last executing test programs:

5.39315704s ago: executing program 3 (id=346):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/key-users\x00', 0x0, 0x0)
preadv2(r3, 0x0, 0x0, 0x2b, 0x0, 0x0)
write$tun(r3, &(0x7f0000000480)={@val={0x0, 0x884c}, @val={0x4, 0x0, 0x7800, 0xc4, 0x2, 0xc}, @ipv6=@udp={0x7, 0x6, '|\\o', 0xb8, 0x11, 0xff, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @local, {[@dstopts={0x3c, 0x8, '\x00', [@generic={0x3, 0x3f, "e9ca48a40a306d16f2c1babb623f3f453e65d7e266e24e6511c0fabe5fa234f9951cf0ce8010fd0d005098b70dc608f61f57e3b4194306df11661d1613a40a"}]}, @fragment={0x3c, 0x0, 0x5, 0x0, 0x0, 0x5, 0x64}, @fragment={0xa1, 0x0, 0x38, 0x0, 0x0, 0x2, 0x65}, @fragment={0x4, 0x0, 0x57, 0x1, 0x0, 0xa, 0x65}, @fragment={0x2c, 0x0, 0xea, 0x1, 0x0, 0x4, 0x67}], {0x4e22, 0x4e20, 0x48, 0x0, @wg=@cookie={0x3, 0x3, "d8b60d99178c59ce0e08bab6a8b0387ed37e034601959aaf", "fc88ad2cbda4106765749140f3bbe17dea9ca35fdb5a694b31ec6f9ea8adf07a"}}}}}, 0xee)
io_setup(0x4082, &(0x7f0000000380))
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TLS_TX(r4, 0x11e, 0x1, &(0x7f0000000540)=@gcm_256={{}, "dd1f67eeaee232bc", "33dcff273dcda64434083fc81269ec10a61ee1d936119116fc6dfa718b8b5f9a", "15f71a38", "56544408ce8ac9f0"}, 0x38)

4.840546371s ago: executing program 2 (id=356):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="190000000400000008000000ff"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x12, 0xc, &(0x7f0000000b00)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
bpf$OBJ_GET_PROG(0x7, &(0x7f00000002c0)=@generic={&(0x7f00000000c0)='./file0\x00'}, 0x18)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
r3 = memfd_create(0x0, 0x7)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002300)={0x11, 0x10, &(0x7f00000022c0)=ANY=[@ANYRES8=r3, @ANYRES8, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
r7 = socket$vsock_stream(0x28, 0x1, 0x0)
ioctl$int_in(r7, 0x5421, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={<r8=>0x0, 0x10, &(0x7f0000006000)=[@in={0x2, 0x0, @local}]}, &(0x7f0000005ec0)=0x10)
setreuid(0x0, 0x0)
r9 = syz_open_dev$sndpcmc(&(0x7f00000000c0), 0x80000007, 0x44901)
ioctl$SNDRV_PCM_IOCTL_FORWARD(r9, 0x40044149, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r2, 0x84, 0x7b, &(0x7f0000000040)={r8, 0x2}, 0x8)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r10, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000002a80)=ANY=[@ANYBLOB="440000000906010200000000000000000200ffff080001"], 0x44}, 0x1, 0x0, 0x0, 0x10000082}, 0x4000080)

4.700544041s ago: executing program 0 (id=357):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x11, &(0x7f0000000040)={&(0x7f0000000280)={0x80, 0x0, 0x1, 0x401, 0x11, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x100e}, @CTA_SEQ_ADJ_REPLY={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x5}, @CTA_SEQADJ_OFFSET_BEFORE={0xe6ba7615268e7f7}]}]}, 0x80}}, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0x1)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x2)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newtaction={0x68, 0x30, 0x871a15abc695fb3d, 0x0, 0x0, {}, [{0x54, 0x1, [@m_tunnel_key={0x50, 0x1, 0x0, 0x0, {{0xf}, {0x20, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x7, 0x0, 0x3, 0x24f493ba, 0x8000}, 0x2}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)

4.44050164s ago: executing program 0 (id=358):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001940)=@newtaction={0xe98, 0x30, 0x871a15abc695fa3d, 0x3000000, 0x0, {}, [{0xe84, 0x1, [@m_pedit={0xe80, 0x1, 0x0, 0x0, {{0xa}, {0xe54, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe50, 0x2, {{{}, 0x97, 0x0, [{}, {}]}, [{0x3}, {}, {}, {}, {}, {0x448eade7}, {0x0, 0x0, 0x80000000}, {0x9, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, {}, {}, {0x2}, {}, {0xfffffffc}, {0x0, 0xe}, {}, {}, {0x0, 0x4, 0x0, 0x0, 0x4}, {0x0, 0x3}, {}, {0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {0xfffffffe}, {}, {}, {}, {}, {}, {}, {0x0, 0x4}, {}, {}, {}, {}, {0x0, 0x10}, {}, {}, {0x2, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0xfffffffe, 0x0, 0x8000000}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, {0x0, 0x1000000}, {}, {}, {0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x33b}, {0x0, 0x0, 0x0, 0x0, 0xfffff678, 0xfffffffb}, {0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0xe10}, {}, {0x0, 0xffffffff}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0xefa6}, {0x3369}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x40000000, 0x32296b04}, {}, {}, {}, {}, {0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xb}], [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x5}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4, 0x1}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {0x5}, {}, {0x4}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {}, {0x5}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe98}}, 0x0)

4.384834539s ago: executing program 0 (id=359):
r0 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1}) (async)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
r1 = userfaultfd(0x80801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_CONTINUE(r1, 0xc020aa07, &(0x7f0000000240)={{&(0x7f0000c00000/0x400000)=nil, 0x400000}, 0x1})
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x1000, 0x1)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffe}, [@call={0x85, 0x0, 0x0, 0xa0}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000000000000000000000000085000000050000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008008000b703000000009c8c850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (async)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000808000000000000000000850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x4f) (async)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000808000000000000000000850000006d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x4f)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000140)='contention_end\x00', r4}, 0x10)
openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) (async)
r5 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r7, 0xc048aeca, &(0x7f0000000080)=ANY=[]) (async)
ioctl$KVM_SET_CPUID2(r7, 0xc048aeca, &(0x7f0000000080)=ANY=[])
ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) (async)
r8 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
ioctl$KVM_SET_CPUID2(r9, 0x4008ae90, &(0x7f0000000100)=ANY=[@ANYBLOB="de"])
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r10, 0x89e0, 0x0) (async)
ioctl$SIOCSIFHWADDR(r10, 0x89e0, 0x0)
r11 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r12 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r12, 0x8933, &(0x7f0000000000)={'lo\x00', <r13=>0x0})
sendmsg$nl_route_sched(r12, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x45c, 0x24, 0xd0f, 0x70bd2b, 0x0, {0x60, 0x0, 0x0, r13, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x9, 0x45, 0x3ff, 0x10000, 0x3, 0x8, 0x4, 0xa0000, 0xacc, 0xa0000001, 0x59bc9fd6, 0x7, 0x2, 0x8000, 0x8, 0x4, 0x8, 0x4, 0x114b6000, 0xfffffffe, 0x2a70, 0xffff73cc, 0x81, 0x5, 0x0, 0xa, 0x45, 0x0, 0x8, 0x5, 0xaa44, 0x6fec432f, 0x60b, 0x80000000, 0x5, 0x8, 0x5, 0x1, 0xffff, 0x3, 0xfffffff7, 0x5, 0x8, 0x1a0055ee, 0x1, 0x1, 0xffff4226, 0x7, 0x0, 0x5, 0x101, 0x4, 0x1, 0x1, 0x800, 0xf9, 0x9, 0x9, 0x2, 0x8, 0x2f, 0xfffffff8, 0x0, 0x101, 0x2, 0x7, 0xc5, 0x4, 0x5, 0x0, 0x6, 0x2, 0x5, 0x5, 0x6, 0x9b58, 0x4, 0x2, 0x4be, 0x6, 0x100, 0xa, 0xca6, 0x9fa7, 0xfffeffff, 0x10000038, 0x4, 0x0, 0x8000, 0x44d, 0x7, 0x200, 0x8, 0x401, 0x7, 0x45, 0x3, 0x9, 0x0, 0x7, 0x6, 0x9, 0x3, 0x7, 0x4, 0x2, 0x7, 0x8000, 0x7, 0xda, 0x1902, 0xc3c, 0x3, 0x28000000, 0x8, 0x30c7, 0xfad, 0x7, 0x8, 0x0, 0x5, 0x10, 0x400, 0xd58, 0x4, 0x422dd3f8, 0x4, 0x8, 0x2, 0x8, 0x4, 0xea, 0x0, 0x45ba, 0x9, 0x864b, 0x0, 0x7, 0x9, 0x1, 0x7, 0x81, 0x3, 0x800, 0xb, 0xffffff80, 0x740, 0xc22, 0x1, 0x6, 0x7, 0x24404235, 0x7fffffff, 0x4, 0xfff, 0x6, 0x0, 0x7c1, 0x135, 0x6, 0x5, 0x4, 0x3ff, 0x4, 0xb, 0x2, 0x10001, 0x61, 0x5, 0x4, 0x400, 0x101, 0xffffffff, 0x1b, 0xd589, 0xffffff81, 0x0, 0x4, 0x0, 0x300, 0x8, 0x60000000, 0xd3d, 0x0, 0x5, 0x0, 0x81, 0x2, 0x55, 0x4, 0xbc6, 0x2, 0x8, 0x28a6a52, 0x1ff, 0xf, 0x7fff, 0x9, 0x2e4c20b9, 0xb, 0x4, 0x9, 0x1, 0x4, 0x8, 0x3, 0x6, 0x8, 0x1, 0x7, 0x4, 0x9, 0x8, 0xfffffffa, 0x76e8e800, 0x800, 0x400, 0x6, 0x0, 0xcc4, 0xfffffffb, 0x8000, 0xffffff01, 0x894, 0x7, 0xa74e, 0x2, 0x6, 0x2, 0x6, 0x10001, 0xc, 0x4, 0x8, 0x5d, 0x1000000, 0x0, 0x656, 0x8, 0x80000001, 0x384, 0x9, 0x588, 0x80000000, 0xe04, 0x0, 0x1, 0x2c821159, 0x0, 0x9, 0x7, 0x0, 0x6, 0x0, 0x7f]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x6, 0x0, 0x2, 0x8, 0x0, 0xc}, {0xff, 0x1, 0x0, 0x5, 0x5e1d, 0xc}, 0x3ff, 0x8, 0x9d}}]}}]}, 0x45c}}, 0x0)
close_range(r11, r10, 0x0) (async)
close_range(r11, r10, 0x0)

4.097268478s ago: executing program 3 (id=360):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000480)={0x18, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)={0x20, 0x3, 0x1, 0x1}})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x5b04, 0x0)

3.990557814s ago: executing program 0 (id=361):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000540)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000480)={0x18, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x20, 0x3, 0x1, 0x1}})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$EVIOCGMASK(r1, 0x5b04, 0x0)

3.81021073s ago: executing program 2 (id=362):
r0 = openat$dlm_monitor(0xffffff9c, &(0x7f0000000000), 0x2300, 0x0)
ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)={0x3}) (async)
setsockopt$netrom_NETROM_T4(r0, 0x103, 0x6, &(0x7f0000000080)=0xffffffff, 0x4) (async)
r1 = accept4(r0, &(0x7f00000000c0)=@ax25={{0x3, @bcast}, [@netrom, @rose, @rose, @bcast, @remote, @default, @null, @rose]}, &(0x7f0000000140)=0x80, 0x80800)
prctl$PR_SCHED_CORE(0x3e, 0x9, 0xffffffffffffffff, 0x2, &(0x7f0000000180))
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r1, 0x89f3, &(0x7f0000000240)={'syztnl1\x00', &(0x7f00000001c0)={'syztnl0\x00', <r2=>0x0, 0x29, 0x8, 0x5, 0x2, 0x10, @private1={0xfc, 0x1, '\x00', 0x1}, @ipv4={'\x00', '\xff\xff', @multicast2}, 0x10, 0x10, 0x0, 0x3}})
ioctl$sock_inet6_SIOCSIFADDR(r1, 0x8916, &(0x7f0000000280)={@private0, 0x51, r2})
r3 = socket$nl_route(0x10, 0x3, 0x0) (async, rerun: 32)
write$uinput_user_dev(r0, &(0x7f00000002c0)={'syz1\x00', {0x100, 0x8000, 0x400, 0x2}, 0x4f, [0x3, 0x4, 0x8000, 0x0, 0x146, 0x90a, 0x5180000, 0x0, 0x6, 0x2, 0x0, 0xae, 0x5, 0x101, 0x6, 0x0, 0x7fffffff, 0x44, 0x0, 0xe, 0xf71, 0x1c1f, 0x8, 0x3, 0x8, 0x4, 0x7, 0xffffffff, 0x10001, 0x1, 0x4, 0x2, 0x80000001, 0x0, 0x8, 0x8, 0x5, 0x2, 0x5, 0x9, 0x3, 0x3, 0x594c71be, 0x3, 0x5, 0x3, 0x1000, 0x5, 0x8, 0x1, 0x5, 0x3, 0x8, 0x1, 0x6, 0x7, 0x9f8c, 0x1e3a, 0x4, 0x6ce5, 0x1000, 0x9, 0x1, 0x7f], [0xf4ad, 0x0, 0x2, 0x4, 0x4, 0x4, 0xb, 0x3ff, 0x9, 0x100, 0x4, 0x0, 0x8, 0x0, 0x7, 0x7, 0xd9, 0x28e3, 0xe1, 0x8000, 0x3, 0x81, 0x401, 0x2, 0x0, 0xefd, 0xff, 0x9, 0x5, 0x81a, 0x249, 0xf4, 0x9, 0x6, 0xffffffff, 0x1, 0x5522, 0x8, 0x4, 0x9, 0x4, 0x3, 0xfffffffb, 0x2, 0x4, 0x4, 0x4, 0x0, 0x13c800, 0x4, 0x1, 0x1, 0x6, 0xffffff7f, 0x5, 0xffff, 0x2, 0x7, 0x0, 0x3, 0x81, 0x800, 0x5, 0xfe5e], [0x4, 0x5, 0x3, 0x7d59b807, 0x7, 0x5, 0x6, 0x2, 0x469da102, 0x5, 0x5, 0x5, 0x8, 0x9, 0xd400, 0x6a, 0x7fffffff, 0xe, 0x401, 0x9, 0x7, 0x7, 0x7, 0x5, 0x2, 0x5, 0x40, 0x8f3, 0x2, 0x4, 0xc18, 0x6, 0x9, 0x9, 0x8, 0x6, 0xc, 0xfff, 0xfffffffb, 0x2, 0x5, 0xa36, 0x7, 0x26, 0x5, 0x80, 0x1098, 0xfffffffd, 0x6, 0x101, 0x5, 0x5, 0x8, 0x4, 0x1, 0x7fffffff, 0xb8, 0x6, 0x0, 0x8001, 0x827a, 0xdc0f, 0x5, 0x5], [0x4, 0x1, 0x9, 0xb61, 0xffff0000, 0xfffffffb, 0x87, 0x9, 0x4, 0x34c3, 0x10, 0x4, 0x6, 0x1, 0xff, 0xfffffff7, 0x5, 0x2, 0x3, 0xb1e000, 0xa, 0x3ff, 0x9, 0x0, 0x10000, 0x80000000, 0x6, 0xfffff84a, 0x0, 0xe, 0x10000, 0x8, 0x6, 0xa7, 0x8, 0x0, 0x0, 0x1, 0x80, 0x4, 0x54b9, 0xffff, 0x5, 0x2, 0x7aa4, 0x3, 0x4a1, 0x5, 0x3, 0x3, 0xffffffff, 0xe, 0xffffffff, 0x1, 0xf, 0x6a0a, 0xe0000, 0xfffffffd, 0x9, 0x2, 0x1d6, 0x7, 0x0, 0x101]}, 0x45c) (rerun: 32)
r4 = openat$nci(0xffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_GET_NCIDEV_IDX(r4, 0x0, &(0x7f0000000780)) (async)
sendto$packet(r0, &(0x7f00000007c0)="03c88c14f48f7365e6f4d225be0f6992e1f09cc04085d5031f5f0ca5214160dc3f82ec415bffb4647978541b25122e943e6933eef93473276e9c0f0c7c673509372a8f49430ab060f9bc2666f4939a4c4a3648743ac92339c9bbcd84be0a736f1c6b0752677d57c8b9ec9be586ee4a1ae301ac082ebb2582118045110a035eceeb44bf8f4f8c1c5311f9d17d0ab201c14e0c774ea996dd71455c93b82f81c48d4f8623adb4e57551e1bc96bc5811c054de36724599f3fd935f4291d6586b", 0xbe, 0x4008040, &(0x7f0000000880)={0x11, 0x6, r2, 0x1, 0x2}, 0x14) (async, rerun: 64)
r5 = openat$sequencer(0xffffff9c, &(0x7f00000008c0), 0x480040, 0x0) (rerun: 64)
ioctl$sock_SIOCGPGRP(r3, 0x8904, &(0x7f0000000900)=<r6=>0x0)
fcntl$lock(r5, 0x6a, &(0x7f0000000940)={0x1, 0x4, 0xe0d00000, 0x7, r6}) (async)
bind$bt_sco(r1, &(0x7f0000000980)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
getsockname$l2tp(r0, &(0x7f00000009c0)={0x2, 0x0, @multicast2}, &(0x7f0000000a00)=0x10) (async)
epoll_create1(0x0) (async)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000a40)={0x0, 0x0, {0x8, 0x5, 0x300a, 0x1, 0xcfc4a7be6f713878, 0x1, 0x2, 0x3}})
mkdir(&(0x7f0000000ac0)='./file0\x00', 0x1a4) (async, rerun: 64)
socket$inet_smc(0x2b, 0x1, 0x0) (rerun: 64)
ioctl$KVM_ASSIGN_SET_MSIX_ENTRY(r0, 0x4010ae74, &(0x7f0000000b00)={0x1, 0xe, 0xb7a1}) (async)
r7 = openat$uinput(0xffffff9c, &(0x7f0000000b40), 0x802, 0x0)
ioctl$UI_DEV_SETUP(r7, 0x405c5503, &(0x7f0000000b80)={{0xf95d, 0xf, 0x1, 0x5b7c}, 'syz0\x00', 0x54}) (async)
r8 = openat$uinput(0xffffff9c, &(0x7f0000000c00), 0x2, 0x0)
ioctl$UI_DEV_CREATE(r8, 0x5501) (async)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40246608, &(0x7f0000000c40)={0x4, 0x1, 0xffffffffffffb110, 0x4, 0xfff, 0x9})
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000c80)={'#! ', './file0', [{0x20, '/dev/uinput\x00'}], 0xa, "0911b9b12ab5666f0e3f63df227834dca3f39156b816e54a6c2b51134df9fc50d0a35de2218f0332ecbc37cef7c224066a5faa50ba200709990068b2dbe84aed5dda678c24280aa29fd7f362b7cc78a37591324d30361fd9f4ac2d8b87b05c01515cb9c9"}, 0x7c) (async)
ioctl$VIDIOC_QUERY_DV_TIMINGS(r0, 0x80845663, &(0x7f0000000d00)={0x0, @reserved})

2.280558207s ago: executing program 1 (id=363):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x3)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000000203010400000000ffffffff000000000800010001"], 0x28}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYBLOB="1c000000020301020000000000000000000000100800010001"], 0x1c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000058000000030a0102000000000000000001000000090003803d2175fbe782c2002c00048008000240172af2e40800014000000003080002401c791e7108000240423930ce08000140000000030900010073797a3000"], 0x122}}, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42032, 0xffffffffffffffff, 0x0)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000ff9000/0x4000)=nil)
brk(0x20ffc004)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
write(r3, &(0x7f00000007c0)="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", 0x226)
openat$sysfs(0xffffff9c, &(0x7f0000000080)='/sys/power/reserved_size', 0x40000, 0x17)

2.280008601s ago: executing program 2 (id=364):
r0 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40088a01, &(0x7f0000000080)=0x10000)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = epoll_create1(0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, 0x0, 0x0)
ioctl$VIDIOC_QUERYBUF(0xffffffffffffffff, 0xc0585609, 0x0)
ioctl$VIDIOC_DQEVENT(0xffffffffffffffff, 0x80885659, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x0)
connect$inet6(r3, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x4001c00)
r4 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
r5 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r5, 0xab00, r6)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="15000000100000000200"/20, @ANYRES32, @ANYBLOB="00000000000000000000000000000066674bbce1", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/17], 0x48)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000008000000000000005805000018100000", @ANYRES32=r7, @ANYBLOB="000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
close(0xffffffffffffffff)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000380)={r5, 0x8, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4}, 0x4c)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000500)={0xffffffffffffffff, r8, 0x4}, 0x10)
sendmsg$RDMA_NLDEV_CMD_RES_CM_ID_GET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="200000009b4777e839dc9f64fcdbdf2508003f00040000000800010002000000a8e40e8f69162f4cc6d31244ffce3cf2f7230c07"], 0x20}, 0x1, 0x0, 0x0, 0x8800}, 0x40000000)
r9 = syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x0)
ioctl$NBD_SET_FLAGS(r9, 0xab0a, 0x1000001000104)
ioctl$NBD_SET_SOCK(r9, 0xab00, r6)
ioctl$NBD_DO_IT(r5, 0xab03)
close_range(r4, 0xffffffffffffffff, 0x0)
openat$vimc2(0xffffffffffffff9c, 0x0, 0x2, 0x0)
openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000340)={0x1})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000001540))

2.278483176s ago: executing program 1 (id=365):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
r1 = dup(r0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
mkdir(&(0x7f0000000000)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000380)='./file1\x00', 0x0, 0x0, &(0x7f0000000400))
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x3000008, 0x80010, r1, 0x0)
openat$khugepaged_scan(0xffffff9c, 0x0, 0x1, 0x0)
r4 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$AUTOFS_IOC_CATATONIC(r4, 0xc0089364, 0x0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r5 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
ioctl$SIOCGIFHWADDR(0xffffffffffffffff, 0x8927, 0x0)
sendmsg$netlink(r5, &(0x7f0000000040)={0x0, 0x6000, &(0x7f0000000000)=[{&(0x7f0000000300)=ANY=[@ANYBLOB="1401007a2c00010000000000000000000401"], 0x114}], 0x1}, 0x2000000000000000)
socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r6, 0xc0306201, 0x0)

2.0082346s ago: executing program 1 (id=366):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1e, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
semctl$IPC_STAT(0x0, 0x0, 0x2, 0x0)
mkdir(&(0x7f00000009c0)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(r1, 0x29, 0x22, &(0x7f0000000400)={{{@in, @in=@remote}}, {{@in=@multicast2}, 0x0, @in6=@private1}}, &(0x7f0000000280)=0xe4)
mount$binder(0x0, 0x0, &(0x7f0000000140), 0x0, &(0x7f0000000780)=ANY=[@ANYBLOB='stats=global,stats=global,stats=global,max=00000000000000000003,stats=global,max=0000000000000000001,max=00000000000000000001,max=00000000000000000002,max=00000000000000000000,dont_hash,seclabel,fowner>', @ANYBLOB="2c646f6e744961707072616973ea20b9a4234b0000000a581faf64d2a93ed3bbeb71a6fafd174171a7c775f6cdfb9e641611056ac9c38f788554"])
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
umount2(&(0x7f0000000040)='./bus\x00', 0x9)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f0000001380)=0xa0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000040)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r5, 0x7a8, &(0x7f00000000c0)={{@hyper}, @any, 0x0, 0x0, 0x3, 0x0, 0x6})
r6 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r6, 0x7a7, &(0x7f0000000040)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f0000000240)={@hyper})
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='net_prio.prioidx\x00', 0x275a, 0x0)
write$binfmt_script(r7, &(0x7f0000000040), 0x55af)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r7, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r6, 0x7a8, &(0x7f0000000080)={{@hyper}, @local, 0x5, 0x7, 0x2, 0x0, 0x2})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})

2.007778187s ago: executing program 2 (id=367):
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r2 = syz_open_dev$dri(&(0x7f00000002c0), 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000440)=[<r3=>0x0], 0x0, 0x0, 0x0, 0x1})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r4, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(r2, 0xc05064d1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r3})
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c00000010000100"/20, @ANYRES32, @ANYBLOB="01020080000000001c0012800b0001006d616373656300000c00028005000f00020004006cfcb086f76ad87775c55d76ced5985be42325b432a03882066e482818e9a1862316569fabdad0ea1bae777c48fb5e80f7484766648bb7a54b18e82090d3243fe404a3da12368887b5b770eeedaed8060045c9b361d035427ee651ef1573b8da4bac70b83a74f5a1c838f49b8a9c6cedb074bc9eb47af7a667a18e4cca2058cf119923a417c7872a4862aa4fdaa7fa1db88ff0c1ddcfc2230ee8637d34522113ac83bd589f2edcf997286750a85052c30e29c9f8c613c2debbae4dba8d"], 0x3c}}, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
r7 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x707c, 0x0, 0x4, 0x8000288}, &(0x7f0000000340)=<r8=>0x0, &(0x7f0000000280)=<r9=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r8, r9, &(0x7f0000000400)=@IORING_OP_FILES_UPDATE={0x14, 0x1, 0x0, 0x0, 0x81, 0x0})
io_uring_enter(r7, 0x3512, 0x2, 0x2, 0x0, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000480)={@hyper})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r0, 0x7a4, &(0x7f0000000000)={{@any, 0xffffffff}, @host, 0x5, 0x0, 0xf9, 0x0, 0x0, 0x4000000, 0x7})

1.147548856s ago: executing program 1 (id=368):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'geneve0\x00', <r1=>0x0})
setsockopt$inet_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000140)={@in6={{0xa, 0x4e23, 0x401, @mcast1, 0x101}}, 0x0, 0x0, 0x10, 0x0, "ec32f96ecbefea81c6e826ffc11d11ae7770b401213fe0d25bdb6fbc34641736901763643372c8ae06569d0246b725f2e27aae21dff07d95ab6aed7a8165e31dd8f34c6da5dfebe9aec5fef78d2bf006"}, 0xd8)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
r2 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0xaf01, 0x0)
r3 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r2, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r2, 0x4004af07, &(0x7f0000000240)=r3)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), r4)
r6 = socket(0x1e, 0x1, 0x0)
connect$tipc(r6, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r6, &(0x7f0000000080), 0x2000011a)
sendmsg$TIPC_NL_NET_SET(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)={0x20, r5, 0x1, 0x70bd28, 0x25dfdbfe, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x40}, 0x0)
ioctl$VHOST_SET_VRING_KICK(r2, 0x4008af20, &(0x7f0000000040)={0x1, r3})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000180)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0, 0x809b000})
ioctl$VHOST_SET_VRING_ADDR(r2, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r2, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r2, 0x4004af61, &(0x7f00000006c0)=0x80001)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000e, @void, @value}, 0x94)
read$msr(0xffffffffffffffff, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r8=>0xffffffffffffffff})
pipe(&(0x7f0000000780)={0xffffffffffffffff, <r9=>0xffffffffffffffff})
setsockopt$sock_timeval(r8, 0x1, 0x14, &(0x7f00000005c0)={0x0, 0xea60}, 0x10)
splice(r8, 0x0, r9, 0x0, 0x7, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0x4}}}, @IFLA_LINKMODE={0x5, 0x11, 0xe}]}, 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0xffffffffffffff34, &(0x7f00000000c0)={&(0x7f0000000580)=@newlink={0x3c, 0x10, 0x1, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r1, 0x0, 0x20001}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ip6erspan={{}, {0x0, 0x2, 0x0, 0x1, [@IFLA_GRE_FWMARK={0x0, 0x14, 0x6}, @IFLA_GRE_LOCAL={0x0, 0x6, @mcast2}, @IFLA_GRE_ENCAP_DPORT={0x0, 0x11, 0x4e21}]}}}]}, 0x3c}, 0x1, 0x2, 0x0, 0x4000}, 0x0)

1.064437149s ago: executing program 3 (id=369):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/key-users\x00', 0x0, 0x0)
preadv2(r3, 0x0, 0x0, 0x2b, 0x0, 0x0)
r4 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet_tcp_TLS_TX(r4, 0x11e, 0x1, &(0x7f0000000540)=@gcm_256={{}, "dd1f67eeaee232bc", "33dcff273dcda64434083fc81269ec10a61ee1d936119116fc6dfa718b8b5f9a", "15f71a38", "56544408ce8ac9f0"}, 0x38)
listen(r4, 0x0)

1.06046254s ago: executing program 2 (id=370):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
ioctl$KDSKBLED(0xffffffffffffffff, 0x4b65, 0x7)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
r4 = syz_io_uring_setup(0x23c, &(0x7f0000000080)={0x0, 0x7f36, 0x10100, 0x0, 0x1}, &(0x7f0000000180)=<r5=>0x0, &(0x7f00000001c0)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x6, 0x8, 0x0)
bind(r3, &(0x7f0000000100)=@alg={0x26, 'aead\x00', 0x0, 0x0, 'morus1280\x00'}, 0x80)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
syz_emit_ethernet(0xe, &(0x7f0000000500)={@dev, @broadcast, @void, {@generic={0x88a2}}}, 0x0)
io_uring_enter(r4, 0x183d, 0x4000, 0x16, 0x0, 0xffffffffffffffdb)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0x5, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
socket$nl_route(0x10, 0x3, 0x0)
r7 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$DRM_IOCTL_AGP_INFO(r4, 0x80206433, &(0x7f0000000200)=""/250)
r8 = dup(r7)
shmget$private(0x0, 0x4000, 0x8, &(0x7f0000f46000/0x4000)=nil)
ioctl$VIDIOC_SUBDEV_S_SELECTION(r3, 0xc040563e, 0x0)
read$FUSE(r8, &(0x7f0000004a00)={0x2020}, 0x1f69)
syz_fuse_handle_req(r8, &(0x7f0000002140)="4be8f20502a77fd2e0eb21c968a86da8496e72c1df30fc656bb57d9ade3967076376e333fe7c11a0aaff2e5903884800a7fd35012e9b4faf32c7ba9deaefdc238aeb6110533b01b856da6716d0cd4c7aef469f5cb4f081c980029c39c2e5d8e1a032f483ae29871dd37a777f50eaef92de7274af446417038de77813ac2ce0f94f2ae2e414f961ed3a409d2089dd76a3c47486198e8904c49b3ff5cab75bb6e1227a6137f6e79cd1b5f488cf65d18929c47e9282d25c3bdbbce88a2f632f195ae57ae9eb5af3827fa6e9c90adf4cadab304a2358a7155c579751a95e59e02c18be887356fa846403bf214c7c393adf92ecdd619b390f33fda2813830e3b1e36d2a7beb7f3208f2a3a5974229ef599f9a62f66fa62e424b9196ae9ee2a54d54d9c4b1e92005558bb3c6c4d57e80240f3b2b20cccd77981ecd56c4ff2438c77f14e85fe6ce7004a980b03fae3cba5cb4a300f964ab9c09165b8911006fbc8e15e2c92ea1e8545fd408669a39121cef3e781a6eeed07eb1b493eb33f95bc9d72606c9524a11361cfc5b23d2e0638058c0f47903b7c61185ecd4f6464cd3f0220ed330024e0dd396e7e706f2e04a9e24f2f7e5f276ec676467742fcc5b79fbe25659e29390aa02ce51f81e615a28bbe752603f018e89448b444c6d4c51cce4f17e76fedd9fca5647fe63cbac3333d37c28b2c705c3e75a20e9b4f24120324a3464363160d1114f2abbc2df71d176259f52028b20f0642a108794e7ffdadf3cd6a6db72c9bd6a1748c728b6d71fc55600dac5dd504eaaddde6510f14c7d28da1bd1fa286d531a57c67620089e87986d06710b51899e198f7f7f9245f763cd320d56ff8cf3fe67531cdcf746aadb691729375e513cf0811850c43fbee434174b84f6a2eefda1ec4c8f525e92198cfce312d8ce04ff5378ac86cc2e23dd6fcb535d7b4adfdb130b02123d43ae5d5d1ca03d9cfe19cf5f02fe545f67eaa22ba22f7605932ad9762416ef813beea64cac64eb7534cb5742d50e1ad1dee0967507559be0a28b21e6a282a5797f8c0a6ddaaa5a9443ea84f62e545b0b99a2c076ea8f8a5e4b2c293cbacef6f19fa87a108604d35d29b5c4e2a46e8a0577ab69a134a63ffa377d750b4a58ad902e7eb10ab92cea82d7269621657f739f5e79603678a58318994e50a6492e41e124313ec8b662baadbed78a088d298ac419a241cf6b4950739b873c08d1228223242987205327d2a8b9f5fb992da99ead72a6e58d80b66c02fc0f3b5df6d6a3038b049363b53b5ac022c3bacb19856b5da822913ec5c46226c12debcec37d55067c6dd1192a2807017c444486b015196ec755afcd19abb520662dbbb7b361d25dc50223b448926eee1f0118a9f4d6ca826d6ee70216848af23f86156879f10a75f4b0c1faf65f158f5aa542e8f7276f7a6fc6d8de5efdb82ec4463892cac43c43128c830a150e8281433da315a41e366a216c04f40c695a2d3fbd466ee572bf8324d906925c1bf99f39380bfe50d59cfafd7bcf7eeeaaab6080b4c56178ac7dd66a0bad9309f5ce35e09e1238006a18f6d466527112ebc7f0df1ea99b58b7e44da38b74b8f50b9b53febc77a133e2aa160b2303675d2aceae1b82b365b17670c7644ac5abe4809131e04c5ee53ad53bb4f5d881bb3dd10d55e88f17d522e0fc8c6646aa29abcb366e784acc045e43fce74b74d09f4c377e078d6f43acd9cdf110b5723118e542e21471a21d3cd00326121baa363a00cd8811dd1ca305f68428291587fbe4e5285c58f63ed98e14ffbd3898d1208c4d53db5f6f35b94eeb0a65b329cd23f57e9c99b64894a53b901e23a42db5b8253a8b1415ac1db3c82c94a07158c8b8b058f7de8ef897ff1b7cff449e63bb4e0de7f7fc9b2a5b1fae81f54e1c8608e9aa28483fee4b05abf4b5d4b817792a8297239353196209dbcc06f75cb79e4e77d975e648f0a6a4014d0ae3bc5cf90d2ca85e3405d3d074c8c1f9e072d894bc2ebd9348aca5d4b1a418e52415cf40c4803d5068992a7f31f2a8137cb760e633a0381ef77ecb2d7398a4feada4152ea7161573fc3ed2f5b5539e27e0662111d39524c61fdf38fd89097056787a64b79b00b1ce5145de24acff14127307b216af0dec765b8daad498e7bc8b62e1d14ca7c6c0a8484f1e86e10d9c0b69063aa66aeb4ab4555558a4b3bc6a6304782c09d89a3da034bdffe4034c589c637be9a6516a00b8a87a3317c4c7a89ef6170de040cacf34e3e91e150eff790c8775394f24b5446dfc8756406d4416d6f16fbee35fe648a7e1770334849775b8f117caa4fc3597a6a5159757061f80ea3d627d24a3438342d01488adec12e6c0c966e136ff9f88c457d43e0cdc72189696db6f54643b1c673ea82d5a9a121cc563fb7fdaed588a321f9e79c89269f3132b728bc638a5b323e5e85eead70ff05be3fa47a0a25f0b200f4f3d8e6d578680d2f77145153af34e94cdfabbb0eebae6c73fdfae7c46e5325f82262b839139e94e27fc8a986a4bbd83b0763aec6d0a9c87ee4718f6d1718bdeb7c86953e66bdf085152ae77093881335ce3c7e760953755152e9f3af07f8083482ea1013f1c5cc2759794dd8c6ace40ba574fbacabe2cc7202c95db24aff8913ce05cee9c1378cac00e0b6fb10298495cf68cfabc2f213ba5988b065565e54098bf98d9bf2793dc9545805c226f22babbc2b50ace4b148aafba45dd549b7b215f0c1fad078fe60567ca9c840c8780c0f2ff992b8af40de5b362773d0e6365a62df432058ec8f17e7b74aa5c857b1e86380183a45e70ea6fe311da3d111a996cd58e02eb2419d31840f355cc4bbe3f25e21fb1562e5167f3ab8c2e73d2ce3bfa3aa2ac5fc9d3defc9680a32fb9974dcb8a02571d2ba5b5a0ae0d302ad089423c4fdee9d2906bb7409c1def2e0c446dcab0ad7ebcf10e4b46296225449bd057616c596cd158b60eb2b9ccc99fecbed0c5626ddaa115528f63748c46a1c902c55beb8fef377655200e986cd35b9ccdf848b0c2c16a8ba87d7e046679f7b96558eea100aa48641f349a68ae702544f699a2407cc3e4325b8b0fc63b97ea5dda189dedd3867cb26d422c988ffb10ac897e653f741b1e2614165c3fb6ef51c97a830717336cdd4260e57da396c15e86b545ddaa6178c97b47b908491f71dff42b21331d9007a22448ad4ced07b41dc154eaadf4837a14d2e5e23af976f2f5550f151364eefc246ec5e84262fff0698f390de428943cbf7c8f36da7c716dfbb9ecb6ec455394c0113ed0282b7546d5ddf36f2b9a39b5f8c3ec4fb2883cc04e392c53bd083f1ad54272e043b76e776037e964255b270a5b8b3f7d4e9168480f841e1e53ec8df06cdbffa1b760fe24b1ec878676d1267b5c4213dc0e55b063a4cd28abaf101916a8d56bb0ced0b3dd822f3b99b4d269e80ade9b7549c807e960a4c479e2d0e27e03008e1e00a65a1923542b1bd2f43d8d513bdf3462582d6b1fc0a41aba459c63b7329fdfd66a4a26a05462c3e0fda32d280d639c8a162e9d17c36bf6dd9d423b37f00f244f4ec97c944f17e6ddf5d29ad5ed39d35d0733e508b93c754aba143182a4b9eb4a0496fbff7cd5d00712fe1a86187caa9ba4da3dffcdf5e03ad85a9acb876d0db24f26cef277d772efedc8f7f331fcadb43905b358f0775f45b99c25da1196048fa6de090b0c795236ddb9964826a9658bd0e5e14a2e72e49fc70787d42f6a3b14ce349702a6d2eaa85643ab1b11909f50c59029f43a2fc3d554bbf80bc8f953782c45de6fe93bf25c5d8ed508b621b2d931f5f77952879c050d3e3a40c1ec4e2f1692a6d51f758adb4fab83935590f2928dedfce22619870761e37504a65bedcdce2c8907ecb8edca7d0706ef60af1de43de442e006ac5064e1a8eb924841fd05398754e10d5d0d365a60276e937b1eeb8be6b3da6e67b4d4b07c4f4d422f656bec0243919238a1b4bed6335797bb152a01f3e8c47900dce83b7fdc5ce7fefa4e326638c3b512d28b9c50231513417657d1c006c21e980b907ff56a1b3cde499bbced2374acdb2554c834b1f7c0f4d1fe0599d35e1b228cb625d9de050d0eecc88ac14f71843c560d3403c703636644b7853b3051ee5dbe2ffbeb04bc5ae2b9cbc50b6606e8a95a5e0e0ab3bbf717acdbb5ec93189c3df8fa9c7764187a96646947a9562e63b7acf82c179ac57f3f3adf975fa22bf43dc8766840185e93f7475291b29ee96aac90582ddc40b717826a437d31d1562f9868fde494afdb5b107eed971a66721b9f6122cdc9b3ca2dbe8bc60d22e8f9a68740dd18d86328fdb17cc545a40907068a3aa8113ecd8b2d7791be9958220336acf3e751218d66f67692807527943c263ce0da8c68a8e9c08389107dcf7dfc2eabf06fced88814243791c5204e5556d9047601631aca57550f3c51cea1f6dcb12225df69f9b756b0ab3fd59401985034eb2a9fb53f60f781b8aa90a3c7c01c6764762e67cecf4e71711893de532ea829614cacf7f3de35b80897f2d17864567d48ee14fb33e5c552fca652b9bef7a091ee74d6b432c08bc2e021344f29f385a148577300b4ecca2fba5308142f6149fddee61eb9145b29ef32470de3baa6d8182e81e51326e808b16bfb96885ca1bb9122f5c58cb99c65fc0deaafe38f94b9f9b8a46e61070974b67ceda158b4f8076f30628f899c6cb9b8ef430ab242872f218d929c8b874374e61b4460ea235f0fbc237770ee5711ee15145acf64b7079ae977a1c28378faf12abd89c298d1b18b593be24ad0f5461b9043221cabd428c3be8dd8267eb3680d87ba7b28531133881452d6e3b59c514f11c6d540c97cc5125010d4651f919c47f57c06dcf6dc8b752e3aef137f8be3e290e8c8ea54e5164c4135f1cba2620f1a1402a353e0f4ec1032a29cb748ad2ba5ba23faaceb8d1d12c21ea599af9237cd9aaea8acf59e9b77c1f8558b77c7b84f317471d844458150a6bc0ee20abed0b60ca8fe0c194ac08f82738c90efc7e2df1f5d47b1821c753df88a1d913df0d216fb6176325839bef771a6b0d186fccd88b3f15b8500fadfec4537a6cbcfa1fbffb00042d5bc502bf1dcb1e6bf79cc3e5bf7515ec292bc798fa824215b049d326cfe9301f2eacb2923394a9a6e8b364228afb68396e580cb57129919fb22341d43cc0d0868c0b5db2f4ef835ea654c3e95851978158176146935073a2705430247c6a3474b685db9ec4f31eb60cec87a5ccb7e8d83ac74d8b9201fa9beeb07a0081921aee938a93bef51b73654e66cba642a505371f4d6d19d32578205b00003dc51f9f98ead84dd51feedbe5ad90f8ab985443f4c74b6bb02dc3726bc59461629c04908502c72edaab1f26906d5e8f389bea39bcf857da13ed7718788c3d58c35dcc6b001707abd072b6c60d1c4fd7c94f61c96c65b4cbf5f3fc81ab08572c6fd4307fa70b46243ddcb2c565fe02bcbea32f80d258f632944205d97fae661d4f0c6f3e7e71f33770ab19deaae15a0022f79e843e5817e8523dbdeb9fb7694aaf8a59d57dc4add883a877529a3978eedd6331018bbaa48e5fdbce094c171a8c024b0ca796338e085d18dad78287f1632185b2173ab0270f7a364f0f36ed8c9b9a519544125555eff32f503697ab33222314b3c3d59bd616df97d2adeb4074e7a411ea579a782275fe5f0093b38a2024f15a22739c20b73972e62d252deeb75577f358c213628ff2bea3ccc4ba6483d29a61289345c3542bf2edfa2be0b68e403088b61f67bc4728ed3e07328d035ef7a4658d6729b8e8d8d8026d1060f64fbca16439fc88c65f6c38057945492783dc2f771b5e03eb636b2e999d90e601db0e1d7933005267050f2acb7adee86c1c841f44d0da46a0495716f94ce2f279fe8b7fd90f01b9c1f3f75f6ca8cb040f8431d5ee9002257d629cace722e41f944938d9ed675e5d40cd63ac1afa2a00e8eb003b7750f8c0c1fb16f2df5af097dc6b18330ac5d135d772c9331eefe5f7ea51af1695b9deb26a620b611cc0ffe8baed175ef3e53a4fe0f9990bcf2b314430045e4ff5a97bafa1d979195ec2b31417ca54915b9e972a220c45fe65f4e3320a666d122fec30fceaa01b94c09e68a36ade84542c7c0726d06703210e616f7a47822482d58dfd3eb529510c12a6379d9d039cbcc3f52651f206cde8c6de42bdf1feeb5505a83ec3d4220f9a0b77e51aed98e67834179050cb1a3e163dc03dfe349113aa07a2e008aa4118eca1d3e35b25c4efd1dbafd0e14e5c19c9ddcf5a0f3241b7dae1a26b776e8de9fb4bfe53d36b3be406065e471d7b9190795fac88e21250f7dbf97e49b7438351a5a1f469c876f62a1caab5df7ac4096bc21cbdf5d1f1ec8e1fd19f04395dbfc506f0fa7fad51350139606b37935042e5a3d87f6b2961a9ca7a800570e4e46f4964d9c877586ecc16a94c9d4faf3dba3681f436554b058aebea5362c9574121767c4d653bd0bea5f0ceb773fe8642caa34ae4f72603e68d01a907e041a2fce736aaf3ac4cafef3f36467d3d2865613b27b01ca669b1cdb1f4f6ef379147093b79a415ec0c21754766eebdc7cb9153c6e0a356c022499eb0234790c76d63a4f70d2c0069a0e47c84c19c60271a9c5fc32e46e3e460e6ba1d79456f42c999da27241c26ee20405efef31c14ee3b31c6dac5ef6491378b57375b6b2164522270d6c03a06e0829acd207e711f09c0b0bc42be1d1070dcd5e4fb156efd84fc8fb41b10651f0fa06fc07d5c672ed348c62d551f21afbc0e8f21931aefd97290b505fcefccc6bc8f0f729a73a7e1ee52b1a2480b645f03d950337f079e0a456e019a44ad15ece4ce21a62dbdf6a034a8a0ca1a64855c235d16226dcc9688862668f85e3bc00be4efe0e0fdec058e4230329c95e2f5c624f08cb44d7f2beff8ecda3eea547672cfca718c125350858651b3534f29df98f92e1687d26996caeec4b6416f5ba131cf639d2823045fb3a7fe3dcab8181b9d7fd3f876a117a72a5d55dfc5a0df30fd2b81fdea46ca3d4a9594cba0981feafa79ac124f4a43f8c443a20f53c674c16759ac15143dbf8f82b1b52d3cbeecfdfa44eec72bd0da76240f126af1c53f5ff0f3cc029ac4dce10ede664aebcde4ee24691ee2b178584e199a4ab75417406b20038f69bb15a9114e10900c5696664f695f9ea1507a767d162b95a64503fdbd58c8dc40465d8ba243e9b0320b0616c9c3e2b6c00e343d8f85a46e06609f11558fdbc0be5b23972d01b02986abddf2043f770e518aab787c0aff3724a1d5faccce3d7d6f48cae6cbc92f981a84757c48acd80acffc67fcb6c34edda2e4c9cb7744d4c9dcbc88a1111ac9750770e4aa40a867c34a2a39cc1c40054afb1501631bc7da2fc337ace794d452b2b71aed50ebe756dd4fbfef3db964ebec9df72a3c25d6f6ab1169b638f1c08fd505d63479db8199a34ad537755056e0256a1439eafd67ab396b5bfd7d3a9d3e9b623e201c233461ea8610041a4c23d86840620fea1bdc54b97dd1a4946d2c54cc11921a06b4fc678ee6a10680ca75a03310e316d07d3ffbfa5bc1deeb8586d6dc51f8f3210e2e359eb14b5bcc79274069645d2b6b25c97452874d5aab6c62de7a9b5b7fc0c1118e5af251661360af92652f739baac8c0ce7680ec0e535a5a6db0e97cbd3a59c0a79db0ee5058e1013731326f318b592d7af9b0fdaa5eaceb6bffa7bd495f179aa1eaec4a792f29a731326d55bca4b6259848a438064f5a5e7037d78108073940b866d400a6d8d78db12cf1916f53d3abb1c86962034fc33fb6af3fed20f9d51ef51d32f3c35d03e08536166521e5bb9af536cb7de99738f8452de0223c55786d4ba3a01c63949797f31e51030d51094eb65fc4dcea3164e1b8a418d871fae485787708b825ad58a0de541fe806eb6e1ea88c93145096138c3acd7fdfd014dab21eb3263c9c550f849941de17284321f1fa482986284ccb479d8b553232199f9ee867040f95a8b4f6ad85ceb2abeae0c4a0f806080a8751814faecbc5e9db04286f6fc6fb628b7985f003f5fd6a6a93129ce7d40e69f2accab1694c4875fb5f3be44af7e53b29e45159725036ceaeeef36b60461fd1a620e9d0b7de4b57b0d42d33e9d35fb0824a599594e9ad8bc4d576ce27afaef762920715cba1671db800abb681b4c16eca03120d5983f9a8984ea9e8d1c9bb94d467cd559cb70b1f628e235e3f510539f5d73e334032f185481d528d0edb5cf3f868ea4aba293e63e948502c061fb40a93a650ce569b3314a7d1eb3089d0bef1276de885d42a5451d27d07b1f351da99b0ed03a194e1b9bacd7c75eb8a0f13a9d6e24e2ffb7ffe334b8783dc70583d907470a3bfddfd652c4de5f4585648a89402d509b2cf17e8b960d7584387991c98c50cf1c46081d2a6571b0012cb31a5e6f802506241fcf91e6888d8b14e333fdae329ed3425b677b3abc4c39e7b885280979cb2cbf4cdc0078fb07d4e6db1ac234255c35ef03b79e62081a293b4d5d1a30aeca81a7f0196e7d5857d047f060007e863c938583ae2f266e58ba5677f6f100bb57f01b516cd58c032e094d52c42eace8b98ffc2e263afd598266c02776744945447760ad14af8be88d5b9611f8225db762a174c4b889237950a2885682303ddc36cfffe33cc3cf9b6d6f8637d940bf507e32eac495c3a1d6d623e8d614b61d2a9322191c72e0f333ab8299b9672b8416ee55c810e8d5f3c8a3de3a14d427f05563947c8b67f5000d35e6b511e6e45fcb3a36dd2a72ec4277f8fd4e69bf9a2ac5137bf343051e7711929b34907cdfaf68c9b923069253c406a7320ead46b8c963ac7689957f881434aad3a927b2e0b458e3a488aa779aae84451655475bc3374d395621ac61554fa48f1026ab0385d1c80dcbc106c6c018af82264e88d7ff2a4b325328490b0ee41a2c9c6ad5caa99046d0ee151fbd56c37b3ae50eae50de90bb85c50de0e4a2483f2cc004f5227e99efde9ec5fb85d0fce2546fd690006e4c7d29bf5b8a36930a2e35b8bed46c6ed16efd0c673f7ec647ba3afb8b22f127873c26d7fe5a768cec830cba19f92ab314900dc8254834c661c85c7c704e89a6b213bb99f85cf6266a79ca643f36557e61556148fe30bdb1731ec13e83c000f95b3e53987982708f1312f317336b135aa8fa002dca0edeb2f63e6f4a3c25cb1a4ed34bc97122e9c60b3c446e3891864dffd49faa565fe7446673792f3734b1f20d05f4109606360da823097d90e610e81306697f5f3ed6c7c6ffa6bcc340097206f7ce32eb9098ad48a63a970981858532c81f74ae8fc445ca31531354effdd4225b72903bf21f3552ca4f20c029708403ecf075c9c47f46ab6269680d6110532d6470858edf6a022953b29c5f36917ff58811ae420aba5c0162e88b2fb4c66d29285e195dd4140aca76c4874d4f509e0f41cb2306259573e56eeacce18f6e73f958086e753af7c0afee23f28d6870e65e14b42f5eb0e61aa0ba1b53bac166925b9724612c3af38d4de08d47765d01bf49da713e5d0e461165e936dbed472230843c1c19493ceed2e6a1c10804a4514f303c2913d959f8dc8faf1a7f830cb876a362681c36bd55e7519c5a2e411d1911bd473cd13a08f37885a12157e74f813aae27825cc3655d4dd8589bda4d4020b8dad0b0f2387de35cb3f0d848444f3a4fe9de3fa8092d17d97a7504fd3b06cfb22d0600fb3ab28cceba97e1a4671ceca8d23d4311212b19ceeb3b73901310e7e21b3a2f318c559f83b2ac7a01243736bbca28dc39f84d189e772efe5260fa5d56b3fa1774381a2bd885045bd2359d2ee1599407d904ebc8ddb3122feec2040e0762d7f6ce69fa0af4a2045ef9838ed7bc6488d310ba9444f049d572d9272730370058a48ca0aa013b4887dc196a678489fb70b26f98d39b339571a34fd518fa36c1920442627e034f9a421e31568d4b0363ebd52170d08062565a135ab5d88b1acc05ab664cf36fc80513daddef4116744f11e0b554aa98068b79b854c3fbaa2a35ae554d6aa217538c48a3d800185b6e8c269921142243ef98f75f10d9cb9d392388889507f1717e4df3a53b32ecf9dcb72116970170c035f2c315718b780400af3bbda250f8f3dfcd92f837d11c83eed9ea6d1ac12402e82aec438382a9bd6883e99c8ac9bc93e2d0cb4253425ecf80b2268a536658507da2d5241cfba62231cd4909d09e833274401d7b3c50d2573b6cd25d85aed3fd344755a0be2f140dcd457537151a74f146523261a28eee9559605f710161b4b5cbb20c0e2969bb0694cac793b9952d4681a2803e85df438bf48fc900797c5a3eb33ebd35ac9ac773a917171b33d256ea211c72adce1c1c6ae6b2f066d7a14081bca9935b503bf100604fc04f3dc49bbcfef0c155a69be52b2e6652c89e895974fef54d50a77c51688baab539737b0dffd39fb376e21d9241409c8ba4be525dd8c31ba722e6594bfdb624f3f3519ff5e945d6131bfdc10cb3b22732988007ad46cb38696c4577f1d45ebe89dca698a480b6d9023488d3bdf8a647c291a6b8e1950d58d5c97d5a1210fc86b321c505f3260b15847a8c38e84ff46f105b2bfcb8511eb0b3ad8e4d38b473769c04eadb4d57afe1c156c5f565d0d7f521af2f63321368745185c29cec45495478d4aa1c8c8c3acf0edf44c6979c5f28d1a197a45e0bf993d16f008aed4beecc86986a74874ee1b79cb7b93a7183d832eb27d5c8174633f68f4bd5f64c546b3e567d0682a27bc94485acc5b8c07afcd10130e8105fce527094112abe961cedc16a942a1d8ca90e40137fa735c755cb7780d7aa43fb6f552db30d2cbba8ac0e4547f2f1b2c225ded6f585112770c04dc705a948fb38fc74be8f67def86b36e8617d7f03221f00d213dc416d5dd25f618457abf1c8dc9419ad39130e5371f61b2fd05899972a60e300fd11fb6a53efc81e9d4a2335c52918cf2af605043ce8fe302cb3ab23ef981fb0a8ea7fabd0268d5de3b6c50edd36819b2445d96eb2ce53c192ac78ecf615e334b6a5c7206b6cf76fdecb3a026d0a2f10f42adbeae9c969a932a23f1bd6d24b160e0ebfd3e229b7c1290b463d71bc9637585ae7ce483ec94d69004249b95d99655831dac38ba6b5cbb057debb376d2ed652af1580bf5444c465bac61657e171d2ae1af06d4a8aacb7c1e411845b3fe7cc76bf196fa9706ce292b4aa002e1c8cc7da812949258e5ffeac1e9331347fcf723246c00228d10f0d17426ee3b836ec35133603c3249a9d3a291c085c961df5206484bdbfc65e0a17beca26fec8af34cc241c31a195b292a7d38fabf670ee7b8a22e46a46680914bc11eee9181f0bff2cea27b712b7ef1031c8adba5969bad0891dee6271802fe4173a8a4f6a8f931084d0ac1996675815165338655a82046eb9fd34ffda3168f3aa91a3d12d28781fb48a8062c33add387a055d9ef76df482ffc49d5bf887559f53c514e79495209d588d1e4f4d9e2034ebfd9964755c22d1ebeb1acec608d4fa2d9f5a746a48723d3cb69776ad1c1e7d1665fc5f242151744241afa4deb83856324f", 0x2000, &(0x7f0000004980)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000700)={@map=r1, 0x2b, 0x0, 0x0, &(0x7f0000000340)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)

957.846368ms ago: executing program 1 (id=371):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, 0x0, 0x0)
r1 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r2 = getpgid(0xffffffffffffffff)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'syztnl1\x00', &(0x7f0000000200)={'gretap0\x00', 0x0, 0x700, 0x10, 0x50c, 0x2, {{0x24, 0x4, 0x2, 0x3, 0x90, 0x65, 0x0, 0x5, 0x4, 0x0, @remote, @empty, {[@rr={0x7, 0xf, 0x7e, [@loopback, @multicast1, @dev={0xac, 0x14, 0x14, 0x31}]}, @ra={0x94, 0x4}, @noop, @noop, @lsrr={0x83, 0x13, 0x3a, [@private=0xa010101, @private=0xa010100, @dev={0xac, 0x14, 0x14, 0x20}, @broadcast]}, @timestamp_addr={0x44, 0x2c, 0x1f, 0x1, 0x7, [{@dev={0xac, 0x14, 0x14, 0x3a}}, {@multicast1}, {@dev={0xac, 0x14, 0x14, 0xf}, 0x5}, {@broadcast, 0x2}, {@multicast1, 0x9}]}, @generic={0x88, 0x9, "c1a01e551e5586"}, @lsrr={0x83, 0x1b, 0xc2, [@loopback, @remote, @initdev={0xac, 0x1e, 0x1, 0x0}, @rand_addr=0x64010102, @local, @dev={0xac, 0x14, 0x14, 0x14}]}, @generic={0x89, 0x3, 'z'}]}}}}})
getpeername$packet(0xffffffffffffffff, &(0x7f0000000300), &(0x7f0000000340)=0x14)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000380)={'sit0\x00', &(0x7f0000000480)={'sit0\x00', 0x0, 0x80, 0x80, 0xfffffff8, 0x6, {{0x23, 0x4, 0x3, 0xb, 0x8c, 0x68, 0x0, 0x9, 0x29, 0x0, @local, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@lsrr={0x83, 0xf, 0xb1, [@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x19}]}, @cipso={0x86, 0x30, 0x3, [{0x0, 0xf, "133da2f4f9d5df13fe252c2ed6"}, {0x5, 0xf, "f6618b8c79ac5bddea72820fac"}, {0x6, 0x8, "4e81406e14d6"}, {0x5, 0x4, "4bae"}]}, @end, @rr={0x7, 0x23, 0xc9, [@empty, @multicast2, @dev={0xac, 0x14, 0x14, 0x24}, @multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010101, @local, @loopback]}, @end, @rr={0x7, 0x13, 0x8f, [@dev={0xac, 0x14, 0x14, 0x31}, @initdev={0xac, 0x1e, 0x1, 0x0}, @multicast2, @private=0xa010100]}]}}}}})
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f00000003c0)={'batadv_slave_1\x00'})
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000540))
ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000000880)={'wg0\x00'})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f00000008c0))
getsockname$packet(0xffffffffffffffff, &(0x7f0000000900)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000940)=0x14)
ioctl$sock_ipv6_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, &(0x7f0000000a00)={'syztnl1\x00', &(0x7f0000000980)={'syztnl2\x00', 0x0, 0x29, 0x13, 0x0, 0x7, 0x8, @remote, @private2, 0x80, 0x8, 0x6c, 0x7}})
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000a40))
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udplite(0xa, 0x2, 0x11)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'bridge0\x00', <r6=>0x0})
sendmsg$nl_route(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000005e000100"/20, @ANYRES32=r6, @ANYBLOB="17"], 0x1c}}, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@ipv4_newroute={0x2c, 0x18, 0x1, 0x0, 0x0, {}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x2}, @RTA_OIF={0x8, 0x4, r6}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000b40)={'tunl0\x00', &(0x7f0000000a80)={'tunl0\x00', 0x0, 0x8, 0x20, 0x8, 0x6, {{0x1a, 0x4, 0x0, 0x1, 0x68, 0x64, 0x0, 0x7, 0x2f, 0x0, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, {[@timestamp_addr={0x44, 0x54, 0xcd, 0x1, 0x9, [{@empty, 0x3}, {@dev={0xac, 0x14, 0x14, 0x23}, 0x4}, {@initdev={0xac, 0x1e, 0x1, 0x0}, 0x6}, {@initdev={0xac, 0x1e, 0x1, 0x0}}, {@empty, 0xc}, {@remote, 0x4}, {@broadcast, 0x1000}, {@multicast1}, {@broadcast, 0x2}, {@loopback, 0x7}]}]}}}}})
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000000440)=ANY=[@ANYBLOB="140100001f0001000000000000000000030000000c0001", @ANYRESDEC=r1], 0x114}, {&(0x7f00000005c0)=ANY=[@ANYBLOB="9c020000290000022bbd7000ffdbdf253000ec800c00000025000000000000000800b400", @ANYRES32=r2, @ANYBLOB="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", @ANYRES32, @ANYBLOB="1501228004002c8008000d0021000000040026809e609d4d44f4fb155f69ecc2290465cdfbae1f05c03edbb35f58d653546ca20ff4b22d5ea69cd99e1585514e3fa50b82093957ba06b7b8fb9426443a6a1a283eb58802a7db583df33bde3504264bd4b44cf5901e17d15cf90e28e0e8ddbde1601cd9334c8d72382251c9e1931cab45b55aa961ab418f8118afd2ed62681abf9ead54c80835707e8e99ffb0f51837c7cfd899a4dec363df783af2eb657d1012b20c2d2defe69501e70213b74035c610ba17097838e15e8935d4a1ea5ce1b54e3da95b5683bd0c223590c0ac0212c3bc65807aa955c89433ca70857ea5600102227cb0a6390ff7d9813de54a7aad6571be6eb8011c91cee9666408007100e0000002000000"], 0x29c}], 0x2}, 0x0)

935.718815ms ago: executing program 0 (id=372):
unshare(0x62040200) (async)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) (async, rerun: 32)
socket$kcm(0x2, 0x5, 0x2) (rerun: 32)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000180)={'gre0\x00', @broadcast}) (async)
write$tun(r0, &(0x7f0000000240)=ANY=[@ANYBLOB="000386dd0a00100000004000000060ec97020fc80400fe8000000000000000000000000000aaff020000000000000000000000000001"], 0xffe) (async, rerun: 32)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) (rerun: 32)
r1 = socket$packet(0x11, 0x2, 0x300) (async)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @sliced={0x0, [0x2, 0x0, 0x0, 0x7ff, 0x1951, 0x51d5, 0x7ff, 0x60f4, 0x100, 0x7, 0x8, 0x404, 0x1006, 0x8, 0xfffa, 0x0, 0x1, 0x7, 0x4, 0x71, 0x6, 0x1, 0x7, 0x7fff, 0xfffa, 0x5, 0x5, 0x8000, 0x40, 0xfd7d, 0x80, 0x3b, 0x401, 0xe, 0x7, 0xa, 0xfb, 0x5, 0x7, 0x0, 0x1, 0x9, 0x6, 0x7, 0x10, 0x0, 0x2, 0x5], 0x80000000}}) (async, rerun: 64)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) (async, rerun: 64)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000004000/0x4000)=nil, 0x4000, 0x1000007, 0x2172, r1, 0x0)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0xaf01, 0x0)
r3 = eventfd(0x4)
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(0xffffffffffffffff, 0x4004af07, &(0x7f0000000240)=r3) (async, rerun: 32)
ioctl$VHOST_SET_VRING_KICK(0xffffffffffffffff, 0x4008af20, &(0x7f0000000040)={0x1, r3}) (async, rerun: 32)
r4 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r4, 0xc018aa3f, &(0x7f0000000380))
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f00000002c0)={0x0, 0x1, 0x0, &(0x7f0000000600)=""/42, 0x0, 0xffff1000}) (async)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/236, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/66}) (async)
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]}) (async)
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f0000000000)=0x1) (async)
munmap(&(0x7f0000004000/0x2000)=nil, 0x2000)

730.260523ms ago: executing program 1 (id=373):
r0 = socket$netlink(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f0000000480)=ANY=[@ANYRES32=r0, @ANYRESOCT=0x0, @ANYRES16=r0, @ANYRESHEX=r0, @ANYRES32, @ANYRES32=r0], &(0x7f0000000000)='GPL\x00', 0x7, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f0000000340)=[{0x0, 0x3, 0x6, 0x5}, {0x5, 0x5, 0x3, 0x9}], 0x10, 0x36, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
mq_open(&(0x7f00000000c0)=']#\x00', 0x80, 0x22, &(0x7f0000000240)={0x7, 0x4, 0x0, 0x7})
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r6=>0x0})
r7 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r6, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="2c00000010004b0400000000000000007a000000", @ANYRES32=r6, @ANYBLOB="00000000000000000a000100aaaaaaaaaa000000e2f24b9d8bad991709"], 0x2c}}, 0x0)

179.141731ms ago: executing program 3 (id=374):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000540)=[@rights={{0xc}}, @cred={{0x18}}], 0x24, 0x40000}}, {{&(0x7f0000000680)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000600)=[{&(0x7f0000001340)="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", 0x1000}, {&(0x7f0000000700)="9bb9180cb13cc73a21d5e5615692a561ffd0b78edd8b3f6875ee9cfab8115ddbe616f4c534eee253177a39d7bc2d6a411a9467cda71a4d85051be48d28c28bb78e0631cecf784cf4b6bc89155c4e847a3484d885f5be6887e7f8a9f2923f9de7838cf44be75ceb251572e91d4c8743b0882c2a66ddacd13b0fc1f8dc90ec24f0de7be1e46c722f17ed1daf80c757d798e09f5da6bd777bb9086dd2d1533e802ee6a35f5e90ba585f472f9a47a741e88a698276c5fde57833af5ba2962f33c7dd6f7ae38a5e55d5d05f", 0xc9}, {&(0x7f0000000800)="f20598de4d2a096b1c7b3f4d62c84f65ca458b863c56f51692b1e32bca6d3d7d4946bf05c13f584d2d543a6724ce3db8113b3842b393d41d25c9743a818e6ac91207a9932e91161babe6c2690aa37d8ccbed95999ad63e0db83435d08932a1a91236e2c7fb211ad6", 0x68}, {&(0x7f0000000880)="f046ffc1caefe4eb0283ab5d0ebd8db0745e59cfc67f61d2c5df08124668e2b4ca4c6b77e6cc1169c99cda5a39cfd20e0631ead096090f9671d5cb788d00cacb6ec3d46759054ed2a0475bfffbde74ed5add612db69660d4", 0x58}, {&(0x7f0000000900)="8df531f763812a86224b7ed44b8f009b01272285826f0071f34175b803521598ed12e0b33c8e903365cab077f4bad2374de60d63cea1bbabbb6af20fca21cce83646c2eba8252eb6b8", 0x49}], 0x5, &(0x7f0000000980)=[@cred={{0x18}}], 0x18, 0x1}}], 0x2, 0x4)

100.467697ms ago: executing program 3 (id=375):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x5, 0xb, &(0x7f0000000180)=@framed={{0x18, 0x8}, [@printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001340)={r1, 0xe0, &(0x7f0000001240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x700, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)

100.192061ms ago: executing program 0 (id=376):
r0 = socket$kcm(0x2, 0x5, 0x84)
sendmsg$inet(r0, &(0x7f0000002980)={&(0x7f0000000180)={0x2, 0x0, @dev}, 0x10, &(0x7f0000001400)=[{&(0x7f0000001800)='_', 0x1}], 0x1}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x1e, &(0x7f0000000000), 0x10)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73f72cc9f0ba1f848360000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x41720, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = openat$ubi_ctrl(0xffffff9c, &(0x7f0000000080), 0x20000, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r4, 0x0, 0x74, 0x1000, &(0x7f00000000c0)="f7fc3c41fde1a658a004e46d8c6bacc1166285ecfbc243ad8955cbd21c34ddba48df20101fa52aca9b107c20d7872ab8769843a4f7684df4074b55c819fb16bc63a7c9fa0d2b02a898b19883d9367cdd4256001585430bfb7f7a0329539bacc693bb63911e7e65be6a771d0b538c319e4f2e73a1", &(0x7f0000001840)=""/4096, 0x6, 0x0, 0xca, 0xe4, &(0x7f00000001c0)="c793ff735a6d77c6db6767eefcb914e6d25dccd6153ec7533afdeb37753310b3e3690a0ff572ab2dcfce2efa00fc7612b7b3b75ac09d453c118f068a798f1317c927d7a424eddece51f607307d48f9b4af28df08450c706942a4655ae21babdd3af57aeb1b355df0e2d5c7695f81dba5b4edcf8302568add2ba1f750bcf859d36556cbb7cd0b2edc95dcd9da3ee030802ef5122c87e6234ac86f2b4bf309db3052f9a863cb552dabba81e2732c287912cf7a36aa8815ecb259ebe36fd0fec949b5ea203330017e1cea68", &(0x7f00000002c0)="c5fa28fff69909597fbec87e370acdb5eb74d0ac52088c21d337e56111ffb5edbb0092effbcd6498657eb44f76cdece060ee182747d58ddc9aca49e033f05d8e3c58d0605bd9655472e44751aad59c4700ff5c41091b302924f38f31a049ec8099271f06bbea086d89eb8abc6f2f37982789959cd10c379a667cc6589daff2ae29b5b70fa108333c4a3d6e7d7ceb158f7be5acfed88cd2ffb02e1b645b1255602edc2d4b370c8df22e19e87f07253d5c2e33c53d68ff85209d074a12caebdfa9a24c216aff0475e0eefb20c05c0e9566f84a106a49d2ed0e1a1849dd59c4743f4ef38413", 0x1, 0x0, 0x40}, 0x4c)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000440)="18363e440f237c0f38f01e430f072e0ffe1fd9ed8f6d18edfe3866ba2000b8b3000000efc4a15c554c39ad66420f50c0420f07", 0x33}], 0x1, 0x3, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

99.834046ms ago: executing program 3 (id=377):
socket(0xa, 0x3, 0x3a)
syz_emit_ethernet(0x4e, &(0x7f0000000000)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x18, 0x3a, 0x0, @private2, @loopback, {[], @mld={0x83, 0x0, 0x0, 0x9, 0xc036, @remote}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0xd, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x98}]}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x5, 0xb68, 0x6, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

0s ago: executing program 2 (id=378):
syz_open_dev$dri(&(0x7f00000000c0), 0x0, 0x80100)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x0, &(0x7f00000005c0)=[@rights={{0x10, 0x1, 0x1, [r0]}}], 0x10}, 0x0)
recvmmsg$unix(r0, &(0x7f0000000f40)=[{{&(0x7f0000000340), 0x6e, 0x0}}, {{&(0x7f0000000540)=@abs, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000640)=""/28, 0x1c}, {&(0x7f0000000680)=""/18, 0x12}], 0x2, &(0x7f0000000700)=[@rights={{0x2c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0x78}}, {{&(0x7f0000000780), 0x6e, &(0x7f0000000e00)=[{&(0x7f0000000800)=""/190, 0xbe}, {&(0x7f00000008c0)=""/64, 0x40}, {&(0x7f0000000900)=""/99, 0x63}, {&(0x7f0000000980)=""/222, 0xde}, {&(0x7f0000000a80)=""/224, 0xe0}, {&(0x7f0000000b80)=""/4, 0x4}, {&(0x7f0000000bc0)=""/237, 0xed}, {&(0x7f0000000cc0)=""/60, 0x3c}, {&(0x7f0000000d00)=""/226, 0xe2}], 0x9, &(0x7f0000000e80)=[@cred={{0x18}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x18}}], 0xa0}}], 0x3, 0x2, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r2 = socket$netlink(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480))
sendmsg$nl_route(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB, @ANYBLOB], 0x2c}}, 0x0)
r3 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, 0x0, &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, 0x0, 0x0, 0x0)
r4 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()
connect$unix(0xffffffffffffffff, 0x0, 0x0)
syz_open_dev$cec(0x0, 0x0, 0x0)
readv(r3, 0x0, 0x0)
fsmount(r3, 0x0, 0x0)
tkill(r4, 0xb)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, 0x0, 0x0)
sendmsg$NFT_BATCH(r5, 0x0, 0x10)
r6 = socket$kcm(0x2, 0x3, 0x106)
sendmsg$inet(r6, &(0x7f0000000340)={&(0x7f0000000380)={0x2, 0x6000, @remote}, 0x10, &(0x7f0000000300)=[{&(0x7f0000000080)="b5fa4fc5", 0xffeb}], 0x1}, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:41740' (ED25519) to the list of known hosts.
[   32.877041][ T5856] cgroup: Unknown subsys name 'net'
[   33.008311][ T5856] cgroup: Unknown subsys name 'cpuset'
[   33.011464][ T5856] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   33.736061][ T5856] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   35.724007][ T5297] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   35.731024][ T5942] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   35.734272][ T5942] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   35.735160][ T5948] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   35.736672][ T5942] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   35.739416][ T5948] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   35.741517][ T5942] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   35.743259][ T5948] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   35.745624][ T5942] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   35.747550][ T5948] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   35.748890][ T5942] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   35.752458][ T5948] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   35.753471][ T5942] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   35.754722][ T5948] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   35.756708][ T5950] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   35.757472][ T5950] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   35.757647][ T5942] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   35.757832][ T5942] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   35.759354][ T5297] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   35.759675][ T5948] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   35.759859][ T5948] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   35.760734][ T5950] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   35.763216][ T5297] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   35.775433][ T5297] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   35.914097][ T5946] chnl_net:caif_netlink_parms(): no params data found
[   35.929266][ T5938] chnl_net:caif_netlink_parms(): no params data found
[   36.012062][ T5937] chnl_net:caif_netlink_parms(): no params data found
[   36.018971][ T5944] chnl_net:caif_netlink_parms(): no params data found
[   36.034084][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.036601][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.038751][ T5946] bridge_slave_0: entered allmulticast mode
[   36.040705][ T5946] bridge_slave_0: entered promiscuous mode
[   36.088883][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.090770][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.092557][ T5946] bridge_slave_1: entered allmulticast mode
[   36.094556][ T5946] bridge_slave_1: entered promiscuous mode
[   36.175692][ T5938] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.177483][ T5938] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.179262][ T5938] bridge_slave_0: entered allmulticast mode
[   36.181561][ T5938] bridge_slave_0: entered promiscuous mode
[   36.184369][ T5938] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.186512][ T5938] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.188369][ T5938] bridge_slave_1: entered allmulticast mode
[   36.190570][ T5938] bridge_slave_1: entered promiscuous mode
[   36.194365][ T5946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.197927][ T5946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.215034][ T5937] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.216952][ T5937] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.218805][ T5937] bridge_slave_0: entered allmulticast mode
[   36.220793][ T5937] bridge_slave_0: entered promiscuous mode
[   36.237745][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.239645][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.241532][ T5944] bridge_slave_0: entered allmulticast mode
[   36.243525][ T5944] bridge_slave_0: entered promiscuous mode
[   36.246738][ T5937] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.248577][ T5937] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.250392][ T5937] bridge_slave_1: entered allmulticast mode
[   36.252290][ T5937] bridge_slave_1: entered promiscuous mode
[   36.272003][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.273849][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.275752][ T5944] bridge_slave_1: entered allmulticast mode
[   36.277803][ T5944] bridge_slave_1: entered promiscuous mode
[   36.294215][ T5938] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.298703][ T5946] team0: Port device team_slave_0 added
[   36.323088][ T5938] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.326464][ T5946] team0: Port device team_slave_1 added
[   36.337985][ T5937] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.362072][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.366076][ T5937] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.384364][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.396596][ T5938] team0: Port device team_slave_0 added
[   36.398629][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.400603][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.408309][ T5946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.427889][ T5938] team0: Port device team_slave_1 added
[   36.429728][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.431552][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.438171][ T5946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.451568][ T5937] team0: Port device team_slave_0 added
[   36.466965][ T5944] team0: Port device team_slave_0 added
[   36.469458][ T5937] team0: Port device team_slave_1 added
[   36.479748][ T5944] team0: Port device team_slave_1 added
[   36.497385][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.499163][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.505855][ T5938] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.524036][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.527031][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.533336][ T5937] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.537429][ T5938] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.539659][ T5938] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.547921][ T5938] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.568964][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.571165][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.577914][ T5937] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.586358][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.588060][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.594428][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.599530][ T5946] hsr_slave_0: entered promiscuous mode
[   36.601427][ T5946] hsr_slave_1: entered promiscuous mode
[   36.605949][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.607804][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.614122][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.644016][ T5938] hsr_slave_0: entered promiscuous mode
[   36.646227][ T5938] hsr_slave_1: entered promiscuous mode
[   36.647993][ T5938] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   36.650162][ T5938] Cannot create hsr debugfs directory
[   36.681452][ T5937] hsr_slave_0: entered promiscuous mode
[   36.683328][ T5937] hsr_slave_1: entered promiscuous mode
[   36.685102][ T5937] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   36.687304][ T5937] Cannot create hsr debugfs directory
[   36.743052][ T5944] hsr_slave_0: entered promiscuous mode
[   36.744871][ T5944] hsr_slave_1: entered promiscuous mode
[   36.746686][ T5944] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   36.748611][ T5944] Cannot create hsr debugfs directory
[   36.872478][ T5937] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   36.877808][ T5937] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   36.881338][ T5937] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   36.887518][ T5937] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   36.901221][ T5946] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   36.904656][ T5946] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   36.912269][ T5946] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   36.917827][ T5946] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   36.922813][ T5937] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.924656][ T5937] bridge0: port 2(bridge_slave_1) entered forwarding state
[   36.926745][ T5937] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.928448][ T5937] bridge0: port 1(bridge_slave_0) entered forwarding state
[   36.939712][ T5938] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   36.943205][ T5938] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   36.948867][ T5938] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   36.958139][ T5938] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   36.973341][   T76] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.977686][   T76] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.991102][ T5944] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   36.994589][ T5944] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   36.999121][ T5944] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   37.001951][ T5944] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   37.044572][ T5937] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.061023][ T5937] 8021q: adding VLAN 0 to HW filter on device team0
[   37.071234][ T1165] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.073079][ T1165] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.077611][ T1165] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.079349][ T1165] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.100343][ T5946] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.117776][ T5938] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.125133][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.137614][ T5946] 8021q: adding VLAN 0 to HW filter on device team0
[   37.144124][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   37.147624][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.149387][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.156482][ T1146] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.159095][ T1146] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.163623][ T5938] 8021q: adding VLAN 0 to HW filter on device team0
[   37.170599][   T76] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.172452][   T76] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.174866][   T76] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.176692][   T76] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.180131][   T76] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.181993][   T76] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.190739][   T94] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.192581][   T94] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.242672][ T5938] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   37.247335][ T5937] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.265330][ T5937] veth0_vlan: entered promiscuous mode
[   37.271940][ T5937] veth1_vlan: entered promiscuous mode
[   37.282587][ T5937] veth0_macvtap: entered promiscuous mode
[   37.287542][ T5937] veth1_macvtap: entered promiscuous mode
[   37.297164][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.301442][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.305320][ T5937] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.308442][ T5937] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.310880][ T5937] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.313174][ T5937] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.322804][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.350671][ T5946] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.364916][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.368755][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.369605][ T5938] 8021q: adding VLAN 0 to HW filter on device batadv0
[   37.379115][ T5944] veth0_vlan: entered promiscuous mode
[   37.384140][ T5944] veth1_vlan: entered promiscuous mode
[   37.389539][   T76] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.391488][   T76] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.407405][ T5946] veth0_vlan: entered promiscuous mode
[   37.413106][ T5938] veth0_vlan: entered promiscuous mode
[   37.419948][ T5937] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   37.427645][ T5946] veth1_vlan: entered promiscuous mode
[   37.429651][ T5944] veth0_macvtap: entered promiscuous mode
[   37.432239][ T5938] veth1_vlan: entered promiscuous mode
[   37.437984][ T5944] veth1_macvtap: entered promiscuous mode
[   37.443460][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.447087][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.450235][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.461464][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.464005][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.467387][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.479738][ T5946] veth0_macvtap: entered promiscuous mode
[   37.482417][ T5946] veth1_macvtap: entered promiscuous mode
[   37.488592][ T6001] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4'.
[   37.489075][ T5938] veth0_macvtap: entered promiscuous mode
[   37.493554][ T5938] veth1_macvtap: entered promiscuous mode
[   37.497966][ T5944] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.500105][ T5944] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.502185][ T5944] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.504279][ T5944] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.521428][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.524009][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.528716][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.531488][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.534560][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.541253][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.544281][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.547969][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.550562][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.552947][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   37.555650][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.558631][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_0
[   37.561586][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.564181][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.567810][ T5946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.571269][ T5946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.574830][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.583223][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.586372][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.588761][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.591474][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.593849][ T5938] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   37.596580][ T5938] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   37.599898][ T5938] batman_adv: batadv0: Interface activated: batadv_slave_1
[   37.602816][ T5946] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.604950][ T5946] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.607263][ T5946] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.609449][ T5946] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.614205][   T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.616995][   T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.621831][ T5938] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   37.624164][ T5938] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   37.626896][ T5938] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   37.629340][ T5938] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   37.642792][   T94] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.644780][   T94] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.668494][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.671093][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.688872][   T94] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.691113][   T94] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.700287][   T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.700398][ T6003] random: crng reseeded on system resumption
[   37.702615][   T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.711988][ T6007] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1'.
[   37.717584][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   37.719582][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   37.785504][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   37.837711][   T66] Bluetooth: hci2: command tx timeout
[   37.839479][   T66] Bluetooth: hci1: command tx timeout
[   37.847179][ T5949] Bluetooth: hci0: command tx timeout
[   37.847222][   T66] Bluetooth: hci3: command tx timeout
[   38.029906][ T6016] overlayfs: missing 'lowerdir'
[   38.048684][ T6004] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5'.
[   38.198392][ T6004] bridge_slave_1: left allmulticast mode
[   38.200962][ T6004] bridge_slave_1: left promiscuous mode
[   38.206022][ T6004] bridge0: port 2(bridge_slave_1) entered disabled state
[   38.215554][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   38.437831][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   38.593823][ T6004] bridge_slave_0: left allmulticast mode
[   38.595351][ T6004] bridge_slave_0: left promiscuous mode
[   38.606182][ T6004] bridge0: port 1(bridge_slave_0) entered disabled state
[   38.616872][ T6026] netlink: 'syz.2.3': attribute type 10 has an invalid length.
[   38.642806][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   38.934289][ T6026] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   38.944221][ T6034] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7'.
[   39.236745][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.239431][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.241957][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.244302][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.260355][ T6058] Cannot find add_set index 0 as target
[   39.325520][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.326801][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.327704][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.915556][   T66] Bluetooth: hci3: command tx timeout
[   39.917033][   T66] Bluetooth: hci0: command tx timeout
[   39.917102][ T5949] Bluetooth: hci1: command tx timeout
[   39.917157][ T5297] Bluetooth: hci2: command tx timeout
[   39.989147][ T6083] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   40.074617][ T6096] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   40.467418][   T39] audit: type=1800 audit(1734677976.651:2): pid=6116 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.20" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[   40.687497][ T6132] netlink: 12 bytes leftover after parsing attributes in process `syz.2.23'.
[   40.782175][ T6130] overlayfs: missing 'workdir'
[   41.255492][ T6025] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[   41.407958][ T6025] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 1024, setting to 64
[   41.416768][ T6025] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[   41.419195][ T6025] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   41.421266][ T6025] usb 7-1: Product: syz
[   41.422399][ T6025] usb 7-1: Manufacturer: syz
[   41.426479][ T6025] usb 7-1: SerialNumber: syz
[   41.434154][ T6139] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[   41.584347][ T6145] overlayfs: missing 'workdir'
[   41.646162][ T6025] usblp 7-1:1.0: usblp0: USB Unidirectional printer dev 2 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[   41.995496][ T5943] Bluetooth: hci2: command tx timeout
[   41.997021][ T5943] Bluetooth: hci3: command tx timeout
[   41.998415][ T5943] Bluetooth: hci0: command tx timeout
[   41.999821][ T5943] Bluetooth: hci1: command tx timeout
[   42.044643][ T6150] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[   42.047373][ T6150] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[   42.050330][ T6150] overlayfs: missing 'lowerdir'
[   42.292408][ T6152] uprobe: syz.1.29:6152 failed to unregister, leaking uprobe
[   42.323372][ T6149] binder: Unknown parameter 'smackfsroot'
[   42.502606][ T6156] overlayfs: missing 'workdir'
[   43.015428][ T6159] netlink: 'syz.0.31': attribute type 2 has an invalid length.
[   43.103821][ T1335] usb 7-1: USB disconnect, device number 2
[   43.108202][ T1335] usblp0: removed
[   43.397774][ T6170] netlink: 'syz.3.37': attribute type 142 has an invalid length.
[   43.404169][ T6170] netlink: 4 bytes leftover after parsing attributes in process `syz.3.37'.
[   43.520590][ T6173] syz.1.36: attempt to access beyond end of device
[   43.520590][ T6173] nbd1: rw=0, sector=64, nr_sectors = 1 limit=0
[   43.534604][ T6173] syz.1.36: attempt to access beyond end of device
[   43.534604][ T6173] nbd1: rw=0, sector=256, nr_sectors = 1 limit=0
[   43.548459][ T6173] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[   43.574229][ T6173] syz.1.36: attempt to access beyond end of device
[   43.574229][ T6173] nbd1: rw=0, sector=512, nr_sectors = 1 limit=0
[   43.580207][ T6173] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[   43.593192][ T6173] syz.1.36: attempt to access beyond end of device
[   43.593192][ T6173] nbd1: rw=0, sector=64, nr_sectors = 2 limit=0
[   43.598913][ T6173] syz.1.36: attempt to access beyond end of device
[   43.598913][ T6173] nbd1: rw=0, sector=512, nr_sectors = 2 limit=0
[   43.602800][ T6173] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[   43.605957][ T6173] syz.1.36: attempt to access beyond end of device
[   43.605957][ T6173] nbd1: rw=0, sector=1024, nr_sectors = 2 limit=0
[   43.610679][ T6173] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[   43.618157][ T6173] syz.1.36: attempt to access beyond end of device
[   43.618157][ T6173] nbd1: rw=0, sector=64, nr_sectors = 4 limit=0
[   43.627585][ T6173] syz.1.36: attempt to access beyond end of device
[   43.627585][ T6173] nbd1: rw=0, sector=1024, nr_sectors = 4 limit=0
[   43.634097][ T6173] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[   43.642673][ T6173] syz.1.36: attempt to access beyond end of device
[   43.642673][ T6173] nbd1: rw=0, sector=2048, nr_sectors = 4 limit=0
[   43.649745][ T6173] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[   43.695641][ T6173] syz.1.36: attempt to access beyond end of device
[   43.695641][ T6173] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[   43.699238][ T6173] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[   43.701853][ T6173] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[   43.704283][ T6173] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1)
[   44.075505][ T5949] Bluetooth: hci1: command tx timeout
[   44.076481][ T6174] erofs (device nbd0): cannot find valid erofs superblock
[   44.076977][ T5949] Bluetooth: hci0: command tx timeout
[   44.080342][ T5949] Bluetooth: hci3: command tx timeout
[   44.081801][ T5949] Bluetooth: hci2: command tx timeout
[   44.587281][ T6186] capability: warning: `syz.1.40' uses deprecated v2 capabilities in a way that may be insecure
[   44.795215][ T6200] overlayfs: missing 'lowerdir'
[   44.942468][ T6213] input: syz0 as /devices/virtual/input/input6
[   45.534160][ T6227] netem: incorrect ge model size
[   45.536050][ T6227] netem: change failed
[   45.945504][ T5978] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   46.105489][ T5978] usb 6-1: Using ep0 maxpacket: 8
[   46.109629][ T5978] usb 6-1: config 0 has no interfaces?
[   46.111486][ T5978] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   46.114500][ T5978] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   46.122616][ T5978] usb 6-1: config 0 descriptor??
[   46.334265][ T5978] usb 6-1: USB disconnect, device number 2
[   46.941151][ T6261] process 'syz.1.59' launched './file1' with NULL argv: empty string added
[   47.145552][    T9] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   47.285850][    T9] usb 7-1: device descriptor read/64, error -71
[   47.941994][    T9] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   48.066836][    T9] usb 7-1: device descriptor read/64, error -71
[   48.178107][    T9] usb usb7-port1: attempt power cycle
[   48.231995][   T39] audit: type=1326 audit(1734677984.411:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.62" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[   48.239199][   T39] audit: type=1326 audit(1734677984.411:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.62" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[   48.244596][   T39] audit: type=1326 audit(1734677984.411:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.62" exe="/syz-executor" sig=0 arch=40000003 syscall=294 compat=1 ip=0xf715e579 code=0x7ffc0000
[   48.515909][    T9] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   48.540448][    T9] usb 7-1: device descriptor read/8, error -71
[   48.660181][   T39] audit: type=1326 audit(1734677984.841:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.62" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[   48.665729][ T6286] netlink: 8 bytes leftover after parsing attributes in process `syz.0.62'.
[   48.709730][   T39] audit: type=1326 audit(1734677984.851:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.62" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[   48.725770][   T39] audit: type=1326 audit(1734677984.901:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.62" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf715e579 code=0x7ffc0000
[   48.783285][ T6288] netlink: 20 bytes leftover after parsing attributes in process `syz.1.64'.
[   48.795548][    T9] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   48.798434][   T39] audit: type=1326 audit(1734677984.911:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.62" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[   48.803888][   T39] audit: type=1326 audit(1734677984.911:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.62" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[   48.809819][   T39] audit: type=1326 audit(1734677984.921:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.62" exe="/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf715e579 code=0x7ffc0000
[   48.815248][   T39] audit: type=1326 audit(1734677984.921:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6278 comm="syz.0.62" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x7ffc0000
[   48.835859][    T9] usb 7-1: device descriptor read/8, error -71
[   48.974442][ T6298] overlay: filesystem on ./bus not supported as upperdir
[   48.981708][ T6298] evm: overlay not supported
[   49.147466][ T6310] netlink: 4 bytes leftover after parsing attributes in process `syz.1.69'.
[   49.149828][ T6310] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   49.151822][ T6310] batman_adv: batadv0: Removing interface: batadv_slave_0
[   49.154672][ T6310] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   49.157555][ T6310] batman_adv: batadv0: Removing interface: batadv_slave_1
[   49.472806][    T9] usb usb7-port1: unable to enumerate USB device
[   49.480184][ T6310] afs: Unknown parameter 'flock9local'
[   49.491316][ T6310] syz.1.69 (6310) used greatest stack depth: 21120 bytes left
[   49.619852][ T6318] netlink: 4 bytes leftover after parsing attributes in process `syz.0.71'.
[   49.640584][ T6318] netlink: 4 bytes leftover after parsing attributes in process `syz.0.71'.
[   49.903238][ T6326] syz.0.75[6326] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.903288][ T6326] syz.0.75[6326] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.906456][ T6326] syz.0.75[6326] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   49.932389][ T6331] FAULT_INJECTION: forcing a failure.
[   49.932389][ T6331] name failslab, interval 1, probability 0, space 0, times 1
[   49.939819][ T6331] CPU: 1 UID: 0 PID: 6331 Comm: syz.2.76 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   49.942576][ T6331] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   49.945279][ T6331] Call Trace:
[   49.946151][ T6331]  <TASK>
[   49.946922][ T6331]  dump_stack_lvl+0x16c/0x1f0
[   49.948152][ T6331]  should_fail_ex+0x497/0x5b0
[   49.949404][ T6331]  ? fs_reclaim_acquire+0xae/0x150
[   49.950718][ T6331]  should_failslab+0xc2/0x120
[   49.951919][ T6331]  __kmalloc_node_noprof+0xd1/0x520
[   49.953282][ T6331]  ? alloc_slab_obj_exts+0x41/0xa0
[   49.954589][ T6331]  alloc_slab_obj_exts+0x41/0xa0
[   49.955919][ T6331]  __memcg_slab_post_alloc_hook+0x2a7/0x9b0
[   49.957402][ T6331]  ? kasan_save_track+0x14/0x30
[   49.958674][ T6331]  kmem_cache_alloc_node_noprof+0x30a/0x3b0
[   49.960211][ T6331]  ? __alloc_skb+0x2b3/0x380
[   49.961396][ T6331]  __alloc_skb+0x2b3/0x380
[   49.962516][ T6331]  ? __pfx___alloc_skb+0x10/0x10
[   49.963774][ T6331]  ? __pfx___lock_acquire+0x10/0x10
[   49.965115][ T6331]  ? hlock_class+0x4e/0x130
[   49.966265][ T6331]  alloc_skb_with_frags+0xe4/0x850
[   49.967568][ T6331]  ? aa_label_sk_perm+0x19d/0x5a0
[   49.968832][ T6331]  sock_alloc_send_pskb+0x7f1/0x980
[   49.970109][ T6331]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[   49.971551][ T6331]  unix_stream_sendmsg+0x395/0x1020
[   49.972885][ T6331]  ? __pfx_unix_stream_sendmsg+0x10/0x10
[   49.974265][ T6331]  ? __pfx_aa_sk_perm+0x10/0x10
[   49.975465][ T6331]  sock_sendmsg+0x369/0x410
[   49.976576][ T6331]  ? __pfx_sock_sendmsg+0x10/0x10
[   49.977826][ T6331]  ? find_held_lock+0x2d/0x110
[   49.979026][ T6331]  io_send+0x515/0x1c20
[   49.980088][ T6331]  ? __pfx_io_send+0x10/0x10
[   49.981647][ T6331]  ? __fget_files+0x206/0x3a0
[   49.983188][ T6331]  ? rcu_is_watching+0x12/0xc0
[   49.984418][ T6331]  io_issue_sqe+0x175/0x1360
[   49.985603][ T6331]  io_submit_sqes+0x951/0x25f0
[   49.986798][ T6331]  __do_sys_io_uring_enter+0xd43/0x1620
[   49.988166][ T6331]  ? __fget_files+0x206/0x3a0
[   49.989402][ T6331]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[   49.990917][ T6331]  ? fput+0x67/0x440
[   49.991938][ T6331]  ? ksys_write+0x1ba/0x250
[   49.993101][ T6331]  ? __pfx_ksys_write+0x10/0x10
[   49.994348][ T6331]  __do_fast_syscall_32+0x73/0x120
[   49.995683][ T6331]  do_fast_syscall_32+0x32/0x80
[   49.996907][ T6331]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   49.998527][ T6331] RIP: 0023:0xf7f25579
[   49.999601][ T6331] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   50.004308][ T6331] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[   50.006386][ T6331] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000004d1a
[   50.008374][ T6331] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   50.010378][ T6331] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   50.012392][ T6331] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   50.014333][ T6331] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   50.016314][ T6331]  </TASK>
[   50.264934][ T6342] netlink: 'syz.2.79': attribute type 27 has an invalid length.
[   50.322959][ T6343] netlink: 'syz.2.79': attribute type 27 has an invalid length.
[   51.071956][ T6352] mmap: syz.0.83 (6352) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   51.188540][ T6353] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   51.212012][ T6358] infiniband syz0: set active
[   51.213491][ T6358] infiniband syz0: added bond0
[   51.233214][ T6362] veth0_to_team: entered promiscuous mode
[   51.234819][ T6362] veth0_to_team: entered allmulticast mode
[   51.248626][ T6358] RDS/IB: syz0: added
[   51.250528][ T6358] smc: adding ib device syz0 with port count 1
[   51.252238][ T6358] smc:    ib device syz0 port 1 has pnetid 
[   52.051000][ T6378] overlayfs: conflicting lowerdir path
[   52.072245][ T6378] netlink: 10 bytes leftover after parsing attributes in process `syz.2.90'.
[   52.204938][ T6383] warning: `syz.2.92' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   53.039060][ T6394] A link change request failed with some changes committed already. Interface xfrm0 may have been left with an inconsistent configuration, please check.
[   53.044015][ T1970] libceph: connect (1)[c::]:6789 error -101
[   53.046736][ T1970] libceph: mon0 (1)[c::]:6789 connect error
[   53.083873][ T6399] netlink: 8 bytes leftover after parsing attributes in process `syz.3.96'.
[   53.087213][ T6399] netlink: 12 bytes leftover after parsing attributes in process `syz.3.96'.
[   53.208102][ T6407] program syz.3.98 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   53.229680][ T6393] ceph: No mds server is up or the cluster is laggy
[   53.363640][ T6417] netlink: 24 bytes leftover after parsing attributes in process `syz.2.99'.
[   54.292079][ T6430] netlink: 36 bytes leftover after parsing attributes in process `syz.1.103'.
[   54.989586][ T6456] netlink: 'syz.0.111': attribute type 10 has an invalid length.
[   54.993933][ T6456] netlink: 168864 bytes leftover after parsing attributes in process `syz.0.111'.
[   55.001634][ T6456] openvswitch: netlink: Message has 44053 unknown bytes.
[   55.504181][ T6467] program syz.0.115 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   55.579750][ T6470] FAULT_INJECTION: forcing a failure.
[   55.579750][ T6470] name failslab, interval 1, probability 0, space 0, times 0
[   55.583456][ T6470] CPU: 3 UID: 0 PID: 6470 Comm: syz.0.116 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   55.586163][ T6470] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.588950][ T6470] Call Trace:
[   55.589822][ T6470]  <TASK>
[   55.590593][ T6470]  dump_stack_lvl+0x16c/0x1f0
[   55.591826][ T6470]  should_fail_ex+0x497/0x5b0
[   55.593054][ T6470]  ? fs_reclaim_acquire+0xae/0x150
[   55.594383][ T6470]  should_failslab+0xc2/0x120
[   55.595608][ T6470]  __kmalloc_node_noprof+0xd1/0x520
[   55.596973][ T6470]  ? __kvmalloc_node_noprof+0xad/0x1a0
[   55.598385][ T6470]  ? __pfx_lock_release+0x10/0x10
[   55.599718][ T6470]  __kvmalloc_node_noprof+0xad/0x1a0
[   55.601112][ T6470]  seq_read_iter+0x82a/0x12b0
[   55.602337][ T6470]  seq_read+0x39f/0x4e0
[   55.603506][ T6470]  ? __pfx_seq_read+0x10/0x10
[   55.604771][ T6470]  ? copy_compat_iovec_from_user+0x140/0x180
[   55.606337][ T6470]  ? import_ubuf+0x1b6/0x220
[   55.607556][ T6470]  ? __pfx_seq_read+0x10/0x10
[   55.608787][ T6470]  proc_reg_read+0x23d/0x330
[   55.610029][ T6470]  ? __pfx_proc_reg_read+0x10/0x10
[   55.611395][ T6470]  vfs_readv+0x6bf/0x890
[   55.612512][ T6470]  ? __pfx___lock_acquire+0x10/0x10
[   55.613896][ T6470]  ? find_held_lock+0x2d/0x110
[   55.615151][ T6470]  ? __pfx_vfs_readv+0x10/0x10
[   55.616407][ T6470]  ? __fget_files+0x1fc/0x3a0
[   55.617649][ T6470]  ? __pfx_lock_release+0x10/0x10
[   55.619009][ T6470]  ? __fget_files+0x206/0x3a0
[   55.620251][ T6470]  ? do_preadv+0x1b1/0x270
[   55.621435][ T6470]  do_preadv+0x1b1/0x270
[   55.622552][ T6470]  ? __pfx_do_preadv+0x10/0x10
[   55.623802][ T6470]  __do_fast_syscall_32+0x73/0x120
[   55.625159][ T6470]  do_fast_syscall_32+0x32/0x80
[   55.626434][ T6470]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   55.628071][ T6470] RIP: 0023:0xf715e579
[   55.629165][ T6470] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   55.634105][ T6470] RSP: 002b:00000000f512f55c EFLAGS: 00000296 ORIG_RAX: 000000000000014d
[   55.636255][ T6470] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000340
[   55.638302][ T6470] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[   55.640363][ T6470] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   55.642412][ T6470] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   55.644411][ T6470] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   55.646478][ T6470]  </TASK>
[   55.647414][    C3] vkms_vblank_simulate: vblank timer overrun
[   56.030666][ T6473] netlink: 'syz.3.117': attribute type 27 has an invalid length.
[   56.091062][ T6477] netlink: 'syz.3.117': attribute type 27 has an invalid length.
[   56.091178][ T6476] syz.2.118 uses obsolete (PF_INET,SOCK_PACKET)
[   56.424310][ T6481] bridge0: port 3(syz_tun) entered blocking state
[   56.426315][ T6481] bridge0: port 3(syz_tun) entered disabled state
[   56.428602][ T6481] syz_tun: entered allmulticast mode
[   56.432610][ T6481] syz_tun: entered promiscuous mode
[   56.438791][ T6481] bridge0: port 3(syz_tun) entered blocking state
[   56.440770][ T6481] bridge0: port 3(syz_tun) entered forwarding state
[   57.154315][ T6506] 9pnet_fd: Insufficient options for proto=fd
[   57.422111][ T6527] netlink: 16 bytes leftover after parsing attributes in process `syz.2.136'.
[   57.425736][ T6527] netlink: 16 bytes leftover after parsing attributes in process `syz.2.136'.
[   57.429199][ T6527] netlink: 36 bytes leftover after parsing attributes in process `syz.2.136'.
[   57.857392][ T6538] veth0_to_team: entered promiscuous mode
[   57.859057][ T6538] veth0_to_team: entered allmulticast mode
[   58.100098][ T6542] Zero length message leads to an empty skb
[   58.268377][ T6548] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.348374][ T6548] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.472645][ T6548] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.582690][ T6548] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   58.679592][ T6557] overlay: ./file0 is not a directory
[   58.820764][ T6548] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   58.825842][ T6548] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   58.830697][ T6548] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   58.837073][ T6548] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.016175][ T6567] veth1_macvtap: left promiscuous mode
[   59.017709][ T6567] macsec0: entered promiscuous mode
[   59.019140][ T6567] macsec0: entered allmulticast mode
[   59.695107][ T6585] netlink: 44 bytes leftover after parsing attributes in process `syz.2.155'.
[   59.741235][ T6586] netlink: 'syz.1.154': attribute type 1 has an invalid length.
[   59.903511][ T6593] mkiss: ax0: crc mode is auto.
[   59.991096][ T6593] can0: slcan on ttyS3.
[   60.086961][   T35] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[   60.093060][   T35] hid-generic 0000:0000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   60.164202][ T6607] netlink: 'syz.1.158': attribute type 10 has an invalid length.
[   60.170603][ T6607] bond0: (slave wlan1): Opening slave failed
[   60.183062][ T6607] ptrace attach of "/syz-executor exec"[5946] was attempted by "/syz-executor exec"[6607]
[   60.706440][ T6584] can0 (unregistered): slcan off ttyS3.
[   60.890657][ T6624] program syz.1.161 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   62.285607][ T6642] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   62.351827][ T6659] lo speed is unknown, defaulting to 1000
[   62.355578][ T6659] lo speed is unknown, defaulting to 1000
[   62.357577][ T6659] lo speed is unknown, defaulting to 1000
[   62.415903][ T6660] »»»»»»: renamed from lo (while UP)
[   62.435663][ T6642] usb 8-1: Using ep0 maxpacket: 16
[   62.436241][ T6659] infiniband s
z1: set active
[   62.438457][ T6659] infiniband s
z1: added »»»»»»
[   62.441451][ T5979] »»»»»» speed is unknown, defaulting to 1000
[   62.442693][ T6642] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   62.451333][ T6642] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   62.454304][ T6642] usb 8-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[   62.459176][ T6642] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.473084][ T6642] usb 8-1: config 0 descriptor??
[   62.533776][ T6659] RDS/IB: s
z1: added
[   62.534902][ T6659] smc: adding ib device s
z1 with port count 1
[   62.536635][ T6659] smc:    ib device s
z1 port 1 has pnetid 
[   62.538762][ T6659] »»»»»» speed is unknown, defaulting to 1000
[   62.619701][ T5979] »»»»»» speed is unknown, defaulting to 1000
[   62.637392][ T6659] »»»»»» speed is unknown, defaulting to 1000
[   62.735392][ T6659] »»»»»» speed is unknown, defaulting to 1000
[   62.837560][ T6659] »»»»»» speed is unknown, defaulting to 1000
[   62.922716][ T6642] input: HID 05ac:8241 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/0003:05AC:8241.0003/input/input10
[   62.986846][ T6659] »»»»»» speed is unknown, defaulting to 1000
[   63.017449][ T6642] appleir 0003:05AC:8241.0003: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.3-1/input0
[   63.159746][ T6672] bio_check_eod: 2 callbacks suppressed
[   63.159757][ T6672] syz.0.174: attempt to access beyond end of device
[   63.159757][ T6672] nbd0: rw=0, sector=0, nr_sectors = 1 limit=0
[   63.165740][ T6672] FAT-fs (nbd0): unable to read boot sector
[   63.355468][ T5979] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   63.472503][ T6681] netlink: 'syz.1.176': attribute type 27 has an invalid length.
[   63.479614][ T6642] usb 8-1: USB disconnect, device number 2
[   63.515771][ T5979] usb 7-1: Using ep0 maxpacket: 8
[   63.523708][ T5979] usb 7-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   63.526310][ T5979] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   63.528894][ T5979] usb 7-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   63.533609][ T6683] netlink: 'syz.1.176': attribute type 27 has an invalid length.
[   63.535748][ T5979] usb 7-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   63.539707][ T5979] usb 7-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   63.544243][ T5979] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   63.982751][ T5979] usb 7-1: usb_control_msg returned -32
[   63.984252][ T5979] usbtmc 7-1:16.0: can't read capabilities
[   64.110010][ T6688] FAULT_INJECTION: forcing a failure.
[   64.110010][ T6688] name failslab, interval 1, probability 0, space 0, times 0
[   64.113762][ T6688] CPU: 3 UID: 0 PID: 6688 Comm: syz.2.175 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   64.116765][ T6688] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.119670][ T6688] Call Trace:
[   64.120563][ T6688]  <TASK>
[   64.121618][ T6688]  dump_stack_lvl+0x16c/0x1f0
[   64.123072][ T6688]  should_fail_ex+0x497/0x5b0
[   64.124404][ T6688]  ? fs_reclaim_acquire+0xae/0x150
[   64.125920][ T6688]  should_failslab+0xc2/0x120
[   64.127201][ T6688]  __kmalloc_noprof+0xce/0x4f0
[   64.128622][ T6688]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   64.130184][ T6688]  ? tomoyo_realpath_from_path+0xbf/0x710
[   64.131690][ T6688]  tomoyo_realpath_from_path+0xbf/0x710
[   64.133240][ T6688]  ? tomoyo_path_number_perm+0x235/0x5b0
[   64.134738][ T6688]  tomoyo_path_number_perm+0x248/0x5b0
[   64.136217][ T6688]  ? tomoyo_path_number_perm+0x235/0x5b0
[   64.137853][ T6688]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   64.139670][ T6688]  ? __pfx_lock_release+0x10/0x10
[   64.141079][ T6688]  ? trace_lock_acquire+0x14e/0x1f0
[   64.142519][ T6688]  ? lock_acquire+0x2f/0xb0
[   64.143741][ T6688]  ? __fget_files+0x40/0x3a0
[   64.145041][ T6688]  ? __fget_files+0x206/0x3a0
[   64.146344][ T6688]  security_file_ioctl_compat+0x9b/0x240
[   64.147836][ T6688]  __do_compat_sys_ioctl+0x4e/0x2c0
[   64.149282][ T6688]  __do_fast_syscall_32+0x73/0x120
[   64.150703][ T6688]  do_fast_syscall_32+0x32/0x80
[   64.152423][ T6688]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   64.154662][ T6688] RIP: 0023:0xf7f25579
[   64.156036][ T6688] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   64.162634][ T6688] RSP: 002b:00000000f505555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   64.165565][ T6688] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000040025b0c
[   64.168286][ T6688] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[   64.171063][ T6688] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   64.173849][ T6688] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   64.176598][ T6688] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   64.179346][ T6688]  </TASK>
[   64.185541][ T6688] ERROR: Out of memory at tomoyo_realpath_from_path.
[   64.509695][ T6699] netlink: 'syz.1.179': attribute type 27 has an invalid length.
[   64.616685][ T6704] netlink: 'syz.1.179': attribute type 27 has an invalid length.
[   66.126210][ T6642] usb 7-1: USB disconnect, device number 7
[   66.382794][ T6720] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   66.421117][ T6734] Illegal XDP return value 1506388440 on prog  (id 30) dev N/A, expect packet loss!
[   66.964736][ T6749] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[   67.065002][ T6755] netlink: zone id is out of range
[   67.066508][ T6755] netlink: zone id is out of range
[   67.068254][ T6755] netlink: zone id is out of range
[   67.070127][ T6755] netlink: zone id is out of range
[   67.071541][ T6755] netlink: del zone limit has 4 unknown bytes
[   67.163484][ T6763] netlink: 32 bytes leftover after parsing attributes in process `syz.0.201'.
[   68.541558][ T6806] program syz.3.211 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   68.566714][ T6802] »»»»»» speed is unknown, defaulting to 1000
[   68.739230][ T6816] openvswitch: netlink: nsh attr 15104 is out of range max 3
[   68.741270][ T6816] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[   69.763850][   T39] kauditd_printk_skb: 25 callbacks suppressed
[   69.763860][   T39] audit: type=1326 audit(1734678005.941:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.3.220" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[   69.773770][   T39] audit: type=1326 audit(1734678005.951:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.3.220" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[   69.782380][   T39] audit: type=1326 audit(1734678005.951:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.3.220" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f53579 code=0x7ffc0000
[   69.788484][   T39] audit: type=1326 audit(1734678005.951:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.3.220" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[   69.793900][   T39] audit: type=1326 audit(1734678005.951:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.3.220" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[   69.799625][   T39] audit: type=1326 audit(1734678005.951:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.3.220" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f53579 code=0x7ffc0000
[   69.805136][   T39] audit: type=1326 audit(1734678005.961:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.3.220" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[   69.810660][   T39] audit: type=1326 audit(1734678005.961:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.3.220" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[   69.816462][   T39] audit: type=1326 audit(1734678005.961:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.3.220" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f53579 code=0x7ffc0000
[   69.822112][   T39] audit: type=1326 audit(1734678005.961:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6842 comm="syz.3.220" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f53579 code=0x7ffc0000
[   70.718316][ T1412] ieee802154 phy0 wpan0: encryption failed: -22
[   70.720235][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[   70.793549][ T6882] netlink: 'syz.3.230': attribute type 27 has an invalid length.
[   70.851956][ T6884] netlink: 'syz.3.230': attribute type 27 has an invalid length.
[   71.801621][ T6901] xt_TPROXY: Can be used only with -p tcp or -p udp
[   72.645665][ T6642] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   72.796275][ T6642] usb 5-1: Using ep0 maxpacket: 8
[   72.817015][ T6642] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[   72.821122][ T6642] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[   72.825295][ T6642] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   72.829168][ T6642] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   72.833504][ T6642] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   72.837050][ T6642] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.065188][ T6642] usb 5-1: GET_CAPABILITIES returned 0
[   73.066744][ T6642] usbtmc 5-1:16.0: can't read capabilities
[   73.933566][ T5978] usb 5-1: USB disconnect, device number 2
[   74.027246][ T6944] netlink: 8 bytes leftover after parsing attributes in process `syz.1.245'.
[   74.090615][ T6947] tipc: Started in network mode
[   74.092594][ T6947] tipc: Node identity aaaaaaaaaa35, cluster identity 4711
[   74.095078][ T6947] tipc: Enabled bearer <eth:macvlan1>, priority 0
[   74.316483][ T5949] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[   74.318937][ T5949] Bluetooth: hci3: Injecting HCI hardware error event
[   74.322590][ T5949] Bluetooth: hci3: hardware error 0x00
[   74.534367][ T6953] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.599736][ T6953] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.669754][ T6953] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.752564][ T6953] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   74.848621][ T6953] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.867916][ T6953] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   74.872513][ T6953] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   74.880699][ T6953] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.035090][ T6967] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.103414][ T6967] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.115565][ T1335] tipc: Node number set to 10463914
[   75.211565][ T6967] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.297583][ T6977] netlink: 'syz.2.251': attribute type 10 has an invalid length.
[   75.300569][ T6977] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.303381][ T6977] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.311585][ T6977] bridge0: port 2(bridge_slave_1) entered blocking state
[   75.313474][ T6977] bridge0: port 2(bridge_slave_1) entered forwarding state
[   75.315943][ T6977] bridge0: port 1(bridge_slave_0) entered blocking state
[   75.317750][ T6977] bridge0: port 1(bridge_slave_0) entered forwarding state
[   75.324753][ T6977] bond0: (slave bridge0): Enslaving as an active interface with an up link
[   75.338579][ T6967] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.343725][ T6977] netlink: 4 bytes leftover after parsing attributes in process `syz.2.251'.
[   75.347015][ T6977] bridge_slave_1: left allmulticast mode
[   75.348569][ T6977] bridge_slave_1: left promiscuous mode
[   75.350205][ T6977] bridge0: port 2(bridge_slave_1) entered disabled state
[   75.358207][ T6977] bridge_slave_0: left allmulticast mode
[   75.359849][ T6977] bridge_slave_0: left promiscuous mode
[   75.361905][ T6977] bridge0: port 1(bridge_slave_0) entered disabled state
[   75.382499][ T6977] bond0: (slave bridge0): Releasing backup interface
[   75.837642][   T30] cfg80211: failed to load regulatory.db
[   76.395453][ T5949] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[   77.861953][ T7017] netlink: 36 bytes leftover after parsing attributes in process `syz.1.261'.
[   78.665756][ T6967] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.671404][ T6967] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.676848][ T6967] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.681068][ T6967] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.806660][ T7026] netlink: 16186 bytes leftover after parsing attributes in process `syz.3.268'.
[   78.831072][ T7032] netlink: 'syz.1.266': attribute type 4 has an invalid length.
[   78.839754][ T7032] netlink: 'syz.1.266': attribute type 4 has an invalid length.
[   79.483175][ T7048] syz.0.272[7048] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.483236][ T7048] syz.0.272[7048] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.487880][ T7048] syz.0.272[7048] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   79.935088][ T7072] netlink: 4 bytes leftover after parsing attributes in process `syz.3.276'.
[   79.976883][ T7072] unsupported nlmsg_type 40
[   80.441719][ T7088] FAULT_INJECTION: forcing a failure.
[   80.441719][ T7088] name failslab, interval 1, probability 0, space 0, times 0
[   80.446738][ T7088] CPU: 3 UID: 0 PID: 7088 Comm: syz.0.286 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   80.450541][ T7088] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.454413][ T7088] Call Trace:
[   80.455661][ T7088]  <TASK>
[   80.456738][ T7088]  dump_stack_lvl+0x16c/0x1f0
[   80.458461][ T7088]  should_fail_ex+0x497/0x5b0
[   80.460177][ T7088]  ? fs_reclaim_acquire+0xae/0x150
[   80.462038][ T7088]  should_failslab+0xc2/0x120
[   80.463756][ T7088]  __kmalloc_noprof+0xce/0x4f0
[   80.465502][ T7088]  ? d_absolute_path+0x137/0x1b0
[   80.467314][ T7088]  ? tomoyo_encode2+0x100/0x3e0
[   80.469038][ T7088]  tomoyo_encode2+0x100/0x3e0
[   80.470744][ T7088]  tomoyo_realpath_from_path+0x1a7/0x710
[   80.472796][ T7088]  tomoyo_path_number_perm+0x248/0x5b0
[   80.474765][ T7088]  ? tomoyo_path_number_perm+0x235/0x5b0
[   80.476780][ T7088]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   80.478974][ T7088]  ? __pfx_lock_release+0x10/0x10
[   80.480812][ T7088]  ? trace_lock_acquire+0x14e/0x1f0
[   80.482693][ T7088]  ? lock_acquire+0x2f/0xb0
[   80.484337][ T7088]  ? __fget_files+0x40/0x3a0
[   80.486013][ T7088]  ? __fget_files+0x206/0x3a0
[   80.487720][ T7088]  security_file_ioctl_compat+0x9b/0x240
[   80.489766][ T7088]  __do_compat_sys_ioctl+0x4e/0x2c0
[   80.491666][ T7088]  __do_fast_syscall_32+0x73/0x120
[   80.493534][ T7088]  do_fast_syscall_32+0x32/0x80
[   80.495299][ T7088]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   80.497573][ T7088] RIP: 0023:0xf715e579
[   80.499037][ T7088] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   80.505556][ T7088] RSP: 002b:00000000f515055c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   80.507773][ T7088] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c004510e
[   80.509890][ T7088] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   80.511994][ T7088] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   80.514100][ T7088] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   80.516459][ T7088] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   80.519327][ T7088]  </TASK>
[   80.520519][    C3] vkms_vblank_simulate: vblank timer overrun
[   80.526932][ T7088] ERROR: Out of memory at tomoyo_realpath_from_path.
[   80.627484][ T7097] netlink: 4 bytes leftover after parsing attributes in process `syz.1.287'.
[   80.635228][ T7099] netlink: 28 bytes leftover after parsing attributes in process `syz.3.288'.
[   80.676686][ T7099] netlink: 16 bytes leftover after parsing attributes in process `syz.3.288'.
[   80.680413][ T7090] netlink: 244 bytes leftover after parsing attributes in process `syz.1.287'.
[   80.834783][ T7105] »»»»»» speed is unknown, defaulting to 1000
[   81.005305][ T7112] FAULT_INJECTION: forcing a failure.
[   81.005305][ T7112] name failslab, interval 1, probability 0, space 0, times 0
[   81.009062][ T7112] CPU: 1 UID: 0 PID: 7112 Comm: syz.2.294 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   81.011801][ T7112] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.014567][ T7112] Call Trace:
[   81.015471][ T7112]  <TASK>
[   81.016243][ T7112]  dump_stack_lvl+0x16c/0x1f0
[   81.017459][ T7112]  should_fail_ex+0x497/0x5b0
[   81.018707][ T7112]  ? fs_reclaim_acquire+0xae/0x150
[   81.020064][ T7112]  should_failslab+0xc2/0x120
[   81.021314][ T7112]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[   81.022823][ T7112]  ? hlock_class+0x4e/0x130
[   81.024000][ T7112]  ? __alloc_skb+0x2b3/0x380
[   81.025253][ T7112]  __alloc_skb+0x2b3/0x380
[   81.026444][ T7112]  ? __pfx___alloc_skb+0x10/0x10
[   81.027754][ T7112]  ? __pfx___lock_acquire+0x10/0x10
[   81.029148][ T7112]  ? hlock_class+0x4e/0x130
[   81.030333][ T7112]  ? __lock_acquire+0x15a9/0x3c40
[   81.031670][ T7112]  __ip6_append_data.isra.0+0x2b2e/0x45e0
[   81.033180][ T7112]  ? __pfx_raw6_getfrag+0x10/0x10
[   81.034713][ T7112]  ? __pfx___ip6_append_data.isra.0+0x10/0x10
[   81.036249][ T7112]  ? ip6_mtu+0x231/0x4a0
[   81.037227][ T7112]  ? ip6_setup_cork+0xc60/0x1460
[   81.038364][ T7112]  ip6_append_data+0x1e6/0x500
[   81.039526][ T7112]  ? __pfx_raw6_getfrag+0x10/0x10
[   81.040868][ T7112]  rawv6_sendmsg+0x1597/0x4450
[   81.042120][ T7112]  ? __pfx_rawv6_sendmsg+0x10/0x10
[   81.043445][ T7112]  ? hlock_class+0x4e/0x130
[   81.044652][ T7112]  ? __pfx___might_resched+0x10/0x10
[   81.046069][ T7112]  ? __pfx_aa_sk_perm+0x10/0x10
[   81.047355][ T7112]  ? __import_iovec+0x1f2/0x6d0
[   81.048652][ T7112]  ? __pfx_rawv6_sendmsg+0x10/0x10
[   81.050047][ T7112]  ? inet_sendmsg+0x119/0x140
[   81.051291][ T7112]  inet_sendmsg+0x119/0x140
[   81.052489][ T7112]  ____sys_sendmsg+0x907/0xb40
[   81.053741][ T7112]  ? __pfx_____sys_sendmsg+0x10/0x10
[   81.055120][ T7112]  ? get_compat_msghdr+0x11b/0x170
[   81.056463][ T7112]  ___sys_sendmsg+0x135/0x1e0
[   81.058002][ T7112]  ? __pfx____sys_sendmsg+0x10/0x10
[   81.059946][ T7112]  ? __pfx_lock_release+0x10/0x10
[   81.061795][ T7112]  ? trace_lock_acquire+0x14e/0x1f0
[   81.063204][ T7112]  ? __fget_files+0x206/0x3a0
[   81.064429][ T7112]  __sys_sendmsg+0x16e/0x220
[   81.065631][ T7112]  ? __pfx___sys_sendmsg+0x10/0x10
[   81.067325][ T7112]  __do_fast_syscall_32+0x73/0x120
[   81.068680][ T7112]  do_fast_syscall_32+0x32/0x80
[   81.070200][ T7112]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   81.072369][ T7112] RIP: 0023:0xf7f25579
[   81.073762][ T7112] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   81.079529][ T7112] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   81.082413][ T7112] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[   81.085241][ T7112] RDX: 0000000000044004 RSI: 0000000000000000 RDI: 0000000000000000
[   81.088071][ T7112] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   81.090984][ T7112] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   81.093828][ T7112] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   81.096736][ T7112]  </TASK>
[   81.153662][ T7116] input: syz1 as /devices/virtual/input/input12
[   81.180634][ T7113] netlink: 'syz.1.293': attribute type 27 has an invalid length.
[   81.246551][ T7121] netlink: 'syz.1.293': attribute type 27 has an invalid length.
[   81.247070][   T39] kauditd_printk_skb: 9 callbacks suppressed
[   81.247080][   T39] audit: type=1326 audit(1734678017.431:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7119 comm="syz.2.296" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f25579 code=0x0
[   81.316571][   T45] tipc: Resetting bearer <eth:macvlan1>
[   81.547662][ T7130] FAULT_INJECTION: forcing a failure.
[   81.547662][ T7130] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   81.551740][ T7130] CPU: 3 UID: 0 PID: 7130 Comm: syz.0.299 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   81.554601][ T7130] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.557478][ T7130] Call Trace:
[   81.558385][ T7130]  <TASK>
[   81.559204][ T7130]  dump_stack_lvl+0x16c/0x1f0
[   81.560506][ T7130]  should_fail_ex+0x497/0x5b0
[   81.562098][ T7130]  _copy_to_user+0x32/0xd0
[   81.563296][ T7130]  bpf_prog_test_run_raw_tp+0x541/0x710
[   81.564848][ T7130]  ? __pfx_bpf_prog_test_run_raw_tp+0x10/0x10
[   81.566688][ T7130]  ? fput+0x67/0x440
[   81.567747][ T7130]  ? __bpf_prog_get+0xa0/0x290
[   81.569062][ T7130]  ? __pfx_bpf_prog_test_run_raw_tp+0x10/0x10
[   81.571025][ T7130]  __sys_bpf+0x1921/0x57a0
[   81.572698][ T7130]  ? __pfx_lock_release+0x10/0x10
[   81.574517][ T7130]  ? __pfx___sys_bpf+0x10/0x10
[   81.576236][ T7130]  ? vfs_write+0x306/0x1150
[   81.577843][ T7130]  ? __mutex_unlock_slowpath+0x164/0x690
[   81.579398][ T7130]  ? fput+0x67/0x440
[   81.580451][ T7130]  ? ksys_write+0x1ba/0x250
[   81.581712][ T7130]  ? __pfx_ksys_write+0x10/0x10
[   81.583175][ T7130]  __ia32_sys_bpf+0x76/0xe0
[   81.584376][ T7130]  __do_fast_syscall_32+0x73/0x120
[   81.585730][ T7130]  do_fast_syscall_32+0x32/0x80
[   81.587187][ T7130]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   81.588865][ T7130] RIP: 0023:0xf715e579
[   81.589938][ T7130] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   81.594953][ T7130] RSP: 002b:00000000f515055c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   81.597126][ T7130] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 0000000020000640
[   81.599348][ T7130] RDX: 0000000000000050 RSI: 0000000000000000 RDI: 0000000000000000
[   81.601391][ T7130] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   81.603480][ T7130] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   81.605711][ T7130] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   81.608167][ T7130]  </TASK>
[   81.609110][    C3] vkms_vblank_simulate: vblank timer overrun
[   82.016053][ T7139] binder: BINDER_SET_CONTEXT_MGR already set
[   82.017902][ T7139] binder: 7137:7139 ioctl 4018620d 20000100 returned -16
[   82.025995][ T7133] »»»»»» speed is unknown, defaulting to 1000
[   82.051265][ T7150] FAULT_INJECTION: forcing a failure.
[   82.051265][ T7150] name failslab, interval 1, probability 0, space 0, times 0
[   82.066331][ T7150] CPU: 2 UID: 0 PID: 7150 Comm: syz.3.305 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   82.069235][ T7150] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.072319][ T7150] Call Trace:
[   82.073233][ T7150]  <TASK>
[   82.074025][ T7150]  dump_stack_lvl+0x16c/0x1f0
[   82.075276][ T7150]  should_fail_ex+0x497/0x5b0
[   82.076524][ T7150]  ? fs_reclaim_acquire+0xae/0x150
[   82.077900][ T7150]  should_failslab+0xc2/0x120
[   82.079180][ T7150]  __kmalloc_noprof+0xce/0x4f0
[   82.080454][ T7150]  ? alloc_pipe_info+0x1ec/0x590
[   82.081789][ T7150]  alloc_pipe_info+0x1ec/0x590
[   82.083055][ T7150]  splice_direct_to_actor+0x793/0xa40
[   82.084441][ T7150]  ? __pfx_direct_splice_actor+0x10/0x10
[   82.085906][ T7150]  ? __pfx_aa_file_perm+0x10/0x10
[   82.087237][ T7150]  ? __pfx_splice_direct_to_actor+0x10/0x10
[   82.088870][ T7150]  ? __fget_files+0x1fc/0x3a0
[   82.090068][ T7150]  do_splice_direct+0x178/0x250
[   82.091330][ T7150]  ? __pfx_do_splice_direct+0x10/0x10
[   82.092775][ T7150]  ? __pfx_direct_file_splice_eof+0x10/0x10
[   82.094361][ T7150]  ? bpf_lsm_file_permission+0x9/0x10
[   82.095791][ T7150]  ? security_file_permission+0x71/0x210
[   82.097302][ T7150]  do_sendfile+0xaed/0xe30
[   82.098506][ T7150]  ? __pfx_do_sendfile+0x10/0x10
[   82.099858][ T7150]  ? lock_acquire+0x2f/0xb0
[   82.101084][ T7150]  ? __might_fault+0xe3/0x190
[   82.102345][ T7150]  __ia32_compat_sys_sendfile+0x163/0x230
[   82.103817][ T7150]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[   82.105472][ T7150]  __do_fast_syscall_32+0x73/0x120
[   82.106789][ T7150]  do_fast_syscall_32+0x32/0x80
[   82.108009][ T7150]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.109610][ T7150] RIP: 0023:0xf7f53579
[   82.110899][ T7150] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   82.115844][ T7150] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[   82.117990][ T7150] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000003
[   82.120033][ T7150] RDX: 0000000020000000 RSI: 000000007ffff000 RDI: 0000000000000000
[   82.122076][ T7150] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   82.124278][ T7150] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   82.126346][ T7150] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   82.128384][ T7150]  </TASK>
[   82.333921][ T7162] FAULT_INJECTION: forcing a failure.
[   82.333921][ T7162] name failslab, interval 1, probability 0, space 0, times 0
[   82.343500][ T7162] CPU: 3 UID: 0 PID: 7162 Comm: syz.2.309 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   82.346348][ T7162] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.349135][ T7162] Call Trace:
[   82.350013][ T7162]  <TASK>
[   82.350796][ T7162]  dump_stack_lvl+0x16c/0x1f0
[   82.352047][ T7162]  should_fail_ex+0x497/0x5b0
[   82.353291][ T7162]  ? fs_reclaim_acquire+0xae/0x150
[   82.354625][ T7162]  should_failslab+0xc2/0x120
[   82.356112][ T7162]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[   82.358187][ T7162]  ? __alloc_skb+0x2b3/0x380
[   82.359792][ T7162]  __alloc_skb+0x2b3/0x380
[   82.361403][ T7162]  ? __pfx___alloc_skb+0x10/0x10
[   82.362951][ T7162]  ? lock_acquire+0x2f/0xb0
[   82.364214][ T7162]  netlink_alloc_large_skb+0x69/0x130
[   82.365673][ T7162]  netlink_sendmsg+0x689/0xd70
[   82.366998][ T7162]  ? __pfx_netlink_sendmsg+0x10/0x10
[   82.368686][ T7162]  ____sys_sendmsg+0x9ae/0xb40
[   82.369965][ T7162]  ? __pfx_____sys_sendmsg+0x10/0x10
[   82.371850][ T7162]  ? get_compat_msghdr+0x11b/0x170
[   82.373237][ T7162]  ___sys_sendmsg+0x135/0x1e0
[   82.374472][ T7162]  ? __pfx____sys_sendmsg+0x10/0x10
[   82.375861][ T7162]  ? __pfx_lock_release+0x10/0x10
[   82.377235][ T7162]  ? trace_lock_acquire+0x14e/0x1f0
[   82.378747][ T7162]  ? __fget_files+0x206/0x3a0
[   82.380000][ T7162]  __sys_sendmsg+0x16e/0x220
[   82.381251][ T7162]  ? __pfx___sys_sendmsg+0x10/0x10
[   82.382620][ T7162]  __do_fast_syscall_32+0x73/0x120
[   82.383979][ T7162]  do_fast_syscall_32+0x32/0x80
[   82.385279][ T7162]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.386912][ T7162] RIP: 0023:0xf7f25579
[   82.388000][ T7162] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   82.394767][ T7162] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   82.397480][ T7162] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000000
[   82.399636][ T7162] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   82.401666][ T7162] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   82.403716][ T7162] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   82.405769][ T7162] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   82.407822][ T7162]  </TASK>
[   82.408800][    C3] vkms_vblank_simulate: vblank timer overrun
[   82.586057][ T7170] input: syz0 as /devices/virtual/input/input13
[   83.075496][ T7183] block nbd0: Device being setup by another task
[   83.140342][ T7181] block nbd0: shutting down sockets
[   83.295093][ T7190] netlink: 4 bytes leftover after parsing attributes in process `syz.0.316'.
[   83.300064][   T39] audit: type=1800 audit(1734678019.481:58): pid=7190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.316" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[   83.520650][ T7193] FAULT_INJECTION: forcing a failure.
[   83.520650][ T7193] name failslab, interval 1, probability 0, space 0, times 0
[   83.524444][ T7193] CPU: 1 UID: 0 PID: 7193 Comm: syz.3.317 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   83.527979][ T7193] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.531675][ T7193] Call Trace:
[   83.532778][ T7193]  <TASK>
[   83.533796][ T7193]  dump_stack_lvl+0x16c/0x1f0
[   83.535184][ T7193]  should_fail_ex+0x497/0x5b0
[   83.536636][ T7193]  ? fs_reclaim_acquire+0xae/0x150
[   83.538182][ T7193]  should_failslab+0xc2/0x120
[   83.539617][ T7193]  __kmalloc_noprof+0xce/0x4f0
[   83.541285][ T7193]  ? d_absolute_path+0x137/0x1b0
[   83.543013][ T7193]  ? tomoyo_encode2+0x100/0x3e0
[   83.544479][ T7193]  tomoyo_encode2+0x100/0x3e0
[   83.546150][ T7193]  tomoyo_realpath_from_path+0x1a7/0x710
[   83.548413][ T7193]  tomoyo_path_number_perm+0x248/0x5b0
[   83.550476][ T7193]  ? tomoyo_path_number_perm+0x235/0x5b0
[   83.552234][ T7193]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   83.553859][ T7193]  ? __pfx_lock_release+0x10/0x10
[   83.555173][ T7193]  ? trace_lock_acquire+0x14e/0x1f0
[   83.556526][ T7193]  ? lock_acquire+0x2f/0xb0
[   83.557746][ T7193]  ? __fget_files+0x40/0x3a0
[   83.558986][ T7193]  ? __fget_files+0x206/0x3a0
[   83.560215][ T7193]  security_file_ioctl_compat+0x9b/0x240
[   83.561693][ T7193]  __do_compat_sys_ioctl+0x4e/0x2c0
[   83.563007][ T7193]  __do_fast_syscall_32+0x73/0x120
[   83.564268][ T7193]  do_fast_syscall_32+0x32/0x80
[   83.565546][ T7193]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   83.567281][ T7193] RIP: 0023:0xf7f53579
[   83.568348][ T7193] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   83.573309][ T7193] RSP: 002b:00000000f50a655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   83.575457][ T7193] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000000007a4
[   83.577518][ T7193] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 0000000000000000
[   83.579600][ T7193] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   83.581666][ T7193] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   83.583797][ T7193] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   83.585854][ T7193]  </TASK>
[   83.588203][ T7193] ERROR: Out of memory at tomoyo_realpath_from_path.
[   83.660881][ T7200] FAULT_INJECTION: forcing a failure.
[   83.660881][ T7200] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.664601][ T7200] CPU: 3 UID: 0 PID: 7200 Comm: syz.3.319 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   83.667486][ T7200] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.670908][ T7200] Call Trace:
[   83.671793][ T7200]  <TASK>
[   83.672616][ T7200]  dump_stack_lvl+0x16c/0x1f0
[   83.673867][ T7200]  should_fail_ex+0x497/0x5b0
[   83.675105][ T7200]  _copy_to_user+0x32/0xd0
[   83.676283][ T7200]  simple_read_from_buffer+0xd0/0x160
[   83.677936][ T7200]  proc_fail_nth_read+0x198/0x270
[   83.679273][ T7200]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   83.680680][ T7200]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   83.682114][ T7200]  vfs_read+0x1df/0xbe0
[   83.683204][ T7200]  ? __fget_files+0x1fc/0x3a0
[   83.684434][ T7200]  ? __pfx___mutex_lock+0x10/0x10
[   83.685868][ T7200]  ? __pfx_vfs_read+0x10/0x10
[   83.687163][ T7200]  ? __fget_files+0x206/0x3a0
[   83.688894][ T7200]  ksys_read+0x12b/0x250
[   83.690265][ T7200]  ? __pfx_ksys_read+0x10/0x10
[   83.691522][ T7200]  __do_fast_syscall_32+0x73/0x120
[   83.692864][ T7200]  do_fast_syscall_32+0x32/0x80
[   83.694095][ T7200]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   83.695688][ T7200] RIP: 0023:0xf7f53579
[   83.696930][ T7200] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   83.702116][ T7200] RSP: 002b:00000000f50a6590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   83.704220][ T7200] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f50a6620
[   83.706404][ T7200] RDX: 000000000000000f RSI: 00000000f73e3ff4 RDI: 0000000000000000
[   83.708634][ T7200] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   83.710473][ T7200] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   83.712489][ T7200] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   83.714517][ T7200]  </TASK>
[   83.716270][    C3] vkms_vblank_simulate: vblank timer overrun
[   84.025502][ T5979] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   84.079157][   T30] IPVS: starting estimator thread 0...
[   84.129927][ T7215] syz_tun: left allmulticast mode
[   84.131400][ T7215] syz_tun: left promiscuous mode
[   84.132849][ T7215] bridge0: port 3(syz_tun) entered disabled state
[   84.138848][ T7215] bridge_slave_0: left allmulticast mode
[   84.140398][ T7215] bridge_slave_0: left promiscuous mode
[   84.142470][ T7215] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.149071][ T7215] bridge_slave_1: left allmulticast mode
[   84.150618][ T7215] bridge_slave_1: left promiscuous mode
[   84.152610][ T7215] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.159900][ T7215] bond0: (slave bond_slave_0): Releasing backup interface
[   84.165183][ T7215] bond0: (slave bond_slave_1): Releasing backup interface
[   84.168059][ T7213] IPVS: using max 22 ests per chain, 52800 per kthread
[   84.175547][ T5980] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   84.185997][ T7215] team0: Port device team_slave_0 removed
[   84.191348][ T7215] team0: Port device team_slave_1 removed
[   84.193743][ T7215] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   84.196535][ T7215] batman_adv: batadv0: Removing interface: batadv_slave_0
[   84.196773][ T5979] usb 6-1: config 0 has no interfaces?
[   84.201171][ T5979] usb 6-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00
[   84.202009][ T7215] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   84.204344][ T5979] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   84.206796][ T7215] batman_adv: batadv0: Removing interface: batadv_slave_1
[   84.217702][ T5979] usb 6-1: config 0 descriptor??
[   84.239174][ T7217] vlan0: entered promiscuous mode
[   84.245197][ T7217] team0: Port device vlan0 added
[   84.246924][ T7215] tipc: Started in network mode
[   84.248702][ T7215] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   84.251249][ T7215] tipc: Enabled bearer <eth:team0>, priority 0
[   84.255929][ T7215] netlink: 40 bytes leftover after parsing attributes in process `syz.0.326'.
[   84.355550][ T5980] usb 7-1: Using ep0 maxpacket: 8
[   84.358473][ T5980] usb 7-1: config 0 has no interfaces?
[   84.361840][ T5980] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[   84.364859][ T5980] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   84.367538][ T5980] usb 7-1: Product: syz
[   84.368915][ T5980] usb 7-1: Manufacturer: syz
[   84.370428][ T5980] usb 7-1: SerialNumber: syz
[   84.373927][ T5980] usb 7-1: config 0 descriptor??
[   84.403634][ T7219] 9pnet_fd: Insufficient options for proto=fd
[   84.432988][ T7219] netlink: 8 bytes leftover after parsing attributes in process `syz.0.327'.
[   84.433982][ T5980] usb 6-1: USB disconnect, device number 3
[   84.505309][ T7226] netlink: 'syz.0.329': attribute type 29 has an invalid length.
[   84.508627][ T7226] netlink: 'syz.0.329': attribute type 29 has an invalid length.
[   84.542947][ T7228] program syz.0.330 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   84.577634][ T7202] FAULT_INJECTION: forcing a failure.
[   84.577634][ T7202] name failslab, interval 1, probability 0, space 0, times 0
[   84.580982][ T7202] CPU: 1 UID: 0 PID: 7202 Comm: syz.2.321 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   84.583642][ T7202] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.586467][ T7202] Call Trace:
[   84.587330][ T7202]  <TASK>
[   84.588132][ T7202]  dump_stack_lvl+0x16c/0x1f0
[   84.589432][ T7202]  should_fail_ex+0x497/0x5b0
[   84.590708][ T7202]  ? fs_reclaim_acquire+0xae/0x150
[   84.592110][ T7202]  should_failslab+0xc2/0x120
[   84.593385][ T7202]  __kmalloc_noprof+0xce/0x4f0
[   84.594623][ T7202]  ? d_absolute_path+0x137/0x1b0
[   84.595953][ T7202]  ? tomoyo_encode2+0x100/0x3e0
[   84.597162][ T7202]  tomoyo_encode2+0x100/0x3e0
[   84.598418][ T7202]  tomoyo_realpath_from_path+0x1a7/0x710
[   84.599910][ T7202]  tomoyo_path_number_perm+0x248/0x5b0
[   84.601453][ T7202]  ? tomoyo_path_number_perm+0x235/0x5b0
[   84.602973][ T7202]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   84.604539][ T7202]  ? __pfx_lock_release+0x10/0x10
[   84.605863][ T7202]  ? trace_lock_acquire+0x14e/0x1f0
[   84.607232][ T7202]  ? lock_acquire+0x2f/0xb0
[   84.608438][ T7202]  ? __fget_files+0x40/0x3a0
[   84.609658][ T7202]  ? __fget_files+0x206/0x3a0
[   84.610960][ T7202]  security_file_ioctl_compat+0x9b/0x240
[   84.612562][ T7202]  __do_compat_sys_ioctl+0x4e/0x2c0
[   84.614142][ T7202]  __do_fast_syscall_32+0x73/0x120
[   84.615721][ T7202]  do_fast_syscall_32+0x32/0x80
[   84.617115][ T7202]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   84.618818][ T7202] RIP: 0023:0xf7f25579
[   84.619898][ T7202] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   84.624948][ T7202] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   84.627134][ T7202] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005509
[   84.629276][ T7202] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[   84.631341][ T7202] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   84.633461][ T7202] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   84.635673][ T5949] Bluetooth: hci0: command 0x0c1a tx timeout
[   84.635687][ T7202] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   84.639901][ T7202]  </TASK>
[   84.640864][ T5978] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[   84.640985][ T7202] ERROR: Out of memory at tomoyo_realpath_from_path.
[   84.643060][ T5978] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[   84.647594][ T5979] usb 7-1: USB disconnect, device number 8
[   84.684650][ T7233] Bluetooth: MGMT ver 1.23
[   84.717757][ T7237] FAULT_INJECTION: forcing a failure.
[   84.717757][ T7237] name failslab, interval 1, probability 0, space 0, times 0
[   84.721536][ T7237] CPU: 2 UID: 0 PID: 7237 Comm: syz.0.333 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   84.725052][ T7237] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.728105][ T7237] Call Trace:
[   84.729022][ T7237]  <TASK>
[   84.729810][ T7237]  dump_stack_lvl+0x16c/0x1f0
[   84.731077][ T7237]  should_fail_ex+0x497/0x5b0
[   84.732326][ T7237]  ? fs_reclaim_acquire+0xae/0x150
[   84.733962][ T7237]  should_failslab+0xc2/0x120
[   84.735383][ T7237]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[   84.736943][ T7237]  ? hlock_class+0x4e/0x130
[   84.738184][ T7237]  ? __alloc_skb+0x2b3/0x380
[   84.739441][ T7237]  __alloc_skb+0x2b3/0x380
[   84.740673][ T7237]  ? __pfx___alloc_skb+0x10/0x10
[   84.741969][ T7237]  ? apparmor_file_permission+0x251/0x400
[   84.743478][ T7237]  ppp_write+0xbd/0x3e0
[   84.744588][ T7237]  ? rw_verify_area+0xd0/0x700
[   84.745865][ T7237]  ? __pfx_ppp_write+0x10/0x10
[   84.747129][ T7237]  vfs_write+0x24c/0x1150
[   84.748283][ T7237]  ? __fget_files+0x1fc/0x3a0
[   84.749557][ T7237]  ? __pfx_lock_release+0x10/0x10
[   84.750882][ T7237]  ? __pfx_vfs_write+0x10/0x10
[   84.752216][ T7237]  ? lock_acquire+0x2f/0xb0
[   84.753434][ T7237]  ? __fget_files+0x40/0x3a0
[   84.754668][ T7237]  ? __fget_files+0x206/0x3a0
[   84.755922][ T7237]  ksys_write+0x12b/0x250
[   84.757073][ T7237]  ? __pfx_ksys_write+0x10/0x10
[   84.758368][ T7237]  __do_fast_syscall_32+0x73/0x120
[   84.759761][ T7237]  do_fast_syscall_32+0x32/0x80
[   84.761106][ T7237]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   84.763023][ T7237] RIP: 0023:0xf715e579
[   84.764083][ T7237] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   84.769468][ T7237] RSP: 002b:00000000f515055c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   84.771974][ T7237] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000200003c0
[   84.774075][ T7237] RDX: 0000000000000027 RSI: 0000000000000000 RDI: 0000000000000000
[   84.776147][ T7237] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   84.778236][ T7237] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   84.780407][ T7237] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   84.782478][ T7237]  </TASK>
[   84.824300][ T7243] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   84.977105][ T7249] FAULT_INJECTION: forcing a failure.
[   84.977105][ T7249] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   84.981790][ T7249] CPU: 0 UID: 0 PID: 7249 Comm: syz.1.338 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   84.986539][ T7249] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   84.990384][ T7249] Call Trace:
[   84.991611][ T7249]  <TASK>
[   84.992683][ T7249]  dump_stack_lvl+0x16c/0x1f0
[   84.994372][ T7249]  should_fail_ex+0x497/0x5b0
[   84.996062][ T7249]  _copy_from_user+0x2e/0xd0
[   84.997713][ T7249]  move_addr_to_kernel+0x68/0x160
[   84.999445][ T7249]  __get_compat_msghdr+0x3f1/0x4d0
[   85.001150][ T7249]  get_compat_msghdr+0xd3/0x170
[   85.002909][ T7249]  ? __pfx_get_compat_msghdr+0x10/0x10
[   85.004836][ T7249]  ___sys_sendmsg+0x1b0/0x1e0
[   85.006379][ T7249]  ? __pfx____sys_sendmsg+0x10/0x10
[   85.008101][ T7249]  ? trace_lock_acquire+0x14e/0x1f0
[   85.009935][ T7249]  __sys_sendmmsg+0x2fa/0x420
[   85.011673][ T7249]  ? __pfx___sys_sendmmsg+0x10/0x10
[   85.013587][ T7249]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   85.015680][ T7249]  ? fput+0x67/0x440
[   85.017029][ T7249]  ? ksys_write+0x1ba/0x250
[   85.018635][ T7249]  ? __pfx_ksys_write+0x10/0x10
[   85.020361][ T7249]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[   85.022363][ T7249]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   85.024569][ T7249]  __do_fast_syscall_32+0x73/0x120
[   85.026221][ T7249]  do_fast_syscall_32+0x32/0x80
[   85.027789][ T7249]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   85.029802][ T7249] RIP: 0023:0xf715e579
[   85.031232][ T7249] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   85.037619][ T7249] RSP: 002b:00000000f515055c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[   85.040355][ T7249] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020006cc0
[   85.042999][ T7249] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[   85.045655][ T7249] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   85.048304][ T7249] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   85.051048][ T7249] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   85.053692][ T7249]  </TASK>
[   85.247107][ T5979] tipc: Node number set to 11578026
[   86.028457][ T7288] program syz.0.348 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   86.235907][ T7296] netlink: 32 bytes leftover after parsing attributes in process `syz.1.351'.
[   86.282691][ T7295] =======================================================
[   86.282691][ T7295] WARNING: The mand mount option has been deprecated and
[   86.282691][ T7295]          and is ignored by this kernel. Remove the mand
[   86.282691][ T7295]          option from the mount to silence this warning.
[   86.282691][ T7295] =======================================================
[   86.309314][   T39] audit: type=1326 audit(1734678022.491:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7306 comm="syz.1.354" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf715e579 code=0x0
[   86.337545][ T7310] FAULT_INJECTION: forcing a failure.
[   86.337545][ T7310] name failslab, interval 1, probability 0, space 0, times 0
[   86.342227][ T7310] CPU: 0 UID: 0 PID: 7310 Comm: syz.0.355 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   86.345829][ T7310] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   86.349493][ T7310] Call Trace:
[   86.350651][ T7310]  <TASK>
[   86.351690][ T7310]  dump_stack_lvl+0x16c/0x1f0
[   86.353451][ T7310]  should_fail_ex+0x497/0x5b0
[   86.355090][ T7310]  should_failslab+0xc2/0x120
[   86.356730][ T7310]  __kmalloc_noprof+0xce/0x4f0
[   86.358396][ T7310]  ? io_cqring_event_overflow+0xcb/0x6f0
[   86.360338][ T7310]  io_cqring_event_overflow+0xcb/0x6f0
[   86.362245][ T7310]  __io_submit_flush_completions+0x1066/0x1fd0
[   86.364417][ T7310]  io_submit_sqes+0xa13/0x25f0
[   86.366117][ T7310]  __do_sys_io_uring_enter+0xd43/0x1620
[   86.368024][ T7310]  ? __fget_files+0x206/0x3a0
[   86.369696][ T7310]  ? __pfx___do_sys_io_uring_enter+0x10/0x10
[   86.371777][ T7310]  ? fput+0x67/0x440
[   86.373169][ T7310]  ? ksys_write+0x1ba/0x250
[   86.374753][ T7310]  ? __pfx_ksys_write+0x10/0x10
[   86.376440][ T7310]  __do_fast_syscall_32+0x73/0x120
[   86.378189][ T7310]  do_fast_syscall_32+0x32/0x80
[   86.379892][ T7310]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   86.382073][ T7310] RIP: 0023:0xf715e579
[   86.383479][ T7310] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   86.390031][ T7310] RSP: 002b:00000000f515055c EFLAGS: 00000296 ORIG_RAX: 00000000000001aa
[   86.392924][ T7310] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000012d3e
[   86.395834][ T7310] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000000
[   86.398591][ T7310] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   86.401412][ T7310] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   86.404314][ T7310] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   86.407224][ T7310]  </TASK>
[   86.449801][ T7317] netlink: 'syz.0.357': attribute type 1 has an invalid length.
[   86.635581][ T7321] netlink: 'syz.2.356': attribute type 1 has an invalid length.
[   86.637662][ T7321] netlink: 40 bytes leftover after parsing attributes in process `syz.2.356'.
[   86.715499][ T5978] Bluetooth: hci1: Opcode 0x0c1a failed: -110
[   86.718596][ T5978] Bluetooth: hci1: Error when powering off device on rfkill (-110)
[   86.785442][ T5949] Bluetooth: hci1: command 0x0c1a tx timeout
[   86.809767][ T7325] sch_tbf: peakrate 12 is lower than or equals to rate 12 !
[   87.415552][ T6642] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   87.565513][ T6642] usb 5-1: Using ep0 maxpacket: 8
[   87.569179][ T6642] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[   87.572030][ T6642] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   87.575701][ T6642] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   87.579198][ T6642] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   87.582693][ T6642] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   87.587310][ T6642] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[   87.590590][ T6642] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   87.804437][ T6642] usb 5-1: usb_control_msg returned -32
[   87.806119][ T6642] usbtmc 5-1:16.0: can't read capabilities
[   88.795658][ T5949] Bluetooth: hci2: command 0x0c1a tx timeout
[   88.795709][ T5978] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[   88.799487][ T5978] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[   88.858466][ T7346] netlink: 12 bytes leftover after parsing attributes in process `syz.1.363'.
[   88.997782][ T7359] binder: 7352:7359 ioctl c0306201 0 returned -14
[   89.094082][ T5949] block nbd2: Receive control failed (result -32)
[   89.094088][   T66] block nbd2: Receive control failed (result -32)
[   89.128612][ T7357] block nbd2: shutting down sockets
[   89.341022][ T7378] Failed to enqueue queue_pair DETACH event datagram for context (ID=0x0)
[   90.049869][   T45] tipc: Subscription rejected, illegal request
[   90.053246][ T7388] tipc: Started in network mode
[   90.054917][ T7388] tipc: Node identity 4, cluster identity 4711
[   90.057781][ T7388] tipc: Node number set to 4
[   90.114471][ T7392] netlink: 24 bytes leftover after parsing attributes in process `syz.1.368'.
[   90.200435][ T6025] usb 5-1: USB disconnect, device number 3
[   90.288425][ T7402] »»»»»» speed is unknown, defaulting to 1000
[   90.307098][ T7396] netlink: 244 bytes leftover after parsing attributes in process `syz.1.371'.
[   91.056853][ T7426] netlink: 'syz.0.376': attribute type 10 has an invalid length.
[   91.153992][ T7426] veth0_vlan: left promiscuous mode
[   91.162123][ T7426] veth0_vlan: entered promiscuous mode
[   91.166402][ T7426] 
[   91.167262][ T7426] ============================================
[   91.169462][ T7426] WARNING: possible recursive locking detected
[   91.171468][ T7426] 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0 Not tainted
[   91.175710][ T7426] --------------------------------------------
[   91.177824][ T7426] syz.0.376/7426 is trying to acquire lock:
[   91.179823][ T7426] ffff8880679b8e00 (team->team_lock_key#4){+.+.}-{4:4}, at: team_device_event+0x2c7/0x770
[   91.183031][ T7426] 
[   91.183031][ T7426] but task is already holding lock:
[   91.185546][ T7426] ffff8880679b8e00 (team->team_lock_key#4){+.+.}-{4:4}, at: team_add_slave+0x9c/0x1ff0
[   91.188206][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.188807][ T7426] 
[   91.188807][ T7426] other info that might help us debug this:
[   91.190689][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.193519][ T7426]  Possible unsafe locking scenario:
[   91.193519][ T7426] 
[   91.196384][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.197905][ T7426]        CPU0
[   91.197911][ T7426]        ----
[   91.200030][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.201096][ T7426]   lock(team->team_lock_key
[   91.201958][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.204249][ T7426] #4
[   91.205768][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.207885][ T7426] );
[   91.207892][ T7426]   lock(team->team_lock_key#4);
[   91.207909][ T7426] 
[   91.207909][ T7426]  *** DEADLOCK ***
[   91.207909][ T7426] 
[   91.207913][ T7426]  May be due to missing lock nesting notation
[   91.207913][ T7426] 
[   91.207918][ T7426] 2 locks held by syz.0.376/7426:
[   91.207928][ T7426]  #0: ffffffff8fabfb08 (rtnl_mutex
[   91.208786][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.210700][ T7426] ){+.+.}-{4:4}
[   91.211385][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.212698][ T7426] , at: rtnl_newlink+0x5e4/0x1d70
[   91.214777][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.216940][ T7426]  #1: ffff8880679b8e00 (team->team_lock_key#4){+.+.}-{4:4}, at: team_add_slave+0x9c/0x1ff0
[   91.216976][ T7426] 
[   91.216976][ T7426] stack backtrace:
[   91.216980][ T7426] CPU: 3 UID: 0 PID: 7426 Comm: syz.0.376 Not tainted 6.13.0-rc3-syzkaller-00136-g8faabc041a00 #0
[   91.216992][ T7426] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.216998][ T7426] Call Trace:
[   91.217003][ T7426]  <TASK>
[   91.217007][ T7426]  dump_stack_lvl+0x116/0x1f0
[   91.218554][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.219756][ T7426]  print_deadlock_bug+0x2e3/0x410
[   91.219778][ T7426]  __lock_acquire+0x2117/0x3c40
[   91.221723][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.222585][ T7426]  ? __pfx___lock_acquire+0x10/0x10
[   91.224376][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.225631][ T7426]  ? find_held_lock+0x2d/0x110
[   91.225648][ T7426]  lock_acquire.part.0+0x11b/0x380
[   91.225658][ T7426]  ? team_device_event+0x2c7/0x770
[   91.225673][ T7426]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   91.228646][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.230295][ T7426]  ? rcu_is_watching+0x12/0xc0
[   91.231868][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.234636][ T7426]  ? trace_lock_acquire+0x14e/0x1f0
[   91.237705][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.238400][ T7426]  ? team_device_event+0x2c7/0x770
[   91.239257][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.240510][ T7426]  ? lock_acquire+0x2f/0xb0
[   91.242412][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.244007][ T7426]  ? team_device_event+0x2c7/0x770
[   91.245279][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.247200][ T7426]  __mutex_lock+0x19b/0xa60
[   91.247218][ T7426]  ? team_device_event+0x2c7/0x770
[   91.247231][ T7426]  ? team_device_event+0x2c7/0x770
[   91.249681][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.250837][ T7426]  ? __pfx___mutex_lock+0x10/0x10
[   91.252116][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.253455][ T7426]  ? team_device_event+0x2c7/0x770
[   91.254769][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.256219][ T7426]  team_device_event+0x2c7/0x770
[   91.256236][ T7426]  notifier_call_chain+0xb7/0x410
[   91.256249][ T7426]  ? __pfx_team_device_event+0x10/0x10
[   91.256262][ T7426]  call_netdevice_notifiers_info+0xbe/0x140
[   91.258369][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.259466][ T7426]  __dev_notify_flags+0x12d/0x2e0
[   91.259481][ T7426]  ? __pfx___dev_notify_flags+0x10/0x10
[   91.261830][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.263149][ T7426]  ? __dev_change_flags+0x3d9/0x720
[   91.266192][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.266979][ T7426]  ? __pfx___dev_change_flags+0x10/0x10
[   91.269503][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.270742][ T7426]  dev_change_flags+0x10c/0x160
[   91.273256][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.274592][ T7426]  vlan_device_event+0xdfc/0x2120
[   91.277557][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.278259][ T7426]  ? __pfx_dsa_user_netdevice_event+0x10/0x10
[   91.280019][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.281373][ T7426]  ? __pfx_phonet_device_notify+0x10/0x10
[   91.283828][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.285265][ T7426]  ? __pfx_vlan_device_event+0x10/0x10
[   91.288229][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.289186][ T7426]  ? __pfx_br_device_event+0x10/0x10
[   91.291679][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.293048][ T7426]  ? raw_notifier+0xa4/0x860
[   91.294736][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.296188][ T7426]  ? isotp_notifier+0xa4/0x6d0
[   91.296208][ T7426]  ? bcm_notifier+0xa8/0x820
[   91.296222][ T7426]  ? cgw_notifier+0xa2/0x390
[   91.296231][ T7426]  ? lockdep_rtnl_is_held+0x26/0x40
[   91.296242][ T7426]  notifier_call_chain+0xb7/0x410
[   91.296255][ T7426]  ? __pfx_vlan_device_event+0x10/0x10
[   91.299043][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.300194][ T7426]  call_netdevice_notifiers_info+0xbe/0x140
[   91.300215][ T7426]  dev_open+0x144/0x160
[   91.300227][ T7426]  ? __pfx_dev_open+0x10/0x10
[   91.301966][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.303360][ T7426]  ? team_add_slave+0x775/0x1ff0
[   91.303380][ T7426]  team_add_slave+0xa8c/0x1ff0
[   91.303394][ T7426]  ? __pfx_team_add_slave+0x10/0x10
[   91.306512][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.307266][ T7426]  ? __lock_acquire+0x15a9/0x3c40
[   91.307287][ T7426]  ? __pfx_team_add_slave+0x10/0x10
[   91.309998][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.311433][ T7426]  do_set_master+0x1bc/0x230
[   91.311448][ T7426]  do_setlink.constprop.0+0xa0d/0x3f20
[   91.311462][ T7426]  ? __pfx_lock_release+0x10/0x10
[   91.313971][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.315217][ T7426]  ? __pfx_do_setlink.constprop.0+0x10/0x10
[   91.315234][ T7426]  ? lock_acquire.part.0+0x11b/0x380
[   91.315244][ T7426]  ? __mutex_trylock_common+0xea/0x250
[   91.318591][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.319079][ T7426]  ? __pfx___mutex_trylock_common+0x10/0x10
[   91.321647][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.323224][ T7426]  ? rtnl_newlink+0x5e4/0x1d70
[   91.323240][ T7426]  ? rcu_is_watching+0x12/0xc0
[   91.323252][ T7426]  ? trace_contention_end+0xee/0x140
[   91.326233][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.327223][ T7426]  ? __mutex_lock+0x1cc/0xa60
[   91.329781][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.331160][ T7426]  ? rtnl_newlink+0x5e4/0x1d70
[   91.331176][ T7426]  ? __pfx___mutex_lock+0x10/0x10
[   91.331189][ T7426]  ? apparmor_capable+0x114/0x1d0
[   91.333731][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.335032][ T7426]  ? netlink_ns_capable+0xfa/0x130
[   91.335055][ T7426]  rtnl_newlink+0x131c/0x1d70
[   91.338131][ T5978] hid-generic 0000:0000:0000.0004: unknown main item tag 0x0
[   91.338833][ T7426]  ? __pfx_rtnl_newlink+0x10/0x10
[   91.338851][ T7426]  ? __pfx___lock_acquire+0x10/0x10
[   91.341559][ T5978] hid-generic 0000:0000:0000.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   91.342356][ T7426]  ? kmem_cache_free+0x152/0x4c0
[   91.342382][ T7426]  ? aa_get_newest_label+0x376/0x680
[   91.411635][ T7426]  ? find_held_lock+0x2d/0x110
[   91.412931][ T7426]  ? find_held_lock+0x2d/0x110
[   91.414266][ T7426]  ? rtnetlink_rcv_msg+0x93a/0xea0
[   91.415628][ T7426]  ? __pfx_lock_release+0x10/0x10
[   91.416977][ T7426]  ? trace_lock_acquire+0x14e/0x1f0
[   91.418450][ T7426]  ? __pfx_rtnl_newlink+0x10/0x10
[   91.419801][ T7426]  rtnetlink_rcv_msg+0x95b/0xea0
[   91.421113][ T7426]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   91.422606][ T7426]  ? __pfx___dev_queue_xmit+0x10/0x10
[   91.424011][ T7426]  netlink_rcv_skb+0x165/0x410
[   91.425311][ T7426]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   91.426843][ T7426]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   91.428383][ T7426]  ? netlink_deliver_tap+0x1ae/0xca0
[   91.429896][ T7426]  netlink_unicast+0x53c/0x7f0
[   91.431178][ T7426]  ? __pfx_netlink_unicast+0x10/0x10
[   91.432573][ T7426]  ? __phys_addr_symbol+0x30/0x80
[   91.433960][ T7426]  ? __check_object_size+0x488/0x710
[   91.435345][ T7426]  netlink_sendmsg+0x8b8/0xd70
[   91.436715][ T7426]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.438129][ T7426]  ____sys_sendmsg+0x9ae/0xb40
[   91.439501][ T7426]  ? __pfx_____sys_sendmsg+0x10/0x10
[   91.440894][ T7426]  ? get_compat_msghdr+0x11b/0x170
[   91.442241][ T7426]  ___sys_sendmsg+0x135/0x1e0
[   91.443566][ T7426]  ? __pfx____sys_sendmsg+0x10/0x10
[   91.444966][ T7426]  ? __pfx_lock_release+0x10/0x10
[   91.446250][ T7426]  ? trace_lock_acquire+0x14e/0x1f0
[   91.447661][ T7426]  ? __fget_files+0x206/0x3a0
[   91.449098][ T7426]  __sys_sendmsg+0x16e/0x220
[   91.450322][ T7426]  ? __pfx___sys_sendmsg+0x10/0x10
[   91.451687][ T7426]  ? __ia32_sys_futex_time32+0x1da/0x460
[   91.453269][ T7426]  __do_fast_syscall_32+0x73/0x120
[   91.454635][ T7426]  do_fast_syscall_32+0x32/0x80
[   91.455928][ T7426]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   91.457703][ T7426] RIP: 0023:0xf715e579
[   91.458816][ T7426] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   91.463906][ T7426] RSP: 002b:00000000f515055c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   91.466190][ T7426] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000600
[   91.468319][ T7426] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   91.470521][ T7426] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   91.472636][ T7426] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   91.474781][ T7426] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   91.476870][ T7426]  </TASK>

VM DIAGNOSIS:
07:00:27  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffffc90026c18000 RCX=000000000000000a RDX=0000000000001000
RSI=0000000000000000 RDI=fffff52004d83d40 RBP=0000000000008000 RSP=ffffc90003d47b70
R8 =0000000000000001 R9 =0000000000000000 R10=fffff52004d83000 R11=00000000000a201e
R12=ffff888066cf1000 R13=ffff8880222a8000 R14=ffffc90003d47e20 R15=0000000001200000
RIP=ffffffff8b1a3b76 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f7f155c0 CR3=000000004d0a0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000384e47e562 RBX=ffff88802b528400 RCX=00000000000006e0 RDX=0000000000000038
RSI=ffff88802b528400 RDI=0000000000053397 RBP=0000000000053397 RSP=ffffc90004327b10
R8 =0000000000000005 R9 =000000000000003f R10=0000000000000019 R11=0000000000000000
R12=0000000000000001 R13=0000000000000019 R14=0000000000000001 R15=ffff88802b52ca00
RIP=ffffffff814660c5 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000055c9ff9a8000 CR3=0000000049274000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f73e3ff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000080080783 RBX=0000000000000000 RCX=ffff888021c61070 RDX=000000000000009d
RSI=ffffffff865680b6 RDI=ffff888021c61268 RBP=0000000000000001 RSP=ffffc90000548b70
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000000 R11=00000000000a2001
R12=0000000000000001 R13=0000000000004e20 R14=ffff888021c61070 R15=0000000000000001
RIP=ffffffff865680fd RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f27ca7bc280 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000056d464c0 CR3=000000001e7d8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000004080 Opmask01=00000000100001ff Opmask02=00000000ffffffff Opmask03=2040000404420020
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000055b3722228d0 000055b37221b840
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff55574cf0 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff55574310 0000003000000010
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ff000000 00ff000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00ff000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffff00 ffffffffffffffff
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 53cbda8825feb86e 737326c55a6532c9
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73737373737373e2 7373737373737373
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f716d2f32706f6f 6c2f6b636f6c622f 6c6175747269762f 736563697665642f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f646e756f732f00 682e6c6974752f64 65726168732f6372 732f2e2e2f2e2e00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f716d2f32706f6f 6c2f6b636f6c622f 6c6175747269762f 736563697665642f
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000302e003075 70632f302f716d2f 32706f6f6c2f6b63 6f6c622f6c617574
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 20b8a9fb568dcb1d 000055b62916761d 0000000000000031 0000000000000030
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffaa4c8dde134c 000055b629179afa 20b8a9fb568dcb1d 00002a91e339fba7
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffdddffffc 00007fb6b91fffff 20b8ffff7ffffffd 30007fb7f779fbf7
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 3a3a263e383a3a26 39383a3a2638383a 3a263b383a3a263a 383a3a26493b3a3a
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000240 0000000000000030 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000240 000000000000002a 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000074 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85142575 RDI=ffffffff9a6672c0 RBP=ffffffff9a667280 RSP=ffffc90007076380
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36
R12=0000000000000000 R13=0000000000000074 R14=ffffffff85142510 R15=0000000000000000
RIP=ffffffff8514259f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
GS =0063 ffff88802b700000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000072cf4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000d000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000