last executing test programs:

57.647680752s ago: executing program 2 (id=167):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0x209d, 0x0, 0x9}, 0x10)
write(r0, &(0x7f00000000c0)="1800000016005f0214fffffffffffff80700000001000000", 0x18) (fail_nth: 8)

57.57889094s ago: executing program 2 (id=168):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$nl_route(0x10, 0x3, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf09000000000000550901000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r1 = getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x2, 0x16, &(0x7f0000001600)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe50, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000140)='/sys/power/wakeup_count', 0x141000, 0x20)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r4, 0x0)
finit_module(r4, 0x0, 0x3)

56.516866892s ago: executing program 2 (id=177):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000002700)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = creat(&(0x7f0000000400)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
write$binfmt_elf64(r0, &(0x7f00000002c0)=ANY=[], 0x76)
dup3(r1, r0, 0x0)
finit_module(r1, 0x0, 0x100000000000000) (fail_nth: 8)

56.448793844s ago: executing program 2 (id=178):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r1)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xd, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$swradio(0x0, 0x1, 0x2)
r5 = syz_io_uring_setup(0x117, &(0x7f0000000300), &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_NEXT_DEVICE(0xffffffffffffffff, 0xc1205531, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r5, 0x47f6, 0x0, 0x0, 0x0, 0x0)
r8 = io_uring_setup(0x3cad, &(0x7f00000000c0)={0x0, 0x8c4a, 0x0, 0xfffffffb, 0x3})
io_uring_enter(r8, 0x0, 0x2, 0xf, &(0x7f0000000000), 0x18)
r9 = socket$rxrpc(0x21, 0x2, 0xa)
ioctl$int_in(r9, 0x5452, &(0x7f0000000040)=0x6)
ioctl$sock_bt_hidp_HIDPCONNDEL(0xffffffffffffffff, 0x400448c9, &(0x7f0000000240)={@none})

55.507675498s ago: executing program 2 (id=179):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x1c}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @link_local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00@\x00', 0x14, 0x6, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @local, {[], {{0x4e24, 0x80, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x0, 0x3}}}}}}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008546000000000000ff0100000000", @ANYRES32=r1, @ANYBLOB="01000000002200001c0012000c000100626f6e6400"], 0x3c}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c00000010000100000000000000000053000000", @ANYRES32=r3, @ANYBLOB="efdd0e4af11f02000a"], 0x2c}}, 0x0)

46.448010748s ago: executing program 2 (id=182):
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x4000, 0x0)
r0 = msgget$private(0x0, 0x0)
msgctl$IPC_SET(r0, 0x1, &(0x7f00000004c0)={{0x1, 0xffffffffffffffff, 0x0, 0x0, 0xee00, 0x1cb, 0x38f}, 0x0, 0x0, 0xb7, 0xda, 0x4, 0x2, 0x8, 0x2, 0x101a, 0xd7df})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x4}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4)
accept4$bt_l2cap(r4, 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x2c, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x994}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x1e}]}, 0x2c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)={0x50, r9, 0x1, 0x26000000, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME={0x2a, 0x33, @action={{{}, {}, @broadcast, @device_a, @from_mac=@broadcast, {0x0, 0xff}}, @ext_ch_sw={0x4, 0x4, {{0x0, 0x0, 0x2}, @val={0x76, 0x6, {0x4, 0x5, 0x19, 0x3}}}}}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x0]}]}, 0x50}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
openat$snapshot(0xffffff9c, 0x0, 0x8001, 0x0)
unshare(0x68060200)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_ENTRIES(r10, 0x0, 0x81, 0x0, 0x0)

46.397798298s ago: executing program 1 (id=183):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = openat$iommufd(0xffffff9c, &(0x7f0000000000), 0x10000, 0x0)
ioctl$IOMMU_VFIO_IOMMU_UNMAP_DMA(r2, 0x3b72, &(0x7f00000000c0)={0x50, 0x3, 0x4, 0x5, "a87430e3f527edbc91d1fd10dc0a8b0e6c07d3f6defb5af23b1077f807a8e48f94cd5e50afd4ffbcbcbc50a6c037028a2faa0e714a012779"})
r3 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000100))
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x802, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x0, 0x1, 0x7, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r6, 0x0, 0x0}, 0x1c)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000300)=[@acquire], 0x0, 0x0, 0x0})
r7 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000340)='/sys/kernel/debug/binder/stats\x00', 0x0, 0x0)
lseek(r7, 0x851, 0x0)
fcntl$dupfd(r1, 0x406, r0)
socket$inet6_sctp(0xa, 0x5, 0x84)
r8 = eventfd(0x0)
ioctl$KVM_IRQFD(r1, 0x4020ae76, &(0x7f0000000080)={r8, 0x14, 0x2, r8})
r9 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r9, &(0x7f0000000340)=[{&(0x7f00000001c0)=""/96, 0x60}], 0x1, 0x20000, 0x2)
r10 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r10, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
r11 = io_uring_setup(0x68f, &(0x7f0000000400)={0x0, 0xfe, 0x20, 0x0, 0x1f4, 0x0, r9})
r12 = syz_io_uring_setup(0x233, &(0x7f0000000280)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r11}, &(0x7f0000000080)=<r13=>0x0, &(0x7f0000000240)=<r14=>0x0)
syz_io_uring_submit(r13, r14, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r12, 0x7a98, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000180), r9)

38.288798802s ago: executing program 1 (id=189):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x4, 0xb, &(0x7f0000000180)=ANY=[@ANYRES8=<r1=>0xffffffffffffffff], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x109500)
dup(r2)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x43, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0x18, 0x30, 0x1, 0x0, 0x0, {}, [{0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000140), 0xffffffffffffffff)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r6)
ioctl$sock_SIOCGIFINDEX_802154(r5, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r8=>0x0})
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
r9 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r9, &(0x7f0000000040)={0x0, 0x33, &(0x7f0000000340)={&(0x7f0000000440)=ANY=[@ANYBLOB="3c000000a0cd9200991fad155265e6e151cf3be865d219f4b3cbb3f9b53a20ef70ae2548c29479bd6ae6743964edaf26a81f5ba9c2fa3be8dcf4ee0177e795ed6b2c4aea598b5f62f954d051ce7c87e91a11629052917fd28a7365e6e3e04c907855ca213fb2e4037af58188c8b1f58832d893ebf63ce9e9fe20c7c32a4f5a78c8cd8e7467d48d920de488be237129ee86a5ab8d0891622639724c000000000000", @ANYRES16=r7, @ANYBLOB="0b06000000000000000030000000050036000000000008000200", @ANYRES32=r8, @ANYBLOB="050035000000000005003300030000000500340000000000"], 0x3c}}, 0x0)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r4, @ANYBLOB="010300000000000000001f00000008000300", @ANYRES32=r8], 0x1c}, 0x1, 0x3000000}, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
r10 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r10, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000005c0)=ANY=[@ANYBLOB="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"], 0x114}], 0x1}, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r3)
syz_emit_ethernet(0x86, &(0x7f0000000580)=ANY=[@ANYRES16=r10, @ANYRESHEX=r1], 0x0)
r11 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r11, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xd6c842cfc92a1d8f, 0x8031, 0xffffffffffffffff, 0xaa036000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

33.446945991s ago: executing program 0 (id=191):
socket$kcm(0x11, 0x3, 0x0) (async)
socket$kcm(0x11, 0x3, 0x0)
r0 = socket$inet6(0xa, 0x800, 0xffffffff)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e20, 0x4, @loopback}, 0x1c)
listen(r0, 0x20000005) (async)
listen(r0, 0x20000005)
socket$inet6(0xa, 0x6, 0x0) (async)
r1 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x4e20, 0x0, @dev={0xfe, 0x80, '\x00', 0x2f}}, 0x1c)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_route(0x10, 0x3, 0x0)
unshare(0x2a020400) (async)
unshare(0x2a020400)
r4 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$RTC_SET_TIME(r4, 0x40247007, &(0x7f0000000180)={0x16, 0x18, 0x7, 0xfffffffa, 0x1, 0x2, 0xfffffffd})
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f00000002c0)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) (async)
sendmsg$nl_route(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r7, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)=@deltclass={0x34, 0x29, 0x800, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r7, {0xfff2, 0x10}, {0x6, 0xffed}, {0x2, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x70, 0x5}}, @TCA_RATE={0x6, 0x5, {0x5, 0x3}}]}, 0x34}}, 0x0) (async)
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000000c0)=@deltclass={0x34, 0x29, 0x800, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, r7, {0xfff2, 0x10}, {0x6, 0xffed}, {0x2, 0x1}}, [@TCA_RATE={0x6, 0x5, {0x70, 0x5}}, @TCA_RATE={0x6, 0x5, {0x5, 0x3}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000180)=@delchain={0x4c, 0x64, 0xf31, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x9}, {0xa, 0xffff}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_ENC_IPV4_SRC={0x8, 0x1b, @initdev={0xac, 0x1e, 0x0, 0x0}}, @TCA_FLOWER_KEY_ENC_UDP_DST_PORT={0x6}, @TCA_FLOWER_KEY_ENC_IP_TOS={0x5, 0x50, 0x9}]}}]}, 0x4c}}, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0) (async)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r8)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000240))
ioctl$SIOCSIFHWADDR(r8, 0x8b26, &(0x7f0000000000)={'wlan1\x00', @broadcast})
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000000)={0x0, 0xfffffffffffffc54, &(0x7f00000004c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="6800570002060102c6da02000000000000000000000000120003006269746d61703a69702c6d616300000005000401000000001c00020073797ae88a659af18660fecd18e59cd8dfaa79801800018014000240ff010004000000000000000000000001050005000200000005000100063102032dc196d9eb48585dd28b91d91b6cb4e2c2ae08b1ae363c90e8d8dec53efb607bd97476042bc7d019bf8d8a78ceebd9b85b8e305aa1f31c5b08110f6d2d4157bbc29b43743d9173ccfbc61ff9b49683ab17ef75b9994a87d57cc9ddabe9d0195372cfeadc257b93606e8052897b9d72b4112fb50f7687dd887f"], 0x68}, 0x1, 0x0, 0x0, 0x20000044}, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @sdr={0x42303159, 0x566e5aa9}}) (async)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @sdr={0x42303159, 0x566e5aa9}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) (async)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0) (async)
r9 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r9, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

33.347834282s ago: executing program 1 (id=192):
r0 = openat$cuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)
fsetxattr$security_evm(r0, &(0x7f0000000100), &(0x7f0000000180)=@sha1={0x1, "56414caf61c25252c8a944493246e6f4cf6fc84d"}, 0x15, 0x1)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x381, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x5032})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4882}, 0x4000)
io_setup(0xbf, &(0x7f0000000280))
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f0000006840)={0x2020, 0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
syz_fuse_handle_req(r2, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = syz_io_uring_setup(0x234, &(0x7f0000000080)={0x0, 0xfffffffd, 0x10100}, &(0x7f0000001080)=<r6=>0x0, &(0x7f0000000100)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0xfffffffffffffffe, 0x0})
io_uring_enter(r5, 0x7a98, 0x0, 0x0, 0x0, 0x0)
write$FUSE_INIT(r2, &(0x7f0000004200)={0x50, 0x0, r3, {0x7, 0x29, 0x0, 0x0, 0x5, 0xfffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x4, 0x0, 0x0, 0x2000, 0x0, r4, 0x0, 0x440}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0)
ioctl$LOOP_CHANGE_FD(r8, 0x542e, 0xffffffffffffffff)

33.347358206s ago: executing program 3 (id=193):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
close(r0)
ioctl$SIOCSIFHWADDR(r0, 0x8b37, &(0x7f0000000080)={'virt_wifi0\x00', @broadcast})
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r3, 0x0, r2, 0x0, 0x2, 0x0)
fcntl$setstatus(r2, 0x4, 0x2000)
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r0, 0xc00c642e, &(0x7f0000000040)={0x0, 0x0, r2})
pipe2(&(0x7f0000000340)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
r6 = fanotify_init(0x8, 0x0)
r7 = epoll_create1(0x0)
r8 = fcntl$dupfd(r7, 0x2, 0xffffffffffffffff)
fanotify_mark(r6, 0x1, 0x8000011, r8, 0x0)
pipe2(&(0x7f0000000080)={0xffffffffffffffff, <r9=>0xffffffffffffffff}, 0x0)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r10, 0x0, r9, 0x0, 0x6, 0x0)
sendmsg$IPSET_CMD_RENAME(r10, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)={0x14, 0x5, 0x6, 0x3, 0x0, 0x0, {0x1, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x80}, 0x800)
r11 = epoll_create1(0x0)
setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f00000000c0)={@loopback, @local, 0x0, 0x49, [@empty, @rand_addr=0x64010101, @multicast2, @multicast2, @loopback, @loopback, @multicast1, @broadcast, @multicast1, @local]}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(r11, 0x1, r5, &(0x7f0000000140))
r12 = syz_open_dev$vim2m(&(0x7f0000000440), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r12, 0xc0145608, &(0x7f00000000c0)={0x3, 0x2, 0x4})
dup3(r6, r2, 0x0)
ioctl$vim2m_VIDIOC_EXPBUF(r12, 0xc0405668, &(0x7f0000000100)={0x0, 0x3, 0x2, 0x84000})
fcntl$setpipe(r5, 0x407, 0x0)
read$FUSE(r4, &(0x7f0000000480)={0x2020, 0x0, 0x0, 0x0, <r13=>0x0}, 0x2020)
write$FUSE_ENTRY(r5, &(0x7f00000003c0)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r13, 0x3}}}, 0x90)

31.324311821s ago: executing program 32 (id=182):
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000040), 0x801, 0x0)
msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x4000, 0x0)
r0 = msgget$private(0x0, 0x0)
msgctl$IPC_SET(r0, 0x1, &(0x7f00000004c0)={{0x1, 0xffffffffffffffff, 0x0, 0x0, 0xee00, 0x1cb, 0x38f}, 0x0, 0x0, 0xb7, 0xda, 0x4, 0x2, 0x8, 0x2, 0x101a, 0xd7df})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x3, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x4}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x4)
accept4$bt_l2cap(r4, 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x2c, r5, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x994}], @NL80211_ATTR_CH_SWITCH_COUNT={0x8, 0xb7, 0x1e}]}, 0x2c}}, 0x0)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r8, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000440)={0x50, r9, 0x1, 0x26000000, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_FRAME={0x2a, 0x33, @action={{{}, {}, @broadcast, @device_a, @from_mac=@broadcast, {0x0, 0xff}}, @ext_ch_sw={0x4, 0x4, {{0x0, 0x0, 0x2}, @val={0x76, 0x6, {0x4, 0x5, 0x19, 0x3}}}}}}, @NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x0]}]}, 0x50}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
openat$snapshot(0xffffff9c, 0x0, 0x8001, 0x0)
unshare(0x68060200)
r10 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$EBT_SO_GET_ENTRIES(r10, 0x0, 0x81, 0x0, 0x0)

26.252039294s ago: executing program 3 (id=195):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0xa00dc3, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000100)=0x14)
r2 = dup(r0)
r3 = syz_open_dev$vbi(0x0, 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r3, 0xc008561c, 0x0)
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000100)={{&(0x7f0000ffd000/0x1000)=nil, 0x1000}, 0x6})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r5=>0x0})
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="010000000000000000003700000008000300", @ANYRES32=r5, @ANYBLOB="08002600901500000800570080"], 0x2c}}, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000004c0)=ANY=[], 0x2c}}, 0x0)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x24f9, &(0x7f0000000080)={0x0, 0xfffffffe, 0x10100, 0x40000000}, 0x0, &(0x7f0000000180))
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index, 0x0, 0x0, 0x0, {0x527f8fd6ae62a9bb}})
setsockopt$SO_RDS_TRANSPORT(0xffffffffffffffff, 0x114, 0x8, &(0x7f00000008c0), 0x4)
clock_gettime(0x0, &(0x7f0000000300)={<r8=>0x0, <r9=>0x0})
clock_nanosleep(0x8, 0x0, &(0x7f0000000000)={r8, r9+60000000}, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='msdos\x00', 0x80000, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x159080, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000240)='./file0\x00')

22.617121662s ago: executing program 0 (id=196):
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x8, &(0x7f0000000380), 0x4)
setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000280)={{}, 0x78}, 0x10)
pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x87f8fb5443be9d06)
write$P9_RLERRORu(r1, &(0x7f0000000140)={0x11, 0x7, 0x1, {{0x4, 'GPL\x00'}, 0x3}}, 0x11)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r2, 0x800448d4, &(0x7f0000000080)={0xffffffffffffffff, 0x200, "00f800", 0xa3, 0x9})
r3 = socket(0x10, 0x803, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r5 = socket(0x400000000010, 0x3, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newtfilter={0x50, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0x2}, {}, {0x5}}, [@filter_kind_options=@f_flow={{0x9}, {0x20, 0x2, [@TCA_FLOW_EMATCHES={0x1c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_CONTAINER={0xc, 0x1, 0x0, 0x0, {{0x6, 0x20, 0xf4a}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x7fff}}]}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x80}, 0x800)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
prctl$PR_GET_TSC(0x43, &(0x7f0000000040))
prctl$PR_MCE_KILL(0x43, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x3, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x487, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r8, 0x0, 0xe80, 0x0, &(0x7f0000000380)="263abd030e98ff4dc870bd6688a8640888a8", 0x0, 0x1200}, 0x28)

22.457237689s ago: executing program 1 (id=197):
ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(0xffffffffffffffff, 0x8982, 0x0)
openat$vcsu(0xffffff9c, &(0x7f00000001c0), 0x80000, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
openat$nullb(0xffffff9c, &(0x7f0000000040), 0x1a3580, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_MSRS(r2, 0xc048aeca, 0x0)
r3 = syz_usb_connect$hid(0x3, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x28de, 0x1205, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x9, [{{0x9, 0x4, 0x0, 0x1, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_usb_control_io(r3, 0x0, 0x0)
syz_open_dev$evdev(&(0x7f0000000040), 0x75c, 0x10d840)

17.150147183s ago: executing program 1 (id=198):
r0 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x1008957)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_GET(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000001f0000540000000e0001006e657464657673696d0000000f0002"], 0x34}}, 0x0)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_GET(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x14, r3, 0x1, 0x0, 0x0, {0x54}}, 0x14}}, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0x1f, 0x20000000, 0x0)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r4, &(0x7f00000000c0)={0x2, 0x4e20, @loopback}, 0x10)
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0xc, 0x4000010, 0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x108, &(0x7f0000000040)=0xfffff1d3, 0x0, 0x4)
r6 = accept4(r0, 0x0, 0x0, 0x0)
syz_emit_ethernet(0x86, &(0x7f0000000040)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x50, 0x3a, 0x0, @remote, @local, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "5b29ab", 0x0, 0x11, 0x0, @mcast2, @mcast1, [@dstopts={0x0, 0x0, '\x00', [@ra={0x5, 0x3a}]}], "fb36eeca6fad50b375a22a584d16ca55"}}}}}}}, 0x0)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000340)={0x0, 0x20}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000090)

17.057530195s ago: executing program 1 (id=199):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
readv(0xffffffffffffffff, &(0x7f0000000280), 0x0)
r3 = creat(0x0, 0x0)
write$P9_RVERSION(r3, 0x0, 0x15)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b40a000040000900000000000000000001000000040060809c0a01"], 0xab4}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
syz_open_dev$sg(0x0, 0x0, 0x8002)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=@getchain={0x24, 0x11, 0x839}, 0x24}}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000ac0)={r3, 0x58, &(0x7f0000000a40)}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000000b40)={&(0x7f0000000240), 0xc, &(0x7f0000000b00)={&(0x7f0000002700)=ANY=[], 0x91c}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x31, &(0x7f00000004c0)=@framed={{}, [@cb_func={0x18, 0x7, 0x4, 0x0, 0x8}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x694}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}, @alu={0x7, 0x0, 0x3, 0x8, 0x8, 0x2}, @generic={0xa, 0x1, 0x1, 0x6, 0x32e7}, @cb_func={0x18, 0x3, 0x4, 0x0, 0x5}, @initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7f}, @printk={@lli, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000480)='virtiofs\x00', 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
connect$pppoe(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x10001, 0x0)
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x40080)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r6, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
r7 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f0000000340)={r6, r6, 0x8, 0x0, 0x0, 0x9, 0x1, 0xc45, 0x8001, 0x8b, 0x2, 0x4, 'syz1\x00'})
r8 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt(r8, 0xee, 0x8, 0x0, 0x0)

13.790475801s ago: executing program 3 (id=200):
openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
getpid()
socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
listen(0xffffffffffffffff, 0x100000001)
r2 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, 0x0, 0x0)
r3 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r3, 0x800448d2, &(0x7f00000000c0)={0x2, &(0x7f0000000600)=[{@none}, {}]})
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r5 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r5, 0x7a7, &(0x7f00000006c0)=0x30000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r5, 0x7a0, &(0x7f0000000700)={@local})
r6 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r6, 0x1, r5, &(0x7f0000000080)={0x2000})
ioctl$IOCTL_VMCI_DATAGRAM_SEND(r5, 0x7ab, &(0x7f0000000040)={&(0x7f0000000280)={{@local}, {@local}, 0x400, "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"}, 0x418})
ioctl$SIOCX25SDTEFACILITIES(r4, 0x541b, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "bb67a153cd0e3e4a1aac449e5ad88b56923d9dfe", "b1610538917aa875e9b6000000007aa56a33d100"})
r7 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0)
r9 = ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0)
r10 = dup(r9)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r9, 0x4068aea3, &(0x7f0000000280)={0xbe, 0x0, 0x1})
ioctl$KVM_SET_MSRS(r10, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0600000000080241024d564b"])
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200))
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r11, 0x0, 0x0)

10.734452636s ago: executing program 3 (id=201):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000000000000000000000000085000000050000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008008000b703000000009c8c850000006d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
connect$pppoe(0xffffffffffffffff, &(0x7f0000000140)={0x18, 0x0, {0x0, @local, 'bond_slave_0\x00'}}, 0x1e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x64}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
timer_create(0x2, &(0x7f0000000000)={0x0, 0x29, 0x1, @thr={0x0, &(0x7f0000000a40)="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"}}, &(0x7f0000000040))
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
gettid()
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)
r3 = syz_init_net_socket$ax25(0x3, 0x5, 0xf0)
setsockopt$ax25_int(r3, 0x101, 0x2, 0x0, 0xfed8)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000400)={0xc, 0xb, &(0x7f0000000280)=ANY=[], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4, @void, @value}, 0x94)
r4 = syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f00000001c0)={"f2efe21e", 0x0, 0x6, 0x4d, 0x0, 0x1ff, "2179d46fd08e3c0ced34c7d0c7e6d7", "7ca24a13", "5161dc20", "a2d1d4a2", ["1af0b1ba1cb8fd54c9c9b587", "bed0f3d6ce7a5f7389827f04", "33af343c60abc64f2fdc9ddf", "9b3842fc63849f62b6eb1c3c"]})
r5 = syz_open_dev$cec(&(0x7f0000000d00), 0x0, 0xc2b02)
ioctl$CEC_TRANSMIT(r5, 0xc0386105, &(0x7f0000000d40)={0x0, 0x0, 0x4, 0x0, 0x0, 0x4063, "57c1169b6664ea61326ac71ae7213059"})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r6=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r6, 0x541b, &(0x7f0000000200)={<r7=>0xffffffffffffffff})
close_range(r7, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_SCRUB(r6, 0xc400941b, &(0x7f0000001400)={0x0, 0xc182, 0x5})

10.50060111s ago: executing program 0 (id=202):
pipe(&(0x7f0000000400))
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
socket(0x11, 0xa, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
pipe2$9p(&(0x7f0000000000)={<r5=>0xffffffffffffffff}, 0x0)
r6 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
splice(r5, 0x0, r6, 0x0, 0x10000000000016, 0x0)
r7 = open(&(0x7f0000000300)='./bus\x00', 0x14103e, 0x18a)
r8 = open(&(0x7f0000000080)='./bus\x00', 0x141442, 0x1ab)
ftruncate(r8, 0x3000000)
sendfile(r7, r8, 0x0, 0x80000001)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f00000001c0)={'wlan0\x00', <r9=>0x0})
r10 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x13, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000838500000073000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r10, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r9, @ANYBLOB="1f003300d000000008021100000108021100000050505050505000001502", @ANYRES8], 0x3c}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000002c0)={'macvlan0\x00', <r11=>0x0})
r12 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r12, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000002380)=@newlink={0x48, 0x10, 0x401, 0x0, 0x1, {0x0, 0x0, 0x0, r11, 0x0, 0x24000}, [@IFLA_LINKINFO={0x20, 0x37, 0x0, 0x1, @batadv={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_BATADV_ALGO_NAME={0xc, 0x1, 'BATMAN_V'}]}}}, @IFLA_PROTO_DOWN={0x5}]}, 0x48}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

9.150792611s ago: executing program 0 (id=203):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x0)
getsockopt$netlink(r3, 0x10e, 0xd, 0x0, &(0x7f0000000040)=0xfffffffffffffec1)
r4 = syz_open_dev$sg(&(0x7f0000001940), 0x0, 0x0)
ioctl$SG_IO(r4, 0x2285, &(0x7f0000000740)={0x53, 0x0, 0x6, 0x0, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000000)="2ff8a81b133d", 0x0, 0x0, 0x34, 0x0, 0x0})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB='H\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r1, @ANYBLOB="2a003300d00008000000ffffffff080211000000fffffffffffff00f0404"], 0x48}, 0x1, 0x0, 0x0, 0xc0}, 0x0)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_PARTIAL_DELIVERY_POINT(r6, 0x84, 0x13, 0x0, &(0x7f0000000280))
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x3, 0xc, &(0x7f0000000600)=ANY=[@ANYBLOB="18020000fcffffff0000000000000000850000002f00000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007b00000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r7, 0x0, 0xe, 0x44, &(0x7f0000000100)="0000000000000000000051229dc9", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
syz_genetlink_get_family_id$ipvs(&(0x7f0000000000), r2)

8.871481691s ago: executing program 0 (id=204):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
r1 = openat$vimc2(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000040)={0x0, 0x2, 0x0, "e5e81571c97b166978ff61fcfd2409b2b73e0f936ed774de107de8a9041b5113"})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
ioctl$UI_DEV_CREATE(0xffffffffffffffff, 0x5501)
openat2$dir(0xffffffffffffff9c, 0x0, &(0x7f0000000040)={0x80c0, 0x40, 0x28}, 0x18)
preadv(0xffffffffffffffff, 0x0, 0x0, 0xffff, 0x0)
r6 = socket(0x200000100000011, 0x3, 0x3)
ioctl$sock_inet_SIOCSIFNETMASK(r6, 0x891c, &(0x7f00000002c0)={'wg0\x00', {0x2, 0x4e24, @broadcast}})
fsconfig$FSCONFIG_SET_STRING(r5, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x10, 0x4, 0x4, 0x9, 0x1800, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000740)=@IORING_OP_ACCEPT={0xd, 0x0, 0x0, r0, 0x0})
listen(r0, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

7.230182396s ago: executing program 4 (id=205):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/14], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000100)={0x4, <r2=>r0})
socket$inet_smc(0x2b, 0x1, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x1, 0x0)
io_uring_setup(0x1613, &(0x7f0000000200)={0x0, 0x0, 0x800, 0x0, 0x58, 0x0, r2})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a44, 0x1700)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.memory_pressure_enabled\x00', 0x7a05, 0x1700)
write$cgroup_type(r7, &(0x7f00000000c0), 0x9)
sendfile(r7, r6, 0x0, 0x10000)
openat$binfmt_register(0xffffff9c, &(0x7f0000000000), 0x1, 0x0)
r8 = openat$binfmt_register(0xffffff9c, &(0x7f0000000140), 0x1, 0x0)
write$binfmt_register(r8, &(0x7f00000000c0)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x5, 0x3a, '\\x{@[', 0x3a, '\x11\xfc\xfa\xbao\x88i\xdf\xcb\x85\xce\x04\x00NH\xe9g\xdb\xdd\x00\x1a\x00\x00\x00\x00\x00\x00', 0x3a, './file0'}, 0x47)
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x3, &(0x7f0000000040)=0x80000000, 0x4)
connect$inet6(r9, &(0x7f0000000080)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r9, 0x6, 0x1f, &(0x7f00000002c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r9, 0x11a, 0x2, &(0x7f0000000200)=@ccm_128={{0x304}, "76131e58a256d4af", "4448076cc60af592e807e038c4797041", "8076e30e", "f79d7fbbf3985dbb"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r9, 0x11a, 0x4, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)

7.019453578s ago: executing program 0 (id=206):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TCXONC(r1, 0x4b45, 0x1)
syz_emit_ethernet(0x76, &(0x7f0000000780)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x40, 0x3a, 0xff, @local, @mcast2, {[], @time_exceed={0x3, 0x0, 0x0, 0x81, '\x00', {0x0, 0x6, "75c523", 0x0, 0x2b, 0x0, @rand_addr=' \x01\x00', @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, [@dstopts={0x87}], "5209934391e065e1"}}}}}}}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000700)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r3, @ANYBLOB="1c002c80080000006c09"], 0x38}}, 0x0)

5.876167731s ago: executing program 3 (id=207):
syz_usb_connect(0x1, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1a0100005c6b4408070a64006e4001020303090224002af62300000904000002ca744d0009053f034d00ff99090805848f"], &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1, [{0x0, 0x0}]})
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000100)={<r1=>0x0, 0x20, &(0x7f00000025c0)=[@in={0x2, 0x4e23, @private=0xa010101}, @in={0x2, 0x4e23, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_ASSOCINFO(r0, 0x84, 0x1, &(0x7f0000000000)={r1, 0x5, 0x8, 0x80000003, 0x8}, 0x14)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="000026a8e7cdcab4c07a000013000300686173683a6e65742c696661636500000900020073797a30000000000500040000000000050005000200000005000100060000000c00078008000640000000009c8b17a1a9540e1553befe30ab62bacd5f5e62765e718feaa1538a8d41e6621bb294031a387b6a3b3a0ca84f0b362009153018763abde908195ad609389318f03b0e61a1d3962d666791592a00a08b81b7f5e67d5fea2fbab0d4ce5efa068911a827a6e920677fae55100b4df0bf5cfcda3e8d7d4046f4d30879f10930849d04d814e5415a3d0326587207e97274f7328ab945f5392b70a15cde3b6d10b59c17ac15b9bea9000000"], 0x58}}, 0x0)
write$char_usb(r2, &(0x7f00000000c0)="39d2bd31", 0x4)

3.832235372s ago: executing program 4 (id=208):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000980)=[{{&(0x7f00000002c0)={0xa, 0x4e23, 0x0, @loopback, 0x20}, 0x1c, &(0x7f0000000500)=[{&(0x7f00000000c0)='\b', 0x1}], 0x1}}, {{&(0x7f0000000440)={0xa, 0x4e23, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c, &(0x7f00000008c0)=[{&(0x7f00000005c0)="8e4bcbb5ce", 0x5}], 0x1, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0x210}}], 0x2, 0x34000811)

3.695300225s ago: executing program 4 (id=209):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080))
chdir(&(0x7f0000000100)='./file0\x00')
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_clone(0x81060000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_genetlink_get_family_id$nbd(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000003000000030000000020000000000000001000004080000000000000002000000200000000000000000000009030000000000000000000004"], 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000100)=0x2)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000040)=0x11)
ioctl$sock_SIOCBRDELBR(0xffffffffffffffff, 0x89a2, &(0x7f0000000000)='bridge0\x00')
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r6, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000100)=[{0x30, 0x0, 0x0, 0xfffff034}, {0x80000006}]}, 0x8)
syz_emit_ethernet(0x19, &(0x7f0000000280)={@broadcast, @broadcast, @val, {@llc_tr={0x11, {@llc={0x0, 0x0, "ff"}}}}}, 0x0)
syz_emit_ethernet(0x82, &(0x7f0000000300)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}, @local, @val={@val={0x88a8, 0x3, 0x1, 0x1}, {0x8100, 0x0, 0x0, 0x4}}, {@ipv6={0x86dd, @gre_packet={0x1, 0x6, "0961d3", 0x44, 0x2f, 0xff, @private1={0xfc, 0x1, '\x00', 0x1}, @loopback, {[], {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x3}, {0x1}, {0x0, 0x0, 0x1, 0x1}, {0x8, 0x88be, 0x1, {{0x6, 0x1, 0x8, 0x3, 0x0, 0x0, 0x3, 0x2}, 0x1, {0x9}}}, {0x8, 0x22eb, 0x4, {{0x1, 0x2, 0x1, 0x3, 0x1, 0x3, 0x7, 0x6}, 0x2, {0x9, 0xe, 0x0, 0x0, 0x1, 0x0, 0x3, 0x1}}}}}}}}}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x6, &(0x7f0000000500)=ANY=[@ANYBLOB="b4000000000020006111cca5ff4d1f8676cacb000000020000008500000008000000970000000000000000000000000000000000c8ed95905963112ceac61ce9fa3d2964ef74f17a4a9b82d99b2d15a6955d80d3573c0d07c382e7b944a0f61a6333dd3ca9e28e41dbfd1d5e5bab1beaa5adaace23c32852c41b84616a48ab9326963b257d92ea0f399a2fe3cabe7a"], &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x4, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sendmsg$NBD_CMD_CONNECT(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000100400000000c000200700f0000000000000c00060003000000000000000a000a00272d5d29212b0000140007"], 0x6c}}, 0x0)

2.789212618s ago: executing program 3 (id=210):
r0 = syz_open_procfs(0x0, &(0x7f00000003c0)='fdinfo\x00')
fchdir(r0)
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000000)=@newtaction={0x60, 0x30, 0x53b, 0x0, 0x0, {}, [{0x4c, 0x1, [@m_simple={0x48, 0x1, 0x0, 0x0, {{0xb}, {0x1c, 0x2, 0x0, 0x1, [@TCA_DEF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x60}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000edd000/0x4000)=nil, 0x4000, 0x1, 0x0, 0xb, 0x0)
r5 = socket$netlink(0x10, 0x3, 0xc)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000001d00)='net/unix\x00')
r8 = fanotify_init(0x0, 0x1)
fanotify_mark(r8, 0x1, 0x40000011, r7, 0x0)
r9 = syz_open_procfs(0x0, &(0x7f0000000200)='task\x00')
getdents(r9, &(0x7f0000000000)=""/46, 0x2e)
r10 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r10, 0xc00caee0, &(0x7f0000000100)={0x4})
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x14, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x4}}}, {0x14, 0x1, 0x0, 0x1, @lookup={{0xb}, @val={0x4}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xc8}}, 0x0)
sendmsg$NFT_BATCH(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x4b0}}, 0x0)
syz_clone(0x4084000, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

1.698883084s ago: executing program 33 (id=199):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
readv(0xffffffffffffffff, &(0x7f0000000280), 0x0)
r3 = creat(0x0, 0x0)
write$P9_RVERSION(r3, 0x0, 0x15)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="b40a000040000900000000000000000001000000040060809c0a01"], 0xab4}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
syz_open_dev$sg(0x0, 0x0, 0x8002)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000040)=@getchain={0x24, 0x11, 0x839}, 0x24}}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000ac0)={r3, 0x58, &(0x7f0000000a40)}, 0x10)
sendmsg$TEAM_CMD_OPTIONS_SET(r2, &(0x7f0000000b40)={&(0x7f0000000240), 0xc, &(0x7f0000000b00)={&(0x7f0000002700)=ANY=[], 0x91c}, 0x1, 0x0, 0x0, 0x40000}, 0x4)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x31, &(0x7f00000004c0)=@framed={{}, [@cb_func={0x18, 0x7, 0x4, 0x0, 0x8}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x694}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r2}}, @alu={0x7, 0x0, 0x3, 0x8, 0x8, 0x2}, @generic={0xa, 0x1, 0x1, 0x6, 0x32e7}, @cb_func={0x18, 0x3, 0x4, 0x0, 0x5}, @initr0={0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7f}, @printk={@lli, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}, @ringbuf_query={{0x18, 0x1, 0x1, 0x0, r2}}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r5}, 0x10)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000480)='virtiofs\x00', 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(0xffffffffffffffff, 0x0, 0x0)
connect$pppoe(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x10001, 0x0)
sendmsg$NFT_MSG_GETSET(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x80000000}, 0xc, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x40080)
r6 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r6, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
r7 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r7, 0x400448c8, &(0x7f0000000340)={r6, r6, 0x8, 0x0, 0x0, 0x9, 0x1, 0xc45, 0x8001, 0x8b, 0x2, 0x4, 'syz1\x00'})
r8 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt(r8, 0xee, 0x8, 0x0, 0x0)

1.335711055s ago: executing program 4 (id=212):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x8822d55593a2179}, 0xc)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000000)={0x4800}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000780)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYRESDEC], 0x0, 0xfff, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='kfree\x00', r2, 0x0, 0x9135}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_sctp(0xa, 0x5, 0x84)
io_uring_setup(0x696a, &(0x7f0000000340)={0x0, 0x7828, 0x2, 0x3})
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_io_uring_setup(0x24fd, &(0x7f00000004c0)={0x0, 0x0, 0x10100, 0x0, 0x201}, &(0x7f0000000200)=<r5=>0x0, &(0x7f0000000140)=<r6=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f0000000180)=ANY=[@ANYRES64=r7], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@add={0x1d, 0x0, 0x0, 0xffffffffffffffff, 0x0, r3})
io_uring_enter(r4, 0x2d3e, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000240)={0x0, 0xffffffffffffff4a, &(0x7f0000000200)={&(0x7f0000000080)={0x78, 0x16, 0xa01}, 0x78}}, 0x0)
r9 = socket$inet6(0xa, 0x3, 0x87)
setsockopt$inet6_IPV6_XFRM_POLICY(r9, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@empty, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x4, 0x0, 0x0, 0x0, 0x9, 0x0, 0x40000000000000}, {0x0, 0x1000000000, 0x53e5, 0x20}, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1}, {{@in6=@mcast2, 0x0, 0x32}, 0x2, @in6=@mcast2, 0x1502, 0x4, 0x0, 0x0, 0xfffffffb, 0xfffffffd}}, 0xe8)
connect$inet6(r9, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
sendmsg$nl_xfrm(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)=@getspdinfo={0x14, 0x25, 0x200, 0x70bd2a, 0x25dfdbfb, 0xfffffffb, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x20040001}, 0x1)
r10 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r10, 0x1, 0x11, &(0x7f0000000240)={0x0, <r11=>0x0}, &(0x7f0000000280)=0x5)
setuid(r11)
getgroups(0x5, &(0x7f0000000480)=[0xee01, 0x0, 0x0, <r12=>0xffffffffffffffff, 0xffffffffffffffff])
mount$9p_virtio(&(0x7f00000003c0), &(0x7f0000000400)='./file0\x00', &(0x7f0000000440), 0x80002, &(0x7f0000000540)={'trans=virtio,', {[{@ignoreqv}, {@access_uid={'access', 0x3d, r11}}, {@version_L}, {@nodevmap}, {@dfltgid={'dfltgid', 0x3d, r12}}, {@nodevmap}, {@version_u}], [{@audit}]}})

1.146687502s ago: executing program 4 (id=213):
capset(0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000180), 0x0, 0xfffff9b2)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0xfffffffe, 0x0, 0x1}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001280)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x17)
openat$binderfs(0xffffff9c, 0x0, 0x800, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000440)={r0}, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
socket$inet6_icmp(0xa, 0x2, 0x3a)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$binfmt_format(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x3, 0x4, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x80000001, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000000000000000d0ffffff000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

0s ago: executing program 4 (id=214):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x1c}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000280)={0x20002008})
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)
r2 = msgget(0x1, 0x15)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), r0)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x100}, 0xc, &(0x7f0000000240)={&(0x7f0000000680)={0xf0, r3, 0x4, 0x70bd27, 0x25dfdbfc, {}, [@TIPC_NLA_NODE={0xdc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_KEY={0x4b, 0x4, {'gcm(aes)\x00', 0x23, "2223890b9b27630ddf7b42c3a04b57c55dafe51efca4b3a0988bf9fa8ba7d42fb08452"}}, @TIPC_NLA_NODE_ADDR={0x8, 0x1, 0x2}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x3c, 0x4, {'gcm(aes)\x00', 0x14, "d280f0639e19a82d5e03a6cbf690af4156ed7941"}}, @TIPC_NLA_NODE_ID={0x39, 0x3, "3c7ce1a240f0741cfaf5850523e0ac41d70709c58efd390bf8a470239fa999bda3bfe0c334f50950a7e257c9a9461bc7882df4da89"}, @TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0x7}]}]}, 0xf0}, 0x1, 0x0, 0x0, 0x8000}, 0x40420)
munmap(&(0x7f00005a5000/0x2000)=nil, 0x2000)
msgrcv(r2, &(0x7f00000004c0)={0x0, ""/212}, 0xd8, 0x0, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@mpls_delroute={0x24, 0x19, 0x1, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x1e, 0xfe}, [@RTA_DST={0x8, 0x1, {0x100}}]}, 0x24}}, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r4, 0x4b72, &(0x7f0000000300)={0x5, 0x0, 0xfffffffd, 0xe, 0x1bf, 0x0})
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
syz_emit_ethernet(0x4a, &(0x7f0000000780)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000086dd6000400000140600fe880000000000ddd6f478f451d2408b000000000000000101fe8000000000000000000000000000aa4e240080", @ANYRES32=0x41424344, @ANYRES32=r1, @ANYBLOB="bda84aafd3243930"], 0x0)
r6 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000340)={0xffffffffffffffff, 0x66, 0x10}, 0xc)
setsockopt$IP_VS_SO_SET_ZERO(r0, 0x0, 0x48f, &(0x7f00000001c0)={0x4, @multicast1, 0x4e21, 0x2, 'sh\x00', 0x8, 0x80, 0x2e}, 0x2c)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000005c0)={r6, &(0x7f0000000400)="da1ffc1fb8eff1c82196b7772bf46df1b4482e98f33e", &(0x7f0000000440)=""/57, 0x4}, 0x1c)
r7 = fanotify_init(0x40, 0x0)
write$binfmt_aout(r7, &(0x7f0000000200)={{0x0, 0x0, 0x0, 0x31}}, 0x20)
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010008546000000000000ff0100000000", @ANYRES32=r5, @ANYBLOB="01000000002200001c0012000c000100626f6e6400"], 0x3c}, 0x1, 0x0, 0x0, 0x24048000}, 0x0)
r8 = socket$netlink(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r9=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000280)=0x14)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x1)
sendmsg$nl_route(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000800)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c00000010000100000000000000000053000000", @ANYRES32=r9, @ANYBLOB="efdd0e4af11f02000a0001"], 0x2c}}, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:36998' (ED25519) to the list of known hosts.
[   41.906035][ T5930] cgroup: Unknown subsys name 'net'
[   42.072779][ T5930] cgroup: Unknown subsys name 'cpuset'
[   42.076548][ T5930] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   42.992317][ T5930] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.159936][ T5309] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   45.168013][ T5953] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   45.171538][ T5953] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   45.174564][ T5953] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   45.176910][ T5953] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   45.179436][ T5953] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   45.181246][ T5952] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   45.182220][ T5955] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   45.183231][ T5951] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   45.184249][ T5951] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   45.184334][ T5952] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   45.184665][ T5952] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   45.184865][ T5952] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   45.184971][ T5952] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   45.186249][ T5955] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   45.190878][   T65] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   45.192408][ T5955] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   45.194599][   T65] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   45.196102][ T5954] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   45.198163][   T65] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   45.200463][ T5954] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   45.203493][   T65] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   45.206078][ T5954] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   45.216013][ T5954] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   45.366595][ T5947] chnl_net:caif_netlink_parms(): no params data found
[   45.388219][ T5941] chnl_net:caif_netlink_parms(): no params data found
[   45.439309][ T5948] chnl_net:caif_netlink_parms(): no params data found
[   45.444153][ T5944] chnl_net:caif_netlink_parms(): no params data found
[   45.551779][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.554582][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.557614][ T5941] bridge_slave_0: entered allmulticast mode
[   45.560885][ T5941] bridge_slave_0: entered promiscuous mode
[   45.582765][ T5947] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.585593][ T5947] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.588429][ T5947] bridge_slave_0: entered allmulticast mode
[   45.592384][ T5947] bridge_slave_0: entered promiscuous mode
[   45.622399][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.624418][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.626441][ T5941] bridge_slave_1: entered allmulticast mode
[   45.628588][ T5941] bridge_slave_1: entered promiscuous mode
[   45.635637][ T5947] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.638397][ T5947] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.641379][ T5947] bridge_slave_1: entered allmulticast mode
[   45.644481][ T5947] bridge_slave_1: entered promiscuous mode
[   45.722389][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.725236][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.728114][ T5948] bridge_slave_0: entered allmulticast mode
[   45.732319][ T5948] bridge_slave_0: entered promiscuous mode
[   45.736395][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.738518][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.740838][ T5948] bridge_slave_1: entered allmulticast mode
[   45.743798][ T5948] bridge_slave_1: entered promiscuous mode
[   45.747062][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.754651][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.766932][ T5947] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.813512][ T5944] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.815597][ T5944] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.817740][ T5944] bridge_slave_0: entered allmulticast mode
[   45.819899][ T5944] bridge_slave_0: entered promiscuous mode
[   45.824964][ T5947] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.828783][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.834170][ T5941] team0: Port device team_slave_0 added
[   45.836845][ T5944] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.839188][ T5944] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.845434][ T5944] bridge_slave_1: entered allmulticast mode
[   45.848646][ T5944] bridge_slave_1: entered promiscuous mode
[   45.886736][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.890880][ T5941] team0: Port device team_slave_1 added
[   45.912497][ T5944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.917746][ T5947] team0: Port device team_slave_0 added
[   45.955810][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0
[   45.957964][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.966232][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   45.971973][ T5944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.975321][ T5947] team0: Port device team_slave_1 added
[   45.978101][ T5948] team0: Port device team_slave_0 added
[   45.981400][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1
[   45.983928][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   45.992362][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.027710][ T5948] team0: Port device team_slave_1 added
[   46.045252][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.047267][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.054546][ T5947] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.072022][ T5944] team0: Port device team_slave_0 added
[   46.083640][ T5947] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.085655][ T5947] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.093975][ T5947] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.115675][ T5944] team0: Port device team_slave_1 added
[   46.117789][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.119834][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.127253][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.147191][ T5941] hsr_slave_0: entered promiscuous mode
[   46.149846][ T5941] hsr_slave_1: entered promiscuous mode
[   46.160490][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.162375][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.169385][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.185507][ T5947] hsr_slave_0: entered promiscuous mode
[   46.187800][ T5947] hsr_slave_1: entered promiscuous mode
[   46.190593][ T5947] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.192757][ T5947] Cannot create hsr debugfs directory
[   46.202272][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.204148][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.211277][ T5944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.215395][ T5944] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.217383][ T5944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.224702][ T5944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.287483][ T5948] hsr_slave_0: entered promiscuous mode
[   46.289537][ T5948] hsr_slave_1: entered promiscuous mode
[   46.291607][ T5948] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.293744][ T5948] Cannot create hsr debugfs directory
[   46.343928][ T5944] hsr_slave_0: entered promiscuous mode
[   46.346598][ T5944] hsr_slave_1: entered promiscuous mode
[   46.349203][ T5944] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.353145][ T5944] Cannot create hsr debugfs directory
[   46.517581][ T5947] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   46.525447][ T5947] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   46.529684][ T5947] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   46.537332][ T5947] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   46.559710][ T5941] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   46.568100][ T5941] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   46.583557][ T5941] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   46.588299][ T5941] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   46.607377][ T5944] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   46.612361][ T5944] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   46.617212][ T5944] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   46.635051][ T5944] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   46.656355][ T5948] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   46.659936][ T5948] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   46.671631][ T5948] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   46.675370][ T5948] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   46.707067][ T5947] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.740811][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.747010][ T5947] 8021q: adding VLAN 0 to HW filter on device team0
[   46.757225][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.760013][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.773384][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.775670][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.786814][ T5944] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.792496][ T5941] 8021q: adding VLAN 0 to HW filter on device team0
[   46.814080][ T1171] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.816795][ T1171] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.824620][ T1171] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.827159][ T1171] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.833292][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.839173][ T5944] 8021q: adding VLAN 0 to HW filter on device team0
[   46.863019][ T1166] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.865669][ T1166] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.870657][ T1166] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.873297][ T1166] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.882199][ T5948] 8021q: adding VLAN 0 to HW filter on device team0
[   46.894978][ T1166] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.896938][ T1166] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.901041][ T1166] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.902951][ T1166] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.980082][ T5947] 8021q: adding VLAN 0 to HW filter on device batadv0
[   46.998066][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.013710][ T5947] veth0_vlan: entered promiscuous mode
[   47.022866][ T5947] veth1_vlan: entered promiscuous mode
[   47.035581][ T5944] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.041049][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.055849][ T5941] veth0_vlan: entered promiscuous mode
[   47.068870][ T5941] veth1_vlan: entered promiscuous mode
[   47.077264][ T5947] veth0_macvtap: entered promiscuous mode
[   47.091671][ T5947] veth1_macvtap: entered promiscuous mode
[   47.097678][ T5944] veth0_vlan: entered promiscuous mode
[   47.102222][ T5944] veth1_vlan: entered promiscuous mode
[   47.105927][ T5948] veth0_vlan: entered promiscuous mode
[   47.113702][ T5941] veth0_macvtap: entered promiscuous mode
[   47.119763][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.124090][ T5947] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.129684][ T5941] veth1_macvtap: entered promiscuous mode
[   47.133653][ T5944] veth0_macvtap: entered promiscuous mode
[   47.135835][ T5947] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.138296][ T5947] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.141185][ T5947] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.144024][ T5947] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.149294][ T5948] veth1_vlan: entered promiscuous mode
[   47.156203][ T5944] veth1_macvtap: entered promiscuous mode
[   47.163251][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.167003][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.172051][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.187464][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.191425][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.194406][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.197851][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.203060][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.208303][ T5941] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.212219][ T5941] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.215455][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.224549][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.228631][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.233556][ T5944] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.237648][ T5944] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.243353][ T5944] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.247477][ T5941] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.250977][ T5954] Bluetooth: hci1: command tx timeout
[   47.250983][   T65] Bluetooth: hci3: command tx timeout
[   47.251298][   T65] Bluetooth: hci0: command tx timeout
[   47.254484][ T5941] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.254770][ T5309] Bluetooth: hci2: command tx timeout
[   47.256199][ T5941] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.262699][ T5941] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.283459][ T5944] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.286088][ T5944] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.289429][ T5944] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.293052][ T5944] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.301358][ T5948] veth0_macvtap: entered promiscuous mode
[   47.304423][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.304752][ T5948] veth1_macvtap: entered promiscuous mode
[   47.306900][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.335881][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.336961][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.338207][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.342235][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.347230][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.350660][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.354343][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.358503][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.362780][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.371174][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.374383][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.378726][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.382116][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.384914][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.387908][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.390822][ T5948] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.393797][ T5948] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.397097][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.411997][ T5948] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.415410][ T5948] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.418883][ T5948] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.423986][ T5948] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.425151][ T5947] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   47.443156][ T1140] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.445399][ T1140] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.460825][ T1140] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.463665][ T1140] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.466191][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.468493][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.483145][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.486256][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.504103][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.507193][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.527069][ T6004] FAULT_INJECTION: forcing a failure.
[   47.527069][ T6004] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   47.537984][ T6004] CPU: 1 UID: 0 PID: 6004 Comm: syz.2.3 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   47.540965][ T6004] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   47.544190][ T6004] Call Trace:
[   47.545151][ T6004]  <TASK>
[   47.546009][ T6004]  dump_stack_lvl+0x16c/0x1f0
[   47.547355][ T6004]  should_fail_ex+0x497/0x5b0
[   47.548722][ T6004]  _copy_to_user+0x32/0xd0
[   47.550001][ T6004]  bpf_verifier_vlog+0x25d/0x6a0
[   47.551431][ T6004]  bpf_verifier_log_write+0x171/0x190
[   47.552962][ T6004]  ? __pfx_bpf_verifier_log_write+0x10/0x10
[   47.555350][ T6004]  ? lock_acquire+0x2f/0xb0
[   47.557136][ T6004]  ? __might_fault+0xe3/0x190
[   47.558536][ T6004]  ? __might_fault+0xe3/0x190
[   47.559885][ T6004]  ? __might_fault+0x154/0x190
[   47.561287][ T6004]  print_insn_state+0x13d/0x170
[   47.562688][ T6004]  do_check_common+0xf53/0xd580
[   47.564233][ T6004]  ? lockdep_hardirqs_on+0x7c/0x110
[   47.565722][ T6004]  ? __pfx_do_check_common+0x10/0x10
[   47.567233][ T6004]  ? __pfx_verbose+0x10/0x10
[   47.568605][ T6004]  ? __pfx_disasm_kfunc_name+0x10/0x10
[   47.570165][ T6004]  ? check_cfg+0x403/0x8e0
[   47.571403][ T6004]  bpf_check+0x83ed/0xc870
[   47.572683][ T6004]  ? hlock_class+0x4e/0x130
[   47.573995][ T6004]  ? __pfx_bpf_check+0x10/0x10
[   47.575329][ T6004]  ? find_held_lock+0x2d/0x110
[   47.576701][ T6004]  ? bpf_prog_load+0xd45/0x2670
[   47.578111][ T6004]  ? __pfx_lock_release+0x10/0x10
[   47.579547][ T6004]  ? trace_lock_acquire+0x14e/0x1f0
[   47.581102][ T6004]  ? bpf_prog_load+0xd45/0x2670
[   47.582519][ T6004]  ? lockdep_hardirqs_on+0x7c/0x110
[   47.584478][ T6004]  ? read_tsc+0x9/0x20
[   47.586134][ T6004]  ? ktime_get_with_offset+0x20f/0x3a0
[   47.588056][ T6004]  ? bpf_obj_name_cpy+0x156/0x1b0
[   47.589518][ T6004]  bpf_prog_load+0xe3f/0x2670
[   47.590871][ T6004]  ? __pfx_bpf_prog_load+0x10/0x10
[   47.592330][ T6004]  ? find_held_lock+0x2d/0x110
[   47.593909][ T6004]  ? __might_fault+0x13b/0x190
[   47.595296][ T6004]  ? __might_fault+0xe3/0x190
[   47.596646][ T6004]  __sys_bpf+0x5677/0x57a0
[   47.597960][ T6004]  ? __pfx_lock_release+0x10/0x10
[   47.599397][ T6004]  ? __pfx___sys_bpf+0x10/0x10
[   47.600776][ T6004]  ? vfs_write+0x306/0x1150
[   47.602092][ T6004]  ? __mutex_unlock_slowpath+0x164/0x690
[   47.604060][ T6004]  ? fput+0x67/0x440
[   47.605675][ T6004]  ? ksys_write+0x1ba/0x250
[   47.607517][ T6004]  ? __pfx_ksys_write+0x10/0x10
[   47.609080][ T6004]  __ia32_sys_bpf+0x76/0xe0
[   47.610392][ T6004]  __do_fast_syscall_32+0x73/0x120
[   47.611831][ T6004]  do_fast_syscall_32+0x32/0x80
[   47.613359][ T6004]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   47.615231][ T6004] RIP: 0023:0xf7fe7579
[   47.616399][ T6004] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   47.621853][ T6004] RSP: 002b:00000000f513655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   47.624744][ T6004] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000002000e000
[   47.627969][ T6004] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[   47.630242][ T6004] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   47.632502][ T6004] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   47.634780][ T6004] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   47.637055][ T6004]  </TASK>
[   47.853873][ T6027] netlink: 2036 bytes leftover after parsing attributes in process `syz.0.8'.
[   47.857325][ T6027] netlink: 24 bytes leftover after parsing attributes in process `syz.0.8'.
[   47.860943][ T6027] FAULT_INJECTION: forcing a failure.
[   47.860943][ T6027] name failslab, interval 1, probability 0, space 0, times 1
[   47.866084][ T6027] CPU: 0 UID: 0 PID: 6027 Comm: syz.0.8 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   47.870227][ T6027] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   47.874427][ T6027] Call Trace:
[   47.875725][ T6027]  <TASK>
[   47.876885][ T6027]  dump_stack_lvl+0x16c/0x1f0
[   47.878748][ T6027]  should_fail_ex+0x497/0x5b0
[   47.880640][ T6027]  should_failslab+0xc2/0x120
[   47.882550][ T6027]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   47.884684][ T6027]  ? skb_clone+0x190/0x3f0
[   47.886511][ T6027]  skb_clone+0x190/0x3f0
[   47.888243][ T6027]  netlink_deliver_tap+0xafd/0xca0
[   47.890344][ T6027]  netlink_unicast+0x6b4/0x7f0
[   47.892249][ T6027]  ? __pfx_netlink_unicast+0x10/0x10
[   47.894216][ T6027]  ? rtnetlink_rcv_msg+0x3e6/0xea0
[   47.895693][ T6027]  netlink_ack+0x6a5/0xb20
[   47.896911][ T6027]  netlink_rcv_skb+0x327/0x410
[   47.898272][ T6027]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   47.899746][ T6027]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   47.901240][ T6027]  ? netlink_deliver_tap+0x1ae/0xca0
[   47.902791][ T6027]  netlink_unicast+0x53c/0x7f0
[   47.904214][ T6027]  ? __pfx_netlink_unicast+0x10/0x10
[   47.905822][ T6027]  ? __phys_addr_symbol+0x30/0x80
[   47.907276][ T6027]  ? __check_object_size+0x488/0x710
[   47.908874][ T6027]  netlink_sendmsg+0x8b8/0xd70
[   47.910264][ T6027]  ? __pfx_netlink_sendmsg+0x10/0x10
[   47.911738][ T6027]  ? trace_contention_end+0xee/0x140
[   47.913287][ T6027]  sock_sendmsg+0x369/0x410
[   47.914606][ T6027]  ? __pfx_sock_sendmsg+0x10/0x10
[   47.916036][ T6027]  splice_to_socket+0xaac/0x1040
[   47.917514][ T6027]  ? __pfx_splice_to_socket+0x10/0x10
[   47.919074][ T6027]  ? apparmor_file_permission+0x251/0x400
[   47.920717][ T6027]  ? bpf_lsm_file_permission+0x9/0x10
[   47.922288][ T6027]  ? security_file_permission+0x71/0x210
[   47.923908][ T6027]  ? __pfx_splice_to_socket+0x10/0x10
[   47.925432][ T6027]  do_splice+0x145c/0x1f60
[   47.926740][ T6027]  ? __pfx_do_splice+0x10/0x10
[   47.928123][ T6027]  ? __pfx_pipe_clear_nowait+0x10/0x10
[   47.929606][ T6027]  ? __pfx_lock_release+0x10/0x10
[   47.931052][ T6027]  ? trace_lock_acquire+0x14e/0x1f0
[   47.932562][ T6027]  __do_splice+0x327/0x360
[   47.933882][ T6027]  ? __pfx___do_splice+0x10/0x10
[   47.935305][ T6027]  ? __fget_files+0x206/0x3a0
[   47.936637][ T6027]  __ia32_sys_splice+0x189/0x250
[   47.938042][ T6027]  __do_fast_syscall_32+0x73/0x120
[   47.939521][ T6027]  do_fast_syscall_32+0x32/0x80
[   47.940929][ T6027]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   47.942774][ T6027] RIP: 0023:0xf7fbf579
[   47.943959][ T6027] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   47.949379][ T6027] RSP: 002b:00000000f50f555c EFLAGS: 00000296 ORIG_RAX: 0000000000000139
[   47.951734][ T6027] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[   47.954080][ T6027] RDX: 0000000000000005 RSI: 0000000000000000 RDI: 0000000000000bca
[   47.956271][ T6027] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000
[   47.958485][ T6027] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   47.960683][ T6027] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   47.962864][ T6027]  </TASK>
[   48.213496][ T6033] kAFS: unable to lookup cell 'sy>7 ��O-z1'
[   48.222297][ T6033] syz.1.9: attempt to access beyond end of device
[   48.222297][ T6033] nbd1: rw=0, sector=64, nr_sectors = 1 limit=0
[   48.226507][ T6033] syz.1.9: attempt to access beyond end of device
[   48.226507][ T6033] nbd1: rw=0, sector=256, nr_sectors = 1 limit=0
[   48.230335][ T6033] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[   48.233271][ T6033] syz.1.9: attempt to access beyond end of device
[   48.233271][ T6033] nbd1: rw=0, sector=512, nr_sectors = 1 limit=0
[   48.236921][ T6033] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[   48.241438][ T6033] syz.1.9: attempt to access beyond end of device
[   48.241438][ T6033] nbd1: rw=0, sector=64, nr_sectors = 2 limit=0
[   48.245208][ T6033] syz.1.9: attempt to access beyond end of device
[   48.245208][ T6033] nbd1: rw=0, sector=512, nr_sectors = 2 limit=0
[   48.248857][ T6033] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[   48.252083][ T6033] syz.1.9: attempt to access beyond end of device
[   48.252083][ T6033] nbd1: rw=0, sector=1024, nr_sectors = 2 limit=0
[   48.255481][ T6033] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[   48.259136][ T6033] syz.1.9: attempt to access beyond end of device
[   48.259136][ T6033] nbd1: rw=0, sector=64, nr_sectors = 4 limit=0
[   48.263896][ T6033] syz.1.9: attempt to access beyond end of device
[   48.263896][ T6033] nbd1: rw=0, sector=1024, nr_sectors = 4 limit=0
[   48.267564][ T6033] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[   48.270579][ T6033] syz.1.9: attempt to access beyond end of device
[   48.270579][ T6033] nbd1: rw=0, sector=2048, nr_sectors = 4 limit=0
[   48.274200][ T6033] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[   48.277616][ T6033] syz.1.9: attempt to access beyond end of device
[   48.277616][ T6033] nbd1: rw=0, sector=64, nr_sectors = 8 limit=0
[   48.281514][ T6033] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=256, location=256
[   48.284408][ T6033] UDF-fs: error (device nbd1): udf_read_tagged: read failed, block=512, location=512
[   48.287134][ T6033] UDF-fs: warning (device nbd1): udf_fill_super: No partition found (1)
[   48.384664][ T5954] Bluetooth: hci4: sending frame failed (-49)
[   48.388235][ T5309] Bluetooth: hci4: Opcode 0x1003 failed: -49
[   48.611894][ T6038] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11'.
[   48.820033][ T6048] FAULT_INJECTION: forcing a failure.
[   48.820033][ T6048] name failslab, interval 1, probability 0, space 0, times 0
[   48.825795][ T6048] CPU: 3 UID: 0 PID: 6048 Comm: syz.1.15 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   48.828810][ T6048] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   48.832798][ T6048] Call Trace:
[   48.833975][ T6048]  <TASK>
[   48.835113][ T6048]  dump_stack_lvl+0x16c/0x1f0
[   48.836954][ T6048]  should_fail_ex+0x497/0x5b0
[   48.838361][ T6048]  ? fs_reclaim_acquire+0xae/0x150
[   48.839820][ T6048]  should_failslab+0xc2/0x120
[   48.841165][ T6048]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   48.843037][ T6048]  ? mas_alloc_nodes+0x18b/0x880
[   48.844615][ T6048]  mas_alloc_nodes+0x18b/0x880
[   48.845980][ T6048]  mas_node_count_gfp+0x105/0x130
[   48.847525][ T6048]  mas_preallocate+0x53f/0xce0
[   48.848895][ T6048]  ? __pfx_mas_preallocate+0x10/0x10
[   48.850410][ T6048]  ? anon_vma_name+0x75/0x100
[   48.851769][ T6048]  __split_vma+0x474/0x1210
[   48.853100][ T6048]  ? __pfx___split_vma+0x10/0x10
[   48.854515][ T6048]  ? ima_file_mprotect+0x1c5/0x6a0
[   48.855972][ T6048]  vma_modify.constprop.0+0x2ed/0x3b0
[   48.857538][ T6048]  vma_modify_flags+0x209/0x2a0
[   48.858921][ T6048]  ? __pfx_vma_modify_flags+0x10/0x10
[   48.860447][ T6048]  ? may_expand_vm+0xe8/0x430
[   48.861922][ T6048]  mprotect_fixup+0x2c2/0xbe0
[   48.863811][ T6048]  ? __pfx_mprotect_fixup+0x10/0x10
[   48.865458][ T6048]  do_mprotect_pkey+0x977/0xce0
[   48.866848][ T6048]  ? __pfx_do_mprotect_pkey+0x10/0x10
[   48.868387][ T6048]  ? __fget_files+0x206/0x3a0
[   48.869733][ T6048]  ? __pfx_ksys_write+0x10/0x10
[   48.871109][ T6048]  __ia32_sys_mprotect+0x75/0xb0
[   48.872580][ T6048]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   48.874456][ T6048]  __do_fast_syscall_32+0x73/0x120
[   48.875876][ T6048]  do_fast_syscall_32+0x32/0x80
[   48.877261][ T6048]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   48.879045][ T6048] RIP: 0023:0xf7f48579
[   48.880197][ T6048] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   48.886424][ T6048] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 000000000000007d
[   48.889480][ T6048] RAX: ffffffffffffffda RBX: 0000000020000000 RCX: 0000000000800000
[   48.892508][ T6048] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[   48.895547][ T6048] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   48.898663][ T6048] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   48.901762][ T6048] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   48.904017][ T6048]  </TASK>
[   49.104165][ T6067] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[   49.106163][ T6067] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   49.110069][ T6067] vhci_hcd vhci_hcd.0: Device attached
[   49.331224][ T5309] Bluetooth: hci2: command tx timeout
[   49.333558][ T5309] Bluetooth: hci1: command tx timeout
[   49.342686][ T5954] Bluetooth: hci0: command tx timeout
[   49.344381][ T5954] Bluetooth: hci3: command tx timeout
[   49.400894][ T5981] vhci_hcd: vhci_device speed not set
[   49.411375][    T0] NOHZ tick-stop error: local softirq work is pending, handler #2c2!!!
[   49.480795][ T5981] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[   49.877769][   T39] audit: type=1326 audit(1737245161.158:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6073 comm="syz.2.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7579 code=0x7ffc0000
[   49.885159][   T39] audit: type=1326 audit(1737245161.158:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6073 comm="syz.2.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7579 code=0x7ffc0000
[   49.892531][   T39] audit: type=1326 audit(1737245161.158:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6073 comm="syz.2.20" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe7579 code=0x7ffc0000
[   49.899405][   T39] audit: type=1326 audit(1737245161.158:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6073 comm="syz.2.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7579 code=0x7ffc0000
[   49.908498][   T39] audit: type=1326 audit(1737245161.158:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6073 comm="syz.2.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7579 code=0x7ffc0000
[   49.915237][   T39] audit: type=1326 audit(1737245161.178:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6073 comm="syz.2.20" exe="/syz-executor" sig=0 arch=40000003 syscall=362 compat=1 ip=0xf7fe7579 code=0x7ffc0000
[   49.921740][   T39] audit: type=1326 audit(1737245161.178:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6073 comm="syz.2.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7579 code=0x7ffc0000
[   49.928776][   T39] audit: type=1326 audit(1737245161.178:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6073 comm="syz.2.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7579 code=0x7ffc0000
[   49.935306][   T39] audit: type=1326 audit(1737245161.178:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6073 comm="syz.2.20" exe="/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf7fe7579 code=0x7ffc0000
[   49.942346][   T39] audit: type=1326 audit(1737245161.188:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6073 comm="syz.2.20" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe7579 code=0x7ffc0000
[   50.345687][ T6082] netlink: 12 bytes leftover after parsing attributes in process `syz.2.22'.
[   50.510639][ T6068] vhci_hcd: connection reset by peer
[   50.513753][ T6086] futex_wake_op: syz.2.24 tries to shift op by -1; fix this program
[   50.520240][   T45] vhci_hcd: stop threads
[   50.521930][   T45] vhci_hcd: release socket
[   50.523787][   T45] vhci_hcd: disconnect device
[   50.525771][ T6086] netlink: 8 bytes leftover after parsing attributes in process `syz.2.24'.
[   50.529201][ T6086] netlink: 4 bytes leftover after parsing attributes in process `syz.2.24'.
[   50.588986][ T6090] netlink: 28 bytes leftover after parsing attributes in process `syz.1.25'.
[   51.411067][ T5954] Bluetooth: hci3: command tx timeout
[   51.411184][ T5309] Bluetooth: hci0: command tx timeout
[   51.412900][ T5946] Bluetooth: hci1: command tx timeout
[   51.414941][ T5309] Bluetooth: hci2: command tx timeout
[   51.745721][ T6102] FAULT_INJECTION: forcing a failure.
[   51.745721][ T6102] name failslab, interval 1, probability 0, space 0, times 0
[   51.749637][ T6102] CPU: 2 UID: 0 PID: 6102 Comm: syz.1.28 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   51.753167][ T6102] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   51.756920][ T6102] Call Trace:
[   51.757993][ T6102]  <TASK>
[   51.759000][ T6102]  dump_stack_lvl+0x16c/0x1f0
[   51.760328][ T6102]  should_fail_ex+0x497/0x5b0
[   51.761700][ T6102]  should_failslab+0xc2/0x120
[   51.763108][ T6102]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   51.764658][ T6102]  ? skb_clone+0x190/0x3f0
[   51.765972][ T6102]  skb_clone+0x190/0x3f0
[   51.767205][ T6102]  netlink_deliver_tap+0xafd/0xca0
[   51.768941][ T6102]  netlink_unicast+0x5e1/0x7f0
[   51.770817][ T6102]  ? __pfx_netlink_unicast+0x10/0x10
[   51.772334][ T6102]  ? __phys_addr_symbol+0x30/0x80
[   51.773849][ T6102]  ? __check_object_size+0x488/0x710
[   51.775436][ T6102]  netlink_sendmsg+0x8b8/0xd70
[   51.776928][ T6102]  ? __pfx_netlink_sendmsg+0x10/0x10
[   51.778597][ T6102]  sock_write_iter+0x4fe/0x5b0
[   51.779950][ T6102]  ? __pfx_sock_write_iter+0x10/0x10
[   51.781599][ T6102]  ? bpf_lsm_file_permission+0x9/0x10
[   51.783666][ T6102]  ? security_file_permission+0x71/0x210
[   51.785827][ T6102]  vfs_write+0x5ae/0x1150
[   51.787594][ T6102]  ? __pfx_sock_write_iter+0x10/0x10
[   51.789731][ T6102]  ? __pfx_vfs_write+0x10/0x10
[   51.791713][ T6102]  ? __fget_files+0x40/0x3a0
[   51.793588][ T6102]  ksys_write+0x207/0x250
[   51.795358][ T6102]  ? __pfx_ksys_write+0x10/0x10
[   51.797325][ T6102]  __do_fast_syscall_32+0x73/0x120
[   51.799368][ T6102]  do_fast_syscall_32+0x32/0x80
[   51.801308][ T6102]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   51.803675][ T6102] RIP: 0023:0xf7f48579
[   51.805302][ T6102] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   51.812652][ T6102] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   51.815934][ T6102] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[   51.819059][ T6102] RDX: 0000000000000018 RSI: 0000000000000000 RDI: 0000000000000000
[   51.822169][ T6102] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   51.825265][ T6102] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   51.827922][ T6102] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   51.830725][ T6102]  </TASK>
[   52.058130][ T6107] e1000e 0000:00:02.0 eth1: NIC Link is Down
[   52.108562][ T6123] netlink: 12 bytes leftover after parsing attributes in process `syz.1.32'.
[   52.412616][ T6127] netlink: 'syz.1.33': attribute type 1 has an invalid length.
[   52.415866][ T6127] netlink: 224 bytes leftover after parsing attributes in process `syz.1.33'.
[   52.579820][ T6160] netlink: 8 bytes leftover after parsing attributes in process `syz.0.38'.
[   52.988804][    C1] Unknown status report in ack skb
[   52.995608][ T6192] FAULT_INJECTION: forcing a failure.
[   52.995608][ T6192] name failslab, interval 1, probability 0, space 0, times 0
[   52.999379][ T6192] CPU: 1 UID: 0 PID: 6192 Comm: syz.2.45 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   53.002309][ T6192] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.005427][ T6192] Call Trace:
[   53.006390][ T6192]  <TASK>
[   53.007216][ T6192]  dump_stack_lvl+0x16c/0x1f0
[   53.008610][ T6192]  should_fail_ex+0x497/0x5b0
[   53.009975][ T6192]  ? fs_reclaim_acquire+0xae/0x150
[   53.011445][ T6192]  should_failslab+0xc2/0x120
[   53.012795][ T6192]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   53.014893][ T6192]  ? alloc_vfsmnt+0x23/0x710
[   53.016643][ T6192]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   53.018259][ T6192]  alloc_vfsmnt+0x23/0x710
[   53.019545][ T6192]  clone_mnt+0x6d/0xf90
[   53.020735][ T6192]  ? lock_acquire+0x2f/0xb0
[   53.022041][ T6192]  ? copy_mnt_ns+0x14d/0xa80
[   53.023442][ T6192]  copy_tree+0xeb/0x9c0
[   53.024634][ T6192]  ? __pfx_down_write+0x10/0x10
[   53.026054][ T6192]  ? alloc_mnt_ns+0x2d3/0x4b0
[   53.027508][ T6192]  copy_mnt_ns+0x1b5/0xa80
[   53.028800][ T6192]  ? kmem_cache_alloc_noprof+0x21b/0x3b0
[   53.030402][ T6192]  ? create_new_namespaces+0x30/0xad0
[   53.031920][ T6192]  create_new_namespaces+0xd3/0xad0
[   53.033542][ T6192]  ? bpf_lsm_capable+0x9/0x10
[   53.034894][ T6192]  ? security_capable+0x7e/0x260
[   53.036312][ T6192]  unshare_nsproxy_namespaces+0xc0/0x1f0
[   53.038518][ T6192]  ksys_unshare+0x45d/0xa40
[   53.040360][ T6192]  ? __pfx_ksys_unshare+0x10/0x10
[   53.042410][ T6192]  ? ksys_write+0x1ba/0x250
[   53.044269][ T6192]  __ia32_sys_unshare+0x30/0x40
[   53.046203][ T6192]  __do_fast_syscall_32+0x73/0x120
[   53.048181][ T6192]  do_fast_syscall_32+0x32/0x80
[   53.050084][ T6192]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   53.052063][ T6192] RIP: 0023:0xf7fe7579
[   53.053563][ T6192] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   53.060881][ T6192] RSP: 002b:00000000f50f455c EFLAGS: 00000296 ORIG_RAX: 0000000000000136
[   53.063898][ T6192] RAX: ffffffffffffffda RBX: 0000000068060200 RCX: 0000000000000000
[   53.066455][ T6192] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   53.069100][ T6192] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   53.071721][ T6192] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   53.074364][ T6192] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   53.077006][ T6192]  </TASK>
[   53.311185][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   53.483854][ T6199] netlink: 48 bytes leftover after parsing attributes in process `syz.1.47'.
[   53.490263][ T5309] Bluetooth: hci1: command tx timeout
[   53.490382][   T65] Bluetooth: hci0: command tx timeout
[   53.491824][ T5309] Bluetooth: hci2: command tx timeout
[   53.494111][ T5946] Bluetooth: hci3: command tx timeout
[   53.511379][ T6202] Process accounting resumed
[   53.513584][ T6202] kernel write not supported for file /31/clear_refs (pid: 6202 comm: syz.0.48)
[   53.675991][ T6077] kernel write not supported for file /vcs (pid: 6077 comm: kworker/0:4)
[   53.919270][ T6222] syz.3.54 uses obsolete (PF_INET,SOCK_PACKET)
[   54.063792][ T6224] fuse: Unknown parameter 'grou00000000000000000000'
[   54.160324][   T56] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   54.171814][ T6226] netlink: 12 bytes leftover after parsing attributes in process `syz.0.56'.
[   54.209770][ T6228] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   54.310701][   T56] usb 6-1: Using ep0 maxpacket: 32
[   54.316113][   T56] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   54.322909][   T56] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[   54.327021][   T56] usb 6-1: config 0 interface 0 has no altsetting 0
[   54.329791][   T56] usb 6-1: New USB device found, idVendor=28de, idProduct=1205, bcdDevice= 0.00
[   54.333267][   T56] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.337548][   T56] usb 6-1: config 0 descriptor??
[   54.353491][ T6241] netlink: 4 bytes leftover after parsing attributes in process `syz.3.60'.
[   54.600219][ T5981] vhci_hcd: vhci_device speed not set
[   54.655989][ T6259] netlink: 12 bytes leftover after parsing attributes in process `syz.2.66'.
[   54.792646][   T56] hid-steam 0003:28DE:1205.0002: unknown main item tag 0x0
[   54.794915][   T56] hid-steam 0003:28DE:1205.0002: unknown main item tag 0x0
[   54.798682][   T56] hid-steam 0003:28DE:1205.0002: : USB HID v0.00 Device [HID 28de:1205] on usb-dummy_hcd.1-1/input0
[   54.860855][   T56] hid-steam 0003:28DE:1205.0002: Steam Controller 'XXXXXXXXXX' connected
[   54.874634][   T56] input: Steam Deck as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:28DE:1205.0002/input/input5
[   54.910684][    C1] Unknown status report in ack skb
[   55.067296][   T56] input: Steam Deck Motion Sensors as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:28DE:1205.0002/input/input6
[   55.084112][   T56] hid-steam 0003:28DE:1205.0003: unknown main item tag 0x0
[   55.086549][   T56] hid-steam 0003:28DE:1205.0003: unknown main item tag 0x0
[   55.091679][   T56] hid-steam 0003:28DE:1205.0003: hidraw1: USB HID v0.00 Device [HID 28de:1205] on usb-dummy_hcd.1-1/input0
[   55.099248][   T56] usb 6-1: USB disconnect, device number 2
[   55.137220][   T56] hid-steam 0003:28DE:1205.0002: Steam Controller 'XXXXXXXXXX' disconnected
[   55.291570][ T6280] FAULT_INJECTION: forcing a failure.
[   55.291570][ T6280] name failslab, interval 1, probability 0, space 0, times 0
[   55.295241][ T6280] CPU: 2 UID: 0 PID: 6280 Comm: syz.0.70 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   55.298247][ T6280] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.301305][ T6280] Call Trace:
[   55.302275][ T6280]  <TASK>
[   55.303154][ T6280]  dump_stack_lvl+0x16c/0x1f0
[   55.304508][ T6280]  should_fail_ex+0x497/0x5b0
[   55.305867][ T6280]  ? fs_reclaim_acquire+0xae/0x150
[   55.307375][ T6280]  should_failslab+0xc2/0x120
[   55.308742][ T6280]  kmem_cache_alloc_node_noprof+0x72/0x3b0
[   55.310413][ T6280]  ? __alloc_skb+0x2b3/0x380
[   55.311741][ T6280]  __alloc_skb+0x2b3/0x380
[   55.313056][ T6280]  ? __pfx___alloc_skb+0x10/0x10
[   55.314454][ T6280]  ? __mutex_trylock_common+0xea/0x250
[   55.316016][ T6280]  ? __pfx___mutex_trylock_common+0x10/0x10
[   55.317746][ T6280]  netlink_dump+0x699/0xd00
[   55.319054][ T6280]  ? __mutex_lock+0x1cc/0xa60
[   55.320402][ T6280]  ? __pfx_netlink_dump+0x10/0x10
[   55.321868][ T6280]  ? lock_acquire+0x2f/0xb0
[   55.323204][ T6280]  ? netlink_lookup+0x3d/0x270
[   55.324576][ T6280]  __netlink_dump_start+0x6d9/0x980
[   55.326073][ T6280]  ? __pfx_rtnl_dump_all+0x10/0x10
[   55.327534][ T6280]  rtnetlink_rcv_msg+0xb44/0xea0
[   55.328972][ T6280]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   55.330531][ T6280]  ? __pfx_rtnl_dumpit+0x10/0x10
[   55.331946][ T6280]  ? __pfx_rtnl_dump_all+0x10/0x10
[   55.333791][ T6280]  netlink_rcv_skb+0x165/0x410
[   55.335377][ T6280]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[   55.336923][ T6280]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   55.338332][ T6280]  ? netlink_deliver_tap+0x1ae/0xca0
[   55.339830][ T6280]  netlink_unicast+0x53c/0x7f0
[   55.341177][ T6280]  ? __pfx_netlink_unicast+0x10/0x10
[   55.342728][ T6280]  ? __phys_addr_symbol+0x30/0x80
[   55.344172][ T6280]  ? __check_object_size+0x488/0x710
[   55.345692][ T6280]  netlink_sendmsg+0x8b8/0xd70
[   55.347061][ T6280]  ? __pfx_netlink_sendmsg+0x10/0x10
[   55.348587][ T6280]  sock_write_iter+0x4fe/0x5b0
[   55.349957][ T6280]  ? __pfx_sock_write_iter+0x10/0x10
[   55.351457][ T6280]  ? bpf_lsm_file_permission+0x9/0x10
[   55.352970][ T6280]  ? security_file_permission+0x71/0x210
[   55.354537][ T6280]  vfs_write+0x5ae/0x1150
[   55.355770][ T6280]  ? __pfx_sock_write_iter+0x10/0x10
[   55.357194][ T6280]  ? __pfx_vfs_write+0x10/0x10
[   55.358564][ T6280]  ? __fget_files+0x40/0x3a0
[   55.359889][ T6280]  ksys_write+0x207/0x250
[   55.361124][ T6280]  ? __pfx_ksys_write+0x10/0x10
[   55.362539][ T6280]  __do_fast_syscall_32+0x73/0x120
[   55.364126][ T6280]  do_fast_syscall_32+0x32/0x80
[   55.365688][ T6280]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   55.367757][ T6280] RIP: 0023:0xf7fbf579
[   55.369075][ T6280] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   55.374655][ T6280] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[   55.377013][ T6280] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000200000c0
[   55.379291][ T6280] RDX: 0000000000000018 RSI: 0000000000000000 RDI: 0000000000000000
[   55.381493][ T6280] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   55.383751][ T6280] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   55.385995][ T6280] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   55.388263][ T6280]  </TASK>
[   55.593861][ T6287] warning: `syz.2.73' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   55.619291][ T6292] FAULT_INJECTION: forcing a failure.
[   55.619291][ T6292] name failslab, interval 1, probability 0, space 0, times 0
[   55.622895][ T6292] CPU: 1 UID: 0 PID: 6292 Comm: syz.0.71 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   55.625851][ T6292] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.628753][ T6292] Call Trace:
[   55.629674][ T6292]  <TASK>
[   55.630504][ T6292]  dump_stack_lvl+0x16c/0x1f0
[   55.631745][ T6292]  should_fail_ex+0x497/0x5b0
[   55.633027][ T6292]  should_failslab+0xc2/0x120
[   55.634297][ T6292]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   55.635780][ T6292]  ? skb_clone+0x190/0x3f0
[   55.637015][ T6292]  skb_clone+0x190/0x3f0
[   55.638271][ T6292]  netlink_deliver_tap+0xafd/0xca0
[   55.639750][ T6292]  netlink_unicast+0x5e1/0x7f0
[   55.641137][ T6292]  ? __pfx_netlink_unicast+0x10/0x10
[   55.642625][ T6292]  ? netlink_sendmsg+0x822/0xd70
[   55.644053][ T6292]  netlink_sendmsg+0x8b8/0xd70
[   55.645457][ T6292]  ? __pfx_netlink_sendmsg+0x10/0x10
[   55.646945][ T6292]  ____sys_sendmsg+0x9ae/0xb40
[   55.648355][ T6292]  ? __pfx_____sys_sendmsg+0x10/0x10
[   55.649864][ T6292]  ? get_compat_msghdr+0x11b/0x170
[   55.651310][ T6292]  ___sys_sendmsg+0x135/0x1e0
[   55.652576][ T6292]  ? __pfx____sys_sendmsg+0x10/0x10
[   55.654030][ T6292]  ? __pfx_lock_release+0x10/0x10
[   55.655480][ T6292]  ? trace_lock_acquire+0x14e/0x1f0
[   55.656865][ T6292]  ? __fget_files+0x206/0x3a0
[   55.657823][ T6294] FAULT_INJECTION: forcing a failure.
[   55.657823][ T6294] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   55.658162][ T6292]  __sys_sendmsg+0x16e/0x220
[   55.663511][ T6292]  ? __pfx___sys_sendmsg+0x10/0x10
[   55.665432][ T6292]  __do_fast_syscall_32+0x73/0x120
[   55.667464][ T6292]  do_fast_syscall_32+0x32/0x80
[   55.669421][ T6292]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   55.671460][ T6292] RIP: 0023:0xf7fbf579
[   55.672779][ T6292] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   55.678232][ T6292] RSP: 002b:00000000f50d455c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   55.680625][ T6292] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000020000c00
[   55.683680][ T6292] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   55.686746][ T6292] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   55.689924][ T6292] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   55.692984][ T6292] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   55.696070][ T6292]  </TASK>
[   55.697283][ T6294] CPU: 3 UID: 0 PID: 6294 Comm: syz.1.74 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   55.700269][ T6294] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.703291][ T6294] Call Trace:
[   55.704232][ T6294]  <TASK>
[   55.705072][ T6294]  dump_stack_lvl+0x16c/0x1f0
[   55.706435][ T6294]  should_fail_ex+0x497/0x5b0
[   55.707830][ T6294]  _copy_to_user+0x32/0xd0
[   55.709124][ T6294]  simple_read_from_buffer+0xd0/0x160
[   55.710607][ T6294]  proc_fail_nth_read+0x198/0x270
[   55.712019][ T6294]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   55.713648][ T6294]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   55.715236][ T6294]  vfs_read+0x1df/0xbe0
[   55.716442][ T6294]  ? __fget_files+0x1fc/0x3a0
[   55.717805][ T6294]  ? __pfx___mutex_lock+0x10/0x10
[   55.719248][ T6294]  ? __pfx_vfs_read+0x10/0x10
[   55.720605][ T6294]  ? __fget_files+0x206/0x3a0
[   55.722109][ T6294]  ksys_read+0x12b/0x250
[   55.723337][ T6294]  ? __pfx_ksys_read+0x10/0x10
[   55.724718][ T6294]  __do_fast_syscall_32+0x73/0x120
[   55.726201][ T6294]  do_fast_syscall_32+0x32/0x80
[   55.727630][ T6294]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   55.729399][ T6294] RIP: 0023:0xf7f48579
[   55.730546][ T6294] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   55.735941][ T6294] RSP: 002b:00000000f5096590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   55.738342][ T6294] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5096620
[   55.740579][ T6294] RDX: 000000000000000f RSI: 00000000f73d3ff4 RDI: 0000000000000000
[   55.742813][ T6294] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   55.745056][ T6294] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   55.747357][ T6294] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   55.749638][ T6294]  </TASK>
[   55.802459][   T39] kauditd_printk_skb: 2 callbacks suppressed
[   55.802469][   T39] audit: type=1326 audit(1737245167.088:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6306 comm="syz.1.80" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f48579 code=0x0
[   55.812132][ T6309] FAULT_INJECTION: forcing a failure.
[   55.812132][ T6309] name failslab, interval 1, probability 0, space 0, times 0
[   55.815839][ T6309] CPU: 3 UID: 0 PID: 6309 Comm: syz.3.79 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   55.818828][ T6309] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   55.821836][ T6309] Call Trace:
[   55.822955][ T6309]  <TASK>
[   55.823857][ T6309]  dump_stack_lvl+0x16c/0x1f0
[   55.825281][ T6309]  should_fail_ex+0x497/0x5b0
[   55.826695][ T6309]  should_failslab+0xc2/0x120
[   55.828075][ T6309]  kmem_cache_alloc_noprof+0x6e/0x3b0
[   55.829629][ T6309]  ? skb_clone+0x190/0x3f0
[   55.830939][ T6309]  skb_clone+0x190/0x3f0
[   55.832168][ T6309]  netlink_deliver_tap+0xafd/0xca0
[   55.833579][ T6309]  netlink_unicast+0x5e1/0x7f0
[   55.834916][ T6309]  ? __pfx_netlink_unicast+0x10/0x10
[   55.836430][ T6309]  ? __phys_addr_symbol+0x30/0x80
[   55.837810][ T6309]  ? __check_object_size+0x488/0x710
[   55.839288][ T6309]  netlink_sendmsg+0x8b8/0xd70
[   55.840637][ T6309]  ? __pfx_netlink_sendmsg+0x10/0x10
[   55.842147][ T6309]  ____sys_sendmsg+0x9ae/0xb40
[   55.843529][ T6309]  ? __pfx_____sys_sendmsg+0x10/0x10
[   55.845038][ T6309]  ? get_compat_msghdr+0x11b/0x170
[   55.846513][ T6309]  ___sys_sendmsg+0x135/0x1e0
[   55.847884][ T6309]  ? __pfx____sys_sendmsg+0x10/0x10
[   55.849399][ T6309]  ? __pfx_lock_release+0x10/0x10
[   55.850831][ T6309]  ? trace_lock_acquire+0x14e/0x1f0
[   55.852331][ T6309]  ? __fget_files+0x206/0x3a0
[   55.853697][ T6309]  __sys_sendmsg+0x16e/0x220
[   55.854989][ T6309]  ? __pfx___sys_sendmsg+0x10/0x10
[   55.856467][ T6309]  __do_fast_syscall_32+0x73/0x120
[   55.857967][ T6309]  do_fast_syscall_32+0x32/0x80
[   55.859369][ T6309]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   55.861179][ T6309] RIP: 0023:0xf7f91579
[   55.862359][ T6309] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   55.866501][ T6313] Zero length message leads to an empty skb
[   55.867761][ T6309] RSP: 002b:00000000f50e655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   55.872398][ T6309] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000340
[   55.874524][ T6309] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   55.876684][ T6309] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   55.878867][ T6309] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   55.881151][ T6309] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   55.883408][ T6309]  </TASK>
[   55.929190][ T6316] fuse: Unknown parameter 'grou00000000000000000000'
[   56.077978][ T6318] netlink: 16 bytes leftover after parsing attributes in process `syz.0.83'.
[   56.147919][ T6322] FAULT_INJECTION: forcing a failure.
[   56.147919][ T6322] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   56.152086][ T6322] CPU: 1 UID: 0 PID: 6322 Comm: syz.0.84 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   56.155146][ T6322] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.158290][ T6322] Call Trace:
[   56.159265][ T6322]  <TASK>
[   56.160144][ T6322]  dump_stack_lvl+0x16c/0x1f0
[   56.161538][ T6322]  should_fail_ex+0x497/0x5b0
[   56.162912][ T6322]  ? fs_reclaim_acquire+0xae/0x150
[   56.164395][ T6322]  should_fail_alloc_page+0xe7/0x130
[   56.165949][ T6322]  prepare_alloc_pages.constprop.0+0x16f/0x560
[   56.167758][ T6322]  __alloc_pages_noprof+0x190/0x25b0
[   56.169294][ T6322]  ? __pfx___lock_acquire+0x10/0x10
[   56.170811][ T6322]  ? __pfx___lock_acquire+0x10/0x10
[   56.172363][ T6322]  ? lock_acquire.part.0+0x11b/0x380
[   56.173963][ T6322]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   56.175595][ T6322]  ? page_ext_put+0x3e/0xd0
[   56.176929][ T6322]  ? page_ext_get+0x34/0x310
[   56.178313][ T6322]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   56.180026][ T6322]  ? policy_nodemask+0xea/0x4e0
[   56.181481][ T6322]  alloc_pages_mpol_noprof+0x2c8/0x620
[   56.183172][ T6322]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   56.185197][ T6322]  ? __folio_batch_add_and_move+0x612/0xc60
[   56.187008][ T6322]  folio_alloc_mpol_noprof+0x36/0xd0
[   56.188555][ T6322]  vma_alloc_folio_noprof+0xee/0x1b0
[   56.190086][ T6322]  ? __pfx_vma_alloc_folio_noprof+0x10/0x10
[   56.191772][ T6322]  ? __mem_cgroup_charge+0x108/0x280
[   56.193335][ T6322]  ? __pfx___might_resched+0x10/0x10
[   56.194877][ T6322]  mfill_atomic_copy+0x1053/0x1e60
[   56.196368][ T6322]  ? __pfx_mfill_atomic_copy+0x10/0x10
[   56.197966][ T6322]  ? __might_fault+0xe3/0x190
[   56.199331][ T6322]  ? __might_fault+0xe3/0x190
[   56.200700][ T6322]  userfaultfd_ioctl+0x1e50/0x3830
[   56.202193][ T6322]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   56.203660][ T6322]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[   56.205225][ T6322]  ? __pfx_lock_release+0x10/0x10
[   56.206698][ T6322]  ? trace_lock_acquire+0x14e/0x1f0
[   56.208210][ T6322]  ? __fget_files+0x206/0x3a0
[   56.209590][ T6322]  ? __pfx_userfaultfd_ioctl+0x10/0x10
[   56.211293][ T6322]  ? compat_ptr_ioctl+0x6b/0xa0
[   56.212791][ T6322]  compat_ptr_ioctl+0x6b/0xa0
[   56.214186][ T6322]  ? __pfx_compat_ptr_ioctl+0x10/0x10
[   56.215736][ T6322]  __do_compat_sys_ioctl+0x1cb/0x2c0
[   56.217271][ T6322]  __do_fast_syscall_32+0x73/0x120
[   56.218764][ T6322]  do_fast_syscall_32+0x32/0x80
[   56.220167][ T6322]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   56.221999][ T6322] RIP: 0023:0xf7fbf579
[   56.223210][ T6322] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   56.228738][ T6322] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   56.231132][ T6322] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c028aa03
[   56.233435][ T6322] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[   56.235639][ T6322] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   56.237927][ T6322] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   56.240185][ T6322] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   56.242475][ T6322]  </TASK>
[   56.364338][ T6327] netlink: 'syz.3.86': attribute type 4 has an invalid length.
[   56.709293][ T6338] netlink: 'syz.1.88': attribute type 4 has an invalid length.
[   56.743457][ T6336] Illegal XDP return value 4294967274 on prog  (id 15) dev N/A, expect packet loss!
[   57.345122][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   57.381690][   T39] audit: type=1804 audit(1737245168.668:15): pid=6345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.90" name="/newroot/22/file0/cgroup.controllers" dev="9p" ino=37618300 res=1 errno=0
[   57.410312][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.446350][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   57.753560][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   57.790289][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   57.845819][   T25] kernel write not supported for file /vcs (pid: 25 comm: kworker/2:0)
[   57.855995][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   57.958344][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   57.962735][ T6357] fuse: Unknown parameter 'group_i00000000000000000000'
[   57.970736][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   58.589966][ T6375] [U] 
[   58.590939][ T6375] [U] 
[   58.591757][ T6375] [U] 
[   58.592572][ T6375] [U] 
[   58.593996][ T6375] [U] 
[   58.594882][ T6375] [U] 
[   58.595739][ T6375] [U] 
[   58.596568][ T6375] [U] 
[   58.597391][ T6375] [U] 
[   58.598198][ T6375] [U] 
[   58.599026][ T6375] [U] 
[   58.599830][ T6375] [U] 
[   58.602693][ T6375] [U] 
[   58.603555][ T6375] [U] 
[   58.604372][ T6375] [U] 
[   58.605170][ T6375] [U] 
[   58.606023][ T6375] [U] 
[   58.606831][ T6375] [U] 
[   58.607678][ T6375] [U] 
[   58.608507][ T6375] [U] 
[   58.609334][ T6375] [U] 
[   58.610172][ T6375] [U] 
[   58.610989][ T6375] [U] 
[   58.611819][ T6375] [U] 
[   58.615420][ T6375] [U] 
[   58.616249][ T6375] [U] 
[   58.617047][ T6375] [U] 
[   58.617872][ T6375] [U] 
[   58.618678][ T6375] [U] 
[   58.619479][ T6375] [U] 
[   58.620300][ T6375] [U] 
[   58.621102][ T6375] [U] 
[   58.623523][ T6375] [U] 
[   58.624349][ T6375] [U] 
[   58.625164][ T6375] [U] 
[   58.625987][ T6375] [U] 
[   58.626801][ T6375] [U] 
[   58.627627][ T6375] [U] 
[   58.628455][ T6375] [U] 
[   58.629264][ T6375] [U] 
[   58.630119][ T6375] [U] 
[   58.630933][ T6375] [U] 
[   58.631748][ T6375] [U] 
[   58.632570][ T6375] [U] 
[   58.633736][ T6375] [U] 
[   58.634551][ T6375] [U] 
[   58.635350][ T6375] [U] 
[   58.636139][ T6375] [U] 
[   58.636942][ T6375] [U] 
[   58.637779][ T6375] [U] 
[   58.638565][ T6375] [U] 
[   58.639355][ T6375] [U] 
[   58.642297][ T6375] [U] 
[   58.642399][ T6376] netlink: 'syz.3.99': attribute type 27 has an invalid length.
[   58.643102][ T6375] [U] 
[   58.646044][ T6375] [U] 
[   58.646829][ T6375] [U] 
[   58.648329][ T6375] [U] 
[   58.649139][ T6375] [U] 
[   58.649951][ T6375] [U] 
[   58.650751][ T6375] [U] 
[   58.653481][ T6375] [U] 
[   58.654313][ T6375] [U] 
[   58.655116][ T6375] [U] 
[   58.655912][ T6375] [U] 
[   58.656731][ T6375] [U] 
[   58.657592][ T6375] [U] 
[   58.658386][ T6375] [U] 
[   58.659183][ T6375] [U] 
[   58.659989][ T6375] [U] 
[   58.660802][ T6375] [U] 
[   58.661576][ T6375] [U] 
[   58.662365][ T6375] [U] 
[   58.665397][ T6375] [U] 
[   58.666186][ T6375] [U] 
[   58.666960][ T6375] [U] 
[   58.667759][ T6375] [U] 
[   58.668575][ T6375] [U] 
[   58.669386][ T6375] [U] 
[   58.670171][ T6375] [U] 
[   58.670963][ T6375] [U] 
[   58.671954][ T6375] [U] 
[   58.672766][ T6375] [U] 
[   58.673572][ T6375] [U] 
[   58.674343][ T6375] [U] 
[   58.675508][ T6375] [U] 
[   58.676295][ T6375] [U] 
[   58.677038][ T6375] [U] 
[   58.677840][ T6375] [U] 
[   58.679055][ T6375] [U] 
[   58.679856][ T6375] [U] 
[   58.680646][ T6375] [U] 
[   58.681437][ T6375] [U] 
[   58.683288][ T6375] [U] 
[   58.684115][ T6375] [U] 
[   58.684912][ T6375] [U] 
[   58.685709][ T6375] [U] 
[   58.686691][ T6375] [U] 
[   58.687490][ T6375] [U] 
[   58.688290][ T6375] [U] 
[   58.689044][ T6375] [U] 
[   58.690228][ T6375] [U] 
[   58.691020][ T6375] [U] 
[   58.691776][ T6375] [U] 
[   58.692560][ T6375] [U] 
[   58.695844][ T6375] [U] 
[   58.696963][ T6375] [U] 
[   58.698033][ T6375] [U] 
[   58.699123][ T6375] [U] 
[   58.700220][ T6375] [U] 
[   58.701304][ T6375] [U] 
[   58.702323][ T6375] [U] 
[   58.703216][ T6375] [U] 
[   58.704431][ T6375] [U] 
[   58.705593][ T6375] [U] 
[   58.706718][ T6375] [U] 
[   58.707577][ T6375] [U] 
[   58.708482][ T6375] [U] 
[   58.709347][ T6376] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.709568][ T6375] [U] 
[   58.712928][ T6376] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.713014][ T6375] [U] 
[   58.716387][ T6375] [U] 
[   58.717652][ T6375] [U] 
[   58.718594][ T6375] [U] 
[   58.719367][ T6375] [U] 
[   58.720167][ T6375] [U] 
[   58.721497][ T6375] [U] 
[   58.722292][ T6375] [U] 
[   58.723074][ T6375] [U] 
[   58.773147][ T6375] [U] 
[   58.795351][ T6376] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.803174][ T6376] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   58.867888][ T6376] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.888126][ T6376] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.891533][ T6376] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.894302][ T6376] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   58.940070][ T6378] 8021q: adding VLAN 0 to HW filter on device bond0
[   58.942766][ T6378] 8021q: adding VLAN 0 to HW filter on device team0
[   58.946147][ T6378] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[   58.978342][    C1] Unknown status report in ack skb
[   59.351408][    C1] Unknown status report in ack skb
[   59.675097][   T39] audit: type=1804 audit(1737245170.958:16): pid=6394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.105" name="/newroot/26/bus/bus" dev="overlay" ino=171 res=1 errno=0
[   59.726701][ T6397] fuse: Unknown parameter 'group_i00000000000000000000'
[   60.180754][   T63] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   60.312426][ T6420] netlink: 'syz.3.113': attribute type 1 has an invalid length.
[   60.330296][   T63] usb 5-1: Using ep0 maxpacket: 32
[   60.333163][   T63] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   60.336268][   T63] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[   60.339135][   T63] usb 5-1: config 0 interface 0 has no altsetting 0
[   60.341120][   T63] usb 5-1: New USB device found, idVendor=28de, idProduct=1205, bcdDevice= 0.00
[   60.344120][   T63] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   60.351279][   T63] usb 5-1: config 0 descriptor??
[   60.500328][ T6426] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   60.569632][ T6430] fuse: Unknown parameter 'group_i00000000000000000000'
[   60.759041][   T63] hid-steam 0003:28DE:1205.0004: unknown main item tag 0x0
[   60.761667][   T63] hid-steam 0003:28DE:1205.0004: unknown main item tag 0x0
[   60.764113][   T63] hid-steam 0003:28DE:1205.0004: : USB HID v0.00 Device [HID 28de:1205] on usb-dummy_hcd.0-1/input0
[   60.775290][ T6432] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   60.777873][ T6432] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   60.783919][ T6432] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   60.787469][ T6432] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   60.789395][ T6432] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   60.803833][ T6432] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   60.810986][ T6432] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   60.813345][ T6432] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   60.817536][ T6432] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   60.820442][ T6432] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   60.820667][   T63] hid-steam 0003:28DE:1205.0004: Steam Controller 'XXXXXXXXXX' connected
[   60.822208][ T6432] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   60.827406][ T6432] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   60.827701][   T63] input: Steam Deck as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:28DE:1205.0004/input/input8
[   60.835901][   T63] input: Steam Deck Motion Sensors as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:28DE:1205.0004/input/input9
[   60.844190][   T63] hid-steam 0003:28DE:1205.0005: unknown main item tag 0x0
[   60.846427][   T63] hid-steam 0003:28DE:1205.0005: unknown main item tag 0x0
[   60.850091][   T63] hid-steam 0003:28DE:1205.0005: hidraw1: USB HID v0.00 Device [HID 28de:1205] on usb-dummy_hcd.0-1/input0
[   60.958138][   T62] usb 5-1: USB disconnect, device number 2
[   60.979997][   T62] hid-steam 0003:28DE:1205.0004: Steam Controller 'XXXXXXXXXX' disconnected
[   61.043170][ T6442] netlink: 'syz.1.118': attribute type 10 has an invalid length.
[   61.045954][ T6444] netlink: 'syz.1.118': attribute type 10 has an invalid length.
[   61.046158][ T6442] syz_tun: entered promiscuous mode
[   61.053626][ T6442] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[   61.806008][ T6454] netlink: 'syz.0.121': attribute type 1 has an invalid length.
[   61.808776][ T6454] netlink: 224 bytes leftover after parsing attributes in process `syz.0.121'.
[   62.453371][ T6463] Bluetooth: MGMT ver 1.23
[   62.620066][ T6475] netlink: 12 bytes leftover after parsing attributes in process `syz.0.128'.
[   62.646736][    C1] Unknown status report in ack skb
[   62.650389][ T6475] netlink: 12 bytes leftover after parsing attributes in process `syz.0.128'.
[   62.686781][ T6479] netlink: 'syz.2.129': attribute type 10 has an invalid length.
[   62.689041][ T6479] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.129'.
[   62.691719][ T6479] openvswitch: netlink: Message has 44053 unknown bytes.
[   62.748538][ T6481] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   62.780438][ T5946] Bluetooth: hci0: command 0x0c1a tx timeout
[   62.854547][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[   62.860291][ T5946] Bluetooth: hci3: command 0x0c1a tx timeout
[   62.860406][ T5309] Bluetooth: hci2: command 0x0c1a tx timeout
[   62.870841][ T6481] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.009703][ T6481] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.090973][ T6481] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   63.215988][ T6481] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.221137][ T6481] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.226036][ T6481] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.232814][ T6481] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.269769][ T6496] netlink: 224 bytes leftover after parsing attributes in process `syz.0.133'.
[   63.567411][ T6506] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   63.569462][ T6506] overlayfs: failed to set xattr on upper
[   63.571766][ T6506] overlayfs: ...falling back to redirect_dir=nofollow.
[   63.573885][ T6506] overlayfs: ...falling back to index=off.
[   63.584057][ T6506] overlayfs: ...falling back to uuid=null.
[   64.177834][    C1] Unknown status report in ack skb
[   64.860256][ T5309] Bluetooth: hci0: command 0x0c1a tx timeout
[   64.930995][ T6520] FAULT_INJECTION: forcing a failure.
[   64.930995][ T6520] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   64.935828][ T6520] CPU: 3 UID: 0 PID: 6520 Comm: syz.2.141 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   64.939827][ T6520] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.943824][ T6520] Call Trace:
[   64.944799][ T6520]  <TASK>
[   64.945700][ T6520]  dump_stack_lvl+0x16c/0x1f0
[   64.947515][ T6520]  should_fail_ex+0x497/0x5b0
[   64.948970][ T6520]  _copy_to_user+0x32/0xd0
[   64.950285][ T6520]  bpf_verifier_vlog+0x25d/0x6a0
[   64.951715][ T6520]  bpf_verifier_log_write+0x171/0x190
[   64.953478][ T6520]  ? __pfx_bpf_verifier_log_write+0x10/0x10
[   64.953553][ T5309] Bluetooth: hci3: command 0x0c1a tx timeout
[   64.955718][ T6520]  ? _copy_to_user+0x48/0xd0
[   64.958181][ T5309] Bluetooth: hci1: command 0x0c1a tx timeout
[   64.959475][ T6520]  ? print_verifier_state+0x82b/0x1110
[   64.963925][ T6520]  print_verifier_state+0x84c/0x1110
[   64.965969][ T6520]  ? lock_acquire+0x2f/0xb0
[   64.967693][ T6520]  ? __pfx_print_verifier_state+0x10/0x10
[   64.969893][ T6520]  do_check_common+0xf53/0xd580
[   64.971773][ T6520]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.973731][ T6520]  ? __pfx_do_check_common+0x10/0x10
[   64.975731][ T6520]  ? __pfx_verbose+0x10/0x10
[   64.977519][ T6520]  ? __pfx_disasm_kfunc_name+0x10/0x10
[   64.979588][ T6520]  ? check_cfg+0x403/0x8e0
[   64.981276][ T6520]  bpf_check+0x83ed/0xc870
[   64.983014][ T6520]  ? hlock_class+0x4e/0x130
[   64.984756][ T6520]  ? __pfx_bpf_check+0x10/0x10
[   64.986607][ T6520]  ? find_held_lock+0x2d/0x110
[   64.988435][ T6520]  ? bpf_prog_load+0xd45/0x2670
[   64.990160][ T6520]  ? __pfx_lock_release+0x10/0x10
[   64.992060][ T6520]  ? trace_lock_acquire+0x14e/0x1f0
[   64.994052][ T6520]  ? bpf_prog_load+0xd45/0x2670
[   64.995880][ T6520]  ? lockdep_hardirqs_on+0x7c/0x110
[   64.997903][ T6520]  ? read_tsc+0x9/0x20
[   64.999374][ T6520]  ? ktime_get_with_offset+0x20f/0x3a0
[   65.001476][ T6520]  ? bpf_obj_name_cpy+0x156/0x1b0
[   65.002945][ T6520]  bpf_prog_load+0xe3f/0x2670
[   65.004629][ T6520]  ? __pfx_bpf_prog_load+0x10/0x10
[   65.006535][ T6520]  ? find_held_lock+0x2d/0x110
[   65.008263][ T6520]  ? __might_fault+0x13b/0x190
[   65.010113][ T6520]  ? __might_fault+0xe3/0x190
[   65.011751][ T6520]  __sys_bpf+0x5677/0x57a0
[   65.013195][ T6520]  ? __pfx_lock_release+0x10/0x10
[   65.014668][ T6520]  ? __pfx___sys_bpf+0x10/0x10
[   65.016053][ T6520]  ? vfs_write+0x306/0x1150
[   65.017386][ T6520]  ? __mutex_unlock_slowpath+0x164/0x690
[   65.019005][ T6520]  ? fput+0x67/0x440
[   65.020139][ T6520]  ? ksys_write+0x1ba/0x250
[   65.021462][ T6520]  ? __pfx_ksys_write+0x10/0x10
[   65.022848][ T6520]  __ia32_sys_bpf+0x76/0xe0
[   65.024174][ T6520]  __do_fast_syscall_32+0x73/0x120
[   65.025668][ T6520]  do_fast_syscall_32+0x32/0x80
[   65.027162][ T6520]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   65.029609][ T6520] RIP: 0023:0xf7fe7579
[   65.031179][ T6520] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   65.037920][ T6520] RSP: 002b:00000000f513655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   65.040928][ T6520] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 000000002000e000
[   65.043893][ T6520] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[   65.046512][ T6520] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   65.049432][ T6520] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   65.052413][ T6520] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   65.055348][ T6520]  </TASK>
[   65.056794][ T5946] Bluetooth: hci2: command 0x0c1a tx timeout
[   65.345547][   T62] kernel write not supported for file /vcs (pid: 62 comm: kworker/3:1)
[   65.613508][   T39] audit: type=1800 audit(1737245177.881:17): pid=6545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.144" name="bus" dev="overlay" ino=201 res=0 errno=0
[   65.643511][ T6558] FAULT_INJECTION: forcing a failure.
[   65.643511][ T6558] name failslab, interval 1, probability 0, space 0, times 0
[   65.648460][   T39] audit: type=1804 audit(1737245177.931:18): pid=6558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.149" name="/newroot/40/bus/bus" dev="overlay" ino=253 res=1 errno=0
[   65.660274][ T6558] CPU: 2 UID: 0 PID: 6558 Comm: syz.0.149 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   65.663677][ T6558] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   65.666576][ T6558] Call Trace:
[   65.667581][ T6558]  <TASK>
[   65.668448][ T6558]  dump_stack_lvl+0x16c/0x1f0
[   65.669852][ T6558]  should_fail_ex+0x497/0x5b0
[   65.671421][ T6558]  ? fs_reclaim_acquire+0xae/0x150
[   65.673437][ T6558]  should_failslab+0xc2/0x120
[   65.675350][ T6558]  __kmalloc_noprof+0xce/0x4f0
[   65.677261][ T6558]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   65.679852][ T6558]  ? ima_write_template_field_data+0x48/0x1c0
[   65.682206][ T6558]  ima_write_template_field_data+0x48/0x1c0
[   65.684542][ T6558]  ? ima_eventdigest_init_common+0xd5/0x3d0
[   65.686909][ T6558]  ima_eventdigest_init_common+0x131/0x3d0
[   65.689250][ T6558]  ? __pfx_ima_eventdigest_init_common+0x10/0x10
[   65.691813][ T6558]  ? rcu_watching_snap_stopped_since+0xf0/0x110
[   65.694270][ T6558]  ? trace_kmalloc+0x2d/0xd0
[   65.696120][ T6558]  ? __kmalloc_noprof+0x23b/0x4f0
[   65.697624][ T6558]  ? ima_alloc_init_template+0x195/0x720
[   65.699243][ T6558]  ima_alloc_init_template+0x399/0x720
[   65.700806][ T6558]  ima_store_measurement+0x1ea/0x5c0
[   65.702343][ T6558]  ? __pfx_ima_store_measurement+0x10/0x10
[   65.704079][ T6558]  ? __pfx_ima_get_hash_algo+0x10/0x10
[   65.705651][ T6558]  process_measurement+0x1bcb/0x2370
[   65.707168][ T6558]  ? __pfx_process_measurement+0x10/0x10
[   65.708828][ T6558]  ? aa_file_perm+0x4c6/0xfe0
[   65.710207][ T6558]  ? trace_lock_acquire+0x14e/0x1f0
[   65.711696][ T6558]  ? __pfx_ovl_file_accessed+0x10/0x10
[   65.713464][ T6558]  ? __pfx___kernel_read+0x10/0x10
[   65.715516][ T6558]  ima_post_read_file+0x178/0x240
[   65.717542][ T6558]  ? __pfx_ima_post_read_file+0x10/0x10
[   65.719656][ T6558]  security_kernel_post_read_file+0xa5/0x260
[   65.721506][ T6558]  kernel_read_file+0x6f5/0x7f0
[   65.723462][ T6558]  ? __pfx_kernel_read_file+0x10/0x10
[   65.725712][ T6558]  ? __pfx___lock_acquire+0x10/0x10
[   65.727799][ T6558]  ? hlock_class+0x4e/0x130
[   65.729646][ T6558]  ? __lock_acquire+0xcc5/0x3c40
[   65.731637][ T6558]  init_module_from_file+0xa0/0x120
[   65.733754][ T6558]  ? __pfx_init_module_from_file+0x10/0x10
[   65.736046][ T6558]  ? lock_acquire+0x2f/0xb0
[   65.737869][ T6558]  ? idempotent_init_module+0x118/0x750
[   65.740018][ T6558]  ? do_raw_spin_unlock+0x172/0x230
[   65.741874][ T6558]  idempotent_init_module+0x228/0x750
[   65.743629][ T6558]  ? __pfx_lock_release+0x10/0x10
[   65.745662][ T6558]  ? __pfx_idempotent_init_module+0x10/0x10
[   65.747720][ T6558]  ? __fget_files+0x206/0x3a0
[   65.749355][ T6558]  __ia32_sys_finit_module+0xbc/0x140
[   65.750836][ T6558]  __do_fast_syscall_32+0x73/0x120
[   65.752301][ T6558]  do_fast_syscall_32+0x32/0x80
[   65.753744][ T6558]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   65.755552][ T6558] RIP: 0023:0xf7fbf579
[   65.756724][ T6558] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   65.762211][ T6558] RSP: 002b:00000000f511655c EFLAGS: 00000296 ORIG_RAX: 000000000000015e
[   65.765208][ T6558] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[   65.767489][ T6558] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   65.769757][ T6558] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   65.772023][ T6558] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   65.774386][ T6558] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   65.776617][ T6558]  </TASK>
[   65.778227][ T6558] Invalid ELF header magic: != ELF
[   65.780053][   T39] audit: type=1804 audit(1737245178.061:19): pid=6558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=add_template_measure cause=ENOMEM comm="syz.0.149" name="/newroot/40/bus/bus" dev="overlay" ino=253 res=0 errno=0
[   66.224550][   T39] audit: type=1326 audit(1737245178.511:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.3.148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7fc00000
[   66.244729][   T39] audit: type=1326 audit(1737245178.511:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.3.148" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f91579 code=0x7fc00000
[   66.258701][   T39] audit: type=1326 audit(1737245178.511:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.3.148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7fc00000
[   66.265386][   T39] audit: type=1326 audit(1737245178.511:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.3.148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7fc00000
[   66.274876][   T39] audit: type=1326 audit(1737245178.511:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.3.148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7fc00000
[   66.280822][   T39] audit: type=1326 audit(1737245178.511:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.3.148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7fc00000
[   66.286827][   T39] audit: type=1326 audit(1737245178.511:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6542 comm="syz.3.148" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f91579 code=0x7fc00000
[   66.651830][ T6600] netlink: 168 bytes leftover after parsing attributes in process `syz.3.156'.
[   66.676373][ T6600] loop9: detected capacity change from 0 to 6
[   66.682686][ T6600] Dev loop9: unable to read RDB block 6
[   66.684644][ T6600]  loop9: unable to read partition table
[   66.686805][ T6600] loop9: partition table beyond EOD, truncated
[   66.688738][ T6600] loop_reread_partitions: partition scan of loop9 (�被x������ڬ��dƤ����ݡ�����
[   66.688738][ T6600] 
) failed (rc=-5)
[   66.930252][ T5946] Bluetooth: hci0: command 0x0c1a tx timeout
[   67.010245][ T5946] Bluetooth: hci1: command 0x0c1a tx timeout
[   67.010280][ T5309] Bluetooth: hci3: command 0x0c1a tx timeout
[   67.090917][ T5309] Bluetooth: hci2: command 0x0c1a tx timeout
[   67.202777][ T6610] netlink: 'syz.2.160': attribute type 1 has an invalid length.
[   67.205741][ T6610] netlink: 224 bytes leftover after parsing attributes in process `syz.2.160'.
[   67.488832][ T6618] x_tables: duplicate underflow at hook 1
[   67.532564][   T62] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   67.700232][   T62] usb 6-1: Using ep0 maxpacket: 32
[   67.704169][   T62] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 32
[   67.709580][   T62] usb 6-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[   67.716596][   T62] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   67.722040][   T62] usb 6-1: Product: syz
[   67.725164][   T62] usb 6-1: Manufacturer: syz
[   67.726538][   T62] usb 6-1: SerialNumber: syz
[   67.731334][   T62] usb 6-1: config 0 descriptor??
[   67.734070][ T6613] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   67.739984][   T62] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[   67.956016][ T6613] Process accounting resumed
[   68.181466][ T6613] syz.1.161 (6613): drop_caches: 2
[   68.196714][   T63] usb 6-1: USB disconnect, device number 3
[   68.312648][ T6624] netlink: 'syz.3.163': attribute type 1 has an invalid length.
[   68.356432][ T6624] netlink: 12 bytes leftover after parsing attributes in process `syz.3.163'.
[   68.458645][ T6631] netlink: 'syz.3.166': attribute type 1 has an invalid length.
[   68.462445][ T6631] netlink: 224 bytes leftover after parsing attributes in process `syz.3.166'.
[   68.502428][ T6636] FAULT_INJECTION: forcing a failure.
[   68.502428][ T6636] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.506317][ T6636] CPU: 2 UID: 0 PID: 6636 Comm: syz.2.167 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   68.509348][ T6636] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.512411][ T6636] Call Trace:
[   68.513394][ T6636]  <TASK>
[   68.514252][ T6636]  dump_stack_lvl+0x16c/0x1f0
[   68.515618][ T6636]  should_fail_ex+0x497/0x5b0
[   68.516990][ T6636]  _copy_to_user+0x32/0xd0
[   68.518366][ T6636]  simple_read_from_buffer+0xd0/0x160
[   68.519925][ T6636]  proc_fail_nth_read+0x198/0x270
[   68.521410][ T6636]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   68.523025][ T6636]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   68.524629][ T6636]  vfs_read+0x1df/0xbe0
[   68.525850][ T6636]  ? __fget_files+0x1fc/0x3a0
[   68.527254][ T6636]  ? __pfx___mutex_lock+0x10/0x10
[   68.528727][ T6636]  ? __pfx_vfs_read+0x10/0x10
[   68.530132][ T6636]  ? __fget_files+0x206/0x3a0
[   68.531506][ T6636]  ksys_read+0x12b/0x250
[   68.532746][ T6636]  ? __pfx_ksys_read+0x10/0x10
[   68.534150][ T6636]  __do_fast_syscall_32+0x73/0x120
[   68.535626][ T6636]  do_fast_syscall_32+0x32/0x80
[   68.537042][ T6636]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   68.538906][ T6636] RIP: 0023:0xf7fe7579
[   68.540092][ T6636] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   68.545563][ T6636] RSP: 002b:00000000f5136590 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   68.548006][ T6636] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000f5136620
[   68.550281][ T6636] RDX: 000000000000000f RSI: 00000000f7473ff4 RDI: 0000000000000000
[   68.552700][ T6636] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   68.554959][ T6636] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   68.557251][ T6636] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.559541][ T6636]  </TASK>
[   68.736496][ T6643] FAULT_INJECTION: forcing a failure.
[   68.736496][ T6643] name failslab, interval 1, probability 0, space 0, times 0
[   68.745490][ T6643] CPU: 2 UID: 0 PID: 6643 Comm: syz.1.169 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   68.748554][ T6643] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.751633][ T6643] Call Trace:
[   68.752604][ T6643]  <TASK>
[   68.753482][ T6643]  dump_stack_lvl+0x16c/0x1f0
[   68.754852][ T6643]  should_fail_ex+0x497/0x5b0
[   68.756225][ T6643]  should_failslab+0xc2/0x120
[   68.757612][ T6643]  __kmalloc_noprof+0xce/0x4f0
[   68.758985][ T6643]  ? skcipher_walk_next+0x4fa/0x15c0
[   68.760516][ T6643]  ? skcipher_walk_next+0xee5/0x15c0
[   68.762048][ T6643]  skcipher_walk_next+0xee5/0x15c0
[   68.763525][ T6643]  skcipher_walk_done+0x451/0xcf0
[   68.764985][ T6643]  ? aesni_ctr_enc_avx_tfm+0xe9/0x110
[   68.766547][ T6643]  ctr_crypt+0x12e/0x290
[   68.767815][ T6643]  ? __pfx_ctr_crypt+0x10/0x10
[   68.769217][ T6643]  ? __pfx_scatterwalk_map_and_copy+0x10/0x10
[   68.770988][ T6643]  ? lock_acquire+0x2f/0xb0
[   68.772304][ T6643]  ? __virt_addr_valid+0x1a4/0x590
[   68.773798][ T6643]  crypto_skcipher_decrypt+0xf8/0x170
[   68.775399][ T6643]  crypto_skcipher_decrypt+0xf8/0x170
[   68.776950][ T6643]  crypto_ccm_decrypt+0x3b5/0x560
[   68.778435][ T6643]  crypto_aead_decrypt+0x13a/0x1a0
[   68.779923][ T6643]  tls_decrypt_sg+0x1e9b/0x2a20
[   68.781359][ T6643]  ? __pfx_tls_decrypt_sg+0x10/0x10
[   68.782867][ T6643]  ? __pfx_tls_rx_rec_wait+0x10/0x10
[   68.784397][ T6643]  tls_rx_one_record+0xd3/0x10e0
[   68.785840][ T6643]  ? __local_bh_enable_ip+0xa4/0x120
[   68.787384][ T6643]  tls_sw_recvmsg+0x9df/0x1ca0
[   68.788792][ T6643]  ? __pfx_tls_sw_recvmsg+0x10/0x10
[   68.790315][ T6643]  ? __pfx___lock_acquire+0x10/0x10
[   68.791816][ T6643]  ? aa_sk_perm+0x2a0/0xb20
[   68.793139][ T6643]  ? __pfx_tls_sw_recvmsg+0x10/0x10
[   68.794650][ T6643]  inet6_recvmsg+0x469/0x6a0
[   68.795997][ T6643]  ? find_held_lock+0x2d/0x110
[   68.797406][ T6643]  ? __pfx_inet6_recvmsg+0x10/0x10
[   68.798889][ T6643]  ? copy_compat_iovec_from_user+0x140/0x180
[   68.800620][ T6643]  ? import_ubuf+0x1b6/0x220
[   68.801978][ T6643]  ____sys_recvmsg+0x4c1/0x6b0
[   68.803374][ T6643]  ? __pfx_____sys_recvmsg+0x10/0x10
[   68.804908][ T6643]  ___sys_recvmsg+0x115/0x1a0
[   68.806288][ T6643]  ? __pfx____sys_recvmsg+0x10/0x10
[   68.807826][ T6643]  ? __fget_files+0x1fc/0x3a0
[   68.809202][ T6643]  ? trace_lock_acquire+0x14e/0x1f0
[   68.810719][ T6643]  ? __fget_files+0x206/0x3a0
[   68.812084][ T6643]  ? __pfx___might_resched+0x10/0x10
[   68.813621][ T6643]  do_recvmmsg+0x55d/0x740
[   68.814927][ T6643]  ? __pfx_do_recvmmsg+0x10/0x10
[   68.816369][ T6643]  ? vfs_write+0x306/0x1150
[   68.817732][ T6643]  ? __fget_files+0x206/0x3a0
[   68.819102][ T6643]  __sys_recvmmsg+0x21e/0x280
[   68.820467][ T6643]  ? __pfx___sys_recvmmsg+0x10/0x10
[   68.821980][ T6643]  ? __pfx_ksys_write+0x10/0x10
[   68.823393][ T6643]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[   68.825191][ T6643]  ? lockdep_hardirqs_on+0x7c/0x110
[   68.826617][ T6643]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   68.828519][ T6643]  __do_fast_syscall_32+0x73/0x120
[   68.830008][ T6643]  do_fast_syscall_32+0x32/0x80
[   68.831412][ T6643]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   68.833237][ T6643] RIP: 0023:0xf7f48579
[   68.834424][ T6643] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   68.839915][ T6643] RSP: 002b:00000000f509655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[   68.842299][ T6643] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020001040
[   68.844553][ T6643] RDX: 0000000000000002 RSI: 0000000040000002 RDI: 0000000000000000
[   68.846816][ T6643] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   68.849110][ T6643] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   68.851378][ T6643] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.853639][ T6643]  </TASK>
[   68.878613][ T6645] netlink: 12 bytes leftover after parsing attributes in process `syz.3.170'.
[   68.889095][ T6645] netlink: 12 bytes leftover after parsing attributes in process `syz.3.170'.
[   68.892511][ T6645] bond2: entered promiscuous mode
[   68.894595][ T6645] 8021q: adding VLAN 0 to HW filter on device bond2
[   68.978730][ T1012] kernel write not supported for file /vcs (pid: 1012 comm: kworker/3:2)
[   69.090349][ T5309] Bluetooth: hci3: command 0x0c1a tx timeout
[   69.339127][ T6662] fuse: Bad value for 'fd'
[   69.565869][ T6668] FAULT_INJECTION: forcing a failure.
[   69.565869][ T6668] name failslab, interval 1, probability 0, space 0, times 0
[   69.570034][ T6668] CPU: 3 UID: 0 PID: 6668 Comm: syz.2.177 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[   69.573680][ T6668] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   69.576753][ T6668] Call Trace:
[   69.577761][ T6668]  <TASK>
[   69.578630][ T6668]  dump_stack_lvl+0x16c/0x1f0
[   69.580008][ T6668]  should_fail_ex+0x497/0x5b0
[   69.581398][ T6668]  ? fs_reclaim_acquire+0xae/0x150
[   69.583470][ T6668]  should_failslab+0xc2/0x120
[   69.585430][ T6668]  __kmalloc_noprof+0xce/0x4f0
[   69.586989][ T6668]  ? ima_alloc_init_template+0x195/0x720
[   69.588991][ T6668]  ima_alloc_init_template+0x195/0x720
[   69.591011][ T6668]  ? __pfx_d_absolute_path+0x10/0x10
[   69.592754][ T6668]  ima_store_measurement+0x1ea/0x5c0
[   69.594315][ T6668]  ? __pfx_ima_store_measurement+0x10/0x10
[   69.596024][ T6668]  ? __pfx_ima_get_hash_algo+0x10/0x10
[   69.597661][ T6668]  process_measurement+0x1bcb/0x2370
[   69.599367][ T6668]  ? __pfx_process_measurement+0x10/0x10
[   69.600966][ T6668]  ? aa_file_perm+0x4c6/0xfe0
[   69.602678][ T6668]  ? trace_lock_acquire+0x14e/0x1f0
[   69.604824][ T6668]  ? __pfx_ovl_file_accessed+0x10/0x10
[   69.607084][ T6668]  ? __pfx___kernel_read+0x10/0x10
[   69.609201][ T6668]  ima_post_read_file+0x178/0x240
[   69.611260][ T6668]  ? __pfx_ima_post_read_file+0x10/0x10
[   69.613293][ T6668]  security_kernel_post_read_file+0xa5/0x260
[   69.615042][ T6668]  kernel_read_file+0x6f5/0x7f0
[   69.616478][ T6668]  ? __pfx_kernel_read_file+0x10/0x10
[   69.618080][ T6668]  ? __pfx___lock_acquire+0x10/0x10
[   69.619602][ T6668]  ? hlock_class+0x4e/0x130
[   69.620940][ T6668]  ? __lock_acquire+0xcc5/0x3c40
[   69.622782][ T6668]  init_module_from_file+0xa0/0x120
[   69.624907][ T6668]  ? __pfx_init_module_from_file+0x10/0x10
[   69.627232][ T6668]  ? lock_acquire+0x2f/0xb0
[   69.628592][ T6668]  ? idempotent_init_module+0x118/0x750
[   69.630221][ T6668]  ? do_raw_spin_unlock+0x172/0x230
[   69.631851][ T6668]  idempotent_init_module+0x228/0x750
[   69.634015][ T6668]  ? __pfx_lock_release+0x10/0x10
[   69.635624][ T6668]  ? __pfx_idempotent_init_module+0x10/0x10
[   69.637387][ T6668]  ? __fget_files+0x206/0x3a0
[   69.638765][ T6668]  __ia32_sys_finit_module+0xbc/0x140
[   69.640360][ T6668]  __do_fast_syscall_32+0x73/0x120
[   69.642159][ T6668]  do_fast_syscall_32+0x32/0x80
[   69.644216][ T6668]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   69.646415][ T6668] RIP: 0023:0xf7fe7579
[   69.647710][ T6668] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   69.654149][ T6668] RSP: 002b:00000000f513655c EFLAGS: 00000296 ORIG_RAX: 000000000000015e
[   69.657004][ T6668] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[   69.659618][ T6668] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   69.662199][ T6668] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   69.665360][ T6668] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   69.668086][ T6668] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   69.670450][ T6668]  </TASK>
[   69.671480][    C3] vkms_vblank_simulate: vblank timer overrun
[   69.692132][ T6668] Invalid ELF header magic: != ELF
[   70.670883][ T6675] netlink: 12 bytes leftover after parsing attributes in process `syz.2.179'.
[   70.774221][ T1412] ieee802154 phy1 wpan1: encryption failed: -22
[   75.899898][   T35] cfg80211: failed to load regulatory.db
[   79.677544][ T6676] bond1: entered promiscuous mode
[   79.679619][ T6676] 8021q: adding VLAN 0 to HW filter on device bond1
[   79.923013][ T6703] netlink: 4 bytes leftover after parsing attributes in process `syz.3.185'.
[   79.928357][ T6703] bridge0: port 3(macsec1) entered blocking state
[   79.930583][ T6703] bridge0: port 3(macsec1) entered disabled state
[   79.933857][ T6703] macsec1: entered allmulticast mode
[   79.938338][ T6703] macsec1: left allmulticast mode
[   87.747639][ T6708] pim6reg1: entered promiscuous mode
[   87.749295][ T6708] pim6reg1: entered allmulticast mode
[   88.164076][ T6735] netlink: 12 bytes leftover after parsing attributes in process `syz.3.188'.
[   88.819165][ T6740] netlink: 12 bytes leftover after parsing attributes in process `syz.3.190'.
[   92.747066][ T6731] netlink: 'syz.1.189': attribute type 1 has an invalid length.
[   92.749343][ T6731] netlink: 224 bytes leftover after parsing attributes in process `syz.1.189'.
[   92.764704][ T6741] bond3: entered promiscuous mode
[   92.767058][ T6741] 8021q: adding VLAN 0 to HW filter on device bond3
[   92.865570][ T6754] fuse: Bad value for 'fd'
[   95.155687][ T5946] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   95.159859][ T5946] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   95.164551][ T5946] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   95.167781][ T5946] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   95.172593][ T5946] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   95.176690][ T5946] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   97.250656][ T5946] Bluetooth: hci4: command tx timeout
[   99.330221][ T5946] Bluetooth: hci4: command tx timeout
[  100.218529][ T6767] overlayfs: failed to resolve './file1': -2
[  101.410239][ T5946] Bluetooth: hci4: command tx timeout
[  103.490267][ T5946] Bluetooth: hci4: command tx timeout
[  103.676378][ T6760] chnl_net:caif_netlink_parms(): no params data found
[  103.832201][ T6760] bridge0: port 1(bridge_slave_0) entered blocking state
[  103.834927][ T6760] bridge0: port 1(bridge_slave_0) entered disabled state
[  103.837100][ T6760] bridge_slave_0: entered allmulticast mode
[  103.839644][ T6760] bridge_slave_0: entered promiscuous mode
[  103.843196][ T6760] bridge0: port 2(bridge_slave_1) entered blocking state
[  103.845378][ T6760] bridge0: port 2(bridge_slave_1) entered disabled state
[  103.847446][ T6760] bridge_slave_1: entered allmulticast mode
[  103.850897][ T6760] bridge_slave_1: entered promiscuous mode
[  103.874965][ T6760] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.878839][ T6760] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  103.902884][ T6760] team0: Port device team_slave_0 added
[  103.905670][ T6760] team0: Port device team_slave_1 added
[  103.928205][ T6760] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.930348][ T6760] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.938166][ T6760] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.943058][ T6760] batman_adv: batadv0: Adding interface: batadv_slave_1
[  103.945045][ T6760] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.952950][ T6760] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  103.980212][   T62] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  103.985138][ T6760] hsr_slave_0: entered promiscuous mode
[  103.987948][ T6760] hsr_slave_1: entered promiscuous mode
[  103.991461][ T6760] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  103.994245][ T6760] Cannot create hsr debugfs directory
[  104.094577][ T6760] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  104.101532][ T6760] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  104.107729][ T6760] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  104.113574][ T6760] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  104.127285][ T6760] bridge0: port 2(bridge_slave_1) entered blocking state
[  104.130017][ T6760] bridge0: port 2(bridge_slave_1) entered forwarding state
[  104.130282][   T62] usb 6-1: Using ep0 maxpacket: 32
[  104.133895][ T6760] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.135901][   T62] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  104.136860][ T6760] bridge0: port 1(bridge_slave_0) entered forwarding state
[  104.140487][   T62] usb 6-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[  104.145992][   T62] usb 6-1: config 0 interface 0 has no altsetting 0
[  104.147925][   T62] usb 6-1: New USB device found, idVendor=28de, idProduct=1205, bcdDevice= 0.00
[  104.150807][   T62] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  104.154844][   T62] usb 6-1: config 0 descriptor??
[  104.532871][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.538260][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.565007][   T62] usbhid 6-1:0.0: can't add hid device: -71
[  104.566964][   T62] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  104.573558][   T62] usb 6-1: USB disconnect, device number 4
[  109.253339][ T6790] netlink: zone id is out of range
[  109.264966][ T6790] netlink: zone id is out of range
[  109.267432][ T6790] netlink: zone id is out of range
[  109.297864][ T6790] virtio-fs: tag <(null)> not found
[  109.320660][ T6790] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci4/hci4:200/input10
[  115.496865][ T6760] 8021q: adding VLAN 0 to HW filter on device bond0
[  115.513313][ T6760] 8021q: adding VLAN 0 to HW filter on device team0
[  115.581614][ T6760] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  115.585739][ T6760] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  115.830309][ T6760] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.039378][ T6808] evm: overlay not supported
[  116.165402][ T6813] netlink: 'syz.0.202': attribute type 1 has an invalid length.
[  116.168024][ T6813] netlink: 'syz.0.202': attribute type 2 has an invalid length.
[  116.294573][ T6760] veth0_vlan: entered promiscuous mode
[  116.304536][ T6760] veth1_vlan: entered promiscuous mode
[  116.324474][ T6760] veth0_macvtap: entered promiscuous mode
[  116.336730][ T6760] veth1_macvtap: entered promiscuous mode
[  116.360642][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.365550][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.370590][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.374749][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.391077][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.394331][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.399509][ T6760] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.404517][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.414856][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.432512][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.458134][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.462748][ T6760] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.467002][ T6760] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.484556][ T6760] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.518864][ T6760] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.524021][ T6760] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.535034][ T6760] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.538485][ T6760] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.730212][   T74] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.767458][   T74] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.804314][   T74] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.837012][   T74] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.719388][   T56] libceph: connect (1)[c::]:6789 error -101
[  118.761102][   T56] libceph: mon0 (1)[c::]:6789 connect error
[  118.978890][ T6824] ceph: No mds server is up or the cluster is laggy
[  119.035610][   T56] libceph: connect (1)[c::]:6789 error -101
[  119.046212][   T56] libceph: mon0 (1)[c::]:6789 connect error
[  120.560370][ T6427] usb 8-1: new low-speed USB device number 2 using dummy_hcd
[  120.722587][ T6427] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  120.725879][ T6427] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  120.728714][ T6427] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  120.732692][ T6427] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  120.736644][ T6427] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  120.746928][ T6427] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  120.752652][ T6427] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  120.759301][ T6427] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  120.774260][ T6427] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  120.779980][ T6427] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  120.784723][ T6427] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  120.789995][ T6427] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  120.809475][ T6427] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  120.843362][ T6427] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  120.851275][ T6427] usb 8-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  120.855803][ T6427] usb 8-1: config 246 descriptor has 1 excess byte, ignoring
[  120.858850][ T6427] usb 8-1: config 246 has 1 interface, different from the descriptor's value: 42
[  120.862683][ T6427] usb 8-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  120.867479][ T6427] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 77, setting to 8
[  120.871951][ T6427] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 10
[  120.877157][ T6427] usb 8-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  120.883473][ T6427] usb 8-1: string descriptor 0 read error: -22
[  120.885994][ T6427] usb 8-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  120.891074][ T6427] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  120.910251][ T6427] adutux 8-1:246.0: ADU100  now attached to /dev/usb/adutux0
[  123.191719][   T62] usb 8-1: USB disconnect, device number 2
[  123.226273][ T6848] netlink: 20 bytes leftover after parsing attributes in process `syz.4.209'.
[  123.973622][ T6847] slcan: can't register candev
[  123.984895][ T6855] netlink: 48 bytes leftover after parsing attributes in process `syz.3.210'.
[  124.792481][ T5309] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  124.796819][ T5309] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  124.843406][ T5309] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  124.858850][ T5309] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  124.880395][ T5309] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  124.883384][ T5309] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  126.677515][ T6873] netlink: 12 bytes leftover after parsing attributes in process `syz.4.214'.
[  126.940394][ T5946] Bluetooth: hci5: command tx timeout
[  127.308680][ T1140] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.311382][ T1140] bridge0: port 1(bridge_slave_0) entered forwarding state
[  127.322020][ T1140] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.324754][ T1140] bridge0: port 2(bridge_slave_1) entered forwarding state
[  127.415247][   T45] ------------[ cut here ]------------
[  127.427110][   T45] WARNING: CPU: 1 PID: 45 at net/wireless/ibss.c:37 __cfg80211_ibss_joined+0x4bb/0x560
SYZFAIL: failed to recv rpc
[  127.432919][   T45] Modules linked in:
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  127.458528][   T45] CPU: 1 UID: 0 PID: 45 Comm: kworker/u32:2 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  127.478134][   T45] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.478170][   T45] Workqueue: cfg80211 cfg80211_event_work
[  127.478201][   T45] RIP: 0010:__cfg80211_ibss_joined+0x4bb/0x560
[  127.478232][   T45] Code: ff ff e8 98 69 1a f7 90 0f 0b 90 e9 66 fe ff ff e8 aa da 7c f7 e9 3d fc ff ff e8 40 da 7c f7 e9 81 fc ff ff e8 76 69 1a f7 90 <0f> 0b 90 e9 8a fc ff ff e8 68 69 1a f7 90 0f 0b e8 b0 da 7c f7 e9
[  127.478249][   T45] RSP: 0018:ffffc900006c7b50 EFLAGS: 00010293
[  127.478265][   T45] RAX: 0000000000000000 RBX: ffff888022058d90 RCX: 1ffffffff2d3dc10
[  127.478277][   T45] RDX: ffff88801e50a440 RSI: ffffffff8a7ee4ca RDI: ffffffff8bb17380
[  127.478290][   T45] RBP: ffffc900006c7c00 R08: 0000000000000001 R09: fffffbfff2d373a8
[  127.478304][   T45] R10: ffffffff969b9d47 R11: 0000000000000003 R12: ffff888022058000
[  127.478316][   T45] R13: 1ffff920000d8f6e R14: 0000000000000000 R15: ffffc900006c7b90
[  127.478328][   T45] FS:  0000000000000000(0000) GS:ffff88802b500000(0000) knlGS:0000000000000000
[  127.478368][   T45] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  127.478382][   T45] CR2: 0000000020006680 CR3: 000000000db7e000 CR4: 0000000000352ef0
[  127.478395][   T45] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  127.478406][   T45] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  127.478418][   T45] Call Trace:
[  127.478426][   T45]  <TASK>
[  127.478434][   T45]  ? __warn+0xea/0x3c0
[  127.478461][   T45]  ? __cfg80211_ibss_joined+0x4bb/0x560
[  127.478488][   T45]  ? report_bug+0x3c0/0x580
[  127.478514][   T45]  ? handle_bug+0x54/0xa0
[  127.478537][   T45]  ? exc_invalid_op+0x17/0x50
[  127.478561][   T45]  ? asm_exc_invalid_op+0x1a/0x20
[  127.478590][   T45]  ? __cfg80211_ibss_joined+0x4ba/0x560
[  127.478623][   T45]  ? __cfg80211_ibss_joined+0x4bb/0x560
[  127.478655][   T45]  ? __pfx___cfg80211_ibss_joined+0x10/0x10
[  127.478683][   T45]  ? mark_held_locks+0x9f/0xe0
[  127.478716][   T45]  ? cfg80211_process_wdev_events+0x3e6/0x5d0
[  127.478737][   T45]  cfg80211_process_wdev_events+0x3e6/0x5d0
[  127.478765][   T45]  cfg80211_process_rdev_events+0x9f/0x130
[  127.478787][   T45]  cfg80211_event_work+0x2b/0x40
[  127.478809][   T45]  process_one_work+0x958/0x1b30
[  127.478837][   T45]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  127.478862][   T45]  ? __pfx_process_one_work+0x10/0x10
[  127.478880][   T45]  ? rcu_is_watching+0x12/0xc0
[  127.478911][   T45]  ? assign_work+0x1a0/0x250
[  127.478943][   T45]  worker_thread+0x6c8/0xf00
[  127.478975][   T45]  ? __pfx_worker_thread+0x10/0x10
[  127.478993][   T45]  kthread+0x2c1/0x3a0
[  127.479013][   T45]  ? _raw_spin_unlock_irq+0x23/0x50
[  127.479034][   T45]  ? __pfx_kthread+0x10/0x10
[  127.479056][   T45]  ret_from_fork+0x45/0x80
[  127.479073][   T45]  ? __pfx_kthread+0x10/0x10
[  127.479095][   T45]  ret_from_fork_asm+0x1a/0x30
[  127.479133][   T45]  </TASK>
[  127.479142][   T45] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  127.479152][   T45] CPU: 1 UID: 0 PID: 45 Comm: kworker/u32:2 Not tainted 6.13.0-rc7-syzkaller-00189-g595523945be0 #0
[  127.479172][   T45] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  127.479184][   T45] Workqueue: cfg80211 cfg80211_event_work
[  127.479205][   T45] Call Trace:
[  127.479211][   T45]  <TASK>
[  127.479217][   T45]  dump_stack_lvl+0x3d/0x1f0
[  127.479239][   T45]  panic+0x71d/0x800
[  127.479262][   T45]  ? __pfx_panic+0x10/0x10
[  127.479286][   T45]  ? show_trace_log_lvl+0x29d/0x3d0
[  127.479311][   T45]  ? check_panic_on_warn+0x1f/0xb0
[  127.479337][   T45]  ? __cfg80211_ibss_joined+0x4bb/0x560
[  127.479361][   T45]  check_panic_on_warn+0xab/0xb0
[  127.479384][   T45]  __warn+0xf6/0x3c0
[  127.479407][   T45]  ? __cfg80211_ibss_joined+0x4bb/0x560
[  127.479434][   T45]  report_bug+0x3c0/0x580
[  127.479456][   T45]  handle_bug+0x54/0xa0
[  127.479478][   T45]  exc_invalid_op+0x17/0x50
[  127.479502][   T45]  asm_exc_invalid_op+0x1a/0x20
[  127.479523][   T45] RIP: 0010:__cfg80211_ibss_joined+0x4bb/0x560
[  127.479548][   T45] Code: ff ff e8 98 69 1a f7 90 0f 0b 90 e9 66 fe ff ff e8 aa da 7c f7 e9 3d fc ff ff e8 40 da 7c f7 e9 81 fc ff ff e8 76 69 1a f7 90 <0f> 0b 90 e9 8a fc ff ff e8 68 69 1a f7 90 0f 0b e8 b0 da 7c f7 e9
[  127.479564][   T45] RSP: 0018:ffffc900006c7b50 EFLAGS: 00010293
[  127.479578][   T45] RAX: 0000000000000000 RBX: ffff888022058d90 RCX: 1ffffffff2d3dc10
[  127.479590][   T45] RDX: ffff88801e50a440 RSI: ffffffff8a7ee4ca RDI: ffffffff8bb17380
[  127.479601][   T45] RBP: ffffc900006c7c00 R08: 0000000000000001 R09: fffffbfff2d373a8
[  127.479623][   T45] R10: ffffffff969b9d47 R11: 0000000000000003 R12: ffff888022058000
[  127.479635][   T45] R13: 1ffff920000d8f6e R14: 0000000000000000 R15: ffffc900006c7b90
[  127.479655][   T45]  ? __cfg80211_ibss_joined+0x4ba/0x560
[  127.479688][   T45]  ? __pfx___cfg80211_ibss_joined+0x10/0x10
[  127.479715][   T45]  ? mark_held_locks+0x9f/0xe0
[  127.479746][   T45]  ? cfg80211_process_wdev_events+0x3e6/0x5d0
[  127.479766][   T45]  cfg80211_process_wdev_events+0x3e6/0x5d0
[  127.479794][   T45]  cfg80211_process_rdev_events+0x9f/0x130
[  127.479815][   T45]  cfg80211_event_work+0x2b/0x40
[  127.479837][   T45]  process_one_work+0x958/0x1b30
[  127.479861][   T45]  ? __pfx_toggle_allocation_gate+0x10/0x10
[  127.479885][   T45]  ? __pfx_process_one_work+0x10/0x10
[  127.479900][   T45]  ? rcu_is_watching+0x12/0xc0
[  127.479927][   T45]  ? assign_work+0x1a0/0x250
[  127.479955][   T45]  worker_thread+0x6c8/0xf00
[  127.479983][   T45]  ? __pfx_worker_thread+0x10/0x10
[  127.480001][   T45]  kthread+0x2c1/0x3a0
[  127.480020][   T45]  ? _raw_spin_unlock_irq+0x23/0x50
[  127.480039][   T45]  ? __pfx_kthread+0x10/0x10
[  127.480061][   T45]  ret_from_fork+0x45/0x80
[  127.480078][   T45]  ? __pfx_kthread+0x10/0x10
[  127.480100][   T45]  ret_from_fork_asm+0x1a/0x30
[  127.480169][   T45]  </TASK>
[  127.489032][   T45] Kernel Offset: disabled

VM DIAGNOSIS:
00:07:18  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000000 RBX=ffff8880530d5a40 RCX=ffffffff88f6e89c RDX=1ffff1100a61ab61
RSI=0000000000000004 RDI=ffff8880530d5b08 RBP=ffff8880530d5b24 RSP=ffffc9000042f2f0
R8 =0000000000000001 R9 =ffffed100a61ab64 R10=ffff8880530d5b27 R11=0000000000000b8f
R12=ffff888055af5000 R13=00000000000002c0 R14=0000000000000400 R15=0000000000000000
RIP=ffffffff88f6e93e RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000032915ffc CR3=0000000075148000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000000000d RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85146355 RDI=ffffffff9a66a200 RBP=ffffffff9a66a1c0 RSP=ffffc900006c7498
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000007
R12=0000000000000000 R13=000000000000000d R14=ffffffff851462f0 R15=0000000000000000
RIP=ffffffff8514637f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020006680 CR3=000000000db7e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000019 RCX=ffffffff817562ae RDX=0000000000000000
RSI=0000000000000008 RDI=ffffffff969b9cc0 RBP=ffffc9000397f380 RSP=ffffc9000397f228
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff969b9cc7 R11=0000000000000003
R12=ffff888024e32440 R13=0000000000000200 R14=0000000000000009 R15=1ffff9200072fe4e
RIP=ffffffff81fbb840 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ffe5a968ff8 CR3=000000002547e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=43a5281d43a5281d 43a5281d43a5281d 43a5281d43a5281d 43a5281d43a5281d 43a5281d43a5281d 43a5281d43a5281d 43a5281d43a5281d 43a5281d43a5281d
ZMM22=2fa6197a2fa6197a 2fa6197a2fa6197a 2fa6197a2fa6197a 2fa6197a2fa6197a 2fa6197a2fa6197a 2fa6197a2fa6197a 2fa6197a2fa6197a 2fa6197a2fa6197a
ZMM23=7f95001e7f95001e 7f95001e7f95001e 7f95001e7f95001e 7f95001e7f95001e 7f95001e7f95001e 7f95001e7f95001e 7f95001e7f95001e 7f95001e7f95001e
ZMM24=e80ccc92e80ccc92 e80ccc92e80ccc92 e80ccc92e80ccc92 e80ccc92e80ccc92 e80ccc92e80ccc92 e80ccc92e80ccc92 e80ccc92e80ccc92 e80ccc92e80ccc92
ZMM25=fcdba96ffcdba96f fcdba96ffcdba96f fcdba96ffcdba96f fcdba96ffcdba96f fcdba96ffcdba96f fcdba96ffcdba96f fcdba96ffcdba96f fcdba96ffcdba96f
ZMM26=db928926db928926 db928926db928926 db928926db928926 db928926db928926 db928926db928926 db928926db928926 db928926db928926 db928926db928926
ZMM27=2e111f842e111f84 2e111f842e111f84 2e111f842e111f84 2e111f842e111f84 2e111f842e111f84 2e111f842e111f84 2e111f842e111f84 2e111f842e111f84
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=3703000037030000 3703000037030000 3703000037030000 3703000037030000 3703000037030000 3703000037030000 3703000037030000 3703000037030000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffffea000146bac0 RCX=0000000000000002 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff8ddbad40 RBP=0000000000051aeb RSP=ffffc9000623f530
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff901cfcd7 R11=0000000000000003
R12=0000000080000001 R13=0000000000000002 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff81765cd3 RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f86e40 CR3=000000002132a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a000000000 0000000200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000