last executing test programs:

11.364046701s ago: executing program 0 (id=169):
syz_usb_connect(0x3, 0x24, &(0x7f0000000640)=ANY=[], 0x0) (async)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x6, 0x7e000000, 0x3, 0x4, 0x1})
r0 = syz_open_dev$I2C(&(0x7f0000000000), 0xa840, 0x582)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81e8943c, &(0x7f0000000380))
modify_ldt$write2(0x11, &(0x7f00000004c0)={0x10000, 0x40001000, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x1}, 0x10)
r1 = getpgrp(0x0)
sched_getattr(r1, &(0x7f0000000180)={0x38}, 0x38, 0x0) (async)
writev(r0, &(0x7f0000000240)=[{&(0x7f0000000040)="42640ca6ee3df77f6e49746afbd5dc93d95b7bb84e6bed09c337efddccadd589c530575d54dbbaf0130de5207fdc91196f66e1a35fe7ad30ae222e884afacc6a2f173c6440603a2b9ce7b0341f83758845", 0x4e}], 0x1) (async)
modify_ldt$write(0x1, &(0x7f0000000140)={0x200, 0x100000, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1}, 0x10) (async)
r2 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x0}, 0x0, 0x0, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}) (async)
openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x1a1302, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10) (async)
r6 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
fchdir(r6) (async)
r7 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='.\x00', 0x0, 0x0)
lseek(r7, 0x1, 0x0) (async)
getdents(r7, 0x0, 0x58) (async)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000640)={'wlan1\x00'})
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f00000001c0)=@raw=[@kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @kfunc={0x85, 0x0, 0x2, 0x0, 0x4}, @map_fd={0x18, 0x1f}], &(0x7f00000002c0)='GPL\x00', 0xffff, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xb735, @void, @value}, 0x94) (async)
r9 = syz_open_procfs(0x0, &(0x7f0000000040)='maps\x00')
ioctl$KVM_SET_USER_MEMORY_REGION(r9, 0xc0686611, &(0x7f0000000180)={0x67, 0x0, 0x3f, 0x2000, &(0x7f0000ffe000/0x2000)=nil})
sendmsg$TIPC_CMD_SHOW_PORTS(0xffffffffffffffff, &(0x7f0000000600)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x1c, r8, 0x1, 0x70bd26, 0x25dfdbfe, {}, ["", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x1}, 0x40801)
connect$unix(r3, &(0x7f0000000300)=@file={0x0, './file0\x00'}, 0x6e)
keyctl$KEYCTL_WATCH_KEY(0x20, r2, 0xffffffffffffffff, 0x23)

11.259935683s ago: executing program 0 (id=170):
ioctl$SG_IO(0xffffffffffffffff, 0x2285, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000000), r0)
sendmmsg(0xffffffffffffffff, &(0x7f0000006300)=[{{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f0000000a80)="914d", 0x2}], 0x1}}], 0x1, 0x40)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r0, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r1, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000200000000080001000300000005000200000000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x24004821}, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000300)=ANY=[@ANYBLOB="030000008008000000485dc521f1821f37403b7da1ad05000000527a00000000000087000000000700000002f0fffffe7f0000000000010d000006ffffffff7f030059386dc5d784ce62c987bc5d45d7e36d0c609020fa64c30b8d79604ee68d22447d12be45854d6813c1b896a383583760cda6a8e7cd874295ec401805b23e8954482df17ba61286504e267347a6b48a1ce53a45dc73ce500505bd66ed11ac09c96e45765d1a07afde"])
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000000)={{0xa, 0x0, 0x0, @private0, 0x809}, {0xa, 0x8, 0x0, @empty}, 0x2, {[0x0, 0x1, 0x2, 0x0, 0xffffffff]}}, 0x5c)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x0, {[0x1, 0x0, 0x0, 0x0, 0x9]}}, 0x5c)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f00000001c0)={{0xa, 0x0, 0x0, @remote}, {0xa, 0x4e22, 0x0, @mcast1}}, 0x5c)
setsockopt$MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0xcc, &(0x7f0000000840)={{0xa, 0x0, 0x0, @private2={0xfc, 0x2, '\x00', 0x1}}, {0xa, 0x0, 0x0, @empty}, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x7]}}, 0x5c)
setsockopt$MRT6_FLUSH(0xffffffffffffffff, 0x29, 0xd4, &(0x7f00000000c0)=0x7, 0x4)
syz_io_uring_setup(0xa07, &(0x7f0000000200)={0x0, 0xcc75, 0x10000, 0x3, 0x12b, 0x0, r4}, &(0x7f0000000140)=<r5=>0x0, &(0x7f0000000280))
socket$kcm(0x11, 0x5, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_setup(0x5b03, &(0x7f00000003c0)={0x0, 0xef71, 0x800, 0x2, 0x2f1}, &(0x7f00000001c0), &(0x7f0000000440))
ioctl$SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, 0x0)
ioctl$SNDRV_TIMER_IOCTL_START(0xffffffffffffffff, 0x54a0)
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x202000)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r6, 0x40345410, &(0x7f0000000280)={{0x1, 0x0, 0x9}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r6, 0x40505412, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0xf})
ioctl$SNDRV_TIMER_IOCTL_PAUSE(0xffffffffffffffff, 0x54a3)

10.124283766s ago: executing program 0 (id=175):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x60240, 0x0)
socket$inet(0x2, 0x1, 0x100)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000005c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x200, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xa0, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_ife={0x48, 0x13, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0185648, &(0x7f0000000000)={0xa00000, 0x10000, 0x49, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f90b, 0x9e68, '\x00', @ptr=0x6}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1bff7f000000009fa4ccdb76c6a1da0fec3f6582", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\b\x00'/20, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES64=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r3, 0x18000000000002a0, 0x7, 0x0, &(0x7f00000002c0)="d2ff0300600100", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r7 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
tkill(r7, 0xb)
utimensat(0xffffffffffffff9c, &(0x7f00000003c0)='.\x00', 0x0, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r8, 0x560a, &(0x7f00000006c0)={0x4, 0x0, 0x0, 0x0, 0x132, 0x3})

9.090300513s ago: executing program 0 (id=178):
syz_open_dev$evdev(&(0x7f0000000000), 0xffffffff, 0xacab81)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000400)={0xf0f020})
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000005dc0)={0x0, 0x0, &(0x7f0000005d80)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x000\x00\x00\x00\x00\x00\x00\x00\x00'], 0x28}, 0x1, 0x0, 0x0, 0x40001}, 0x44814)
r1 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xa)
ioctl$PIO_SCRNMAP(r2, 0x4b41, &(0x7f0000000300)="6c40f17773e937dfe9109c9b0f013c9720622990efc3eee4568a7a2d31258e18a839e57e6c61fde1627d869cf0f5417a7d1d14e206f7670e76217cd70d6a9b0aa5f790e9052ab0b72c06d000a5c72908")
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

8.163550659s ago: executing program 3 (id=179):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
fcntl$F_SET_RW_HINT(r1, 0x40c, &(0x7f0000000080)=0x3)
eventfd2(0xfffffffd, 0x801)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_usbip_server_init(0x1)
socket$netlink(0x10, 0x3, 0x15)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000000)={'netdevsim0\x00', &(0x7f00000000c0)=@ethtool_gfeatures={0x33}})
getsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0xc)
close(r1)

8.029039439s ago: executing program 0 (id=181):
io_setup(0x1fc, &(0x7f0000000380)=<r0=>0x0) (async, rerun: 64)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/vmstat\x00', 0x0, 0x0) (rerun: 64)
io_cancel(r0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x7, 0x201, r1, &(0x7f00000000c0)="e1a026b8e2609be7539388d7cb6e8aa42b5716f31d9c96784c4fae28acba62a659b6d6fa940ca7211a92177c4015078cdacd47b65589e3f0f979dfd01c3204d6d24b727bcff5ed7115a0e51f3a50db44e9ac97dced74163feaf4f12fa3dc3136b7b88f114cbfa78f4301793da3d097a508b678c9f03000204a3e40a1f3b0b5d88471143741f9fef434247989f1a3c0f2cf40198e346e7140706f878577089bccf575517d0d2f09dd09354c7b0e582f188465a16ff4a5deaa4c4da60c0a16157d94d3383dadad2ba0a10cf70f1c24c88808b5", 0xd2, 0x0, 0x0, 0x1}, &(0x7f0000000200)) (async)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0) (async)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={<r3=>0x0, 0x1c, &(0x7f00000000c0)=[@in6={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}]}, &(0x7f0000000180)=0x10)
setsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000280)=@assoc_value={r3, 0xf}, 0x8) (async)
io_submit(r0, 0x1, &(0x7f00000001c0)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r1, &(0x7f0000002240)='m', 0x1, 0x100000001}])
r4 = openat$mice(0xffffff9c, &(0x7f0000001540), 0x220140)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0) (async, rerun: 64)
clock_settime(0x100000000000000, &(0x7f0000000040)={0x8000000000000802, 0xfffffffffffffffe}) (rerun: 64)
mkdirat$cgroup_root(0xffffff9c, &(0x7f0000001940)='./cgroup.net/syz1\x00', 0x1ff)
r7 = ioctl$KVM_CREATE_VCPU(r6, 0xae41, 0x0)
ioctl$KVM_GET_SREGS(r7, 0x8138ae83, &(0x7f00000019c0)) (async)
r8 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r4, &(0x7f0000001980)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) (async, rerun: 32)
bind$inet(r8, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57) (rerun: 32)
r9 = bpf$MAP_CREATE(0x0, &(0x7f0000001c80)=ANY=[@ANYBLOB="0f00009d5b3a0a00"/28, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r9, @ANYBLOB="0000000000000000b7080000008800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000200000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
sendmsg$xdp(r8, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
write$ppp(r4, &(0x7f0000001840)="574d93dd06f4b8", 0x7) (async, rerun: 32)
ioctl$F2FS_IOC_SEC_TRIM_FILE(r8, 0x4018f514, &(0x7f0000001800)={0x4, 0x4, 0x3}) (async, rerun: 32)
r10 = openat$audio1(0xffffff9c, &(0x7f00000016c0), 0x80, 0x0) (async)
r11 = eventfd2(0x10000, 0x180001)
setsockopt$inet_sctp6_SCTP_EVENTS(r2, 0x84, 0xb, &(0x7f0000001b80)={0x4, 0x2, 0xd, 0xff, 0x52, 0x0, 0xe3, 0x8, 0xf7, 0xa, 0x0, 0x1, 0xc4, 0xf9}, 0xe) (async)
io_submit(0x0, 0x6, &(0x7f00000017c0)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0x44, r1, &(0x7f00000003c0)="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", 0x1000, 0x10001, 0x0, 0x2, r1}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x6, 0x9, r1, &(0x7f0000000280)="54d3649ca118a594425a82648ed21aa21d1bceac27e2807bc5bc1dffae81d231fbf5a7eb1bffe15b52684edeee24452c0597b4199674895422d98305ae7ae75015", 0x41, 0xdacd, 0x0, 0x3, r1}, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x5, 0x7fff, r1, &(0x7f00000013c0)="910d6342d4d220c3d7c95a047ccc5fb1c6fa2d6bb7b638b56f1225f7f29bbc388afad2987f186101ada88a390d79ae2b312dde8070ba7f47fdc2b70cb8256f68ab2b3db2c26f20a291a62068388ff68bfdfd14133078d06df3f94e48aaaaa2530cf3f0451fd71b4034a70118b70ce54051dafd7f01c78927428b88fb9e50c424f50f6caf4265079112cf63de320c6bbfe99a3dfb748cd6d22304aea899b768be28d72febe15d6b355158b5682fb239d5489e7f5e7e0b48241ace1e43e0901741d52981e7b11e68b711b9310c549cb2245e31d30cb85829eb4d0715649a1d4e0a7b7284", 0xe3, 0x8, 0x0, 0x1, r1}, &(0x7f0000001500)={0x0, 0x0, 0x0, 0x2, 0xfff6, r1, &(0x7f0000001c00)="782e08f1987018086436a1739a1fe3d8c8dc184288f4aa76183acfc03ba84e5b8f43f2e8d334b8f373fca20ae1c061ec123fcd272cb09c96eeffaf537ae0ad7e7437d88df9d1786905f22f79db906a6000633221f4f1a6282755", 0x5a, 0x8, 0x0, 0x2, r1}, &(0x7f0000001680)={0x0, 0x0, 0x0, 0x3, 0xe, r4, &(0x7f0000001580)="c66058ea37eaf0eec83697f035b129241ba1942d7f25add4957acaa493bccbdda9d86a263b52a3440f850309940711598d6483e74164b763ac3f7f0af276e22c00387a1b73ce7ecadb12add044b6491e26e065d0979331b2f8ad102934fa95e0413068ad4eaa2e6b4d96056472a97c6a203eaa65f06ed7938f93ccff1e405caea75f599d043887e80eabf42d656fae1246bcbfa436630f5eac5ad35b5550bdc65777170decfeb995444d2dc107f5042b134b403287ee7e8e49786d1433dea2bd8e38f59f6d2f65b2bf09019ea814ae7528ff3b", 0xd3, 0x4, 0x0, 0x2, r1}, &(0x7f0000001780)={0x0, 0x0, 0x0, 0x1, 0x7, r10, &(0x7f0000001700)="8f1e3fe1ddaece296311da0c2acca899811cc20145f56a949649b630df94dbd2d94a9c914ba5c73136032f8d8f635cc2396bd3e3dddc5189342f3ac2e691ca47e4cbe4041bc31bd2afe8b51eb494ef6f591dad1aeee7036a0838ce42cb5d4e9fb1d2c491e27a5da350643628ea", 0x6d, 0x9, 0x0, 0x2, r11}])
r12 = openat$dsp(0xffffff9c, &(0x7f0000001b00), 0x2, 0x0)
ioctl$SOUND_MIXER_READ_RECMASK(r12, 0x80044dfd, &(0x7f0000001b40)) (async, rerun: 32)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r8, 0xc08c5332, &(0x7f0000001880)={0x7, 0x6, 0x0, 'queue0\x00', 0x44}) (rerun: 32)

5.796654329s ago: executing program 3 (id=186):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x60240, 0x0)
socket$inet(0x2, 0x1, 0x100)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000005c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x200, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xa0, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_ife={0x48, 0x13, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0185648, &(0x7f0000000000)={0xa00000, 0x10000, 0x49, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f90b, 0x9e68, '\x00', @ptr=0x6}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1bff7f000000009fa4ccdb76c6a1da0fec3f6582", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\b\x00'/20, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES64=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r3, 0x18000000000002a0, 0xd, 0x0, &(0x7f00000002c0)="d2ff030060010000009e08f086", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r7 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
tkill(r7, 0xb)
utimensat(0xffffffffffffff9c, &(0x7f00000003c0)='.\x00', 0x0, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r8, 0x560a, &(0x7f00000006c0)={0x4, 0x0, 0x0, 0x0, 0x132, 0x3})

4.679962481s ago: executing program 3 (id=188):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_buf(r0, 0x6, 0xd, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x6, 0x1, &(0x7f0000000240)=@gcm_128={{}, "ecb9d06d2d6e459d", "9ab7e8da5fbd3fc91d33e32cd9f5bddb", "6973ca9e", "e80ebfa5ac114dfa"}, 0x28)
setsockopt$inet6_tcp_int(r0, 0x6, 0x3, &(0x7f0000000000), 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), r1)
r3 = openat$vmci(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mkdir(&(0x7f0000000300)='./file0\x00', 0x0)
r4 = openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)={{'fd', 0x3d, r4}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r4, &(0x7f0000006840)={0x2020, 0x0, <r5=>0x0, <r6=>0x0, <r7=>0x0}, 0x2020)
syz_fuse_handle_req(r4, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r4, &(0x7f0000004200)={0x50, 0x0, r5, {0x7, 0x29, 0x0, 0x0, 0x2000, 0x200, 0xfffffffe, 0x5b, 0x0, 0x0, 0x0, 0x3}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r4, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, 0x4000002, 0x0, 0x0, 0x1, 0x0, 0x0, 0x2000, 0x0, r6, r7, 0x440}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x0, 0x0)
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r8, 0x5459, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r3, 0x7a0, &(0x7f0000000240)={@local, 0x1})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, &(0x7f0000000080)={{@local}, @local, 0x0, 0x0, 0x2})
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r3, 0x7a8, &(0x7f00000000c0)={{@host}, @host, 0x0, 0x0, 0x1, 0x4})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETVA(r8, 0x7a4, &(0x7f0000000200)={{@my=0x1, 0x6}, 0x1, 0x95, 0xaa, 0x3})
r9 = pidfd_getfd(r8, r4, 0x0)
ioctl$IOCTL_VMCI_QUEUEPAIR_ALLOC(r9, 0x7a8, &(0x7f0000000000)={{@hyper}, @any, 0xd, 0x2, 0x421})
ioctl$SIOCRSACCEPT(0xffffffffffffffff, 0x89e3)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r1, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x1c, r2, 0x400, 0x70bd2a, 0x25dfdbfd, {}, [@ETHTOOL_A_COALESCE_USE_ADAPTIVE_TX={0x5, 0xc, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x90)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

4.66546385s ago: executing program 3 (id=189):
r0 = socket(0x27, 0x3, 0x0)
r1 = fcntl$dupfd(r0, 0x406, r0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0xd, 0xc, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bb000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000003900000095"], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xcc85, @void, @value}, 0x94) (async)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) (async)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r2, r3, 0x2, 0x2, 0x0, @void, @value}, 0x10) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x6, 0x4, 0x0, 0xffffffc0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) (async, rerun: 64)
socket$inet_mptcp(0x2, 0x1, 0x106) (async, rerun: 64)
write$UHID_INPUT(r1, &(0x7f0000000040)={0x8, {"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", 0x1000}}, 0x1006) (async)
write(r0, &(0x7f0000000000)="2400000011005f0414f9f40700090400810000000d0000000000000008000f0001000000", 0x24)

4.572820306s ago: executing program 3 (id=190):
syz_open_dev$evdev(&(0x7f0000000000), 0xffffffff, 0xacab81)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$vim2m_VIDIOC_S_CTRL(0xffffffffffffffff, 0xc008561c, &(0x7f0000000400)={0xf0f020})
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000005dc0)={0x0, 0x0, &(0x7f0000005d80)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x000\x00\x00\x00\x00\x00\x00\x00\x00'], 0x28}, 0x1, 0x0, 0x0, 0x40001}, 0x44814)
r1 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f00000006c0), 0xffffffffffffffff)
r2 = ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x5441, 0xa)
ioctl$PIO_SCRNMAP(r2, 0x4b41, &(0x7f0000000300)="6c40f17773e937dfe9109c9b0f013c9720622990efc3eee4568a7a2d31258e18a839e57e6c61fde1627d869cf0f5417a7d1d14e206f7670e76217cd70d6a9b0aa5f790e9052ab0b72c06d000a5c72908")
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

4.236917973s ago: executing program 3 (id=192):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x109942, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000580))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffc, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x18, 0x55, 0x1e5}, 0x18}}, 0x0)
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = landlock_create_ruleset(&(0x7f0000000040)={0x4, 0x3, 0x2}, 0x18, 0x0)
landlock_restrict_self(r4, 0x5)
syz_open_procfs(0x0, &(0x7f0000000240)='fdinfo/3\x00')
socket$inet_smc(0x2b, 0x1, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0x0, 0x9, 0x0, 0xf, 0x80000002}, 0x0, 0x0)

3.982432827s ago: executing program 2 (id=193):
connect$pppoe(0xffffffffffffffff, 0x0, 0x0)
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000880)='mountinfo\x00')
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000001c6a000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_BASE={0x8}, @NFTA_PAYLOAD_OFFSET={0x8}]}}}]}]}], {0x14}}, 0x7c}}, 0x0)
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendfile(r2, r0, 0x0, 0x8000000010001)
r3 = socket(0x2000000000000021, 0x2, 0x10000000000002)
connect$rxrpc(r3, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10}, 0x24)
sendmmsg(r3, &(0x7f0000005c00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[{0x10, 0x110, 0x1}], 0x10, 0x7000000}, 0xf401}], 0x1, 0x0)

3.898491006s ago: executing program 2 (id=196):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x60240, 0x0)
socket$inet(0x2, 0x1, 0x100)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000005c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x200, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xa0, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_ife={0x48, 0x13, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0185648, &(0x7f0000000000)={0xa00000, 0x10000, 0x49, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f90b, 0x9e68, '\x00', @ptr=0x6}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1bff7f000000009fa4ccdb76c6a1da0fec3f6582", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\b\x00'/20, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES64=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r3, 0x18000000000002a0, 0xd, 0x0, &(0x7f00000002c0)="d2ff030060010000009e08f086", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r7 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
tkill(r7, 0xb)
utimensat(0xffffffffffffff9c, &(0x7f00000003c0)='.\x00', 0x0, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r8, 0x560a, &(0x7f00000006c0)={0x4, 0x0, 0x0, 0x0, 0x132, 0x3})

3.509850002s ago: executing program 1 (id=199):
socket(0xa, 0x801, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x6}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000340)='./file0\x00', 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x11000)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
ptrace(0x10, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}})
socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d000000181100", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000340)={r6, r5}, 0xc)

2.934758558s ago: executing program 2 (id=200):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000040)={0x9, 0x1, 0xb, 0x4, @vifc_lcl_addr=@multicast2, @private=0xa010101}, 0x10)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000140)=0x200000000)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(des3_ede)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r3 = accept4(r2, 0x0, 0x0, 0x0)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
read$FUSE(r4, &(0x7f0000000700)={0x2020}, 0xeffd)
connect$bt_sco(r4, &(0x7f0000000280)={0x1f, @none}, 0x8)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000900))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f00000000c0)=0x1)
r5 = syz_io_uring_setup(0x186, &(0x7f0000000080)={0x0, 0x3416, 0x13100}, &(0x7f0000000100)=<r6=>0x0, &(0x7f0000000380)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
mkdir(&(0x7f0000002200)='./file0\x00', 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB='gid=', @ANYRESHEX=0x0])
mount(&(0x7f0000000000)=@filename='./file0\x00', &(0x7f00000001c0)='./file0\x00', &(0x7f0000000040)='vfat\x00', 0x0, &(0x7f0000000240))
io_uring_enter(r5, 0x2def, 0x0, 0x0, 0x0, 0x0)
preadv2(r1, &(0x7f0000000100)=[{&(0x7f0000000040)=""/86, 0x56}], 0x1, 0xffff, 0x2, 0x1)
write(r0, &(0x7f0000000180)="3daa310d24bb8834b60b262b54e583e92c4c9b3e69f6ae407049ddbaa8b0b9661923c11bf1234a75635d4bf1d440a75d4b7a9d304e11c1d6f759a3dffeecfa6ef79b5b524609c87513548d12108fe51bc5b1ea5fdfcdf9e9e3e59e8e9adc1ecf737b762016f171ef7ee054fa48d898e6823e95f5a3949a2b3a6aad19f005a624ebfd8aa6d581937df01dfbf7240f7008e0b17211c3abeec8b04421f574dfc5d549d16e1acf8ee3e4b650c7553a4b636506d97c", 0xb3)

2.610155385s ago: executing program 1 (id=201):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x60240, 0x0)
socket$inet(0x2, 0x1, 0x100)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000005c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x200, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xa0, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_ife={0x48, 0x13, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0185648, &(0x7f0000000000)={0xa00000, 0x10000, 0x49, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f90b, 0x9e68, '\x00', @ptr=0x6}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1bff7f000000009fa4ccdb76c6a1da0fec3f6582", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\b\x00'/20, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES64=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r3, 0x18000000000002a0, 0xb, 0x0, &(0x7f00000002c0)="d2ff030060010000009e08", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r7 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
tkill(r7, 0xb)
utimensat(0xffffffffffffff9c, &(0x7f00000003c0)='.\x00', 0x0, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r8, 0x560a, &(0x7f00000006c0)={0x4, 0x0, 0x0, 0x0, 0x132, 0x3})

2.049812655s ago: executing program 2 (id=202):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000580)='configfs\x00', 0x400086, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x244)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r1, 0xc0189379, &(0x7f0000000200)={{0x1, 0x1, 0x18, <r3=>r2}, './file2\x00'})
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189378, &(0x7f0000000280)={{0x1, 0x1, 0x18, r3, {0x4}}, './file0\x00'})
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x40000, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000180), 0x8)
r4 = openat$ipvs(0xffffff9c, &(0x7f0000000200)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180200000000000000000000000000008500000017100000000700000095000000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x9, @void, @value}, 0x94)
socket$kcm(0x29, 0x5, 0x0)
r6 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
ioctl$RTC_SET_TIME(r6, 0x4024700a, &(0x7f0000000040)={0x37, 0xd, 0x15, 0xe, 0x2, 0x8, 0x3, 0x30, 0xffffffffffffffff})
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='cgroup2\x00', 0x0, 0x0)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000300), r5)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000000500)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000340)={0x24, r7, 0x320, 0x70bd2c, 0x25dfdbfc, {{}, {}, {0x8, 0x11, 0xfff}}, [""]}, 0x24}, 0x1, 0x0, 0x0, 0x800}, 0x8000)
r8 = syz_open_procfs(0x0, &(0x7f0000000240)='mountinfo\x00')
ppoll(&(0x7f0000000000)=[{r8}], 0x1, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', 0x0, 0x26, 0x0)
openat$sndseq(0xffffff9c, &(0x7f0000000540), 0x100)
r9 = socket$can_raw(0x1d, 0x3, 0x1)
getsockopt$IP_VS_SO_GET_SERVICES(r9, 0x0, 0x482, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

1.708667298s ago: executing program 1 (id=203):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x181200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="0815000000051104000000000000000001000005540201"], 0x1508}, 0x1, 0x0, 0x0, 0x24000080}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)={{0x100004, 0x6000, 0xe, 0x4, 0x6d, 0x1, 0x9, 0x10, 0x0, 0x7, 0x9, 0x3}, {0x0, 0xdddd1000, 0xe, 0x2, 0xe, 0xb6, 0x3, 0x5, 0x1, 0x3, 0x3}, {0x5000, 0x3000, 0xa, 0xf2, 0x9, 0x2, 0x5, 0x8, 0xe, 0x1, 0x7, 0xbb}, {0x1000, 0xd000, 0x7, 0xf, 0xc, 0x68, 0x3, 0x5, 0x7, 0x4, 0x8, 0x6}, {0x6000, 0x4000, 0x4, 0xd5, 0xf4, 0x8, 0x4, 0xd, 0x2, 0x54, 0xf5, 0x5}, {0x80a0000, 0x6000, 0x10, 0x10, 0x4, 0xb8, 0x5, 0x2, 0x6, 0xff, 0x29, 0x4c}, {0x1, 0x3000, 0x0, 0x3, 0x0, 0x1, 0x13, 0x5, 0x5, 0x8, 0x9, 0x8f}, {0xeeef0000, 0x8000000, 0xc, 0xc, 0x87, 0xf7, 0x9, 0x2, 0xf, 0x2, 0x7, 0x8}, {0x2000, 0x25bb}, {0x80a0000, 0xd}, 0x4000b, 0x0, 0x4, 0x20, 0xe, 0x1100, 0x10000, [0xd728, 0x0, 0x40, 0x7]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000680)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
io_setup(0x6, &(0x7f0000001380)=<r4=>0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
io_submit(r4, 0x2, &(0x7f0000001140)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0])
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)

1.334616473s ago: executing program 2 (id=204):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x181200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="0815000000051104000000000000000001000005540201"], 0x1508}, 0x1, 0x0, 0x0, 0x24000080}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f0000000380)={{0x100004, 0x6000, 0xe, 0x4, 0x6d, 0x1, 0x9, 0x10, 0x0, 0x7, 0x9, 0x3}, {0x0, 0xdddd1000, 0xe, 0x2, 0xe, 0xb6, 0x3, 0x5, 0x1, 0x3, 0x3}, {0x5000, 0x3000, 0xa, 0xf2, 0x9, 0x2, 0x5, 0x8, 0xe, 0x1, 0x7, 0xbb}, {0x1000, 0xd000, 0x7, 0xf, 0xc, 0x68, 0x3, 0x5, 0x7, 0x4, 0x8, 0x6}, {0x6000, 0x4000, 0x4, 0xd5, 0xf4, 0x8, 0x4, 0xd, 0x2, 0x54, 0xf5, 0x5}, {0x80a0000, 0x6000, 0x10, 0x10, 0x4, 0xb8, 0x5, 0x2, 0x6, 0xff, 0x29, 0x4c}, {0x1, 0x3000, 0x0, 0x3, 0x0, 0x1, 0x13, 0x5, 0x5, 0x8, 0x9, 0x8f}, {0xeeef0000, 0x8000000, 0xc, 0xc, 0x87, 0xf7, 0x9, 0x2, 0xf, 0x2, 0x7, 0x8}, {0x2000, 0x25bb}, {0x80a0000, 0xd}, 0x4000b, 0x0, 0x4, 0x20, 0xe, 0x1100, 0x10000, [0xd728, 0x0, 0x40, 0x7]})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000680)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
io_setup(0x6, &(0x7f0000001380)=<r4=>0x0)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r6, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
io_submit(r4, 0x2, &(0x7f0000001140)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}, 0x0])
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)

1.268792752s ago: executing program 1 (id=205):
r0 = socket$netlink(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=@newlink={0x68, 0x10, 0x503, 0x70bd2a, 0x4, {}, [@IFLA_LINKINFO={0x48, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x38, 0x2, 0x0, 0x1, [@IFLA_BR_AGEING_TIME={0x8, 0x4, 0xc7f3}, @IFLA_BR_GROUP_FWD_MASK={0x6, 0x9, 0x7f}, @IFLA_BR_MCAST_QUERY_RESPONSE_INTVL={0xc, 0x22, 0x8001}, @IFLA_BR_PRIORITY={0x6, 0x6, 0x81}, @IFLA_BR_MCAST_HASH_MAX={0x8, 0x1b, 0x3}, @IFLA_BR_VLAN_STATS_PER_PORT={0x5}]}}}]}, 0x68}, 0x1, 0x0, 0x0, 0x4804}, 0x800) (fail_nth: 10)

880.131745ms ago: executing program 1 (id=206):
r0 = socket$netlink(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000000c0)=ANY=[@ANYBLOB="68000000100015ab23a6b8030579a060cb040000", @ANYRES32=0x0, @ANYBLOB="0000000000000000480012800b00010062726964676500003800028008000400f3c70000060009007f0000000c0022000180000000000000060006008100000008001b000300000005002d0000000000"], 0x68}, 0x1, 0x0, 0x0, 0x4804}, 0x800)

690.182182ms ago: executing program 1 (id=207):
socket(0xa, 0x801, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x6}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000340)='./file0\x00', 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x11000)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
ptrace(0x10, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}})
socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d00000018", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000340)={r6, r5}, 0xc)

633.971482ms ago: executing program 2 (id=208):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x60240, 0x0)
socket$inet(0x2, 0x1, 0x100)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f00000005c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x200, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xa0, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_ife={0x48, 0x13, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0185648, &(0x7f0000000000)={0xa00000, 0x10000, 0x49, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f90b, 0x9e68, '\x00', @ptr=0x6}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1bff7f000000009fa4ccdb76c6a1da0fec3f6582", @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\b\x00'/20, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00'], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES64=r1], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000004c0)={r3, 0x18000000000002a0, 0xd, 0x0, &(0x7f00000002c0)="d2ff030060010000009e08f086", 0x0, 0xd5b1, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r6, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
r7 = gettid()
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
tkill(r7, 0xb)
utimensat(0xffffffffffffff9c, &(0x7f00000003c0)='.\x00', 0x0, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r8, 0x560a, &(0x7f00000006c0)={0x4, 0x0, 0x0, 0x0, 0x132, 0x3})

0s ago: executing program 0 (id=209):
socket(0xa, 0x801, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x6}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
creat(&(0x7f0000000340)='./file0\x00', 0x0)
pipe(&(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f0000000340), 0x11000)
vmsplice(r3, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0)
ptrace(0x10, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
mq_notify(0xffffffffffffffff, &(0x7f0000000000)={0x110c230000, 0x3, 0x2, @thr={0x0, 0x0}})
socket$nl_generic(0x10, 0x3, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0200000004000000020000000c0000000014"], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001700000000000000ff000000850000006d000000181100", @ANYRES32=r5, @ANYBLOB="0000000000000000b7080000000002007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008002010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000340)={r6, r5}, 0xc)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:2159' (ED25519) to the list of known hosts.
[   40.801435][ T5853] cgroup: Unknown subsys name 'net'
[   40.987917][ T5853] cgroup: Unknown subsys name 'cpuset'
[   40.994245][ T5853] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   41.849017][ T5853] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.617610][   T63] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   45.621876][   T63] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   45.629916][ T5951] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   45.632538][ T5951] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   45.635299][ T5951] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   45.637833][ T5951] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   45.640349][ T5951] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   45.648154][ T5953] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   45.653027][ T5954] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   45.656168][ T5954] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   45.657618][ T5947] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   45.659500][ T5954] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   45.662349][ T5947] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   45.662515][ T5953] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   45.663603][ T5953] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   45.664016][ T5954] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   45.666864][ T5947] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   45.669811][ T5953] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   45.672665][ T5947] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   45.684093][ T5947] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   45.948161][ T5948] chnl_net:caif_netlink_parms(): no params data found
[   46.007644][ T5950] chnl_net:caif_netlink_parms(): no params data found
[   46.033573][ T5943] chnl_net:caif_netlink_parms(): no params data found
[   46.112878][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.116241][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.118511][ T5948] bridge_slave_0: entered allmulticast mode
[   46.121756][ T5948] bridge_slave_0: entered promiscuous mode
[   46.160256][ T5939] chnl_net:caif_netlink_parms(): no params data found
[   46.171014][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.173724][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.176778][ T5948] bridge_slave_1: entered allmulticast mode
[   46.179705][ T5948] bridge_slave_1: entered promiscuous mode
[   46.316437][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.319397][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.321612][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.324097][ T5950] bridge_slave_0: entered allmulticast mode
[   46.326692][ T5950] bridge_slave_0: entered promiscuous mode
[   46.345729][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.347885][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.350456][ T5943] bridge_slave_0: entered allmulticast mode
[   46.353255][ T5943] bridge_slave_0: entered promiscuous mode
[   46.369729][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.389405][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.391696][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.394677][ T5950] bridge_slave_1: entered allmulticast mode
[   46.398146][ T5950] bridge_slave_1: entered promiscuous mode
[   46.420168][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.422872][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.425750][ T5943] bridge_slave_1: entered allmulticast mode
[   46.429094][ T5943] bridge_slave_1: entered promiscuous mode
[   46.548594][ T5948] team0: Port device team_slave_0 added
[   46.550670][ T5939] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.552856][ T5939] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.555218][ T5939] bridge_slave_0: entered allmulticast mode
[   46.557808][ T5939] bridge_slave_0: entered promiscuous mode
[   46.561878][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.569363][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.575926][ T5948] team0: Port device team_slave_1 added
[   46.578742][ T5939] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.581641][ T5939] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.584920][ T5939] bridge_slave_1: entered allmulticast mode
[   46.588883][ T5939] bridge_slave_1: entered promiscuous mode
[   46.593292][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.611334][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.698067][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.700271][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.707986][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.728833][ T5950] team0: Port device team_slave_0 added
[   46.744454][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.746533][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.754130][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.758913][ T5939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.762991][ T5950] team0: Port device team_slave_1 added
[   46.780063][ T5943] team0: Port device team_slave_0 added
[   46.786891][ T5943] team0: Port device team_slave_1 added
[   46.789949][ T5939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.806493][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.808617][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.816450][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.820735][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.822844][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.830353][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.942022][ T5939] team0: Port device team_slave_0 added
[   46.962212][ T5948] hsr_slave_0: entered promiscuous mode
[   46.964579][ T5948] hsr_slave_1: entered promiscuous mode
[   46.967434][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.969582][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.977706][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.982450][ T5939] team0: Port device team_slave_1 added
[   47.000906][ T5950] hsr_slave_0: entered promiscuous mode
[   47.002913][ T5950] hsr_slave_1: entered promiscuous mode
[   47.005064][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.007266][ T5950] Cannot create hsr debugfs directory
[   47.009294][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.011931][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.020848][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.062610][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.065354][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.076740][ T5939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.105375][ T5939] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.107527][ T5939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.115383][ T5939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.236558][ T5943] hsr_slave_0: entered promiscuous mode
[   47.238793][ T5943] hsr_slave_1: entered promiscuous mode
[   47.240809][ T5943] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.243105][ T5943] Cannot create hsr debugfs directory
[   47.310029][ T5939] hsr_slave_0: entered promiscuous mode
[   47.312334][ T5939] hsr_slave_1: entered promiscuous mode
[   47.315129][ T5939] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.318206][ T5939] Cannot create hsr debugfs directory
[   47.621502][ T5948] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   47.627953][ T5948] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   47.632065][ T5948] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   47.640196][ T5948] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   47.666973][ T5950] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   47.670975][ T5950] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   47.675873][ T5950] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   47.679673][ T5950] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   47.684857][ T5947] Bluetooth: hci2: command tx timeout
[   47.684936][ T5942] Bluetooth: hci0: command tx timeout
[   47.722962][ T5943] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   47.730709][ T5943] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   47.736782][ T5943] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   47.743219][ T5943] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   47.765184][ T5942] Bluetooth: hci3: command tx timeout
[   47.765213][ T5947] Bluetooth: hci1: command tx timeout
[   47.799795][ T5939] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   47.805079][ T5939] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   47.814837][ T5939] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   47.818930][ T5939] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   47.848587][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.879192][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.900007][ T5948] 8021q: adding VLAN 0 to HW filter on device team0
[   47.909539][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.912666][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.929363][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.932396][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.939606][ T5950] 8021q: adding VLAN 0 to HW filter on device team0
[   47.955187][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.958178][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.975565][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.978309][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.003610][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.045531][ T5943] 8021q: adding VLAN 0 to HW filter on device team0
[   48.059458][ T5939] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.068711][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.071682][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.094609][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.097600][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.117788][ T5939] 8021q: adding VLAN 0 to HW filter on device team0
[   48.129085][ T1149] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.131728][ T1149] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.151267][ T1149] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.154047][ T1149] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.219462][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.265907][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.268995][ T5948] veth0_vlan: entered promiscuous mode
[   48.277929][ T5948] veth1_vlan: entered promiscuous mode
[   48.303399][ T5950] veth0_vlan: entered promiscuous mode
[   48.314713][ T5950] veth1_vlan: entered promiscuous mode
[   48.336208][ T5948] veth0_macvtap: entered promiscuous mode
[   48.348288][ T5948] veth1_macvtap: entered promiscuous mode
[   48.359761][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.376310][ T5939] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.382446][ T5950] veth0_macvtap: entered promiscuous mode
[   48.394317][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.400671][ T5950] veth1_macvtap: entered promiscuous mode
[   48.415201][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.423390][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.431687][ T5948] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.435219][ T5948] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.437903][ T5948] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.440533][ T5948] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.454716][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.467912][ T5950] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.470907][ T5950] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.474481][ T5950] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.478012][ T5950] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.491124][ T5943] veth0_vlan: entered promiscuous mode
[   48.515734][ T5939] veth0_vlan: entered promiscuous mode
[   48.522862][ T5943] veth1_vlan: entered promiscuous mode
[   48.554921][   T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.558194][   T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.563528][ T5939] veth1_vlan: entered promiscuous mode
[   48.594907][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.597650][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.601148][ T1149] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.603575][ T1149] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.625841][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.628947][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.635303][ T5943] veth0_macvtap: entered promiscuous mode
[   48.644317][ T5943] veth1_macvtap: entered promiscuous mode
[   48.650277][ T5939] veth0_macvtap: entered promiscuous mode
[   48.652298][ T5948] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   48.661783][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.666058][ T5939] veth1_macvtap: entered promiscuous mode
[   48.679734][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.685991][ T5943] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.688742][ T5943] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.691665][ T5943] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.695344][ T5943] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.715864][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.733941][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.736722][ T5939] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.744170][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   48.746610][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   48.747154][ T5939] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.751698][ T5939] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.753955][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   48.755688][ T5939] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.757034][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   48.759542][ T5939] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.774062][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.776758][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.779229][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.783071][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.786077][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   48.797962][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.799736][ T6009] netlink: 4768 bytes leftover after parsing attributes in process `syz.1.2'.
[   48.800846][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.882202][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.886006][ T1146] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.889310][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.891853][ T1146] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.910116][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.935175][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.765119][ T5947] Bluetooth: hci0: command tx timeout
[   49.766854][ T5947] Bluetooth: hci2: command tx timeout
[   49.844257][ T5942] Bluetooth: hci1: command tx timeout
[   49.863921][ T5942] Bluetooth: hci3: command tx timeout
[   49.864020][ T6020] fuse: Unknown parameter '0x0000000000000004'
[   49.896408][   T60] Process accounting resumed
[   49.955561][ T6024] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   49.959499][ T6025] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5'.
[   50.680852][ T6017] kexec: Could not allocate control_code_buffer
[   50.761690][ T6032] ceph: No mds server is up or the cluster is laggy
[   51.135272][   T60] libceph: connect (1)[c::]:6789 error -101
[   51.137389][   T60] libceph: mon0 (1)[c::]:6789 connect error
[   51.844482][ T5942] Bluetooth: hci2: command tx timeout
[   51.862868][ T6052] netlink: 'syz.2.13': attribute type 4 has an invalid length.
[   51.865881][ T6052] netlink: 17 bytes leftover after parsing attributes in process `syz.2.13'.
[   51.922895][ T5947] Bluetooth: hci0: command tx timeout
[   51.933973][ T5947] Bluetooth: hci1: command tx timeout
[   51.936274][ T5942] Bluetooth: hci3: command tx timeout
[   52.769480][ T6066] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16'.
[   53.150643][ T6070] netlink: 'syz.1.17': attribute type 4 has an invalid length.
[   53.154659][ T6070] netlink: 17 bytes leftover after parsing attributes in process `syz.1.17'.
[   53.379278][ T6072] fuse: Unknown parameter '0x0000000000000004'
[   54.059482][ T6081] ceph: No mds server is up or the cluster is laggy
[   54.116971][   T60] libceph: connect (1)[c::]:6789 error -101
[   54.123863][ T5942] Bluetooth: hci3: command tx timeout
[   54.125602][ T5942] Bluetooth: hci1: command tx timeout
[   54.126088][   T60] libceph: mon0 (1)[c::]:6789 connect error
[   54.127299][ T5942] Bluetooth: hci2: command tx timeout
[   54.127853][ T5947] Bluetooth: hci0: command tx timeout
[   54.395347][ T6065] kexec: Could not allocate control_code_buffer
[   54.618692][  T840] libceph: connect (1)[c::]:6789 error -101
[   54.620663][  T840] libceph: mon0 (1)[c::]:6789 connect error
[   54.637509][ T6089] ceph: No mds server is up or the cluster is laggy
[   54.918878][ T6092] netlink: 'syz.1.22': attribute type 4 has an invalid length.
[   54.921636][ T6092] netlink: 17 bytes leftover after parsing attributes in process `syz.1.22'.
[   55.575795][   T60] libceph: connect (1)[c::]:6789 error -101
[   55.578421][   T60] libceph: mon0 (1)[c::]:6789 connect error
[   55.736438][ T6113] netlink: 40 bytes leftover after parsing attributes in process `syz.3.27'.
[   55.751379][ T6107] 9pnet_virtio: no channels available for device syz
[   55.762401][ T6107] netlink: 'syz.0.26': attribute type 4 has an invalid length.
[   55.764895][ T6107] netlink: 17 bytes leftover after parsing attributes in process `syz.0.26'.
[   55.803231][ T6114] 9pnet_virtio: no channels available for device syz
[   55.807196][ T6114] netlink: 'syz.3.27': attribute type 4 has an invalid length.
[   55.810197][ T6114] netlink: 17 bytes leftover after parsing attributes in process `syz.3.27'.
[   55.865055][   T60] libceph: connect (1)[c::]:6789 error -101
[   55.867986][   T60] libceph: mon0 (1)[c::]:6789 connect error
[   56.099450][ T6109] ceph: No mds server is up or the cluster is laggy
[   56.268807][ T6119] ceph: No mds server is up or the cluster is laggy
[   56.287442][   T60] libceph: connect (1)[c::]:6789 error -101
[   56.295174][   T60] libceph: mon0 (1)[c::]:6789 connect error
[   56.834142][   T34] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   56.982301][ T6129] random: crng reseeded on system resumption
[   56.983858][   T34] usb 7-1: Using ep0 maxpacket: 16
[   56.988619][   T34] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   56.994359][   T34] usb 7-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[   56.997254][   T34] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   56.999807][   T34] usb 7-1: Product: syz
[   56.999818][   T34] usb 7-1: Manufacturer: syz
[   57.002824][   T34] usb 7-1: SerialNumber: syz
[   57.014550][   T34] usb 7-1: config 0 descriptor??
[   57.265998][ T6134] netlink: 'syz.1.32': attribute type 4 has an invalid length.
[   57.268628][ T6134] netlink: 17 bytes leftover after parsing attributes in process `syz.1.32'.
[   57.291179][   T34] usb 7-1: USB disconnect, device number 2
[   57.655900][ T6139] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.33'.
[   58.131984][ T6146] mmap: syz.2.36 (6146) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   58.149680][   T40] audit: type=1326 audit(1748924835.097:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.2.36" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   58.163029][   T40] audit: type=1326 audit(1748924835.107:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.2.36" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   58.170088][ T6146] netlink: 4 bytes leftover after parsing attributes in process `syz.2.36'.
[   58.174734][   T40] audit: type=1326 audit(1748924835.107:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.2.36" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   58.182448][   T40] audit: type=1326 audit(1748924835.107:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.2.36" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   58.190956][   T40] audit: type=1326 audit(1748924835.107:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.2.36" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   58.199557][   T40] audit: type=1326 audit(1748924835.107:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.2.36" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   58.208569][   T40] audit: type=1326 audit(1748924835.107:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.2.36" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   58.218438][   T40] audit: type=1326 audit(1748924835.107:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.2.36" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   58.233902][   T40] audit: type=1326 audit(1748924835.107:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.2.36" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   58.264002][   T10] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   58.394035][   T40] audit: type=1326 audit(1748924835.107:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6144 comm="syz.2.36" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   58.770910][ T6153] ceph: No mds server is up or the cluster is laggy
[   58.797249][   T67] libceph: connect (1)[c::]:6789 error -101
[   58.799190][   T67] libceph: mon0 (1)[c::]:6789 connect error
[   58.855718][   T10] usb 5-1: Using ep0 maxpacket: 16
[   58.860778][   T10] usb 5-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   58.867760][   T10] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[   58.871301][   T10] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   58.874769][   T10] usb 5-1: Product: syz
[   58.876472][   T10] usb 5-1: Manufacturer: syz
[   58.878706][   T10] usb 5-1: SerialNumber: syz
[   58.881711][   T10] usb 5-1: config 0 descriptor??
[   58.886794][   T10] hub 5-1:0.0: bad descriptor, ignoring hub
[   58.888840][   T10] hub 5-1:0.0: probe with driver hub failed with error -5
[   59.284177][   T60] usb 5-1: USB disconnect, device number 2
[   59.822840][ T6168] netlink: 40 bytes leftover after parsing attributes in process `syz.1.40'.
[   59.972546][ T6168] netlink: 'syz.1.40': attribute type 4 has an invalid length.
[   59.975586][ T6168] netlink: 17 bytes leftover after parsing attributes in process `syz.1.40'.
[   60.315060][ T6173] ceph: No mds server is up or the cluster is laggy
[   60.320600][ T6002] libceph: connect (1)[c::]:6789 error -101
[   60.324880][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[   60.471885][ T6160] kexec: Could not allocate control_code_buffer
[   60.489882][ T6160] Process accounting resumed
[   60.724779][ T6182] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   60.782020][ T6183] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[   60.784144][ T6183] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   60.788153][ T6183] vhci_hcd vhci_hcd.0: Device attached
[   60.827632][ T6183] netdevsim netdevsim3: Direct firmware load for @ failed with error -2
[   60.830423][ T6183] netdevsim netdevsim3: Falling back to sysfs fallback for: @
[   61.053914][   T67] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[   61.483358][ T6196] netlink: 'syz.2.44': attribute type 4 has an invalid length.
[   61.492695][ T6196] netlink: 17 bytes leftover after parsing attributes in process `syz.2.44'.
[   61.564661][ T6002] libceph: connect (1)[c::]:6789 error -101
[   61.581028][ T6197] ceph: No mds server is up or the cluster is laggy
[   61.766298][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[   62.185369][ T6185] vhci_hcd: connection reset by peer
[   62.199638][ T1253] vhci_hcd: stop threads
[   62.205058][ T1253] vhci_hcd: release socket
[   62.212588][ T1253] vhci_hcd: disconnect device
[   62.238621][ T6207] netlink: 72 bytes leftover after parsing attributes in process `syz.1.46'.
[   62.299149][ T6208] 9pnet_virtio: no channels available for device syz
[   62.302381][ T6208] netlink: 'syz.1.46': attribute type 4 has an invalid length.
[   62.305024][ T6208] netlink: 17 bytes leftover after parsing attributes in process `syz.1.46'.
[   63.784478][ T6233] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[   63.786460][ T6233] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   63.788844][ T6233] vhci_hcd vhci_hcd.0: Device attached
[   63.820027][ T6233] netdevsim netdevsim2: Direct firmware load for @ failed with error -2
[   63.822868][ T6233] netdevsim netdevsim2: Falling back to sysfs fallback for: @
[   63.848043][ T6010] libceph: connect (1)[c::]:6789 error -101
[   63.850018][ T6010] libceph: mon0 (1)[c::]:6789 connect error
[   64.104720][ T6010] libceph: connect (1)[c::]:6789 error -101
[   64.106736][ T6010] libceph: mon0 (1)[c::]:6789 connect error
[   64.478401][ T6231] ceph: No mds server is up or the cluster is laggy
[   64.543985][ T6242] ceph: No mds server is up or the cluster is laggy
[   64.624127][ T6010] libceph: connect (1)[c::]:6789 error -101
[   64.626124][ T6010] libceph: mon0 (1)[c::]:6789 connect error
[   64.660606][ T6002] libceph: connect (1)[c::]:6789 error -101
[   64.662692][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[   64.713982][ T6234] vhci_hcd: connection closed
[   64.715193][ T1143] vhci_hcd: stop threads
[   64.718480][ T1143] vhci_hcd: release socket
[   64.720561][ T1143] vhci_hcd: disconnect device
[   64.733914][ T6002] vhci_hcd: vhci_device speed not set
[   64.828385][ T6249] netlink: 16 bytes leftover after parsing attributes in process `syz.3.57'.
[   64.966156][ T6250] netlink: 'syz.3.57': attribute type 4 has an invalid length.
[   64.969272][ T6250] netlink: 17 bytes leftover after parsing attributes in process `syz.3.57'.
[   65.318754][ T6256] ceph: No mds server is up or the cluster is laggy
[   65.467476][ T6001] libceph: connect (1)[c::]:6789 error -101
[   65.517338][ T6255] bridge_slave_0: left allmulticast mode
[   65.519323][ T6255] bridge_slave_0: left promiscuous mode
[   65.521790][ T6255] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.732864][ T6001] libceph: mon0 (1)[c::]:6789 connect error
[   65.952367][ T6263] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false
[   66.080573][ T6267] netlink: 4768 bytes leftover after parsing attributes in process `syz.3.59'.
[   66.094024][ T6255] bridge_slave_1: left allmulticast mode
[   66.095933][ T6255] bridge_slave_1: left promiscuous mode
[   66.099271][ T6255] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.164428][   T67] vhci_hcd: vhci_device speed not set
[   66.516751][ T6255] bond0: (slave bond_slave_0): Releasing backup interface
[   66.528791][ T6255] bond0: (slave bond_slave_1): Releasing backup interface
[   66.572915][ T6255] team0: Port device team_slave_0 removed
[   66.583321][ T6255] team0: Port device team_slave_1 removed
[   66.585990][ T6255] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   66.588380][ T6255] batman_adv: batadv0: Removing interface: batadv_slave_0
[   66.592055][ T6255] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   66.594709][ T6255] batman_adv: batadv0: Removing interface: batadv_slave_1
[   67.421366][ T6287] capability: warning: `syz.2.65' uses deprecated v2 capabilities in a way that may be insecure
[   67.426150][ T6287] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[   67.429159][ T6287] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   67.432702][ T6287] overlayfs: failed to set uuid (13/file1, err=-13); falling back to uuid=null.
[   67.515517][ T6283] ceph: No mds server is up or the cluster is laggy
[   67.519060][   T67] libceph: connect (1)[c::]:6789 error -101
[   67.521109][   T67] libceph: mon0 (1)[c::]:6789 connect error
[   67.593287][ T6285] overlayfs: missing 'lowerdir'
[   68.016745][ T6277] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[   68.018833][ T6277] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   68.021200][ T6277] vhci_hcd vhci_hcd.0: Device attached
[   68.037842][ T6277] netdevsim netdevsim1: Direct firmware load for @ failed with error -2
[   68.040553][ T6277] netdevsim netdevsim1: Falling back to sysfs fallback for: @
[   68.129080][ T6001] libceph: connect (1)[c::]:6789 error -101
[   68.131750][ T6001] libceph: mon0 (1)[c::]:6789 connect error
[   68.167947][ T6299] ceph: No mds server is up or the cluster is laggy
[   68.273883][   T67] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[   68.369083][ T6297] vhci_hcd: connection reset by peer
[   68.371590][ T1143] vhci_hcd: stop threads
[   68.373351][ T1143] vhci_hcd: release socket
[   68.375364][ T1143] vhci_hcd: disconnect device
[   68.665901][ T6311] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[   68.668004][ T6311] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   68.670685][ T6311] vhci_hcd vhci_hcd.0: Device attached
[   68.914263][ T6001] usb 43-1: new low-speed USB device number 3 using vhci_hcd
[   69.539889][ T6328] netlink: 16 bytes leftover after parsing attributes in process `syz.2.74'.
[   69.589177][ T6312] vhci_hcd: connection reset by peer
[   69.591899][  T185] vhci_hcd: stop threads
[   69.593365][  T185] vhci_hcd: release socket
[   69.594908][  T185] vhci_hcd: disconnect device
[   69.890707][ T6330] netlink: 'syz.2.74': attribute type 4 has an invalid length.
[   69.893379][ T6330] netlink: 17 bytes leftover after parsing attributes in process `syz.2.74'.
[   70.720862][ T6343] netlink: 64 bytes leftover after parsing attributes in process `syz.1.78'.
[   70.842613][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[   70.846610][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[   70.869192][ T6346] netlink: 'syz.1.78': attribute type 4 has an invalid length.
[   70.871915][ T6346] netlink: 17 bytes leftover after parsing attributes in process `syz.1.78'.
[   71.582224][ T6002] libceph: connect (1)[c::]:6789 error -101
[   71.584980][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[   71.601135][ T6356] ceph: No mds server is up or the cluster is laggy
[   71.722898][ T6360] ceph: No mds server is up or the cluster is laggy
[   71.733178][ T6002] libceph: connect (1)[c::]:6789 error -101
[   71.739059][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[   72.109782][ T6002] libceph: connect (1)[c::]:6789 error -101
[   72.113952][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[   72.506605][ T6373] Invalid ELF header magic: != ELF
[   72.815300][ T6380] netlink: 8 bytes leftover after parsing attributes in process `syz.2.85'.
[   72.868224][ T6382] netlink: 16 bytes leftover after parsing attributes in process `syz.0.86'.
[   72.938381][ T6383] netlink: 'syz.0.86': attribute type 4 has an invalid length.
[   72.941158][ T6383] netlink: 17 bytes leftover after parsing attributes in process `syz.0.86'.
[   73.355004][   T67] vhci_hcd: vhci_device speed not set
[   73.685707][ T6389] 9pnet_virtio: no channels available for device syz
[   73.865640][ T6393] netlink: 16 bytes leftover after parsing attributes in process `syz.3.90'.
[   73.924607][ T6379] kexec: Could not allocate control_code_buffer
[   73.935848][ T6394] 9pnet_virtio: no channels available for device syz
[   73.936351][ T6394] netlink: 'syz.3.90': attribute type 4 has an invalid length.
[   73.936362][ T6394] netlink: 17 bytes leftover after parsing attributes in process `syz.3.90'.
[   74.144004][ T6001] vhci_hcd: vhci_device speed not set
[   74.454797][ T6399] ceph: No mds server is up or the cluster is laggy
[   74.856878][   T29] libceph: connect (1)[c::]:6789 error -101
[   74.858788][   T29] libceph: mon0 (1)[c::]:6789 connect error
[   75.126089][   T53] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   75.910653][ T6443] netlink: 32 bytes leftover after parsing attributes in process `syz.0.98'.
[   75.984088][ T6444] netlink: 'syz.0.98': attribute type 4 has an invalid length.
[   76.003272][ T6444] netlink: 17 bytes leftover after parsing attributes in process `syz.0.98'.
[   77.250336][ T6450] kexec: Could not allocate control_code_buffer
[   77.263721][ T6450] Process accounting resumed
[   77.343923][   T40] kauditd_printk_skb: 4 callbacks suppressed
[   77.343933][   T40] audit: type=1326 audit(1748924854.287:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   77.357002][ T6461] netlink: 4 bytes leftover after parsing attributes in process `syz.2.102'.
[   77.366021][   T40] audit: type=1326 audit(1748924854.287:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   77.381119][ T6462] netlink: 4 bytes leftover after parsing attributes in process `syz.0.101'.
[   77.389580][   T40] audit: type=1326 audit(1748924854.287:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.102" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   77.398563][   T40] audit: type=1326 audit(1748924854.287:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   77.407465][   T40] audit: type=1326 audit(1748924854.287:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   77.416600][   T40] audit: type=1326 audit(1748924854.287:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.102" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   77.426537][   T40] audit: type=1326 audit(1748924854.287:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   77.435409][   T40] audit: type=1326 audit(1748924854.297:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   77.457438][   T40] audit: type=1326 audit(1748924854.307:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.102" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   77.469739][   T40] audit: type=1326 audit(1748924854.307:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6453 comm="syz.2.102" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f48579 code=0x7ffc0000
[   77.791752][ T6465] ceph: No mds server is up or the cluster is laggy
[   77.802365][ T6398] libceph: connect (1)[c::]:6789 error -101
[   78.147130][ T6398] libceph: mon0 (1)[c::]:6789 connect error
[   81.046189][ T2296] cfg80211: failed to load regulatory.db
[   81.866539][ T6487] FAULT_INJECTION: forcing a failure.
[   81.866539][ T6487] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   81.870962][ T6487] CPU: 0 UID: 0 PID: 6487 Comm: syz.2.106 Not tainted 6.15.0-syzkaller-10954-gd00a83477e7a #0 PREEMPT(full) 
[   81.870978][ T6487] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   81.870996][ T6487] Call Trace:
[   81.871000][ T6487]  <TASK>
[   81.871005][ T6487]  dump_stack_lvl+0x16c/0x1f0
[   81.871025][ T6487]  should_fail_ex+0x512/0x640
[   81.871045][ T6487]  _copy_from_user+0x2e/0xd0
[   81.871057][ T6487]  get_compat_msghdr+0xa7/0x170
[   81.871073][ T6487]  ? __pfx_get_compat_msghdr+0x10/0x10
[   81.871090][ T6487]  ? __lock_acquire+0x622/0x1c90
[   81.871104][ T6487]  ___sys_recvmsg+0x191/0x1a0
[   81.871120][ T6487]  ? __pfx____sys_recvmsg+0x10/0x10
[   81.871136][ T6487]  ? find_held_lock+0x2b/0x80
[   81.871155][ T6487]  ? __pfx___might_resched+0x10/0x10
[   81.871175][ T6487]  do_recvmmsg+0x55d/0x750
[   81.871191][ T6487]  ? __pfx_do_recvmmsg+0x10/0x10
[   81.871215][ T6487]  ? __fget_files+0x20e/0x3c0
[   81.871228][ T6487]  ? handle_mm_fault+0x210/0xd10
[   81.871246][ T6487]  __sys_recvmmsg+0x21c/0x280
[   81.871261][ T6487]  ? __pfx___sys_recvmmsg+0x10/0x10
[   81.871277][ T6487]  ? __pfx_ksys_write+0x10/0x10
[   81.871292][ T6487]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[   81.871309][ T6487]  ? lockdep_hardirqs_on+0x7c/0x110
[   81.871323][ T6487]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   81.871339][ T6487]  __do_fast_syscall_32+0x7c/0x3a0
[   81.871355][ T6487]  do_fast_syscall_32+0x32/0x80
[   81.871370][ T6487]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   81.871384][ T6487] RIP: 0023:0xf7f48579
[   81.871393][ T6487] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   81.871403][ T6487] RSP: 002b:00000000f506655c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[   81.871413][ T6487] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080003700
[   81.871420][ T6487] RDX: 0000000000000600 RSI: 0000000000000000 RDI: 0000000000000000
[   81.871426][ T6487] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   81.871432][ T6487] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   81.871437][ T6487] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   81.871450][ T6487]  </TASK>
[   81.953320][ T6489] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   82.891741][ T6500] netlink: 32 bytes leftover after parsing attributes in process `syz.1.110'.
[   83.270924][ T6501] netlink: 'syz.1.110': attribute type 4 has an invalid length.
[   83.273437][ T6501] netlink: 17 bytes leftover after parsing attributes in process `syz.1.110'.
[   83.844445][ T6512] ceph: No mds server is up or the cluster is laggy
[   84.033261][ T6398] libceph: connect (1)[c::]:6789 error -101
[   84.035441][ T6398] libceph: mon0 (1)[c::]:6789 connect error
[   84.117136][ T6519] netlink: 4 bytes leftover after parsing attributes in process `syz.1.113'.
[   84.129116][   T40] kauditd_printk_skb: 14 callbacks suppressed
[   84.129127][   T40] audit: type=1326 audit(1748924861.067:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.113" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[   84.149146][   T40] audit: type=1326 audit(1748924861.067:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.113" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[   84.159758][   T40] audit: type=1326 audit(1748924861.067:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.113" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf70fe579 code=0x7ffc0000
[   84.167123][   T40] audit: type=1326 audit(1748924861.067:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.113" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[   84.179086][   T40] audit: type=1326 audit(1748924861.067:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.113" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70fe579 code=0x7ffc0000
[   84.189984][   T40] audit: type=1326 audit(1748924861.067:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.113" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[   84.200126][   T40] audit: type=1326 audit(1748924861.067:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.113" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70fe579 code=0x7ffc0000
[   84.211083][   T40] audit: type=1326 audit(1748924861.067:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.113" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[   84.221525][   T40] audit: type=1326 audit(1748924861.067:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.113" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf70fe579 code=0x7ffc0000
[   84.231871][   T40] audit: type=1326 audit(1748924861.067:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6508 comm="syz.1.113" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70fe579 code=0x7ffc0000
[   84.319682][ T6522] netlink: 8 bytes leftover after parsing attributes in process `syz.3.114'.
[   84.611903][ T6526] overlay: Unknown parameter '/'
[   84.668075][ T6518] kexec: Could not allocate control_code_buffer
[   84.687666][ T6518] Process accounting resumed
[   84.773071][ T6528] syz.2.116 uses obsolete (PF_INET,SOCK_PACKET)
[   84.978743][ T6531] netlink: 'syz.3.117': attribute type 21 has an invalid length.
[   84.982092][ T6531] netlink: 128 bytes leftover after parsing attributes in process `syz.3.117'.
[   84.986690][ T6531] netlink: 'syz.3.117': attribute type 5 has an invalid length.
[   84.990831][ T6531] netlink: 'syz.3.117': attribute type 6 has an invalid length.
[   84.994098][ T6531] netlink: 3 bytes leftover after parsing attributes in process `syz.3.117'.
[   85.802205][ T6547] netlink: 32 bytes leftover after parsing attributes in process `syz.3.122'.
[   85.922705][ T6548] netlink: 'syz.3.122': attribute type 4 has an invalid length.
[   85.925751][ T6548] netlink: 17 bytes leftover after parsing attributes in process `syz.3.122'.
[   87.036037][ T6398] libceph: connect (1)[c::]:6789 error -101
[   87.038754][ T6398] libceph: mon0 (1)[c::]:6789 connect error
[   87.079252][ T6563] ceph: No mds server is up or the cluster is laggy
[   87.294602][ T6398] libceph: connect (1)[c::]:6789 error -101
[   87.297089][ T6398] libceph: mon0 (1)[c::]:6789 connect error
[   87.573076][ T6557] kexec: Could not allocate control_code_buffer
[   87.585120][ T6557] Process accounting resumed
[   87.643716][ T6574] netlink: 64 bytes leftover after parsing attributes in process `syz.0.130'.
[   87.927675][ T6582] netlink: 'syz.0.130': attribute type 4 has an invalid length.
[   87.930223][ T6582] netlink: 17 bytes leftover after parsing attributes in process `syz.0.130'.
[   88.590801][ T6589] binder: 6588:6589 ioctl c0306201 80000080 returned -14
[   89.128571][ T6604] netlink: 4 bytes leftover after parsing attributes in process `syz.0.135'.
[   89.270170][ T6612] ceph: No mds server is up or the cluster is laggy
[   89.417748][   T40] kauditd_printk_skb: 3 callbacks suppressed
[   89.417759][   T40] audit: type=1326 audit(1748924866.077:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz.0.135" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   89.423265][ T6398] libceph: connect (1)[c::]:6789 error -101
[   89.428500][ T6398] libceph: mon0 (1)[c::]:6789 connect error
[   89.470018][   T40] audit: type=1326 audit(1748924866.077:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz.0.135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   89.478241][   T40] audit: type=1326 audit(1748924866.077:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz.0.135" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   89.489002][   T40] audit: type=1326 audit(1748924866.077:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz.0.135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   89.496489][   T40] audit: type=1326 audit(1748924866.077:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz.0.135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   89.505254][   T40] audit: type=1326 audit(1748924866.077:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz.0.135" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   89.512162][   T40] audit: type=1326 audit(1748924866.077:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz.0.135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   89.524055][   T40] audit: type=1326 audit(1748924866.077:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz.0.135" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   89.531494][   T40] audit: type=1326 audit(1748924866.077:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz.0.135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   89.541701][   T40] audit: type=1326 audit(1748924866.087:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz.0.135" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   89.645395][ T6594] netlink: 8 bytes leftover after parsing attributes in process `syz.2.136'.
[   89.929574][ T6610] kexec: Could not allocate control_code_buffer
[   89.951813][ T6610] Process accounting resumed
[   90.232862][ T6626] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[   90.234968][ T6626] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   90.239301][ T6626] vhci_hcd vhci_hcd.0: Device attached
[   90.262293][ T6626] netdevsim netdevsim3: Direct firmware load for @ failed with error -2
[   90.265570][ T6626] netdevsim netdevsim3: Falling back to sysfs fallback for: @
[   90.374027][ T5944] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   90.525089][ T5944] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   90.528648][ T5944] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   90.536060][ T5944] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   90.540513][ T5944] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   90.545437][ T5944] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   90.553165][ T5944] usb 7-1: config 0 descriptor??
[   90.703884][   T67] usb 43-1: new low-speed USB device number 4 using vhci_hcd
[   90.818046][ T6627] vhci_hcd: connection reset by peer
[   90.823878][ T1146] vhci_hcd: stop threads
[   90.825348][ T1146] vhci_hcd: release socket
[   90.826950][ T1146] vhci_hcd: disconnect device
[   90.980387][ T5944] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[   91.027129][ T5944] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[   91.228565][ T6619] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.232851][ T6619] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.240286][ T6619] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   91.244165][ T6619] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   91.718226][ T6398] libceph: connect (1)[c::]:6789 error -101
[   91.722150][ T6398] libceph: mon0 (1)[c::]:6789 connect error
[   91.754942][ T6652] ceph: No mds server is up or the cluster is laggy
[   92.016828][ T6651] trusted_key: encrypted_key: insufficient parameters specified
[   92.225146][ T6398] libceph: connect (1)[c::]:6789 error -101
[   92.236157][ T6398] libceph: mon0 (1)[c::]:6789 connect error
[   92.394646][ T2296] usb 7-1: reset high-speed USB device number 3 using dummy_hcd
[   92.518513][ T6398] libceph: connect (1)[c::]:6789 error -101
[   92.520537][ T6398] libceph: mon0 (1)[c::]:6789 connect error
[   92.810767][ T6661] ceph: No mds server is up or the cluster is laggy
[   92.853529][ T6671] e1000e 0000:00:02.0 eth1: NIC Link is Down
[   93.872402][ T5944] usb 7-1: USB disconnect, device number 3
[   94.702045][ T6398] libceph: connect (1)[c::]:6789 error -101
[   94.750014][ T6723] ceph: No mds server is up or the cluster is laggy
[   94.802440][   T40] audit: type=1326 audit(1748924871.747:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.0.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   94.813614][ T6730] netlink: 4 bytes leftover after parsing attributes in process `syz.0.158'.
[   94.817810][   T40] audit: type=1326 audit(1748924871.747:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.0.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   94.828363][   T40] audit: type=1326 audit(1748924871.757:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.0.158" exe="/syz-executor" sig=0 arch=40000003 syscall=218 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   94.837543][   T40] audit: type=1326 audit(1748924871.757:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.0.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   94.846502][   T40] audit: type=1326 audit(1748924871.757:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.0.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   94.855760][   T40] audit: type=1326 audit(1748924871.757:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.0.158" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   94.864661][   T40] audit: type=1326 audit(1748924871.757:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.0.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   94.873814][   T40] audit: type=1326 audit(1748924871.757:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.0.158" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   94.881289][   T40] audit: type=1326 audit(1748924871.757:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.0.158" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   94.888211][   T40] audit: type=1326 audit(1748924871.757:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6724 comm="syz.0.158" exe="/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf7fe5579 code=0x7ffc0000
[   95.030073][ T6398] libceph: mon0 (1)[c::]:6789 connect error
[   96.178160][ T6743] netlink: 4 bytes leftover after parsing attributes in process `syz.2.160'.
[   96.288568][ T6751] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[   96.290757][ T6751] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   96.297447][ T6751] vhci_hcd vhci_hcd.0: Device attached
[   96.304249][   T34] libceph: connect (1)[c::]:6789 error -101
[   96.307301][   T34] libceph: mon0 (1)[c::]:6789 connect error
[   96.385989][ T6749] ceph: No mds server is up or the cluster is laggy
[   96.756126][ T6751] netdevsim netdevsim3: Direct firmware load for @ failed with error -2
[   96.759072][ T6751] netdevsim netdevsim3: Falling back to sysfs fallback for: @
[   96.793851][   T67] usb 43-1: device descriptor read/64, error -110
[   97.043907][   T67] usb 43-1: new low-speed USB device number 5 using vhci_hcd
[   98.151508][ T6752] vhci_hcd: connection reset by peer
[   98.156229][ T1253] vhci_hcd: stop threads
[   98.158023][ T1253] vhci_hcd: release socket
[   98.160209][ T1253] vhci_hcd: disconnect device
[   98.248193][ T6785] netlink: 168 bytes leftover after parsing attributes in process `syz.0.170'.
[   99.354686][ T6798] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[   99.357481][ T6798] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   99.362003][ T6798] vhci_hcd vhci_hcd.0: Device attached
[   99.743913][ T6398] usb 39-1: new low-speed USB device number 3 using vhci_hcd
[   99.935761][ T6807] ceph: No mds server is up or the cluster is laggy
[   99.942069][   T29] libceph: connect (1)[c::]:6789 error -101
[   99.945328][   T29] libceph: mon0 (1)[c::]:6789 connect error
[  100.584329][ T2296] IPVS: starting estimator thread 0...
[  100.674824][ T6818] IPVS: using max 42 ests per chain, 100800 per kthread
[  100.916871][ T6800] vhci_hcd: connection reset by peer
[  100.919623][ T1146] vhci_hcd: stop threads
[  100.921181][ T1146] vhci_hcd: release socket
[  100.922666][ T1146] vhci_hcd: disconnect device
[  101.865851][ T6837] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(8)
[  101.867977][ T6837] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  101.872684][ T6837] vhci_hcd vhci_hcd.0: Device attached
[  101.874657][ T6838] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  101.876741][ T6838] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  101.879282][ T6838] vhci_hcd vhci_hcd.0: Device attached
[  102.712113][ T6837] netdevsim netdevsim3: Direct firmware load for @ failed with error -2
[  102.715853][ T6837] netdevsim netdevsim3: Falling back to sysfs fallback for: @
[  103.013922][ T6001] usb 41-1: new low-speed USB device number 3 using vhci_hcd
[  103.027469][ T6840] vhci_hcd: connection reset by peer
[  103.030803][   T59] vhci_hcd: stop threads
[  103.032668][   T59] vhci_hcd: release socket
[  103.034731][   T59] vhci_hcd: disconnect device
[  103.043977][  T840] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  103.071504][ T6839] vhci_hcd: connection reset by peer
[  103.073496][   T59] vhci_hcd: stop threads
[  103.076997][   T59] vhci_hcd: release socket
[  103.079212][   T59] vhci_hcd: disconnect device
[  103.143897][   T67] vhci_hcd: vhci_device speed not set
[  103.204255][  T840] usb 6-1: Using ep0 maxpacket: 8
[  103.210394][  T840] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[  103.213003][  T840] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  103.216141][  T840] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  103.219474][  T840] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  103.222593][  T840] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  103.227492][  T840] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  103.231142][  T840] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  103.450826][  T840] usb 6-1: usb_control_msg returned -71
[  103.453209][  T840] usbtmc 6-1:16.0: can't read capabilities
[  103.462992][  T840] usb 6-1: USB disconnect, device number 2
[  104.008876][ T5982] libceph: connect (1)[c::]:6789 error -101
[  104.011169][ T5982] libceph: mon0 (1)[c::]:6789 connect error
[  104.042268][ T6853] ceph: No mds server is up or the cluster is laggy
[  104.511638][   T67] libceph: connect (1)[c::]:6789 error -101
[  104.517431][   T67] libceph: mon0 (1)[c::]:6789 connect error
[  104.532579][ T6860] ceph: No mds server is up or the cluster is laggy
[  104.826715][ T6865] fuse: Bad value for 'fd'
[  104.873914][ T6398] vhci_hcd: vhci_device speed not set
[  105.273643][ T1149] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.470624][ T6850] kexec: Could not allocate control_code_buffer
[  105.503573][ T6850] Process accounting resumed
[  105.508380][ T1149] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.629356][ T1149] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.642581][ T6883] netlink: 'syz.1.197': attribute type 11 has an invalid length.
[  105.645790][ T6883] netlink: 20 bytes leftover after parsing attributes in process `syz.1.197'.
[  105.670223][ T5942] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  105.673678][ T5942] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  105.676735][ T5942] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  105.679741][ T5942] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  105.682209][ T5942] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  105.761211][ T6892] netlink: 8 bytes leftover after parsing attributes in process `syz.1.198'.
[  105.764176][ T6892] netlink: 12 bytes leftover after parsing attributes in process `syz.1.198'.
[  105.776706][ T6892] netdevsim netdevsim1 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  105.779689][ T6892] netdevsim netdevsim1 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  105.782628][ T6892] netdevsim netdevsim1 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  105.785700][ T6892] netdevsim netdevsim1 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  105.792474][ T6892] Zero length message leads to an empty skb
[  105.807095][ T1149] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.927678][ T6894] ceph: No mds server is up or the cluster is laggy
[  105.940049][ T6398] libceph: connect (1)[c::]:6789 error -101
[  105.942397][ T6398] libceph: mon0 (1)[c::]:6789 connect error
[  106.009885][ T6885] chnl_net:caif_netlink_parms(): no params data found
[  106.094192][ T6885] bridge0: port 1(bridge_slave_0) entered blocking state
[  106.096450][ T6885] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.098811][ T6885] bridge_slave_0: entered allmulticast mode
[  106.101505][ T6885] bridge_slave_0: entered promiscuous mode
[  106.106905][ T6885] bridge0: port 2(bridge_slave_1) entered blocking state
[  106.109148][ T6885] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.111677][ T6885] bridge_slave_1: entered allmulticast mode
[  106.114642][ T6885] bridge_slave_1: entered promiscuous mode
[  106.176229][ T6885] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  106.181270][ T6885] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  106.207910][ T1149] bridge_slave_1: left allmulticast mode
[  106.211929][ T1149] bridge_slave_1: left promiscuous mode
[  106.216040][ T1149] bridge0: port 2(bridge_slave_1) entered disabled state
[  106.222634][ T1149] bridge_slave_0: left allmulticast mode
[  106.225742][ T1149] bridge_slave_0: left promiscuous mode
[  106.228094][ T1149] bridge0: port 1(bridge_slave_0) entered disabled state
[  106.503865][ T1149] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  106.508480][ T1149] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  106.512417][ T1149] bond0 (unregistering): Released all slaves
[  106.555578][ T6885] team0: Port device team_slave_0 added
[  106.568526][ T6885] team0: Port device team_slave_1 added
[  106.574652][ T6908] dvmrp9: entered allmulticast mode
[  106.609828][ T6885] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.612028][ T6885] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.622396][ T6885] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.626645][ T6885] batman_adv: batadv0: Adding interface: batadv_slave_1
[  106.628812][ T6885] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.637210][ T6885] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  106.650618][ T6915] ./file0: Can't lookup blockdev
[  106.713279][ T6885] hsr_slave_0: entered promiscuous mode
[  106.717127][ T6885] hsr_slave_1: entered promiscuous mode
[  106.719183][ T6885] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  106.721558][ T6885] Cannot create hsr debugfs directory
[  106.863647][ T1149] hsr_slave_0: left promiscuous mode
[  106.869268][ T1149] hsr_slave_1: left promiscuous mode
[  106.871840][ T1149] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  106.874325][ T1149] batman_adv: batadv0: Removing interface: batadv_slave_0
[  106.880115][ T1149] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  106.882406][ T1149] batman_adv: batadv0: Removing interface: batadv_slave_1
[  106.909463][ T1149] veth1_macvtap: left promiscuous mode
[  106.911659][ T1149] veth0_macvtap: left promiscuous mode
[  106.913544][ T1149] veth1_vlan: left promiscuous mode
[  106.916489][ T1149] veth0_vlan: left promiscuous mode
[  107.179007][   T67] libceph: connect (1)[c::]:6789 error -101
[  107.182301][   T67] libceph: mon0 (1)[c::]:6789 connect error
[  107.219127][ T6925] ceph: No mds server is up or the cluster is laggy
[  107.437267][ T6930] configfs: Unknown parameter 'fd'
[  107.584072][ T1149] team0 (unregistering): Port device team_slave_1 removed
[  107.644693][ T1149] team0 (unregistering): Port device team_slave_0 removed
[  107.765792][   T63] Bluetooth: hci0: command tx timeout
[  108.154031][ T6001] vhci_hcd: vhci_device speed not set
[  108.371314][ T6938] FAULT_INJECTION: forcing a failure.
[  108.371314][ T6938] name failslab, interval 1, probability 0, space 0, times 1
[  108.383869][ T6938] CPU: 1 UID: 0 PID: 6938 Comm: syz.1.205 Not tainted 6.15.0-syzkaller-10954-gd00a83477e7a #0 PREEMPT(full) 
[  108.383892][ T6938] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  108.383902][ T6938] Call Trace:
[  108.383908][ T6938]  <TASK>
[  108.383915][ T6938]  dump_stack_lvl+0x16c/0x1f0
[  108.383942][ T6938]  should_fail_ex+0x512/0x640
[  108.383967][ T6938]  ? __kvmalloc_node_noprof+0x122/0x620
[  108.384007][ T6938]  should_failslab+0xc2/0x120
[  108.384032][ T6938]  __kvmalloc_node_noprof+0x135/0x620
[  108.384049][ T6938]  ? br_dev_setup+0x8cb/0xab0
[  108.384067][ T6938]  ? __pfx_br_dev_setup+0x10/0x10
[  108.384080][ T6938]  ? alloc_netdev_mqs+0xb5b/0x1570
[  108.384106][ T6938]  ? alloc_netdev_mqs+0xb5b/0x1570
[  108.384125][ T6938]  alloc_netdev_mqs+0xb5b/0x1570
[  108.384151][ T6938]  rtnl_create_link+0xc08/0xf90
[  108.384180][ T6938]  rtnl_newlink+0xb69/0x2000
[  108.384218][ T6938]  ? __pfx_rtnl_newlink+0x10/0x10
[  108.384239][ T6938]  ? kasan_quarantine_put+0x10a/0x240
[  108.384259][ T6938]  ? lockdep_hardirqs_on+0x7c/0x110
[  108.384287][ T6938]  ? kfree_skbmem+0x1a4/0x1f0
[  108.384318][ T6938]  ? rcu_is_watching+0x12/0xc0
[  108.384342][ T6938]  ? trace_cap_capable+0x18d/0x200
[  108.384367][ T6938]  ? find_held_lock+0x2b/0x80
[  108.384391][ T6938]  ? __pfx_rtnl_newlink+0x10/0x10
[  108.384414][ T6938]  ? __pfx_rtnl_newlink+0x10/0x10
[  108.384434][ T6938]  ? rtnetlink_rcv_msg+0x93a/0xe90
[  108.384457][ T6938]  ? __pfx_rtnl_newlink+0x10/0x10
[  108.384482][ T6938]  rtnetlink_rcv_msg+0x95e/0xe90
[  108.384507][ T6938]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  108.384526][ T6938]  ? ref_tracker_free+0x37c/0x830
[  108.384539][ T6938]  netlink_rcv_skb+0x155/0x420
[  108.384549][ T6938]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  108.384565][ T6938]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  108.384588][ T6938]  ? netlink_deliver_tap+0x1ae/0xd30
[  108.384607][ T6938]  netlink_unicast+0x53a/0x7f0
[  108.384625][ T6938]  ? __pfx_netlink_unicast+0x10/0x10
[  108.384646][ T6938]  netlink_sendmsg+0x8d1/0xdd0
[  108.384666][ T6938]  ? __pfx_netlink_sendmsg+0x10/0x10
[  108.384684][ T6938]  ? __import_iovec+0x1dd/0x650
[  108.384699][ T6938]  ____sys_sendmsg+0xa95/0xc70
[  108.384711][ T6938]  ? __pfx_____sys_sendmsg+0x10/0x10
[  108.384721][ T6938]  ? get_compat_msghdr+0x11a/0x170
[  108.384762][ T6938]  ___sys_sendmsg+0x134/0x1d0
[  108.384784][ T6938]  ? __pfx____sys_sendmsg+0x10/0x10
[  108.384805][ T6938]  ? find_held_lock+0x2b/0x80
[  108.384829][ T6938]  __sys_sendmsg+0x16d/0x220
[  108.384844][ T6938]  ? __pfx___sys_sendmsg+0x10/0x10
[  108.384864][ T6938]  ? rcu_is_watching+0x12/0xc0
[  108.384881][ T6938]  __do_fast_syscall_32+0x7c/0x3a0
[  108.384898][ T6938]  do_fast_syscall_32+0x32/0x80
[  108.384913][ T6938]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  108.384927][ T6938] RIP: 0023:0xf70fe579
[  108.384936][ T6938] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  108.384946][ T6938] RSP: 002b:00000000f50ee55c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[  108.384956][ T6938] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000040
[  108.384964][ T6938] RDX: 0000000000000800 RSI: 0000000000000000 RDI: 0000000000000000
[  108.384970][ T6938] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  108.384976][ T6938] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  108.384982][ T6938] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  108.384995][ T6938]  </TASK>
[  108.755310][ T1149] IPVS: stop unused estimator thread 0...
[  108.909182][ T6885] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  108.918785][ T6885] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  108.926741][ T6885] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  108.937583][ T6885] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  109.005556][ T6885] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.025562][ T6885] 8021q: adding VLAN 0 to HW filter on device team0
[  109.032802][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.035393][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.042389][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.045232][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.346777][ T6002] libceph: connect (1)[c::]:6789 error -101
[  109.348819][ T6002] libceph: mon0 (1)[c::]:6789 connect error
[  109.381115][ T6885] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.389958][ T6980] ceph: No mds server is up or the cluster is laggy
[  109.420011][ T6885] veth0_vlan: entered promiscuous mode
[  109.427947][ T6885] veth1_vlan: entered promiscuous mode
[  109.443564][ T6885] veth0_macvtap: entered promiscuous mode
[  109.450545][ T6885] veth1_macvtap: entered promiscuous mode
[  109.466299][ T6885] batman_adv: batadv0: Interface activated: batadv_slave_0
[  109.477744][ T6885] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.484265][ T6885] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.487019][ T6885] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.489822][ T6885] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.492526][ T6885] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  109.528809][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.532108][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.548818][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.551315][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  109.566565][ T6885] ==================================================================
[  109.569067][ T6885] BUG: KASAN: slab-use-after-free in binder_add_device+0xa4/0xb0
[  109.571453][ T6885] Write of size 8 at addr ffff8880135ffc08 by task syz-executor/6885
[  109.575138][ T6885] 
[  109.576224][ T6885] CPU: 2 UID: 0 PID: 6885 Comm: syz-executor Not tainted 6.15.0-syzkaller-10954-gd00a83477e7a #0 PREEMPT(full) 
[  109.576239][ T6885] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.576246][ T6885] Call Trace:
[  109.576250][ T6885]  <TASK>
[  109.576254][ T6885]  dump_stack_lvl+0x116/0x1f0
[  109.576271][ T6885]  print_report+0xcd/0x680
[  109.576286][ T6885]  ? __virt_addr_valid+0x81/0x610
[  109.576301][ T6885]  ? __phys_addr+0xe8/0x180
[  109.576316][ T6885]  ? binder_add_device+0xa4/0xb0
[  109.576326][ T6885]  kasan_report+0xe0/0x110
[  109.576341][ T6885]  ? binder_add_device+0xa4/0xb0
[  109.576352][ T6885]  binder_add_device+0xa4/0xb0
[  109.576362][ T6885]  binderfs_binder_device_create.isra.0+0xa03/0xc30
[  109.576379][ T6885]  binderfs_fill_super+0x8d4/0x1360
[  109.576393][ T6885]  ? __pfx_binderfs_fill_super+0x10/0x10
[  109.576410][ T6885]  ? shrinker_register+0x1a8/0x260
[  109.576425][ T6885]  ? sget_fc+0x808/0xc20
[  109.576437][ T6885]  ? apparmor_capable+0x114/0x1d0
[  109.576449][ T6885]  ? __pfx_set_anon_super_fc+0x10/0x10
[  109.576460][ T6885]  ? __pfx_binderfs_fill_super+0x10/0x10
[  109.576473][ T6885]  get_tree_nodev+0xda/0x190
[  109.576485][ T6885]  vfs_get_tree+0x8b/0x340
[  109.576495][ T6885]  path_mount+0x14d4/0x1f70
[  109.576509][ T6885]  ? kmem_cache_free+0x2d1/0x4d0
[  109.576522][ T6885]  ? __pfx_path_mount+0x10/0x10
[  109.576536][ T6885]  ? getname_flags.part.0+0x1c5/0x550
[  109.576553][ T6885]  ? putname+0x154/0x1a0
[  109.576568][ T6885]  __ia32_sys_mount+0x28b/0x310
[  109.576582][ T6885]  ? __pfx___ia32_sys_mount+0x10/0x10
[  109.576596][ T6885]  ? __pfx___ia32_sys_umount+0x10/0x10
[  109.576610][ T6885]  ? rcu_is_watching+0x12/0xc0
[  109.576626][ T6885]  __do_fast_syscall_32+0x7c/0x3a0
[  109.576642][ T6885]  do_fast_syscall_32+0x32/0x80
[  109.576656][ T6885]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.576670][ T6885] RIP: 0023:0xf7f82579
[  109.576678][ T6885] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  109.576689][ T6885] RSP: 002b:00000000fff1fa10 EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  109.576699][ T6885] RAX: ffffffffffffffda RBX: 00000000f72a64ed RCX: 00000000f7296be3
[  109.576706][ T6885] RDX: 00000000f72a64ed RSI: 0000000000000000 RDI: 0000000000000000
[  109.576712][ T6885] RBP: 00000000f7274088 R08: 0000000000000000 R09: 0000000000000000
[  109.576718][ T6885] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  109.576724][ T6885] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  109.576749][ T6885]  </TASK>
[  109.576754][ T6885] 
[  109.656363][ T6885] Allocated by task 6928:
[  109.657731][ T6885]  kasan_save_stack+0x33/0x60
[  109.659229][ T6885]  kasan_save_track+0x14/0x30
[  109.660725][ T6885]  __kasan_kmalloc+0xaa/0xb0
[  109.662229][ T6885]  drm_atomic_helper_setup_commit+0x63a/0x15d0
[  109.664150][ T6885]  drm_atomic_helper_commit+0xa9/0x380
[  109.665865][ T6885]  drm_atomic_commit+0x231/0x300
[  109.667417][ T6885]  drm_client_modeset_commit_atomic+0x69d/0x7e0
[  109.669363][ T6885]  drm_client_modeset_commit_locked+0x14d/0x580
[  109.671335][ T6885]  drm_fb_helper_pan_display+0x32d/0xa40
[  109.673101][ T6885]  fb_pan_display+0x479/0x7d0
[  109.674582][ T6885]  fb_set_var+0x860/0x1260
[  109.675999][ T6885]  fbcon_resize+0x684/0x910
[  109.677442][ T6885]  vc_do_resize+0xccb/0x10e0
[  109.678917][ T6885]  vt_ioctl+0x24ce/0x2f50
[  109.680303][ T6885]  vt_compat_ioctl+0x237/0x4e0
[  109.681862][ T6885]  tty_compat_ioctl+0x2f1/0x4d0
[  109.683420][ T6885]  __ia32_compat_sys_ioctl+0x242/0x370
[  109.685138][ T6885]  __do_fast_syscall_32+0x7c/0x3a0
[  109.686747][ T6885]  do_fast_syscall_32+0x32/0x80
[  109.688282][ T6885]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.690289][ T6885] 
[  109.691060][ T6885] Freed by task 6966:
[  109.692318][ T6885]  kasan_save_stack+0x33/0x60
[  109.693817][ T6885]  kasan_save_track+0x14/0x30
[  109.695304][ T6885]  kasan_save_free_info+0x3b/0x60
[  109.696902][ T6885]  __kasan_slab_free+0x51/0x70
[  109.698430][ T6885]  kfree+0x2b4/0x4d0
[  109.699691][ T6885]  __drm_atomic_helper_plane_destroy_state+0x1bb/0x1f0
[  109.701832][ T6885]  drm_gem_destroy_shadow_plane_state+0x21/0x30
[  109.703802][ T6885]  drm_atomic_state_default_clear+0x69e/0xe40
[  109.705710][ T6885]  __drm_atomic_state_free+0x185/0x2b0
[  109.707412][ T6885]  drm_client_modeset_commit_atomic+0x6b2/0x7e0
[  109.709365][ T6885]  drm_client_modeset_commit_locked+0x14d/0x580
[  109.711338][ T6885]  drm_client_modeset_commit+0x4f/0x80
[  109.713061][ T6885]  __drm_fb_helper_restore_fbdev_mode_unlocked+0x19f/0x200
[  109.715314][ T6885]  drm_fb_helper_set_par+0xd8/0x120
[  109.716953][ T6885]  fb_set_var+0x838/0x1260
[  109.718376][ T6885]  fbcon_resize+0x684/0x910
[  109.719849][ T6885]  vc_do_resize+0xccb/0x10e0
[  109.721336][ T6885]  vt_ioctl+0x24ce/0x2f50
[  109.722705][ T6885]  vt_compat_ioctl+0x237/0x4e0
[  109.724262][ T6885]  tty_compat_ioctl+0x2f1/0x4d0
[  109.725844][ T6885]  __ia32_compat_sys_ioctl+0x242/0x370
[  109.727545][ T6885]  __do_fast_syscall_32+0x7c/0x3a0
[  109.729157][ T6885]  do_fast_syscall_32+0x32/0x80
[  109.730698][ T6885]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.732652][ T6885] 
[  109.733424][ T6885] The buggy address belongs to the object at ffff8880135ffc00
[  109.733424][ T6885]  which belongs to the cache kmalloc-512 of size 512
[  109.737657][ T6885] The buggy address is located 8 bytes inside of
[  109.737657][ T6885]  freed 512-byte region [ffff8880135ffc00, ffff8880135ffe00)
[  109.741814][ T6885] 
[  109.742583][ T6885] The buggy address belongs to the physical page:
[  109.744562][ T6885] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x135fc
[  109.747260][ T6885] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  109.749878][ T6885] anon flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[  109.752323][ T6885] page_type: f5(slab)
[  109.753593][ T6885] raw: 00fff00000000040 ffff88801b442c80 0000000000000000 dead000000000001
[  109.756232][ T6885] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  109.758900][ T6885] head: 00fff00000000040 ffff88801b442c80 0000000000000000 dead000000000001
[  109.761591][ T6885] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[  109.764260][ T6885] head: 00fff00000000002 ffffea00004d7f01 00000000ffffffff 00000000ffffffff
[  109.766962][ T6885] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000004
[  109.769642][ T6885] page dumped because: kasan: bad access detected
[  109.771618][ T6885] page_owner tracks the page as allocated
[  109.773387][ T6885] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5994, tgid 5994 (kworker/u32:3), ts 48233532304, free_ts 20733960132
[  109.779653][ T6885]  post_alloc_hook+0x1c0/0x230
[  109.781166][ T6885]  get_page_from_freelist+0x1321/0x3890
[  109.782882][ T6885]  __alloc_frozen_pages_noprof+0x261/0x23f0
[  109.784747][ T6885]  alloc_pages_mpol+0x1fb/0x550
[  109.786279][ T6885]  new_slab+0x23b/0x330
[  109.787584][ T6885]  ___slab_alloc+0xd9c/0x1940
[  109.789068][ T6885]  __slab_alloc.constprop.0+0x56/0xb0
[  109.790735][ T6885]  __kmalloc_cache_noprof+0xfb/0x3e0
[  109.792390][ T6885]  tomoyo_find_next_domain+0xfd/0x20b0
[  109.794004][ T6885]  tomoyo_bprm_check_security+0x12e/0x1d0
[  109.795706][ T6885]  security_bprm_check+0x1b9/0x1e0
[  109.797306][ T6885]  bprm_execve+0x810/0x1650
[  109.798744][ T6885]  kernel_execve+0x2ef/0x3b0
[  109.800221][ T6885]  call_usermodehelper_exec_async+0x255/0x4c0
[  109.802110][ T6885]  ret_from_fork+0x5d4/0x6f0
[  109.803548][ T6885]  ret_from_fork_asm+0x1a/0x30
[  109.805050][ T6885] page last free pid 5354 tgid 5354 stack trace:
[  109.806998][ T6885]  __free_frozen_pages+0x7fe/0x1180
[  109.808616][ T6885]  rcu_core+0x79c/0x14e0
[  109.809971][ T6885]  handle_softirqs+0x219/0x8e0
[  109.811467][ T6885]  __irq_exit_rcu+0x109/0x170
[  109.812955][ T6885]  irq_exit_rcu+0x9/0x30
[  109.814313][ T6885]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  109.816028][ T6885]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  109.817855][ T6885] 
[  109.818624][ T6885] Memory state around the buggy address:
[  109.820387][ T6885]  ffff8880135ffb00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  109.822767][ T6885]  ffff8880135ffb80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  109.825230][ T6885] >ffff8880135ffc00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  109.827780][ T6885]                       ^
[  109.829222][ T6885]  ffff8880135ffc80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  109.831761][ T6885]  ffff8880135ffd00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  109.834231][ T6885] ==================================================================
[  109.849777][   T63] Bluetooth: hci0: command tx timeout
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  109.919866][ T6885] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  109.922235][ T6885] CPU: 1 UID: 0 PID: 6885 Comm: syz-executor Not tainted 6.15.0-syzkaller-10954-gd00a83477e7a #0 PREEMPT(full) 
[  109.925857][ T6885] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.929152][ T6885] Call Trace:
[  109.930232][ T6885]  <TASK>
[  109.931172][ T6885]  dump_stack_lvl+0x3d/0x1f0
[  109.932629][ T6885]  panic+0x71c/0x800
[  109.933876][ T6885]  ? __pfx_panic+0x10/0x10
[  109.935283][ T6885]  ? mark_held_locks+0x49/0x80
[  109.936793][ T6885]  ? preempt_schedule_thunk+0x16/0x30
[  109.938476][ T6885]  ? binder_add_device+0xa4/0xb0
[  109.940041][ T6885]  ? preempt_schedule_common+0x44/0xc0
[  109.941760][ T6885]  ? check_panic_on_warn+0x1f/0xb0
[  109.943367][ T6885]  ? binder_add_device+0xa4/0xb0
[  109.944913][ T6885]  check_panic_on_warn+0xab/0xb0
[  109.946458][ T6885]  end_report+0x107/0x170
[  109.947810][ T6885]  kasan_report+0xee/0x110
[  109.949178][ T6885]  ? binder_add_device+0xa4/0xb0
[  109.950664][ T6885]  binder_add_device+0xa4/0xb0
[  109.952161][ T6885]  binderfs_binder_device_create.isra.0+0xa03/0xc30
[  109.954153][ T6885]  binderfs_fill_super+0x8d4/0x1360
[  109.955766][ T6885]  ? __pfx_binderfs_fill_super+0x10/0x10
[  109.957520][ T6885]  ? shrinker_register+0x1a8/0x260
[  109.959123][ T6885]  ? sget_fc+0x808/0xc20
[  109.960443][ T6885]  ? apparmor_capable+0x114/0x1d0
[  109.962017][ T6885]  ? __pfx_set_anon_super_fc+0x10/0x10
[  109.963707][ T6885]  ? __pfx_binderfs_fill_super+0x10/0x10
[  109.965308][ T6885]  get_tree_nodev+0xda/0x190
[  109.966709][ T6885]  vfs_get_tree+0x8b/0x340
[  109.968046][ T6885]  path_mount+0x14d4/0x1f70
[  109.969473][ T6885]  ? kmem_cache_free+0x2d1/0x4d0
[  109.971048][ T6885]  ? __pfx_path_mount+0x10/0x10
[  109.972567][ T6885]  ? getname_flags.part.0+0x1c5/0x550
[  109.974245][ T6885]  ? putname+0x154/0x1a0
[  109.975530][ T6885]  __ia32_sys_mount+0x28b/0x310
[  109.976879][ T6885]  ? __pfx___ia32_sys_mount+0x10/0x10
[  109.978557][ T6885]  ? __pfx___ia32_sys_umount+0x10/0x10
[  109.980278][ T6885]  ? rcu_is_watching+0x12/0xc0
[  109.981785][ T6885]  __do_fast_syscall_32+0x7c/0x3a0
[  109.983389][ T6885]  do_fast_syscall_32+0x32/0x80
[  109.984921][ T6885]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.986870][ T6885] RIP: 0023:0xf7f82579
[  109.988151][ T6885] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  109.994074][ T6885] RSP: 002b:00000000fff1fa10 EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  109.996633][ T6885] RAX: ffffffffffffffda RBX: 00000000f72a64ed RCX: 00000000f7296be3
[  109.999091][ T6885] RDX: 00000000f72a64ed RSI: 0000000000000000 RDI: 0000000000000000
[  110.001537][ T6885] RBP: 00000000f7274088 R08: 0000000000000000 R09: 0000000000000000
[  110.003970][ T6885] R10: 0000000000000000 R11: 0000000000000292 R12: 0000000000000000
[  110.006415][ T6885] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  110.008855][ T6885]  </TASK>
[  110.010498][ T6885] Kernel Offset: disabled
[  110.011836][ T6885] Rebooting in 86400 seconds..

VM DIAGNOSIS:
04:28:06  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000321623 RBX=0000000000000000 RCX=ffffffff8b799c79 RDX=0000000000000000
RSI=ffffffff8dc02fb2 RDI=ffffffff8bf52ee0 RBP=fffffbfff1c12ef0 RSP=ffffffff8e007e08
R8 =0000000000000001 R9 =ffffed100564663d R10=ffff88802b2331eb R11=0000000000000001
R12=0000000000000000 R13=ffffffff8e097780 R14=ffffffff9087b250 R15=0000000000000000
RIP=ffffffff8b7987df RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097775000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055c834e03950 CR3=000000006811c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000004800000000 0000000100000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a800000000 0000000500000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=ffffffff9aba5800 RBX=0000000000000000 RCX=0000000000000002 RDX=0000000000000000
RSI=0000000000000000 RDI=ffffffff8e3c2c00 RBP=ffff888024de0000 RSP=ffffc90003486c68
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=ffffffff8e3c2c00
RIP=ffffffff8197cd57 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097875000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000055c834e03950 CR3=0000000054585000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000c9000000000 0000002f00000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000038 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85562565 RDI=ffffffff9ae599c0 RBP=ffffffff9ae59980 RSP=ffffc90002e7f4f0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3331303838387257
R12=0000000000000000 R13=0000000000000038 R14=ffffffff9ae59980 R15=ffffffff85562500
RIP=ffffffff8556258f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097975000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00000000f73b7c60 CR3=00000000632b0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000000ff
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4e4f4954504f5f4e 4153410063657865
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000046 RBX=ffffffff8e3c2c00 RCX=000000002e4ecbc5 RDX=0000000000000000
RSI=ffffffff8dbdd9ce RDI=ffffffff8bf52ee0 RBP=0000000000000002 RSP=ffffc9000480f3d0
R8 =a3d52e60c1b79771 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000001
R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff8197f2a2 RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097a75000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f4c3a5ab6b0 CR3=000000000e180000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008000000 Opmask01=0000000000000020 Opmask02=00000000fff7ffdf Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4c3a7bc8f0 00007f4c3a7bc310
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4c3a77d050 00007f4c3a77c0c0
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4c3a77d580 00007f4c3a77cb20
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4c3a47f0c0 00007f4c3a77dab0
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4c3a7bbda0 00007f4c3a77c5f0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4c3a47f6b0 00007f4c3a47f0c0
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4c3a77dab0 00007f4c3a77d580
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f4c3a77cb20 00007f4c3a77d050
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f 2f2f2f2f2f2f2f2f
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6c6f7365722f6574 6174732d6b6f6f68 2f6463706368642f 6e75722f7261762f
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 635f6669006b6e69 6c2e326874652e66 6e6f632e766c6f73 65722f6574617473
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000