLE(0xffffffffffffffff, 0x113, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4) (async)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3}) (async)
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc018aa06, &(0x7f0000000140)={{&(0x7f0000c3a000/0x3000)=nil, 0x3000}, 0x1}) (async)
mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1, 0x0, 0x102, 0x0) (async)

759.673643ms ago: executing program 1 (id=174):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000000)=0x2, 0x4)
sendmsg$nl_route(r0, &(0x7f0000000080)={0xffffffffffffffff, 0x0, &(0x7f00000000c0)={&(0x7f0000000580)=ANY=[@ANYBLOB="3c000000680001000000000000000000020000000000000006000700020000000c000880080012000000000008000600f200000008000500", @ANYRES64=r0], 0x3c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@ipv4_delroute={0x24, 0x18, 0x901, 0x0, 0x0, {}, [@RTA_DST={0x8, 0x1, @dev}]}, 0x24}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c1300000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000048aa005e850000002d0000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000e000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x8, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00'}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000039c0)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r3, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000140), 0x0, 0x63, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x4c)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
ioctl$TIOCL_BLANKSCREEN(0xffffffffffffffff, 0x541c, &(0x7f0000000240))
ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x14)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000180)={{}, 'syz1\x00', 0x40})
ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000005880)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWRULE={0x38, 0x6, 0xa, 0x5, 0x0, 0x0, {0x0, 0x0, 0x7}, [@NFTA_RULE_POSITION={0xc, 0x6, 0x1, 0x0, 0x5}, @NFTA_RULE_EXPRESSIONS={0x18, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @notrack={{0xc}, @val={0x4}}}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0x60}, 0x1, 0x0, 0x0, 0x4040841}, 0x24008840)
write$input_event(0xffffffffffffffff, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
ioctl$TIOCL_GETMOUSEREPORTING(0xffffffffffffffff, 0x5412, &(0x7f00000006c0)=0x16)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000000000)={0x2cf, 0x0, 0x0, 0x3e6b, 0x0, "334fa01d904ef47668ed9ba4a6175877a6a4b7"})
dup(0xffffffffffffffff)

621.140586ms ago: executing program 1 (id=175):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x1, 0xa, 0xb}, {0x5, 0x2, 0x13, 0x2}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = syz_open_dev$loop(&(0x7f00000001c0), 0x0, 0x0)
r4 = syz_open_dev$I2C(&(0x7f0000003000), 0x0, 0x0)
ioctl$I2C_SMBUS(r4, 0x720, &(0x7f0000003080)={0x1, 0x0, 0x6, &(0x7f0000003040)={0x0, "f4e1a230be8f46463fb1a5f1b44f44eaa65e485b747aa95df8c01eaf07677d18bc"}})
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f00000005c0)={0xb, {'syz1\x00', 'syz1\x00', 'syz0\x00', 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, "80"}}, 0x119)
ioctl$LOOP_SET_CAPACITY(r3, 0x4c07)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
socket$packet(0x11, 0x2, 0x300)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mq_open(0x0, 0x0, 0x0, &(0x7f0000000180)={0x0, 0x80000000001})
r7 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000200)={r7, r7, r7}, &(0x7f0000000040)=""/217, 0xd9, &(0x7f00000001c0)={&(0x7f0000000140)={'sha384-avx\x00'}})

328.414379ms ago: executing program 3 (id=176):
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000580), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_SPLIT(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000005c0)={0x44, 0x0, 0x0, 0x0, 0x0, {}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {0x8}}]}, 0x44}}, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xa, [{}, {0x10}]}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
syz_80211_inject_frame(0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000a00)={0x28, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}]}, 0x28}}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00'}, 0x10)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r8=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r6, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000bc0)={0x24, r7, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="fb64a10200000047191f2b4d927966641d", @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_i', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB])
read$FUSE(r1, &(0x7f0000006840)={0x2020}, 0x2020)

249.945653ms ago: executing program 2 (id=177):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000300)=@filter={'filter\x00', 0xe, 0x0, 0x90, [0x0, 0x20000240, 0x20000270, 0x200002a0], 0x0, 0x0, &(0x7f0000000240)=[{0x600, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x1e01}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}]}, 0xe0)

249.540425ms ago: executing program 2 (id=178):
r0 = syz_open_dev$video(&(0x7f0000000000), 0x7fffffff, 0x0)
r1 = syz_open_dev$swradio(&(0x7f0000000040), 0x1, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000900)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_CRIT_PROTOCOL_STOP(r2, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000980)={&(0x7f0000000940)={0x1c, r3, 0xd2380a57105fbdd1, 0x70bd2b, 0x25dfdbfe, {{}, {@val={0x8, 0x3, r4}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r5)
ioctl$X86_IOC_RDMSR_REGS(r5, 0xc02063a0, &(0x7f0000000280)=[0x80000001, 0x9, 0xcd7, 0x76b3, 0x7, 0x9, 0x0, 0x1])
ioctl$VIDIOC_S_SELECTION(r1, 0xc040565f, &(0x7f0000000080)={0x5, 0x102, 0x3, {0xffff, 0x4, 0x78, 0x2}})
syz_open_dev$vivid(&(0x7f00000002c0), 0x2, 0x2)
ioctl$VIDIOC_LOG_STATUS(r0, 0x5646, 0x0)
sendmsg$NL80211_CMD_GET_MESH_CONFIG(r2, &(0x7f0000000400)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000380)={0x28, r3, 0x101, 0x70bd2c, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r4}, @val={0xc, 0x99, {0xc34, 0x25}}}}, ["", "", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x20}, 0x8040)
r6 = openat$ubi_ctrl(0xffffff9c, &(0x7f00000000c0), 0x189400, 0x0)
r7 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r7}, &(0x7f0000bbdffc))
sendmmsg(r5, &(0x7f0000000800)=[{{0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000440)="42ca610e816e5b306e876506165a4499d6fe0c1dca745073b3d20fc17bebbe559fd7b6f52b36e4d1cf8b61f931143b83e90a87e3462cc10b3ab373edf97e78ecb7f97991527c78fdc6827995d44ffb2cb1ee434e241f6684ff7cef5d44e35e90c94195a5ac6466b7d7a0cccd69627ac25d6ff2a13c941b234055a491598b71a4211794b1ec79869b65113eda6438debf937dbb4fd814d8fdb3cdffed890a4cb801902a6b33a910a7c16262d53852483df23f606614a93e05a798dbbb9c86bd4cbdd3ff89a8dda7e27392ea22b35ebcf32a0ff12bffa924ff40c846c97d602b810014b056be15cc2667b80edbb2b39db197a54a", 0xf3}, {&(0x7f0000000540)="8400eb5c235a3c9e3377adf4eaf0f913dd30b16883b45094940a7c0901d73bd2a5a4edbfca6fb7bd74a1cdeb6b3d3ea017011573b8e3445d1d3cbe8f76835fd7aabe89203a31b7efde1e209852e22067b635369e5c86a21e8c782b167fd1297dfbb2740e389030e71c83122b3f650bc2324702b6250af65b7c8c69a93628a0baa2357e7bb9055ec121d0588789f51fce0e036bd7dc246187131a8554bf30589e846f34e36d36104df63636f85d93e8f08505257250f5886f917fa4c921844a3216b23bcae0def1f08b39f3f8e61020de4a07bf1b10af64332e2e4d32e2aa018f1f03e73647f30eb79796b5ae5bad415132e2", 0xf2}, {&(0x7f0000000640)="328065", 0x3}, {&(0x7f0000000a00)="1f5c42929789b7de733ac28f2a0c3455c03be8883cf56b31bd9f234fcef20198fd41e63fb72b0fc0c92efee2e7d327c211c970333eebd224553cec5752002556f676f5303e79ee5bcc4554236dfeb7937edee32df519a2396a736982d53fd8641425f32f8c238529204512451c12cf438c25004085ad6a3ad9144eea7480f3811f490ad95b36e51a1177a0f6b4b01b63209e615e848b71c1df75ea1a99450bdbdf6bd022e1da49b6dfc5d5a2d974cb14fee611acd19c4af2ae7941850c7aa7257a4681b34f74858115cf94d9e7ff5bc0396fcde8b1eaee52079849406bb2e9a9e59922a43c018a5c64ad693ad5d75046e2e4cf24882a84142610ac2ced772a1371fd33c2194fe6b030448c3ccd1e0146e08a90eba33f4a1940497214d767fe74b5265091c7419d030d793ba90d1bafd59886eac4e69a9ea2aaebe25d9fdbfe36b33dc91a583e2b9a6b1eba4d83d4003a064d340afc65e0a669a7f808c01e965dde9180d5b2f505fe5dc5af08b54cedcd4f041e070cbcd4edacd496a7da268ed8446360d3e5299b290548cc0c5f164edeed5c87abf15c4b58d3f5bcfe14f16fabd9a4fe3808431492fb102cdaf9b765a42ec28c37d81610e7136667f42f529fe293d0108ea88410582b3ea929a28f8cd364df5243e597773ba71fc6ef55736904f7620f878ae7686a0c0df60a623c0a7032dbb9f1b33f6c6139880ff14eef5da405123d6da8f85e68815c21f92224ad237004e624471f74580026cdfcce4cc3cb6765d5c302567a15f91f3a62a0115af65ac6472edbce01b813bcdd6ed83c69e2b7428879e3ea82d5e99efa99f43591ac91617f1b4c3a6f829e9e9f1f4d398a1f9748e0cc93b44454e12c372214f5735698c61abccb1d27c29d81157efab7e5ea0f3643d6321c7d9e1cabb77d7b01e9a0a2b5979ebfb84ef165f1a01e0c856c4555e38dc624e0b8179e281929fdcb85ee8abdd1f452ab7c7f0664930219d11c79ca22f1185a5d3f302c26ab8406ff962b079410953c12bfea6d7a281daa9511ab1d6fb8ad79cbb288b348167ba071d78aa358c19412fca848dff727904f6d17eadb02fd9acbfcf64c260f2ae8651a035b8b16bf0e0af3eb0ce1c3e22d73ca49286af2b83699cca089289400b5fb290dfd3b354d86aef0a981ad435fa51489ba40907d6b8330662b65667df7b34628834bc6876710a468ffa9e695cae8101f4802aac523986a32eaa0c72ada6d3e4e7f6baa2834830bdece859d53410e8a126a297de958e1fe6821353cd92b229aaa8c7d71f9fa2a71d1be288afe08565979389dde6bd0efddeb52b9101f3f23f20dc0739289ee8a2c048722bf9630d9479428637f0a9283ea57a9da45b56d484f069f6b7ee929fed52f4bec05c2cd86aa94d7db8f6768f6bfd73bc43339868833f874ff08a41aaa0ac524857e70472a6c101db12fa191c9d7278fa3590cd12047b41245ad673ad6b0dbe309b28e035a3b04fc972c9ca567931b4b164a8aec84bd009dad07bc359ecd100848a9ee845528652d045f4abcd86d165ab58fa34dc2e21ffaed1b496e1ec39dc765ee756e46a3a3cd885e03f50f0903d08105078fed0cbe42b90790ea6bb8de8beac69427a9ba011ae7d07fec36da86f3c8a4d8b5e11fe408c4f0c41834b0ff2135f11a48035f038c44c0f972dd15f4a6a8c68497fc8bea26c9fe5d871d2a4d6ef157af3f8c5c7d2d57bb7255823e7059684ef6b844cfbbebc12a99c65ea1111a475b5a3468ff34f0aea1c1c05c1a53cd6797bc40498894357a91260628ae0dc9a1b6d357930da03dc9e3956b3e8ac2ddc2ae979a44f5f2fea76e0095e47554a79508ec0eebf2642edc679e809534f00c102f5e120959d130032b3c31e17a5305b99073a8961acfacba1cc069af697f99bc90c06924c700f0d05d20dfcfd4165f3aacb6349d2ff90ad6ef19e33a1ab9e9ee74185ed361a6ff589f1d12ff02f410b144e73503b755e6acabbfc783375868b37ec74923d2c8fe551c1d059a278308a00b047dca6bda2599425b47499adc6587b2e9cd8e2be24f52cb270a1745159d8c3d916da81bd4ecd08f22f6f15014ee351c321d7edadce8d880f0f661600df6f7bb8f05425739e568ab837ac4c6c3465721867cce128cb261a79cec322dd97b58659f1299c2c13213e56116e41301c7d9c1f5f74aa0ce13d053d120984312e49d58de71e2d91e567db200847f3b1f2eec4a75345ef191cfacc5919d56c47fdc11d3fde5bd9e31adbf6b9432f1b9b61739f216fcdc8f8fcfb45f376a74758d05182cd7ead634e4b11f72efeab6f663b9b8467dd77b52423fb73e29ef9415fec39b7c777399d85d3e2bf44485a61a4e0a5b3c316cf3035503ee69e15d949440a112a2031d728800cc5e9fd9f573b18238974459c65fea66c741e2b1790be6624153fd21307032f86aad56c036131a1696a394cd7f79675e8df361798daed0dbffb5ca43dbd87ff5c4b8576c26d0e754d59acf717124275ffed52cc4b82bc4e7f838716989dcd29ed0725b1a790226d48142ddfd9c9d83e88a30706d7f403182f21f89018154c7ce26cf42a9545f099c7a33931023409dc4e08116785f2691566789467fdd3492e23f716e85edb8a992e774cd13466d51d3ab3ee671bce0fe8257ce0d4aa90a7ccc59b24acb75f536534fb3afc61ce0c8328c1f2007d35f0a9df9c2a55468c9e0801ea756bfbf2385220ef2fa8e81cd6b08616a68262500f920079acee4c886c2af0f20aed291c7142efc31d20b27e47279d02a7e7fa8ca8a10bce44d78f6f659f43cb75ac6eb94c5d051b66c5cf5911732510acb69bf39072ac7db8acad036cf4e0b38b328fdc507398f7d7c1466aea07e4ae1d65d064e53f0f4e19f4d3cddff4cf84130740d5207296fab223ff8b4be21f19c996531bf17c461bfd44aa6b87170b91a53675ecf551fb70e51a67f5c30b0a6a6bf390ab46cff9335c398537a7a832c8c04913d25e9d8ad8810c34df0c14444e60d5bb71b9125ea4c13dfad092e83e791a0fc55cfe2c65b19c304944ad8909cac846a63b8071bf0a89220a9f5ff1eb03e20a4870f7e398a4437dab25a5bb02de339f31583a36133e1f0df4c20fe18c7ccfe9a17dfb61159fab1cbc0571692646f57194606551a462908bde25cc82398431969359f2e44c9026225f4483899ac7ae14a5b0192886cce2edff6cdef565d454e510fd9881185030df7bdd38bd23c741911bc9205a84b31819986efae6cddeabaccd1b7d08c87393a66ad2643c68ddbf2aa7ff3b5487d6ccd52af2bad29cf485cd0784bd5ad67f58c53c40e16fe631a93e1152eab54d482512d7eff51f569fe12e60af208429a63a735bd7ad979595950bcbc020ce2111ff1999f208e91b69f01875ddeef1267c74ab07d30f2b9b458fe1f3d8752d4e5e41a45585c19fe5fdf55d8ca6c55814f84b9b56147b9e09fc6b77fca1966e5c2d0c3150e453d9b219c6927abbf168ad500f5374c9df4a956ad3eba7b16610edf67445bd53d246f45ae3acc0e7d5aa5cef5f0249daa8f5543b84aedc8403d27066e57cbeed4c957400239a06ee023a17b665cafac61d551c0c66c745109fa8fac54e8d57e80839bf2eb47abd9d1c002d91e3da97df9687e975b6963965bc88c71d5b2305d061b807de8a2de3e45c406fee9c9c2e4c75dfe339bb11c0980769d89f2bf5c8a935c2137174290a61c683ad25096b7db1e7e9bd63f5b19345ee2fd233ab0e412bdc7d2ba8acd5d0fc32b7b8d335eea4e5d42802d5005324775a250d13c12f068efa0abd308bf5cee92a609e2378b9aa1890dc0a41e19608d366ce9b7121d0c2fdccae66ca457f5a4b4f1136ed3941105cf8a81822ff721423ce401d7e9e0a2407b21db3af7a9948a5ddcbd27a36bd8a5adcec01bc9199e8416994a4d6016991a9dc93f93635dd2fc4779c76b3e480a254a84f63b79f64f23114157826b45a8d0aa7a9c1ebe608353071a53895d1fa92d9412e80a49048eb12eec072be1dc1f05461d00c2b0c59e03c59f918ed3faa77995a0c8fa5e32fde0d0cd30d42dc8bf8fd31dbb4481ecc0f69192fca196e97d30156699965129ff22acc5b46c53ea1da6898b5b86910b2cd004ea6a375da05d0a568355aead344d51c50ca8e85a860e15fc8611c88a207e7e1d230a465e8fd6fe7eee04c567e9d58b99e67b8c34640a99f37f76beb70423539679074c5f47db870956243fbc6114f7b1960333606d33319461412183b755ff324f4cc821995dd23335d6343916e71bdc31c2a242e8c435bfac2da071a2e30bd998e8ce061578e0d47d69064be228eb632d3b982f53574f62e5a692a4a0a20e3a9c175778a29246c554d0495c79db9ab416fabbcdb9f4e6510357974516120b0bd4bafd1b067aca959b60b90d9e8ede40eda5ffe59ee97c42ece1cb34fea0dd0472489731dd75206425de81b0f63dc9f0213e50896b67fdb4b15984ddfc02d1e3ae9ed3a9fc67160f0823b7eff4a28899905c3fea8efd6426d7013d508c729215cc0b92b11c6bd672fabaad7aa62afef4bbacfc06ba196a5ba0251c08f790f1f3d4b8cc22ec4029178f55b619d0398236949c41fc435a984edc10ae0d1a70d8232c2436914abb9173158f9126b5fecaa2832188db12014c73de09def3950579c2e614f92ddc8a4e427f514cb9d1301a77c34ffbec134454abbae90d5e4086dcdd769b0f2c405927dae467d68ac5e3dff33b7301371ae30e68a18fc8f3f1043977713e9d26a65ea2b4121f21b0e39b29a556211a13b5201793d52fc316df9bd5570858e348f0c4330039285ac18322b21e5bf4b4dcdaad209a00439de1344945e444ab9c703299fc109cbba3896bae31bdeada80afc802ae340fcad47c8ef868272a1f2f3a91079304efd160704d6c435f46a0385b71ac3ff32e3f3b993a9cbb90f15c42e683eb2fd1f5377745071a3cb6a7400bb64092c9b57315e6c246a13d6da0cbfae15a4eb11ca38abee25a6b35e4cc157ebda060b81885dd19b2a5331bedacc97f18b210803a78a470c8c8219f5f3e72485e38767ecdb93d0851dd25c6947e0faf42c79a4eabcffaa66e72373873e0a9fc7c6071ed891b05ea8ddfc5162e4004959b95ed16443ed5c8deda0ce06b39138086ebdc1d4fe2b290c394ee75c18e2528308c95f495fcdb7aa63fcbfe0393a08837a03f2619a7ccccfb63925c4e36b36c566f2172756b4a9f16bdcefe5bdeff79556519eaff673300b99b77ba0577e7f6872992974994c9d7720a6c3855cd2a04ce230d4980e5ba065f102a71b5a8ddd215d0911064d1afef32d6048cddcf42e6ae4e80a0e12a79147347d9feeb557ae9071e57a2d2d82a04db64cf3bcec9e0b588dfbf75881de1db4b55ec8101f05ec79b2976d3b3d23258c0dca328d69aa9cf3a321c6c216094ad6858ba1573170a95349e618e0d236f57d98a5f5b5a30bf0cf29d5fe82abc7d07c0df4b5b6497173b4638f1e50218ac2ca08baa679950c9dfa79ce160f54d1dc95ee354cfc77f33415d103a1e9da02f6c62f3af65381189113b74e140af7f0a3aba2d1ba8759fa2cdc890c7190a817d5692df428697c137eb87397d891304333e911af74570997b261fb408cefc1f89e4e454c41c102792fbaba841266c7958dfb70de0c440aeb173f492570e83a8407c8a81c249ccaa5cb9adc3f12c11a76e91237c1ce8d1886cb218474a903c9dce027f227896e8c6d62ab209cc8bb19daca693d3ccf765edf91a479072c4645a7e5128b8994cc7a229b93848686901f20ecb92", 0x1000}, {&(0x7f0000000680)="1a33dc8f522662ee6158d7d9b5839571bdb322c1d5c7681701220a319e7bc8ccfb262ba166414e7b8cb47a60612c152f277a16d5", 0x34}], 0x5, &(0x7f0000001a00)=[{0x2c, 0x17, 0x1, "1cd99abee5928082b30d3ac8927ad38e08d7daa8814a87ba43e447c0cc"}, {0x100, 0x10d, 0x9, "658e891f9b1e2d3a7d5035106b0a3657f571c69c56d2807450c1c8e9cd12199dfb627f841a0112fbd257b0afb04d79d2c986aa364fc288409cd62348f3fe1e820ce358e136e81334b971b54f753cdf1dde11807f17b228cf3566985c47854ff27a77c7d002c21831314af8709e879ef6dc7e0ed0bc5d5445a116207a751eb1ff0c21c490f2c73e54daf2aa1e60dd6253294ef4a4753e8aca58cc3bb1e140a297e975045c198aded3c64318db6c4b218e8181c7389d2ae02c693bef2b27e5966db69696dcdcb48126b6d7996d90c6b54ead17208542b2fe517aa3dc9d38f33b75fc7e32bd330a13ae243f7c6d47273d4c95f6"}, {0x54, 0x29, 0x8, "31820baae31574a453b36938beed488db1e659f84eca26a05ae2561f208069e23c0c96e0bf8fc18f7bfd6f62d5450fe5b22bf56d6cc3e2b2c678124c1a6ff7e01c124028370297"}, {0x90, 0x104, 0x0, "ae2b3a2b8183fbaefe78da4ec4f233a6071c22a376d2b76b9eeca659496bcc9bd8a04637eb1143f6227720002e69815482dc6313eda5a0cc6705956c0e8f785a2c2c91c44dcf7603e75a96625d9bea9beb5f249cf6f9505e23027bf76a74aa4305bdbe80bafe710f31d1286403e0e6deec6d9a246a479d625034adb71bd89bd2bbb9"}], 0x210}}, {{&(0x7f0000000700)=@rc={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x8}, 0x80, &(0x7f00000007c0)=[{&(0x7f0000000780)="7afa66bb7c95eb68cb50d3aa16b10e4d8630769c86975447fdaad2be52aaeddaa4c599f363bf3678cffed477df3c9f46baf4b8b44aa2c3ee13126e2775443c", 0x3f}], 0x1, &(0x7f0000001c40)=[{0xa0, 0x108, 0xd5c, "700db68d7faee0cdca44ac78217afdaa45404ca155f24aa061679afb6c1c4957002161faf591f67ba72fa191c9b4a01e1adb39f62b83d45d3edc5f11946912298aeb133d67213238deb4769ca9b6702b45081d4978b0de19cfce54a6e9be24f56254a7a26c8f56837779ae38741c2e065e161b140718ac10277a083d351c75100387f238e28fc6bb3092f73836478b0033"}, {0xf0, 0x112, 0x5, "4a19333b03fab695d5c3d8964dba83bbc58429ac765635781ee6943a92f4210ca79e8f193088c9455333f72d772c0b633949af73cb992b59f7bab561049f698b2b54858b4818bad12ed4e28fe71b0e3cb46a0dbb1953c7e0ab8f4db83289a462bf8648fb86ee748704eb0627998f7c84ddbcab91259c84bcdaccfb1c28f40891416fec92cca7751cae3d80397b236d117d10e0c09d0a695920e73e1fa8610127ef5bef54fb0170fb597694651169d4bd1fa056f98e27fa4ee8837706e464d422e35f8b6936a3575538b96f90fb2c0ff68ca880f36c819abe29efc2bdd931a3b3dab9f7"}, {0x60, 0x101, 0x6, "17439dabb408d4e0aff02e4b814d5b6294d0d92f23478a8122aa486332dddec8014ae0f738bed3076a004c02e35351f17ae6147f12549fb05db1cbdb7b827fd57d5346a99d97e078538a443cbda7a1707de9"}], 0x1f0}}], 0x2, 0x40044)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r6, 0xc1105517, &(0x7f0000000140)={{0x5, 0x6, 0xe7a, 0xfffffff7, 'syz1\x00', 0x4}, 0x5, 0x10, 0xa, r7, 0x4, 0x7, 'syz1\x00', &(0x7f0000000100)=['(%%%\x00', '\x00', '/dev/video#\x00', '!:\f.\x00'], 0x17})

0s ago: executing program 2 (id=179):
r0 = fsopen(&(0x7f00000000c0)='exfat\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='iocharset', &(0x7f0000000180)='iocharset', 0x0)
r1 = syz_io_uring_setup(0x1f1c, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000000200)=ANY=[@ANYRESOCT=0x0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r4, 0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r1, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
close(r0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newlink={0x30, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2b94}, [@IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0xfa}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x801}, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:58863' (ED25519) to the list of known hosts.
[   33.283163][ T5326] cgroup: Unknown subsys name 'net'
[   33.562698][ T5326] cgroup: Unknown subsys name 'cpuset'
[   33.569052][ T5326] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   34.812588][ T5326] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   36.656999][ T5349] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   36.659684][ T5349] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   36.662058][ T5349] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   36.662207][ T5352] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   36.665493][ T5349] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   36.670734][ T5349] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   36.674757][ T5351] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   36.677843][ T5351] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   36.680911][ T5356] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   36.680959][ T5351] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   36.683918][ T5356] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   36.685612][ T5351] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   36.690614][ T5351] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   36.694124][   T65] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   36.696057][ T5351] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   36.699668][ T5349] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   36.702197][ T5349] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   36.706137][ T5360] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   36.709417][ T5360] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   36.712230][ T5360] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   36.723587][   T65] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   36.734442][   T65] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   36.737387][   T65] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   36.739491][   T65] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   36.885020][ T5345] chnl_net:caif_netlink_parms(): no params data found
[   36.890536][ T5346] chnl_net:caif_netlink_parms(): no params data found
[   36.957091][ T5354] chnl_net:caif_netlink_parms(): no params data found
[   36.964856][ T5353] chnl_net:caif_netlink_parms(): no params data found
[   37.054366][ T5346] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.056789][ T5346] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.058791][ T5346] bridge_slave_0: entered allmulticast mode
[   37.060862][ T5346] bridge_slave_0: entered promiscuous mode
[   37.065888][ T5346] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.068691][ T5346] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.071295][ T5346] bridge_slave_1: entered allmulticast mode
[   37.073736][ T5346] bridge_slave_1: entered promiscuous mode
[   37.090869][ T5345] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.092912][ T5345] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.094832][ T5345] bridge_slave_0: entered allmulticast mode
[   37.096922][ T5345] bridge_slave_0: entered promiscuous mode
[   37.157273][ T5345] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.159415][ T5345] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.161544][ T5345] bridge_slave_1: entered allmulticast mode
[   37.163535][ T5345] bridge_slave_1: entered promiscuous mode
[   37.200976][ T5346] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   37.216283][ T5354] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.218375][ T5354] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.220691][ T5354] bridge_slave_0: entered allmulticast mode
[   37.223412][ T5354] bridge_slave_0: entered promiscuous mode
[   37.236899][ T5346] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   37.249325][ T5354] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.251192][ T5354] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.253024][ T5354] bridge_slave_1: entered allmulticast mode
[   37.255022][ T5354] bridge_slave_1: entered promiscuous mode
[   37.267054][ T5345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   37.286395][ T5353] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.288175][ T5353] bridge0: port 1(bridge_slave_0) entered disabled state
[   37.290107][ T5353] bridge_slave_0: entered allmulticast mode
[   37.292091][ T5353] bridge_slave_0: entered promiscuous mode
[   37.303774][ T5354] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   37.308109][ T5345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   37.312923][ T5346] team0: Port device team_slave_0 added
[   37.314706][ T5353] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.316783][ T5353] bridge0: port 2(bridge_slave_1) entered disabled state
[   37.318667][ T5353] bridge_slave_1: entered allmulticast mode
[   37.320624][ T5353] bridge_slave_1: entered promiscuous mode
[   37.331280][ T5354] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   37.363231][ T5346] team0: Port device team_slave_1 added
[   37.374065][ T5353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   37.385498][ T5354] team0: Port device team_slave_0 added
[   37.388635][ T5345] team0: Port device team_slave_0 added
[   37.398956][ T5353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   37.402160][ T5354] team0: Port device team_slave_1 added
[   37.404513][ T5345] team0: Port device team_slave_1 added
[   37.421807][ T5346] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.423522][ T5346] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.430810][ T5346] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.471586][ T5346] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.473453][ T5346] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.480110][ T5346] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.491325][ T5354] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.493172][ T5354] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.499887][ T5354] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.504115][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.506734][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.515724][ T5345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.522184][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.523998][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.530654][ T5345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.535379][ T5353] team0: Port device team_slave_0 added
[   37.537314][ T5354] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.539117][ T5354] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.546779][ T5354] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.554738][ T5353] team0: Port device team_slave_1 added
[   37.615533][ T5353] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.617359][ T5353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.624007][ T5353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.627930][ T5353] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.629934][ T5353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.636438][ T5353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.641489][ T5346] hsr_slave_0: entered promiscuous mode
[   37.645536][ T5346] hsr_slave_1: entered promiscuous mode
[   37.664002][ T5345] hsr_slave_0: entered promiscuous mode
[   37.666670][ T5345] hsr_slave_1: entered promiscuous mode
[   37.668662][ T5345] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   37.670767][ T5345] Cannot create hsr debugfs directory
[   37.674394][ T5354] hsr_slave_0: entered promiscuous mode
[   37.677360][ T5354] hsr_slave_1: entered promiscuous mode
[   37.680352][ T5354] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   37.682491][ T5354] Cannot create hsr debugfs directory
[   37.740898][ T5353] hsr_slave_0: entered promiscuous mode
[   37.742813][ T5353] hsr_slave_1: entered promiscuous mode
[   37.744532][ T5353] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   37.747287][ T5353] Cannot create hsr debugfs directory
[   37.927009][ T5346] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   37.931646][ T5346] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   37.935490][ T5346] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   37.940248][ T5346] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   37.961168][ T5353] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   37.964515][ T5353] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   37.968027][ T5353] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   37.971039][ T5353] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   37.997513][ T5354] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   38.001422][ T5354] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   38.005006][ T5354] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   38.013568][ T5354] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   38.043386][ T5345] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   38.056978][ T5345] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   38.069821][ T5345] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   38.077544][ T5346] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.080568][ T5345] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   38.102436][ T5353] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.108814][ T5346] 8021q: adding VLAN 0 to HW filter on device team0
[   38.118812][ T5353] 8021q: adding VLAN 0 to HW filter on device team0
[   38.122587][   T69] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.124630][   T69] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.133893][   T75] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.135846][   T75] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.140607][ T1136] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.142524][ T1136] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.153687][   T75] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.155668][   T75] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.176872][ T5354] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.200221][ T5354] 8021q: adding VLAN 0 to HW filter on device team0
[   38.208364][ T1019] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.210475][ T1019] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.222734][   T69] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.225395][   T69] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.252685][ T5345] 8021q: adding VLAN 0 to HW filter on device bond0
[   38.274216][ T5345] 8021q: adding VLAN 0 to HW filter on device team0
[   38.280429][   T69] bridge0: port 1(bridge_slave_0) entered blocking state
[   38.282378][   T69] bridge0: port 1(bridge_slave_0) entered forwarding state
[   38.296727][   T69] bridge0: port 2(bridge_slave_1) entered blocking state
[   38.299275][   T69] bridge0: port 2(bridge_slave_1) entered forwarding state
[   38.326418][ T5346] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.350490][ T5346] veth0_vlan: entered promiscuous mode
[   38.356005][ T5346] veth1_vlan: entered promiscuous mode
[   38.367473][ T5353] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.379344][ T5354] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.387832][ T5346] veth0_macvtap: entered promiscuous mode
[   38.397355][ T5346] veth1_macvtap: entered promiscuous mode
[   38.407941][ T5346] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.411772][ T5346] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.430964][ T5345] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.437638][ T5353] veth0_vlan: entered promiscuous mode
[   38.441484][ T5346] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.443876][ T5346] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.446357][ T5346] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.448692][ T5346] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.456505][ T5354] veth0_vlan: entered promiscuous mode
[   38.461557][ T5354] veth1_vlan: entered promiscuous mode
[   38.469272][ T5353] veth1_vlan: entered promiscuous mode
[   38.504088][ T5345] veth0_vlan: entered promiscuous mode
[   38.513394][ T5354] veth0_macvtap: entered promiscuous mode
[   38.516162][ T5353] veth0_macvtap: entered promiscuous mode
[   38.521716][ T5353] veth1_macvtap: entered promiscuous mode
[   38.526984][ T5345] veth1_vlan: entered promiscuous mode
[   38.527199][   T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.530647][   T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.533892][ T5354] veth1_macvtap: entered promiscuous mode
[   38.547009][ T5345] veth0_macvtap: entered promiscuous mode
[   38.557651][ T5345] veth1_macvtap: entered promiscuous mode
[   38.565644][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.569054][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.572548][ T5353] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.576642][ T5354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.579459][ T5354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.582004][ T5354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.584671][ T5354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.588327][ T5354] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.591548][ T5354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.594253][ T5354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.597597][ T5354] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.604938][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.608101][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.610582][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.613244][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.616437][ T5353] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.620004][ T5354] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.622224][ T5354] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.624945][ T5354] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.627542][ T5354] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.630953][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.633539][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.639909][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.643134][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.646337][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.649626][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.652790][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.656804][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.661286][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.665385][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.668212][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.670762][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.673427][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.676311][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.679679][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.683955][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.691304][ T5353] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.692780][ T5346] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   38.694313][ T5353] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.701382][ T5353] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.704156][ T5353] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.723812][ T5345] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.726474][ T5345] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.728818][ T5345] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.731073][ T5345] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.747404][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.749696][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.756145][ T5356] Bluetooth: hci3: command tx timeout
[   38.756150][   T65] Bluetooth: hci2: command tx timeout
[   38.756234][ T5352] Bluetooth: hci1: command tx timeout
[   38.756528][ T5360] Bluetooth: hci0: command tx timeout
[   38.797779][ T1185] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.803839][ T1185] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.819216][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.821628][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.849321][ T1185] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.851351][ T1185] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.858523][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.861526][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.892579][   T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.900398][   T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   39.035222][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.035313][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.037602][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.208170][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   39.401536][   T69] Bluetooth: hci4: Frame reassembly failed (-84)
[   39.412924][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   39.415777][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   39.913729][ T5420] fuse: Unknown parameter '�d�'
[   40.159241][ T5406] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   40.164864][ T5410] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   40.405930][ T1019] Bluetooth: hci5: Frame reassembly failed (-84)
[   40.841014][ T5360] Bluetooth: hci2: command tx timeout
[   40.845279][ T5360] Bluetooth: hci3: command tx timeout
[   40.846745][ T5360] Bluetooth: hci0: command tx timeout
[   40.848169][ T5360] Bluetooth: hci1: command tx timeout
[   40.967658][   T75] Bluetooth: hci6: Frame reassembly failed (-84)
[   40.969845][   T75] Bluetooth: hci6: Frame reassembly failed (-84)
[   40.972171][   T12] Bluetooth: hci6: Frame reassembly failed (-84)
[   41.258862][   T69] Bluetooth: hci7: Frame reassembly failed (-84)
[   41.325742][ T5352] Bluetooth: hci4: command 0x1003 tx timeout
[   41.326118][   T65] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   41.537239][ T5438] input: syz0 as /devices/virtual/input/input5
[   41.615570][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   41.625704][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   41.665767][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   42.355574][   T65] Bluetooth: hci5: command 0x1003 tx timeout
[   42.355656][ T5356] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   42.792214][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   42.925484][ T5356] Bluetooth: hci0: command tx timeout
[   42.925600][   T65] Bluetooth: hci1: command tx timeout
[   42.927482][ T5356] Bluetooth: hci3: command tx timeout
[   42.929526][   T65] Bluetooth: hci2: command tx timeout
[   42.995285][ T4794] Bluetooth: hci6: Opcode 0x1003 failed: -110
[   42.995692][ T5352] Bluetooth: hci6: command 0x1003 tx timeout
[   43.326117][ T5360] Bluetooth: hci7: Opcode 0x1003 failed: -110
[   43.467290][ T1136] Bluetooth: hci4: Frame reassembly failed (-84)
[   43.639156][ T5451] netlink: 'syz.0.11': attribute type 2 has an invalid length.
[   43.839207][   T75] Bluetooth: hci5: Frame reassembly failed (-84)
[   44.450291][ T5466] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14'.
[   44.452530][ T5466] netlink: 36 bytes leftover after parsing attributes in process `syz.0.14'.
[   44.457380][ T5466] vlan2: entered allmulticast mode
[   44.458834][ T5466] syz_tun: entered allmulticast mode
[   45.005477][ T5352] Bluetooth: hci3: command tx timeout
[   45.006955][ T5352] Bluetooth: hci1: command tx timeout
[   45.008654][   T65] Bluetooth: hci0: command tx timeout
[   45.008729][ T5356] Bluetooth: hci2: command tx timeout
[   45.080208][ T5464] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   45.476049][ T5356] Bluetooth: hci4: command 0x1003 tx timeout
[   45.476105][ T4794] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   45.570959][ T5472] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[   45.574921][ T5472] netdevsim netdevsim1 netdevsim0: left promiscuous mode
[   45.792420][ T5474] overlayfs: failed to resolve './file1': -2
[   45.875599][ T5360] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   46.147453][   T69] Bluetooth: hci4: Frame reassembly failed (-84)
[   46.189532][ T5484] netlink: 'syz.3.20': attribute type 3 has an invalid length.
[   46.191629][ T5484] netlink: 'syz.3.20': attribute type 3 has an invalid length.
[   46.217256][ T5484] netlink: 'syz.3.20': attribute type 3 has an invalid length.
[   46.219378][ T5484] netlink: 'syz.3.20': attribute type 3 has an invalid length.
[   46.262130][ T5484] netlink: 'syz.3.20': attribute type 3 has an invalid length.
[   46.264122][ T5484] netlink: 'syz.3.20': attribute type 3 has an invalid length.
[   46.411983][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[   46.665916][   T57] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   46.687759][   T69] Bluetooth: hci6: Frame reassembly failed (-84)
[   46.877450][   T57] usb 8-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[   46.879757][   T57] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   46.882353][   T57] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 2
[   46.884634][   T57] usb 8-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   46.890016][   T57] usb 8-1: New USB device found, idVendor=0525, idProduct=a402, bcdDevice= 0.40
[   46.892435][   T57] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   46.894513][   T57] usb 8-1: Product: syz
[   46.895699][   T57] usb 8-1: Manufacturer: syz
[   46.896925][   T57] usb 8-1: SerialNumber: syz
[   46.902700][   T57] cdc_ncm 8-1:1.0: skipping garbage
[   46.904186][   T57] cdc_ncm 8-1:1.0: skipping garbage
[   46.906483][   T57] cdc_ncm 8-1:1.0: invalid descriptor buffer length
[   46.908214][   T57] cdc_ncm 8-1:1.0: CDC Union missing and no IAD found
[   46.909985][   T57] cdc_ncm 8-1:1.0: bind() failure
[   47.125021][ T5493] input: syz0 as /devices/virtual/input/input6
[   47.303341][   T57] usb 8-1: USB disconnect, device number 2
[   48.035244][ T5360] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   48.092062][   T69] Bluetooth: hci4: Frame reassembly failed (-84)
[   48.363412][ T5509] fuse: Unknown parameter '�d�'
[   48.435303][ T4794] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   48.750599][   T69] Bluetooth: hci5: Frame reassembly failed (-84)
[   48.754467][   T69] Bluetooth: hci5: Frame reassembly failed (-84)
[   48.756539][ T5356] Bluetooth: hci6: Opcode 0x1003 failed: -110
[   48.757250][ T5360] Bluetooth: hci6: command 0x1003 tx timeout
[   49.191955][ T5507] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   50.125236][ T5352] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   50.254712][ T1019] Bluetooth: hci4: Frame reassembly failed (-84)
[   50.616830][   T75] Bluetooth: hci6: Frame reassembly failed (-84)
[   50.755856][ T4794] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   51.051646][   T75] Bluetooth: hci5: Frame reassembly failed (-84)
[   52.275964][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   52.590799][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[   52.675306][ T4794] Bluetooth: hci6: command 0x1003 tx timeout
[   52.680344][ T5352] Bluetooth: hci6: Opcode 0x1003 failed: -110
[   52.995689][ T5352] Bluetooth: hci5: command 0x1003 tx timeout
[   52.997865][ T5360] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   52.998492][ T5557] fuse: Unknown parameter '�d�'
[   53.515255][ T1284] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   53.676745][ T1284] usb 6-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[   53.679075][ T1284] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   53.681571][ T1284] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[   53.682520][ T5553] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   53.683785][ T1284] usb 6-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[   53.691484][ T1284] usb 6-1: New USB device found, idVendor=0525, idProduct=a402, bcdDevice= 0.40
[   53.693810][ T1284] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   53.695981][ T1284] usb 6-1: Product: syz
[   53.697069][ T1284] usb 6-1: Manufacturer: syz
[   53.698294][ T1284] usb 6-1: SerialNumber: syz
[   53.701355][ T1284] cdc_ncm 6-1:1.0: skipping garbage
[   53.702755][ T1284] cdc_ncm 6-1:1.0: skipping garbage
[   53.704071][ T1284] cdc_ncm 6-1:1.0: invalid descriptor buffer length
[   53.705865][ T1284] cdc_ncm 6-1:1.0: CDC Union missing and no IAD found
[   53.707612][ T1284] cdc_ncm 6-1:1.0: bind() failure
[   53.922192][ T5560] input: syz0 as /devices/virtual/input/input7
[   54.036040][   T63] usb 6-1: USB disconnect, device number 2
[   54.596013][ T5360] Bluetooth: hci4: command 0x1003 tx timeout
[   54.598275][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   55.140260][   T75] Bluetooth: hci4: Frame reassembly failed (-84)
[   56.011652][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[   56.013942][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[   56.016009][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[   56.017893][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[   56.019850][   T12] Bluetooth: hci5: Frame reassembly failed (-84)
[   56.554173][ T5596] fuse: Unknown parameter '�d�'
[   57.085283][ T5356] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   57.085348][ T5360] Bluetooth: hci4: command 0x1003 tx timeout
[   57.272894][ T5594] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   58.037925][ T5360] Bluetooth: hci5: command 0x1003 tx timeout
[   58.040084][ T5352] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   58.112581][ T1019] Bluetooth: hci4: Frame reassembly failed (-84)
[   58.696533][ T5597] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   59.043101][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[   59.517840][   T75] Bluetooth: hci6: Frame reassembly failed (-84)
[   60.125452][ T4794] Bluetooth: hci4: command 0x1003 tx timeout
[   60.125469][ T5352] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   60.849999][ T5352] Bluetooth: hci5: command 0x1003 tx timeout
[   60.852284][ T5360] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   60.956906][ T5618] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   60.994071][ T5618] batman_adv: batadv0: Removing interface: batadv_slave_1
[   61.070177][ T5620] netlink: 8 bytes leftover after parsing attributes in process `syz.1.53'.
[   61.072635][ T5620] netlink: 36 bytes leftover after parsing attributes in process `syz.1.53'.
[   61.089070][ T5620] vlan2: entered allmulticast mode
[   61.090561][ T5620] syz_tun: entered allmulticast mode
[   61.578077][   T11] Bluetooth: hci4: Frame reassembly failed (-84)
[   61.583157][ T5352] Bluetooth: hci6: command 0x1003 tx timeout
[   61.675241][ T5356] Bluetooth: hci6: Opcode 0x1003 failed: -110
[   63.555287][ T5360] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   63.759980][ T5629] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   64.491496][ T5637] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   64.505281][ T5634] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   64.579094][ T4794] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   64.588935][ T4794] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   64.591357][ T4794] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   64.593965][ T4794] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   64.662682][   T69] Bluetooth: hci5: Frame reassembly failed (-84)
[   64.731511][ T5352] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   64.734559][ T5352] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   64.914687][ T5647] chnl_net:caif_netlink_parms(): no params data found
[   64.994047][ T5647] bridge0: port 1(bridge_slave_0) entered blocking state
[   64.996432][ T5647] bridge0: port 1(bridge_slave_0) entered disabled state
[   64.998454][ T5647] bridge_slave_0: entered allmulticast mode
[   65.000574][ T5647] bridge_slave_0: entered promiscuous mode
[   65.003594][ T5647] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.006303][ T5647] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.008436][ T5647] bridge_slave_1: entered allmulticast mode
[   65.010595][ T5647] bridge_slave_1: entered promiscuous mode
[   65.045266][ T5647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.049099][ T5647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.077996][ T5647] team0: Port device team_slave_0 added
[   65.113548][ T5647] team0: Port device team_slave_1 added
[   65.212889][ T5647] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.214706][ T5647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.221597][ T5647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.225881][ T5647] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.227618][ T5647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.235080][ T5647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.266628][ T5647] hsr_slave_0: entered promiscuous mode
[   65.306510][ T5647] hsr_slave_1: entered promiscuous mode
[   65.383152][ T5647] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   65.386383][ T5647] Cannot create hsr debugfs directory
[   65.511248][   T75] Bluetooth: hci6: Frame reassembly failed (-84)
[   65.582293][ T5647] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.771066][ T5647] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.896531][ T5647] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   65.990449][ T5647] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   66.168083][ T5647] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   66.171963][ T5647] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   66.175314][ T5647] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   66.178294][ T5647] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   66.231880][ T5647] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.264056][ T5647] 8021q: adding VLAN 0 to HW filter on device team0
[   66.289398][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.291271][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.294336][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.296302][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.327725][ T5647] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   66.333753][ T5647] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   66.515480][ T5647] 8021q: adding VLAN 0 to HW filter on device batadv0
[   66.533917][ T5647] veth0_vlan: entered promiscuous mode
[   66.543549][ T5647] veth1_vlan: entered promiscuous mode
[   66.557731][ T5647] veth0_macvtap: entered promiscuous mode
[   66.564791][ T5647] veth1_macvtap: entered promiscuous mode
[   66.573110][ T5647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.575891][ T5647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.578399][ T5647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.581067][ T5647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.583688][ T5647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.588761][ T5647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.591363][ T5647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   66.594085][ T5647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.596715][ T5360] Bluetooth: hci5: command 0x1003 tx timeout
[   66.599500][ T5356] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   66.604321][ T5647] batman_adv: batadv0: Interface activated: batadv_slave_0
[   66.609563][ T5647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.612294][ T5647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.614869][ T5647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.617793][ T5647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.620215][ T5647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.622896][ T5647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.626539][ T5647] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.629738][ T5647] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   66.632062][ T5647] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   66.634191][ T5647] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   66.636712][ T5647] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.752114][   T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.754689][   T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   66.771233][ T5356] Bluetooth: hci4: command tx timeout
[   66.774491][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   66.777662][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.290017][   T75] Bluetooth: hci5: Frame reassembly failed (-84)
[   67.606574][ T5352] Bluetooth: hci6: Opcode 0x1003 failed: -110
[   67.689424][ T5675] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   67.784180][ T5688] FAULT_INJECTION: forcing a failure.
[   67.784180][ T5688] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   67.788407][ T5688] CPU: 2 UID: 0 PID: 5688 Comm: syz.3.66 Not tainted 6.12.0-rc3-syzkaller-00087-gc964ced77262 #0
[   67.791616][ T5688] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   67.794182][ T5688] Call Trace:
[   67.795240][ T5688]  <TASK>
[   67.796157][ T5688]  dump_stack_lvl+0x16c/0x1f0
[   67.797648][ T5688]  should_fail_ex+0x497/0x5b0
[   67.799146][ T5688]  _copy_from_user+0x30/0xf0
[   67.800608][ T5688]  get_compat_msghdr+0xa8/0x170
[   67.802303][ T5688]  ? __pfx_get_compat_msghdr+0x10/0x10
[   67.804023][ T5688]  ? __pfx_lock_release+0x10/0x10
[   67.805614][ T5688]  ? find_held_lock+0x2d/0x110
[   67.807220][ T5688]  ___sys_sendmsg+0x1b0/0x1e0
[   67.808712][ T5688]  ? __up_read+0x1fb/0x760
[   67.810023][ T5688]  ? __pfx____sys_sendmsg+0x10/0x10
[   67.811443][ T5688]  ? handle_mm_fault+0x497/0xaa0
[   67.812726][ T5688]  ? __pfx___might_resched+0x10/0x10
[   67.814140][ T5688]  ? __sys_sendmmsg+0x2bd/0x450
[   67.815567][ T5688]  __sys_sendmmsg+0x2a5/0x450
[   67.816716][ T5688]  ? __pfx___sys_sendmmsg+0x10/0x10
[   67.818012][ T5688]  ? vfs_write+0x14d/0x1140
[   67.819300][ T5688]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   67.820928][ T5688]  ? fput+0x30/0x390
[   67.821947][ T5688]  ? ksys_write+0x1ad/0x260
[   67.823017][ T5688]  ? __pfx_ksys_write+0x10/0x10
[   67.824152][ T5688]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[   67.825469][ T5688]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   67.827018][ T5688]  __do_fast_syscall_32+0x73/0x120
[   67.828225][ T5688]  do_fast_syscall_32+0x32/0x80
[   67.829357][ T5688]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   67.830814][ T5688] RIP: 0023:0xf7f15579
[   67.831772][ T5688] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   67.836149][ T5688] RSP: 002b:00000000f565456c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[   67.838009][ T5688] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 0000000020001380
[   67.839806][ T5688] RDX: 00000000fffffeed RSI: 0000000000000000 RDI: 0000000000000000
[   67.841710][ T5688] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   67.843934][ T5688] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   67.846064][ T5688] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   67.848181][ T5688]  </TASK>
[   68.603761][ T5696] workqueue: Failed to create a rescuer kthread for wq "nfc2_nci_tx_wq": -EINTR
[   68.835242][ T5352] Bluetooth: hci4: command tx timeout
[   69.159689][   T11] Bluetooth: hci6: Frame reassembly failed (-84)
[   69.315222][ T5360] Bluetooth: hci5: command 0x1003 tx timeout
[   69.335244][ T5356] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   69.440624][ T5691] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   69.560082][ T5716] vivid-003: disconnect
[   69.563958][ T5715] vivid-003: reconnect
[   69.900714][ T5731] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   69.995205][   T57] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   70.155215][   T57] usb 6-1: Using ep0 maxpacket: 32
[   70.159438][   T57] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0x82 has invalid maxpacket 1023
[   70.162348][   T57] usb 6-1: config 1 interface 0 altsetting 3 bulk endpoint 0x3 has invalid maxpacket 32
[   70.167836][   T57] usb 6-1: config 1 interface 0 has no altsetting 0
[   70.172722][   T57] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   70.175420][   T57] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   70.177912][   T57] usb 6-1: Product: 㐉
[   70.185166][   T57] usb 6-1: Manufacturer:  
[   70.186287][   T57] usb 6-1: SerialNumber: ࡡ
[   70.189377][ T5724] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   70.191213][ T5724] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   70.688653][ T1376] ieee802154 phy0 wpan0: encryption failed: -22
[   70.690625][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[   70.810012][   T57] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -71
[   70.829260][   T57] usb 6-1: USB disconnect, device number 3
[   70.926729][ T5356] Bluetooth: hci4: command tx timeout
[   71.156103][ T5352] Bluetooth: hci6: Opcode 0x1003 failed: -110
[   71.743316][ T1185] Bluetooth: hci5: Frame reassembly failed (-84)
[   71.906829][ T5765] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   72.252692][ T5776] netlink: 4 bytes leftover after parsing attributes in process `syz.1.89'.
[   72.995220][ T5356] Bluetooth: hci4: command tx timeout
[   73.079419][ T5792] syz.2.93 uses obsolete (PF_INET,SOCK_PACKET)
[   73.194170][ T5794] netlink: 48 bytes leftover after parsing attributes in process `syz.1.94'.
[   73.555264][ T5352] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   73.670019][ T5807] netlink: 4 bytes leftover after parsing attributes in process `syz.3.98'.
[   73.826056][ T5800] netlink: 8 bytes leftover after parsing attributes in process `syz.1.97'.
[   73.828726][ T5800] netlink: 36 bytes leftover after parsing attributes in process `syz.1.97'.
[   74.043650][ T5813] fuse: Unknown parameter '�d�'
[   74.412564][ T1136] Bluetooth: hci5: Frame reassembly failed (-84)
[   74.542470][ T5808] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   75.095473][ T5831] netlink: 'syz.0.104': attribute type 3 has an invalid length.
[   75.097345][ T5831] netlink: 'syz.0.104': attribute type 3 has an invalid length.
[   75.191275][ T5831] netlink: 'syz.0.104': attribute type 3 has an invalid length.
[   75.193855][ T5831] netlink: 'syz.0.104': attribute type 3 has an invalid length.
[   75.269264][ T5831] netlink: 'syz.0.104': attribute type 3 has an invalid length.
[   75.277892][ T5831] netlink: 'syz.0.104': attribute type 3 has an invalid length.
[   75.668851][ T5843] netlink: 4 bytes leftover after parsing attributes in process `syz.0.107'.
[   75.810617][    T9] cfg80211: failed to load regulatory.db
[   76.008604][   T39] audit: type=1326 audit(1729170454.854:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5848 comm="syz.0.110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fdf579 code=0x7ffc0000
[   76.014688][   T39] audit: type=1326 audit(1729170454.864:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5848 comm="syz.0.110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fdf579 code=0x7ffc0000
[   76.021296][   T39] audit: type=1326 audit(1729170454.864:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5848 comm="syz.0.110" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fdf579 code=0x7ffc0000
[   76.035197][   T39] audit: type=1326 audit(1729170454.864:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5848 comm="syz.0.110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fdf579 code=0x7ffc0000
[   76.055161][   T39] audit: type=1326 audit(1729170454.864:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5848 comm="syz.0.110" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fdf579 code=0x7ffc0000
[   76.060250][   T39] audit: type=1326 audit(1729170454.864:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5848 comm="syz.0.110" exe="/syz-executor" sig=0 arch=40000003 syscall=347 compat=1 ip=0xf7fdf579 code=0x7ffc0000
[   76.360257][   T39] audit: type=1326 audit(1729170455.214:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5848 comm="syz.0.110" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fdf579 code=0x7ffc0000
[   76.367764][   T39] audit: type=1326 audit(1729170455.214:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5848 comm="syz.0.110" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fdf5a7 code=0x7ffc0000
[   76.373009][   T39] audit: type=1326 audit(1729170455.214:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5848 comm="syz.0.110" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7fdf579 code=0x7ffc0000
[   76.378342][   T39] audit: type=1326 audit(1729170455.214:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5848 comm="syz.0.110" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7fdf5a7 code=0x7ffc0000
[   76.437347][ T5356] Bluetooth: hci5: command 0x1003 tx timeout
[   76.439727][ T5352] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   76.534739][ T5860] fuse: Unknown parameter '�d�'
[   76.700651][ T5864] netlink: 4 bytes leftover after parsing attributes in process `syz.3.116'.
[   76.785326][ T5867] netlink: 4 bytes leftover after parsing attributes in process `syz.3.117'.
[   76.787651][ T5867] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   76.789722][ T5867] batman_adv: batadv0: Removing interface: batadv_slave_0
[   76.802810][ T5867] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   76.804858][ T5867] batman_adv: batadv0: Removing interface: batadv_slave_1
[   77.003429][ T5857] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   77.364806][ T5876] netlink: 12 bytes leftover after parsing attributes in process `syz.3.119'.
[   77.507014][ T5878] FAULT_INJECTION: forcing a failure.
[   77.507014][ T5878] name failslab, interval 1, probability 0, space 0, times 1
[   77.524470][ T5878] CPU: 0 UID: 0 PID: 5878 Comm: syz.3.120 Not tainted 6.12.0-rc3-syzkaller-00087-gc964ced77262 #0
[   77.527201][ T5878] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.529961][ T5878] Call Trace:
[   77.530831][ T5878]  <TASK>
[   77.531606][ T5878]  dump_stack_lvl+0x16c/0x1f0
[   77.532827][ T5878]  should_fail_ex+0x497/0x5b0
[   77.534056][ T5878]  ? fs_reclaim_acquire+0xae/0x150
[   77.535389][ T5878]  should_failslab+0xc2/0x120
[   77.536602][ T5878]  __kmalloc_noprof+0xcb/0x410
[   77.537850][ T5878]  ieee80211_assign_beacon+0x3b3/0x1d80
[   77.539281][ T5878]  ? genl_rcv_msg+0x565/0x800
[   77.540513][ T5878]  ? netlink_rcv_skb+0x165/0x410
[   77.541818][ T5878]  ? netlink_unicast+0x53c/0x7f0
[   77.543100][ T5878]  ? __ieee80211_link_copy_chanctx_to_vlans+0x1bc/0x5a0
[   77.544873][ T5878]  ieee80211_start_ap+0x1e8a/0x3120
[   77.546230][ T5878]  ? __pfx_ieee80211_start_ap+0x10/0x10
[   77.547659][ T5878]  ? __sanitizer_cov_trace_pc+0x18/0x70
[   77.549088][ T5878]  ? cfg80211_find_elem_match+0x156/0x190
[   77.550575][ T5878]  nl80211_start_ap+0x2ca5/0x4950
[   77.551896][ T5878]  ? __pfx_nl80211_start_ap+0x10/0x10
[   77.553279][ T5878]  ? ref_tracker_alloc+0x2ef/0x5b0
[   77.554515][ T5878]  ? __pfx_netdev_run_todo+0x10/0x10
[   77.555866][ T5878]  ? __pfx___mutex_lock+0x10/0x10
[   77.557717][ T5878]  ? nl80211_pre_doit+0x1b0/0xb10
[   77.559050][ T5878]  genl_family_rcv_msg_doit+0x202/0x2f0
[   77.560473][ T5878]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   77.562059][ T5878]  ? bpf_lsm_capable+0x9/0x10
[   77.563277][ T5878]  ? security_capable+0x7e/0x260
[   77.564560][ T5878]  ? ns_capable+0xd7/0x110
[   77.565731][ T5878]  genl_rcv_msg+0x565/0x800
[   77.566918][ T5878]  ? __pfx_genl_rcv_msg+0x10/0x10
[   77.568213][ T5878]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   77.569590][ T5878]  ? __pfx_nl80211_start_ap+0x10/0x10
[   77.570960][ T5878]  ? __pfx_nl80211_post_doit+0x10/0x10
[   77.572266][ T5878]  netlink_rcv_skb+0x165/0x410
[   77.573475][ T5878]  ? __pfx_genl_rcv_msg+0x10/0x10
[   77.574798][ T5878]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   77.576176][ T5878]  ? down_read+0xc9/0x330
[   77.577301][ T5878]  ? __pfx_down_read+0x10/0x10
[   77.578550][ T5878]  ? netlink_deliver_tap+0x1ae/0xcf0
[   77.579914][ T5878]  genl_rcv+0x28/0x40
[   77.580960][ T5878]  netlink_unicast+0x53c/0x7f0
[   77.582219][ T5878]  ? __pfx_netlink_unicast+0x10/0x10
[   77.583585][ T5878]  ? __phys_addr_symbol+0x30/0x80
[   77.584895][ T5878]  ? __check_object_size+0x488/0x710
[   77.586308][ T5878]  netlink_sendmsg+0x8b8/0xd70
[   77.587554][ T5878]  ? __pfx_netlink_sendmsg+0x10/0x10
[   77.588923][ T5878]  ? lock_acquire+0x2f/0xb0
[   77.590120][ T5878]  ____sys_sendmsg+0x9ae/0xb40
[   77.591350][ T5878]  ? __pfx_____sys_sendmsg+0x10/0x10
[   77.592806][ T5878]  ? get_compat_msghdr+0x11b/0x170
[   77.594195][ T5878]  ? __pfx___lock_acquire+0x10/0x10
[   77.595536][ T5878]  ___sys_sendmsg+0x135/0x1e0
[   77.596762][ T5878]  ? __pfx____sys_sendmsg+0x10/0x10
[   77.598116][ T5878]  ? lock_acquire+0x2f/0xb0
[   77.599291][ T5878]  ? __fget_files+0x40/0x3f0
[   77.600489][ T5878]  ? fdget+0x176/0x210
[   77.601557][ T5878]  __sys_sendmsg+0x117/0x1f0
[   77.602769][ T5878]  ? __pfx___sys_sendmsg+0x10/0x10
[   77.604089][ T5878]  ? __fget_files+0x244/0x3f0
[   77.605316][ T5878]  __do_fast_syscall_32+0x73/0x120
[   77.606650][ T5878]  do_fast_syscall_32+0x32/0x80
[   77.607913][ T5878]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   77.609544][ T5878] RIP: 0023:0xf7f15579
[   77.610611][ T5878] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   77.615533][ T5878] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   77.617678][ T5878] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200001c0
[   77.619722][ T5878] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   77.619960][ T5883] input: syz0 as /devices/virtual/input/input8
[   77.621772][ T5878] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   77.625461][ T5878] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   77.627490][ T5878] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   77.629530][ T5878]  </TASK>
[   77.680165][   T57] kernel read not supported for file /uinput (pid: 57 comm: kworker/2:1)
[   77.953407][ T5896] netlink: 4 bytes leftover after parsing attributes in process `syz.1.125'.
[   78.036972][   T11] Bluetooth: hci5: Frame reassembly failed (-84)
[   78.594350][ T5908] fuse: Unknown parameter '�d�'
[   78.599960][ T5907] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   78.893344][ T5923] 9pnet_virtio: no channels available for device syz
[   79.178418][ T5928] netlink: 4 bytes leftover after parsing attributes in process `syz.2.137'.
[   79.214382][ T5930] netlink: 8 bytes leftover after parsing attributes in process `syz.2.138'.
[   79.216740][ T5930] netlink: 36 bytes leftover after parsing attributes in process `syz.2.138'.
[   79.295893][ T5934] netlink: 'syz.2.140': attribute type 10 has an invalid length.
[   79.298899][ T5934] team0: Device batadv0 is up. Set it down before adding it as a team port
[   79.966860][ T5352] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   80.241342][ T5955] fuse: Unknown parameter '�d�'
[   80.968733][ T5950] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   80.999186][ T5968] netlink: 16 bytes leftover after parsing attributes in process `syz.1.148'.
[   81.033197][ T5968] : entered promiscuous mode
[   81.535883][ T1019] Bluetooth: hci5: Frame reassembly failed (-84)
[   81.568143][ T1136] Bluetooth: hci6: Frame reassembly failed (-84)
[   81.570114][ T1136] Bluetooth: hci6: Frame reassembly failed (-84)
[   81.571774][   T75] Bluetooth: hci6: Frame reassembly failed (-84)
[   81.695087][ T5984] warning: `syz.3.152' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   81.952542][ T5986] netlink: 'syz.2.153': attribute type 10 has an invalid length.
[   82.000599][ T5988] =======================================================
[   82.000599][ T5988] WARNING: The mand mount option has been deprecated and
[   82.000599][ T5988]          and is ignored by this kernel. Remove the mand
[   82.000599][ T5988]          option from the mount to silence this warning.
[   82.000599][ T5988] =======================================================
[   82.012402][ T5988] fuse: Unknown parameter '00000000000000000000'
[   82.325735][ T1136] Bluetooth: hci7: Frame reassembly failed (-84)
[   82.616318][   T75] Bluetooth: hci8: Frame reassembly failed (-84)
[   82.618763][   T75] Bluetooth: hci8: Frame reassembly failed (-84)
[   82.621029][   T75] Bluetooth: hci8: Frame reassembly failed (-84)
[   82.623426][   T75] Bluetooth: hci8: Frame reassembly failed (-84)
[   82.626156][   T75] Bluetooth: hci8: Frame reassembly failed (-84)
[   83.315389][ T5349] Bluetooth: hci5: command 0x1003 tx timeout
[   83.317668][ T5352] Bluetooth: hci5: Opcode 0x1003 failed: -110
[   83.446903][ T6001] netlink: 32 bytes leftover after parsing attributes in process `syz.0.157'.
[   83.556554][ T5356] Bluetooth: hci6: Opcode 0x1003 failed: -110
[   83.590018][ T5356] Bluetooth: hci2: Received unexpected HCI Event 0x00
[   83.617052][ T6005] vivid-001: disconnect
[   83.627698][ T6004] vivid-001: reconnect
[   83.904167][ T6014] fuse: Unknown parameter '�d�'
[   84.355237][ T5360] Bluetooth: hci7: Opcode 0x1003 failed: -110
[   84.442250][ T6011] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   84.522771][ T6025] netlink: 4 bytes leftover after parsing attributes in process `syz.0.165'.
[   84.675258][ T5360] Bluetooth: hci8: command 0x1003 tx timeout
[   84.676629][ T4794] Bluetooth: hci8: Opcode 0x1003 failed: -110
[   84.755378][ T1284] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   84.915299][ T1284] usb 7-1: Using ep0 maxpacket: 16
[   84.919254][ T1284] usb 7-1: config 1 has an invalid descriptor of length 71, skipping remainder of the config
[   84.921879][ T1284] usb 7-1: config 1 has 0 interfaces, different from the descriptor's value: 1
[   84.925814][ T1284] usb 7-1: New USB device found, idVendor=0eef, idProduct=0001, bcdDevice= 0.40
[   84.928129][ T1284] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.930271][ T1284] usb 7-1: Product: ☜萏断鯿⎎緪殘꧃嫏לៈꚁﴍ固죝斈ﲩ䓙敥큑ꇖ橨駳蓅᧡㮱䔎﷯㔛嚴惶浞ౚᎮ屫㳛ㄛ쓉叺鯉莄靚Ὁ砵⌳뼮ڙ鑭
[   84.934963][ T1284] usb 7-1: Manufacturer: Т
[   84.945172][ T1284] usb 7-1: SerialNumber: syz
[   85.184992][ T6037] netlink: 8 bytes leftover after parsing attributes in process `syz.1.169'.
[   85.191580][ T6037] netlink: 12 bytes leftover after parsing attributes in process `syz.1.169'.
[   85.526152][   T30] usb 7-1: USB disconnect, device number 2
[   85.781012][ T1185] Bluetooth: hci5: Frame reassembly failed (-84)
[   85.877896][ T6055] netlink: 4 bytes leftover after parsing attributes in process `syz.1.174'.
[   86.316297][   T11] Bluetooth: hci6: Frame reassembly failed (-84)
[   86.458573][ T6066] vivid-000: =================  START STATUS  =================
[   86.467555][ T6066] vivid-000: Test Pattern: 75% Colorbar
[   86.469233][ T6066] vivid-000: Fill Percentage of Frame: 100
[   86.470869][ T6066] vivid-000: Horizontal Movement: No Movement
[   86.472828][ T6066] vivid-000: Vertical Movement: No Movement
[   86.474929][ T6066] vivid-000: OSD Text Mode: All
[   86.477676][ T6066] vivid-000: Show Border: false
[   86.479700][ T6066] vivid-000: Show Square: false
[   86.481490][ T6066] vivid-000: Sensor Flipped Horizontally: false
[   86.483483][ T6066] vivid-000: Sensor Flipped Vertically: false
[   86.486219][ T6066] vivid-000: Insert SAV Code in Image: false
[   86.489884][ T6066] vivid-000: Insert EAV Code in Image: false
[   86.491556][ T6066] vivid-000: Insert Video Guard Band: false
[   86.493179][ T6066] vivid-000: Reduced Framerate: false
[   86.494597][ T6066] vivid-000: HDMI 000-0 Is Connected To: Test Pattern Generator
[   86.496655][ T6066] vivid-000: S-Video 000-0 Is Connected To: Test Pattern Generator
[   86.500049][ T6066] vivid-000: Enable Capture Cropping: true
[   86.502236][ T6066] vivid-000: Enable Capture Composing: true
[   86.504007][ T6066] vivid-000: Enable Capture Scaler: true
[   86.505556][ T6066] vivid-000: Timestamp Source: End of Frame
[   86.508675][ T6066] vivid-000: Colorspace: sRGB
[   86.511141][ T6066] vivid-000: Transfer Function: Default
[   86.515536][ T6066] vivid-000: Y'CbCr Encoding: Default
[   86.520412][ T6066] vivid-000: HSV Encoding: Hue 0-179
[   86.522590][ T6066] vivid-000: Quantization: Default
[   86.525793][ T6066] vivid-000: Apply Alpha To Red Only: false
[   86.529665][ T6066] vivid-000: Standard Aspect Ratio: 4x3
[   86.532650][ T6066] vivid-000: DV Timings Signal Mode: Current DV Timings inactive
[   86.535746][ T6066] vivid-000: DV Timings: 640x480p59 inactive
[   86.537449][ T6066] vivid-000: DV Timings Aspect Ratio: Source Width x Height
[   86.541638][ T6066] vivid-000: Maximum EDID Blocks: 2
[   86.544433][ T6066] vivid-000: Limited RGB Range (16-235): false
[   86.552232][ T6066] vivid-000: Rx RGB Quantization Range: Automatic
[   86.554179][ T6066] vivid-000: Power Present: 0x00000001
[   86.555906][ T6066] tpg source WxH: 320x180 (Y'CbCr)
[   86.558422][ T6066] tpg field: 1
[   86.559349][ T6066] tpg crop: 320x180@0x0
[   86.561963][ T6066] tpg compose: 320x180@0x0
[   86.564779][ T6066] tpg colorspace: 8
[   86.566799][ T6066] tpg transfer function: 0/0
[   86.568564][ T6066] tpg Y'CbCr encoding: 0/0
[   86.570252][ T6066] tpg quantization: 0/0
[   86.573811][ T6066] tpg RGB range: 0/2
[   86.584368][ T6066] vivid-000: ==================  END STATUS  ==================
[   86.692785][ T6070] ------------[ cut here ]------------
[   86.715405][ T6070] WARNING: CPU: 0 PID: 6070 at net/mac80211/driver-ops.c:460 drv_link_info_changed+0x117/0x870
[   86.724743][ T6070] Modules linked in:
[   86.726851][ T6070] CPU: 0 UID: 0 PID: 6070 Comm: syz.3.176 Not tainted 6.12.0-rc3-syzkaller-00087-gc964ced77262 #0
[   86.730376][ T6070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.735200][ T6070] RIP: 0010:drv_link_info_changed+0x117/0x870
[   86.741883][ T6070] Code: 9f 51 10 f7 44 89 ff 48 c7 c6 60 37 9d 8c e8 30 54 10 f7 41 83 ff 0b 77 0b b8 82 08 00 00 4c 0f a3 f8 72 0e e8 7a 51 10 f7 90 <0f> 0b 90 e9 61 03 00 00 e8 6c 51 10 f7 41 8d 47 f6 31 ff 83 e0 fd
[   86.750469][ T6070] RSP: 0018:ffffc9002e756ec8 EFLAGS: 00010283
[   86.752284][ T6070] RAX: 0000000000000cbf RBX: ffff88805edbccc0 RCX: ffffc9000c001000
[   86.760538][ T6070] RDX: 0000000000040000 RSI: ffffffff8a7c6796 RDI: 0000000000000005
[   86.762783][ T6070] RBP: ffff888060598e40 R08: 0000000000000005 R09: 000000000000000b
[   86.765535][ T6070] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000200
[   86.767879][ T6070] R13: 0000000000000200 R14: ffff88805edbe958 R15: 0000000000000002
[   86.769939][ T6070] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f5654b40
[   86.787684][ T6070] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[   86.791207][ T6070] CR2: 00000000f7223600 CR3: 00000000254be000 CR4: 0000000000352ef0
[   86.795328][ T6070] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   86.795769][ T6073] fuse: Unknown parameter '�d�'
[   86.801134][ T6070] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   86.803476][ T6070] Call Trace:
[   86.804530][ T6070]  <TASK>
[   86.808225][ T6070]  ? __warn+0xea/0x3d0
[   86.810968][ T6070]  ? drv_link_info_changed+0x117/0x870
[   86.814283][ T6070]  ? report_bug+0x3c0/0x580
[   86.817663][ T6070]  ? handle_bug+0x54/0xa0
[   86.821241][ T6070]  ? exc_invalid_op+0x17/0x50
[   86.823050][ T6070]  ? asm_exc_invalid_op+0x1a/0x20
[   86.842432][ T6070]  ? drv_link_info_changed+0x116/0x870
[   86.844671][ T6070]  ? drv_link_info_changed+0x117/0x870
[   86.846711][ T6070]  ? drv_link_info_changed+0x116/0x870
[   86.848165][ T6070]  ? __pfx_mac80211_hwsim_flush+0x10/0x10
[   86.849696][ T6070]  ieee80211_link_info_change_notify+0x2c1/0x350
[   86.870204][ T6070]  ieee80211_offchannel_stop_vifs+0x328/0x5b0
[   86.890126][ T6070]  __ieee80211_start_scan+0x1089/0x1ce0
[   86.906650][ T6070]  ? __pfx___ieee80211_start_scan+0x10/0x10
[   86.908228][ T6070]  ieee80211_scan+0x1d2/0x330
[   86.909451][ T6070]  cfg80211_scan+0x4be/0x730
[   86.910672][ T6070]  ? ieee80211_get_num_supported_channels+0xa8/0x100
[   86.912389][ T6070]  cfg80211_conn_scan+0x5cc/0xd00
[   86.913710][ T6070]  cfg80211_connect+0x17f4/0x1f60
[   86.915078][ T6070]  ? __pfx_cfg80211_connect+0x10/0x10
[   86.916542][ T6070]  nl80211_connect+0x1661/0x21f0
[   86.917837][ T6070]  ? __pfx_nl80211_connect+0x10/0x10
[   86.919205][ T6070]  ? __mutex_trylock_common+0xea/0x250
[   86.920637][ T6070]  ? nl80211_pre_doit+0x1b0/0xb10
[   86.921954][ T6070]  genl_family_rcv_msg_doit+0x202/0x2f0
[   86.923388][ T6070]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   86.924953][ T6070]  ? bpf_lsm_capable+0x9/0x10
[   86.926384][ T6070]  ? security_capable+0x7e/0x260
[   86.927673][ T6070]  ? ns_capable+0xd7/0x110
[   86.928834][ T6070]  genl_rcv_msg+0x565/0x800
[   86.930031][ T6070]  ? __pfx_genl_rcv_msg+0x10/0x10
[   86.931342][ T6070]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   86.932733][ T6070]  ? __pfx_nl80211_connect+0x10/0x10
[   86.934114][ T6070]  ? __pfx_nl80211_post_doit+0x10/0x10
[   86.935568][ T6070]  netlink_rcv_skb+0x165/0x410
[   86.936806][ T6070]  ? __pfx_genl_rcv_msg+0x10/0x10
[   86.938125][ T6070]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   86.939493][ T6070]  ? down_read+0xc9/0x330
[   86.940615][ T6070]  ? __pfx_down_read+0x10/0x10
[   86.941878][ T6070]  ? netlink_deliver_tap+0x1ae/0xcf0
[   86.943241][ T6070]  genl_rcv+0x28/0x40
[   86.944288][ T6070]  netlink_unicast+0x53c/0x7f0
[   86.945592][ T6070]  ? __pfx_netlink_unicast+0x10/0x10
[   86.946957][ T6070]  ? __phys_addr_symbol+0x30/0x80
[   86.948261][ T6070]  ? __check_object_size+0x488/0x710
[   86.949686][ T6070]  netlink_sendmsg+0x8b8/0xd70
[   86.950953][ T6070]  ? __pfx_netlink_sendmsg+0x10/0x10
[   86.952339][ T6070]  ? lock_acquire+0x2f/0xb0
[   86.953538][ T6070]  ____sys_sendmsg+0x9ae/0xb40
[   86.954795][ T6070]  ? __pfx_____sys_sendmsg+0x10/0x10
[   86.956230][ T6070]  ? get_compat_msghdr+0x11b/0x170
[   86.957576][ T6070]  ? __pfx___lock_acquire+0x10/0x10
[   86.958927][ T6070]  ? __pfx_lock_release+0x10/0x10
[   86.960243][ T6070]  ___sys_sendmsg+0x135/0x1e0
[   86.961644][ T6070]  ? __pfx____sys_sendmsg+0x10/0x10
[   86.963007][ T6070]  ? lock_acquire+0x2f/0xb0
[   86.964196][ T6070]  ? __fget_files+0x40/0x3f0
[   86.965460][ T6070]  ? fdget+0x176/0x210
[   86.966534][ T6070]  __sys_sendmsg+0x117/0x1f0
[   86.967755][ T6070]  ? __pfx___sys_sendmsg+0x10/0x10
[   86.969092][ T6070]  ? kfree+0x274/0x4b0
[   86.970181][ T6070]  __do_fast_syscall_32+0x73/0x120
[   86.971521][ T6070]  do_fast_syscall_32+0x32/0x80
[   86.972797][ T6070]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   86.974447][ T6070] RIP: 0023:0xf7f15579
[   86.975545][ T6070] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   86.980483][ T6070] RSP: 002b:00000000f565456c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   86.982646][ T6070] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000200001c0
[   86.984711][ T6070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   86.986814][ T6070] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   86.988839][ T6070] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[   86.990887][ T6070] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   86.992896][ T6070]  </TASK>
[   86.993733][ T6070] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   86.995632][ T6070] CPU: 0 UID: 0 PID: 6070 Comm: syz.3.176 Not tainted 6.12.0-rc3-syzkaller-00087-gc964ced77262 #0
[   86.998347][ T6070] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   87.001108][ T6070] Call Trace:
[   87.002003][ T6070]  <TASK>
[   87.002781][ T6070]  dump_stack_lvl+0x3d/0x1f0
[   87.003993][ T6070]  panic+0x71d/0x800
[   87.005022][ T6070]  ? __pfx_panic+0x10/0x10
[   87.006200][ T6070]  ? show_trace_log_lvl+0x29d/0x3d0
[   87.007610][ T6070]  ? drv_link_info_changed+0x117/0x870
[   87.009028][ T6070]  check_panic_on_warn+0xab/0xb0
[   87.010337][ T6070]  __warn+0xf6/0x3d0
[   87.011371][ T6070]  ? drv_link_info_changed+0x117/0x870
[   87.012783][ T6070]  report_bug+0x3c0/0x580
[   87.013930][ T6070]  handle_bug+0x54/0xa0
[   87.015025][ T6070]  exc_invalid_op+0x17/0x50
[   87.016214][ T6070]  asm_exc_invalid_op+0x1a/0x20
[   87.017482][ T6070] RIP: 0010:drv_link_info_changed+0x117/0x870
[   87.019058][ T6070] Code: 9f 51 10 f7 44 89 ff 48 c7 c6 60 37 9d 8c e8 30 54 10 f7 41 83 ff 0b 77 0b b8 82 08 00 00 4c 0f a3 f8 72 0e e8 7a 51 10 f7 90 <0f> 0b 90 e9 61 03 00 00 e8 6c 51 10 f7 41 8d 47 f6 31 ff 83 e0 fd
[   87.023989][ T6070] RSP: 0018:ffffc9002e756ec8 EFLAGS: 00010283
[   87.025571][ T6070] RAX: 0000000000000cbf RBX: ffff88805edbccc0 RCX: ffffc9000c001000
[   87.027618][ T6070] RDX: 0000000000040000 RSI: ffffffff8a7c6796 RDI: 0000000000000005
[   87.029658][ T6070] RBP: ffff888060598e40 R08: 0000000000000005 R09: 000000000000000b
[   87.031696][ T6070] R10: 0000000000000002 R11: 0000000000000000 R12: 0000000000000200
[   87.033740][ T6070] R13: 0000000000000200 R14: ffff88805edbe958 R15: 0000000000000002
[   87.035783][ T6070]  ? drv_link_info_changed+0x116/0x870
[   87.037195][ T6070]  ? drv_link_info_changed+0x116/0x870
[   87.038626][ T6070]  ? __pfx_mac80211_hwsim_flush+0x10/0x10
[   87.040101][ T6070]  ieee80211_link_info_change_notify+0x2c1/0x350
[   87.041742][ T6070]  ieee80211_offchannel_stop_vifs+0x328/0x5b0
[   87.043271][ T6070]  __ieee80211_start_scan+0x1089/0x1ce0
[   87.044696][ T6070]  ? __pfx___ieee80211_start_scan+0x10/0x10
[   87.046227][ T6070]  ieee80211_scan+0x1d2/0x330
[   87.047461][ T6070]  cfg80211_scan+0x4be/0x730
[   87.048672][ T6070]  ? ieee80211_get_num_supported_channels+0xa8/0x100
[   87.050434][ T6070]  cfg80211_conn_scan+0x5cc/0xd00
[   87.051933][ T6070]  cfg80211_connect+0x17f4/0x1f60
[   87.053252][ T6070]  ? __pfx_cfg80211_connect+0x10/0x10
[   87.054669][ T6070]  nl80211_connect+0x1661/0x21f0
[   87.055966][ T6070]  ? __pfx_nl80211_connect+0x10/0x10
[   87.057423][ T6070]  ? __mutex_trylock_common+0xea/0x250
[   87.058921][ T6070]  ? nl80211_pre_doit+0x1b0/0xb10
[   87.060253][ T6070]  genl_family_rcv_msg_doit+0x202/0x2f0
[   87.061722][ T6070]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   87.063318][ T6070]  ? bpf_lsm_capable+0x9/0x10
[   87.064560][ T6070]  ? security_capable+0x7e/0x260
[   87.065865][ T6070]  ? ns_capable+0xd7/0x110
[   87.067043][ T6070]  genl_rcv_msg+0x565/0x800
[   87.068284][ T6070]  ? __pfx_genl_rcv_msg+0x10/0x10
[   87.069628][ T6070]  ? __pfx_nl80211_pre_doit+0x10/0x10
[   87.071040][ T6070]  ? __pfx_nl80211_connect+0x10/0x10
[   87.072418][ T6070]  ? __pfx_nl80211_post_doit+0x10/0x10
[   87.073868][ T6070]  netlink_rcv_skb+0x165/0x410
[   87.075244][ T6070]  ? __pfx_genl_rcv_msg+0x10/0x10
[   87.076629][ T6070]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   87.078081][ T6070]  ? down_read+0xc9/0x330
[   87.079217][ T6070]  ? __pfx_down_read+0x10/0x10
[   87.080570][ T6070]  ? netlink_deliver_tap+0x1ae/0xcf0
[   87.082021][ T6070]  genl_rcv+0x28/0x40
[   87.083122][ T6070]  netlink_unicast+0x53c/0x7f0
[   87.084433][ T6070]  ? __pfx_netlink_unicast+0x10/0x10
[   87.085871][ T6070]  ? __phys_addr_symbol+0x30/0x80
[   87.087246][ T6070]  ? __check_object_size+0x488/0x710
[   87.088685][ T6070]  netlink_sendmsg+0x8b8/0xd70
[   87.089987][ T6070]  ? __pfx_netlink_sendmsg+0x10/0x10
[   87.091412][ T6070]  ? lock_acquire+0x2f/0xb0
[   87.092576][ T6070]  ____sys_sendmsg+0x9ae/0xb40
[   87.093809][ T6070]  ? __pfx_____sys_sendmsg+0x10/0x10
[   87.095208][ T6070]  ? get_compat_msghdr+0x11b/0x170
[   87.096545][ T6070]  ? __pfx___lock_acquire+0x10/0x10
[   87.097911][ T6070]  ? __pfx_lock_release+0x10/0x10
[   87.099226][ T6070]  ___sys_sendmsg+0x135/0x1e0
[   87.100466][ T6070]  ? __pfx____sys_sendmsg+0x10/0x10
[   87.101858][ T6070]  ? lock_acquire+0x2f/0xb0
[   87.103051][ T6070]  ? __fget_files+0x40/0x3f0
[   87.104265][ T6070]  ? fdget+0x176/0x210
[   87.105348][ T6070]  __sys_sendmsg+0x117/0x1f0
[   87.106564][ T6070]  ? __pfx___sys_sendmsg+0x10/0x10
[   87.107986][ T6070]  ? kfree+0x274/0x4b0
[   87.109101][ T6070]  __do_fast_syscall_32+0x73/0x120
[   87.110468][ T6070]  do_fast_syscall_32+0x32/0x80
[   87.111735][ T6070]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   87.113497][ T6070] RIP: 0023:0xf7f15579
[   87.114584][ T6070] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   87.119814][ T6070] RSP: 002b:00000000f565456c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   87.122110][ T6070] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00000000200001c0
[   87.124201][ T6070] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   87.126353][ T6070] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   87.128436][ T6070] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[   87.130596][ T6070] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   87.132688][ T6070]  </TASK>
[   87.134107][ T6070] Kernel Offset: disabled
[   87.135358][ T6070] Rebooting in 86400 seconds..

VM DIAGNOSIS:
13:07:45  Registers:
info registers vcpu 0

CPU#0
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff8503dcc0 RDI=ffffffff9a63f260 RBP=ffffffff9a63f220 RSP=ffffc9002e756770
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000060 R14=fffffbfff34c7e9e R15=dffffc0000000000
RIP=ffffffff8503dce7 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f7223600 CR3=00000000254be000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffff88802a7ce460 RBX=dffffc0000000000 RCX=ffffffff816aaead RDX=1ffff110054f9c8c
RSI=0000000000000004 RDI=ffff888000975948 RBP=ffffc900070b7b50 RSP=ffffc900070b7a10
R8 =0000000000000001 R9 =fffff52000e16f30 R10=0000000000000003 R11=0000000000000000
R12=ffff888065a77480 R13=dead000000000122 R14=000000000000000c R15=ffff88802a7ce460
RIP=ffffffff848e778c RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f1ded1a8280 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020025000 CR3=000000001bb96000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fcfeffd0 Opmask01=000000000000001f Opmask02=000000000000ffdf Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055d211120280 000055d211119bb0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000ff00000000 00ff000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffff0000 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 b863b00e5b10b1a5 737326a43f435a3d
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 7373737373737142 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 30706f0031706f6f 6c2f6b636f6c6200 44455a494c414954 494e495f43455355
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f742079617272 6120656c75722079 7261726f706d6574 002a3f005b3f2a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 cb10c37d2863c2d6 000000055d211108 0000000000000131 000000302f716d00
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f1decdf1b10 000055d211121640 0000000000000021 0000000000000032
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4943213f395b2249 5a6e786b6e646b7e 59647a305f474f5b 647c79303a243a78
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 26483b3a3a264b3b 3a0a00307f617930 3a2433273f397b27 697a787c69303b7e
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000010 RCX=ffffffff848f650e RDX=ffff888024fa2440
RSI=0000000000000008 RDI=0000000000000001 RBP=ffffc90003437538 RSP=ffffc90003437398
R8 =0000000000000001 R9 =0000000000000008 R10=0000000000000014 R11=0000000000000000
R12=0000000000000014 R13=ffffc90003437518 R14=ffff8880492d1642 R15=ffffc90003437540
RIP=ffffffff818cb9d2 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f8dc3dced00 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055aaf8a6e000 CR3=000000002a414000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=f49c2c49f49c2c49 f49c2c49f49c2c49 f49c2c49f49c2c49 f49c2c49f49c2c49 f49c2c49f49c2c49 f49c2c49f49c2c49 f49c2c49f49c2c49 f49c2c49f49c2c49
ZMM22=a71454d6a71454d6 a71454d6a71454d6 a71454d6a71454d6 a71454d6a71454d6 a71454d6a71454d6 a71454d6a71454d6 a71454d6a71454d6 a71454d6a71454d6
ZMM23=b724a6a8b724a6a8 b724a6a8b724a6a8 b724a6a8b724a6a8 b724a6a8b724a6a8 b724a6a8b724a6a8 b724a6a8b724a6a8 b724a6a8b724a6a8 b724a6a8b724a6a8
ZMM24=52cf3f5a52cf3f5a 52cf3f5a52cf3f5a 52cf3f5a52cf3f5a 52cf3f5a52cf3f5a 52cf3f5a52cf3f5a 52cf3f5a52cf3f5a 52cf3f5a52cf3f5a 52cf3f5a52cf3f5a
ZMM25=da843dfdda843dfd da843dfdda843dfd da843dfdda843dfd da843dfdda843dfd da843dfdda843dfd da843dfdda843dfd da843dfdda843dfd da843dfdda843dfd
ZMM26=96a1424a96a1424a 96a1424a96a1424a 96a1424a96a1424a 96a1424a96a1424a 96a1424a96a1424a 96a1424a96a1424a 96a1424a96a1424a 96a1424a96a1424a
ZMM27=56fcc8e656fcc8e6 56fcc8e656fcc8e6 56fcc8e656fcc8e6 56fcc8e656fcc8e6 56fcc8e656fcc8e6 56fcc8e656fcc8e6 56fcc8e656fcc8e6 56fcc8e656fcc8e6
ZMM28=000000300000002f 0000002e0000002d 0000002c0000002b 0000002a00000029 0000002800000027 0000002600000025 0000002400000023 0000002200000021
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=f2020000f2020000 f2020000f2020000 f2020000f2020000 f2020000f2020000 f2020000f2020000 f2020000f2020000 f2020000f2020000 f2020000f2020000
info registers vcpu 3

CPU#3
RAX=000000000012e241 RBX=0000000000000003 RCX=ffffffff8b138ab9 RDX=0000000000000000
RSI=ffffffff8b4cc8e0 RDI=ffffffff8bb12ae0 RBP=ffffed100376c488 RSP=ffffc90000497e08
R8 =0000000000000001 R9 =ffffed10056e7025 R10=ffff88802b73812b R11=0000000000000000
R12=0000000000000003 R13=ffff88801bb62440 R14=ffffffff901ce488 R15=0000000000000000
RIP=ffffffff8b139e9f RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020000028 CR3=0000000061e18000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000