last executing test programs:

3.571560176s ago: executing program 2 (id=445):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_MON_PEER_GET(r1, &(0x7f0000000280)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000240)={&(0x7f0000000080)={0x120, 0x0, 0x20, 0x70bd25, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0xf}]}, @TIPC_NLA_SOCK={0x3c, 0x2, 0x0, 0x1, [@TIPC_NLA_SOCK_CON={0x24, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x3}, @TIPC_NLA_CON_NODE={0x8, 0x2, 0x6}, @TIPC_NLA_CON_FLAG={0x8, 0x1, 0x7}]}, @TIPC_NLA_SOCK_CON={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_CON_NODE={0x8, 0x2, 0x4afd}]}, @TIPC_NLA_SOCK_ADDR={0x8, 0x1, 0x5}]}, @TIPC_NLA_PUBL={0x4c, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xbd9}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x3}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x4}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0xa0000}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x1}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x9}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x6}, @TIPC_NLA_PUBL_LOWER={0x8, 0x2, 0x1}, @TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0x8}]}, @TIPC_NLA_LINK={0x68, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x2}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7ff}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x20a9}, @TIPC_NLA_PROP_WIN={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffffffa}]}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz0\x00'}, @TIPC_NLA_LINK_PROP={0x4}]}, @TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x7fff}]}]}, 0x120}, 0x1, 0x0, 0x0, 0xc040}, 0x1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x1c, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0)

3.518044904s ago: executing program 2 (id=448):
creat(&(0x7f0000000240)='./file0\x00', 0x0) (async)
pipe2$9p(&(0x7f0000000180)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x80000)
write$P9_RVERSION(r0, &(0x7f0000000500)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r1 = dup(r0)
write$FUSE_BMAP(r1, &(0x7f0000000100)={0x18}, 0x18) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
r2 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r2, &(0x7f0000000000)=@in6={0x21, 0x1, 0x2, 0x1c, {0xa, 0x4e20, 0x3, @empty, 0xd}}, 0x24)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r3) (async)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000400)={0x90, r5, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r6}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x2a, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac}, 0x0, @default, 0x1, @void, @val, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void, @void}}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x16}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x13b}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x6}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x3}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x18}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x2}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0xf}], @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x90}}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r7=>0xffffffffffffffff}) (async)
r8 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r7, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r9=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000001040)={&(0x7f0000000000)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="cf0400000000000000001300000008000300", @ANYRES32=r9, @ANYBLOB="0500130092848b000a00060008021100000100000600100080050000"], 0x40}, 0x1, 0x0, 0x0, 0xc0}, 0x0) (async)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r10, 0x8933, &(0x7f0000000700)={'wlan1\x00'})
r11 = socket$nl_generic(0x10, 0x3, 0x10)
r12 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) (async)
ioctl$sock_SIOCGIFINDEX_80211(r11, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r13=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000540)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r12, @ANYBLOB="050000000000000000000600000008000300", @ANYRES32=r13, @ANYBLOB="080005b3a46f5c00a09b2de46c6b5a404a4c3f80606b44403e542fd46a578e6145f77c1a27e5b1ddfdd2e809acd94dcad6a29fb2c20f08ff2c12fc0e20d5ea4c0e3fc4ed5f8c760965602e89f5da1c5e694feaffd77acc804eeee6591fd70f779853d7890def5c95a8a32b7ecf30f51543b978a937857884383a5d6a27889ac7e9225dc82b3b4054ffbb63c3b199f3f3701f3656153f77f98e6e141d179bff8ff6a2c304d275595bbbae1e99b459121ee2aa4d5a1cb219dc96e5"], 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x30, r12, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r13}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}]]}, 0x30}, 0x1, 0x0, 0x0, 0x800}, 0x0) (async)
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000300)=@mgmt_frame=@probe_response={{{}, {}, @device_b, @device_a, @from_mac}, 0x0, @default, 0x1, @val={0x0, 0x6, @default_ap_ssid}, @val={0x1, 0x1, [{0x12}]}, @void, @void, @void, @void, @void, @void}, 0x2f)
nanosleep(&(0x7f0000000340)={0x0, 0x989680}, 0x0) (async)
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000280)=@mgmt_frame=@assoc_resp={{{}, {}, @device_b, @device_a, @from_mac, {0x0, 0x2}}, 0x45e5, 0x0, @default, @void, @val={0x2d, 0x1a, {0x4b91, 0x0, 0x2, 0x0, {0x4, 0x9, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2}, 0x8, 0x3, 0x8}}}, 0x3a)

3.230034121s ago: executing program 1 (id=453):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={<r1=>0x0, 0xf8ab}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000080)={r1, 0x5e, "28f1acfc607a15924b82280132d5c99c60cf57cc7942c46d4243cda0d3239260c29ba732702d86e6ae97d2767ec54b30af1507765676f662918aff088a203df60475773ed7b4f73849289d18e521cbd3f900dc0a24337614e0c7484cec5f"}, &(0x7f0000000100)=0x66)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
bind$alg(r2, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x45)
r4 = accept4(r2, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
recvmmsg(r4, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x58, &(0x7f0000000240)}, 0x10)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x441, 0x0)
write$binfmt_aout(r5, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCXONC(r5, 0x540a, 0x2)
syz_clone3(&(0x7f00000007c0)={0x10000, &(0x7f00000004c0), &(0x7f0000000500), &(0x7f0000000580), {0xd}, &(0x7f00000005c0)=""/160, 0xa0, &(0x7f0000000680)=""/177, &(0x7f0000000740)=[0x0, 0x0, 0x0], 0x3}, 0x58)
ioctl$TCXONC(r5, 0x540a, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000100)=0x3)
ioctl$TCSBRK(r5, 0x5409, 0x3)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000240)={0x0, <r7=>0x0}, &(0x7f0000000280)=0x5)
setuid(r7)

2.883941428s ago: executing program 2 (id=454):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x1c, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x0, {0xa, 0x0, 0x3}, [@NHA_BLACKHOLE={0x4}]}, 0x1c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="240000001800490400000000030014000a100000000000000100000008001e0001"], 0x24}}, 0x0)

2.883683117s ago: executing program 2 (id=455):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='attr/prev\x00')
read$FUSE(r0, 0x0, 0x0)
r1 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000400)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES8], 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)=ANY=[@ANYBLOB="2400ebff2000010000000000000000000200000800000000000000000500150000000000"], 0x24}}, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x5200c, &(0x7f00000001c0)={[{@index_off}, {@verity_on}, {@nfs_export_off}], [{@measure}, {@pcr={'pcr', 0x3d, 0x6}}, {@fowner_lt={'fowner<', 0xee00}}, {@smackfsfloor={'smackfsfloor', 0x3d, '(@(^^}+%:'}}, {@subj_user={'subj_user', 0x3d, '/dev/usb/hiddev#\x00'}}]})
syz_usb_control_io$hid(r1, 0x0, 0x0)
syz_usb_control_io(r1, &(0x7f00000000c0)={0x18, &(0x7f0000000040)=ANY=[@ANYRES32=r1], 0x0, 0x0, 0x0, 0x0}, 0x0)
r3 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGFIELDINFO(r3, 0xc038480a, &(0x7f0000000100)={0x2, 0x1, 0x0, 0x2003ff, 0xc, 0x1, 0x7fffffff, 0x1, 0x6, 0x1, 0x80000000, 0x7, 0x100, 0x80000000})

2.797556723s ago: executing program 3 (id=459):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000040)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x36}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x63, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000100)={r2, r1}, 0x40)
syz_emit_ethernet(0x11dc0, &(0x7f0000000380)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x3f, 0x0, 0x0, 0x33, 0x0, @private, @broadcast}, {0x0, 0x0, 0x8}}}}}, 0x0)

2.727470694s ago: executing program 3 (id=460):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x2, 0x56d, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x6}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000400)={r5, r0}, 0xc)
r6 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000000100000040000180060001000a00000008000500000000000c000700000000000000000008000900710000000700060072720000080008"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$VIDIOC_S_SELECTION(r6, 0xc040565f, &(0x7f0000000940)={0xa, 0x100, 0x3, {0x8000, 0x1000, 0x4, 0x2}})
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
ioctl$CDROMMULTISESSION(0xffffffffffffffff, 0x5310, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

2.10703526s ago: executing program 0 (id=463):
r0 = socket$netlink(0x10, 0x3, 0xa)
r1 = dup(r0)
r2 = open(&(0x7f0000000040)='./file1\x00', 0x1850c2, 0x14c)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r1, 0x0, 0x25, 0x2, @void}, 0x10)
ftruncate(r2, 0x200004)
sendfile(r1, r2, 0x0, 0x80001d00c0d1) (fail_nth: 9)

1.923252255s ago: executing program 0 (id=464):
r0 = openat$ndctl0(0xffffff9c, &(0x7f0000000000), 0x80, 0x0)
setsockopt$MRT_DEL_MFC(r0, 0x0, 0xcd, &(0x7f0000000040)={@dev={0xac, 0x14, 0x14, 0x3e}, @empty, 0x1, "0dc8a4539b4f97e2c9f3550a40943236212cb57227b7537919562d018bbd2772", 0xffffff80, 0x9, 0x0, 0x5}, 0x3c)
mkdir(0x0, 0x0) (async)
mkdir(0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) (async)
bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
socket$inet6_sctp(0xa, 0x5, 0x84) (async)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r4, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="040000000200"/16, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="000000000100"], 0x48}}, 0x0) (async)
sendmsg$can_bcm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000005c0)=ANY=[@ANYBLOB="040000000200"/16, @ANYRES64=0x0, @ANYRES64=0xea60, @ANYRES64=0x0, @ANYRES64=0x0, @ANYBLOB="000000000100"], 0x48}}, 0x0)
shutdown(r3, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @rand_addr=0x64010101}]}, &(0x7f0000000240)=0x10)
syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x102)
openat$vcs(0xffffff9c, 0x0, 0x6a201, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid() (async)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e) (async)
connect$unix(r6, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x0, 0x40004)
sched_setaffinity(r5, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0) (async)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r8, 0x84, 0x9, &(0x7f0000000300)={0x0, @in={{0x2, 0x4e24, @empty}}, 0x0, 0x0, 0x3fa, 0x4, 0x32, 0x4}, 0x9c)
bind$inet6(r8, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r8, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) (async)
sendto$inet6(r8, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

1.796773502s ago: executing program 1 (id=465):
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, &(0x7f0000001600)=""/4103, 0x1007, 0x4b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000400)={0x34, r2, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random="fe"}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]]}, 0x34}}, 0x40080)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
io_setup(0x3ff, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, 0x0)
readv(r5, 0x0, 0x0)
r6 = socket$kcm(0x2, 0xa, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r4, 0x8983, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, 0x0)
ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, &(0x7f0000000080)={0x1, @capture={0x0, 0x0, {0x0, 0x4}, 0x40000, 0xff}})

1.796485955s ago: executing program 1 (id=466):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000001c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000300)='mmap_lock_acquire_returned\x00', r0}, 0x18)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2}) (fail_nth: 10)

1.796022543s ago: executing program 3 (id=467):
uname(&(0x7f0000000080))
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x10000, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_emit_ethernet(0x10b6, &(0x7f0000000500)={@empty, @local, @val={@val={0x88a8, 0x1, 0x0, 0x3}, {0x8100, 0x0, 0x1, 0x3}}, {@ipv4={0x800, @igmp={{0x26, 0x4, 0x2, 0x6, 0x10a0, 0x67, 0x0, 0xe, 0x2, 0x0, @remote, @broadcast, {[@timestamp_addr={0x44, 0x3c, 0x28, 0x1, 0x6, [{@broadcast, 0x1}, {@empty, 0x401}, {@multicast1, 0x9}, {@initdev={0xac, 0x1e, 0x0, 0x0}, 0x100}, {@private=0xa010101, 0xc5ad}, {@multicast1, 0x9}, {@multicast2, 0x151}]}, @timestamp_prespec={0x44, 0x14, 0x65, 0x3, 0x7, [{@empty, 0x6}, {@local, 0x6}]}, @ssrr={0x89, 0x1b, 0xf, [@multicast2, @private=0xa010102, @broadcast, @loopback, @multicast1, @empty]}, @cipso={0x86, 0xf, 0x1, [{0x12853b9187c96f4f, 0x2}, {0x7, 0x7, "8bb26079cd"}]}, @generic={0x10a, 0x7, "9f6d38bea3"}]}}, {0x1f, 0x7, 0x0, @loopback, "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"}}}}}, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000100))
ioctl$TCSETS2(r2, 0x402c542b, &(0x7f0000000080)={0xffff7523, 0x3, 0x7e, 0xc, 0x8, "f06fca79066e3af41f7096533f0c683cc267a0", 0x7, 0x9})
ioctl$TIOCL_PASTESEL(r2, 0x541c, &(0x7f0000000000))
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000))
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[], 0x64}}, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000000c0)={[{0x0, 0x800, 0x0, 0x0, 0x0, 0xa5, 0xbd, 0x1, 0xa9, 0x6, 0x0, 0x0, 0x2}, {0x8, 0x5, 0x80, 0x0, 0x41, 0x5, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2, 0x3}, {0x3fe, 0x9, 0x0, 0xfd, 0x0, 0x0, 0xb3, 0x0, 0x3, 0xfe, 0x80, 0xf6, 0x7}], 0x5})
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x40048c4, &(0x7f00000000c0)={0x2, 0x4e22, @local}, 0x10)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300b006ee0f01c40f009b27000000b9800000c00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a000000328fe858b660002fb90d090000b800680000ba000000000f30", 0x5a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.732984565s ago: executing program 1 (id=468):
r0 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e27, 0xffffffff, @mcast2, 0x6}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000002cc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000013c0)=ANY=[@ANYBLOB="200000002900000032000000fe800000000000000000000000000041", @ANYRES32, @ANYBLOB="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"], 0x1284}}], 0x1, 0x41400)

1.732485894s ago: executing program 1 (id=469):
syz_init_net_socket$netrom(0x6, 0x5, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040))
r0 = socket$alg(0x26, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00'})
accept4(r0, 0x0, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x0)
r4 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
r5 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000280)={0xfffffffc, 0x0, 0x0, 0x8}, 0x10)
sendmsg$nl_generic(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="20000000120001cf11c12d04fcffffff00000000000008000040f469ee000000"], 0x20}}, 0x8000)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
syz_io_uring_setup(0x1f87, 0x0, &(0x7f0000000100), &(0x7f0000000280))
unshare(0x20000400)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r4, r4, r4}, 0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)={'sha1-ssse3\x00'}})
getsockopt$inet_sctp_SCTP_PRIMARY_ADDR(r5, 0x84, 0x6, &(0x7f0000000480)={0x0, @in6={{0xa, 0x4e21, 0xb37, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}}, &(0x7f0000000340)=0x84)
r6 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r6, 0xaf01, 0x0)
eventfd(0x4)

1.508572825s ago: executing program 3 (id=470):
syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
fcntl$getownex(r0, 0x10, &(0x7f0000000180)={0x0, <r2=>0x0})
syz_open_procfs$namespace(r2, &(0x7f00000001c0)='ns/net\x00')
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd74)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000480)={0x0, 0x7079, 0xf4, 0x1, 0x288}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
r6 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r6, 0x7a0, &(0x7f0000000080))
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="240010002000010300000000fedbcf25020000500000000000000000080006"], 0x24}}, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="0f0000002000010301000000000000000200000000000003190001001400110076657468315f746f5f626d6964676500"], 0x30}}, 0x0)
r9 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x80042, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r10=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r11=>0xffffffffffffffff})
splice(r11, 0x0, r10, 0x0, 0x1000, 0x0)
r12 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r12, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x24f9, 0x0, 0x0, 0x0)
r13 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r14 = ioctl$KVM_CREATE_VM(r13, 0xae01, 0x0)
r15 = ioctl$KVM_CREATE_VCPU(r14, 0xae41, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r16=>0xffffffffffffffff})
ioctl$KVM_SET_CPUID2(r15, 0x4048aecb, &(0x7f0000000880)=ANY=[@ANYRESOCT, @ANYRESDEC=r14, @ANYRESDEC=r6, @ANYRESOCT=r16, @ANYBLOB="6b5abe9c53bef2ae2c65b4eeb5824ab2914f8ba6e811bf73d3dc357dad7aed5f9fa00a0c02705dd653ad30c2ca8b089eedc75f2bf2864b6a9157c5c2a5656edfd22583d0f329c653caef6974c9792ca38e32dd5698e2c91230fc119082a27450f7f06fda9b829ce1f8848bb811b3e71225935d97581cae0278e754847b7181a9430c1b8e46f3f7084235ee2f33682874cbb231183f3935fb415026ee2148498aebe5c39649bebb5661f2481d535b587673c4935d9cbb8dedb4e0d5b05e6cbc480defd3389c3fa6", @ANYRES64=0x0, @ANYRESHEX=r9])

947.449146ms ago: executing program 0 (id=471):
syz_io_uring_setup(0x114, &(0x7f00000003c0)={0x0, 0x20000}, &(0x7f0000000280)=<r0=>0x0, &(0x7f0000000300))
syz_emit_vhci(0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x0, 0x0})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x7f, 0x0, 0x34324152, 0x7, 0xa, [{0x0, 0x40000f}, {0x3}, {}, {}, {0x6}, {0x2fe}, {0xca6, 0x800}], 0xf, 0x3}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000004c00)=""/102392, 0x18ff8)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x4040000)
r2 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0x82002, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000000))
ioctl$SNDCTL_DSP_CHANNELS(r2, 0xc0045006, 0x0)
r3 = openat$rdma_cm(0xffffff9c, &(0x7f00000013c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000001340)={0x0, 0x18, 0xfa00, {0x4, &(0x7f0000001380), 0x111, 0x1}}, 0x20)
r4 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
read$dsp(r4, &(0x7f00000002c0)=""/4096, 0x1000)
write$dsp(r2, &(0x7f00000012c0)="a52876830a602214f6b4e928d758f38a5a7cb4b31c4c09289e9ebb6286784ca3", 0x4000)
socket$nl_generic(0x10, 0x3, 0x10)
open$dir(&(0x7f0000000240)='./file0\x00', 0x0, 0x84)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000000))
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
mremap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2000, 0x0, &(0x7f0000ffe000/0x2000)=nil)
connect$inet(r5, &(0x7f0000001300)={0x2, 0x4e21, @rand_addr=0x64010100}, 0x10)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r6, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="1c000000030605000000000000"], 0x1c}, 0x1, 0x0, 0x0, 0x24040800}, 0x8d0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)

947.265821ms ago: executing program 2 (id=472):
r0 = socket(0x2b, 0x80801, 0x1)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x4, 0x3ff, @empty, 0x1}, 0x1c)
getsockopt$inet_mreqsrc(r0, 0x0, 0x27, 0x0, &(0x7f0000000040))

947.024299ms ago: executing program 2 (id=473):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(0xffffffffffffffff, 0x84, 0x75, &(0x7f0000000000)={<r1=>0x0, 0xf8ab}, &(0x7f0000000040)=0x8)
getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r0, 0x84, 0x6d, &(0x7f0000000080)={r1, 0x5e, "28f1acfc607a15924b82280132d5c99c60cf57cc7942c46d4243cda0d3239260c29ba732702d86e6ae97d2767ec54b30af1507765676f662918aff088a203df60475773ed7b4f73849289d18e521cbd3f900dc0a24337614e0c7484cec5f"}, &(0x7f0000000100)=0x66)
r2 = socket$alg(0x26, 0x5, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x18)
bind$alg(r2, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x45)
r4 = accept4(r2, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
recvmmsg(r4, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000001c0)={0xffffffffffffffff, 0x58, &(0x7f0000000240)}, 0x10)
r5 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x441, 0x0)
write$binfmt_aout(r5, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCXONC(r5, 0x540a, 0x2)
syz_clone3(&(0x7f00000007c0)={0x10000, &(0x7f00000004c0), &(0x7f0000000500), &(0x7f0000000580), {0xd}, &(0x7f00000005c0)=""/160, 0xa0, &(0x7f0000000680)=""/177, &(0x7f0000000740)=[0x0, 0x0, 0x0], 0x3}, 0x58)
ioctl$TCXONC(r5, 0x540a, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000100)=0x3)
ioctl$TCSBRK(r5, 0x5409, 0x3)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r6, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5)

727.710018ms ago: executing program 1 (id=474):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000140)=ANY=[@ANYBLOB="a400000010000104000000006f00000000000000", @ANYRES32=<r1=>0x0, @ANYBLOB="00000000000000007c0012800e00010069703665727370616e00000068000280060003000600000006000200090000000500160011000000040012"], 0xa4}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r3, 0xc0405665, &(0x7f0000000080)={0x1, 0x4})
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r2, &(0x7f0000000200)={0xa, 0x2, 0x0, @mcast2}, 0x1c)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x103)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000380)=ANY=[@ANYRES8=r1, @ANYRESHEX=r5, @ANYBLOB=',rootmode=00000000000000000060000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r6 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
fstat(r6, 0x0)
close_range(r4, 0xffffffffffffffff, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
syz_usb_connect$uac1(0x0, 0x8f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406b1d010140000102030109027d00030100000009040000000101000001020c2402000000000000000000090401000001020000090401010101020000092402010000000c620924020100000000650905010900000000000725010000000009040200000102000009040201010102000009058209080000000007250100000000"], 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYRESDEC=0x0], 0x24}}, 0x80)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x1, &(0x7f0000000140)=@gcm_128={{0x303}, "87ee8ac6c46dad33", "2607080d7f4fcf00fd4ef2dece6c7c58"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r2, 0x11a, 0x2, &(0x7f0000000240)=@ccm_128={{0x303}, "6711ceaf2778a24f", "2c1546b802731405e6dedf2851b3c94b", "9f3da065", "9c50460fff2e5112"}, 0x28)
r8 = syz_open_dev$vbi(&(0x7f00000000c0), 0x2, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r8, 0x402c5639, &(0x7f0000000100)={0x5, 0x2, 0x8})
sendmsg$NFQNL_MSG_VERDICT_BATCH(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="2014008dfa9b89153ab81cdbac00000200ffffffff0000000c000500"/42], 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x4c000)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
socket(0x2, 0x3, 0x100000001)
r9 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r9, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, &(0x7f0000000040)={'vxcan1\x00'})

376.981228ms ago: executing program 3 (id=475):
r0 = syz_open_procfs(0x0, 0x0)
pread64(r0, &(0x7f0000001600)=""/4103, 0x1007, 0x4b)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000400)={0x34, r2, 0x101, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_SSID={0x5, 0x34, @random="fe"}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_CHANNEL_WIDTH={0x8, 0x9f, 0x7}]]}, 0x34}}, 0x40080)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
io_setup(0x3ff, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, 0x0)
readv(r5, 0x0, 0x0)
r6 = socket$kcm(0x2, 0xa, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r4, 0x8983, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, 0x0)
ioctl$VIDIOC_S_PARM(0xffffffffffffffff, 0xc0cc5616, 0x0)

313.471988ms ago: executing program 3 (id=476):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x2, 0x56d, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd2d, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x6}]}, {0x4}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000400)={r5, r0}, 0xc)
r6 = syz_open_dev$video(&(0x7f0000000440), 0x8, 0x0)
r7 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IPVS_CMD_NEW_SERVICE(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010000000000000000000100000040000180060001000a00000008000500000000000c000700000000000000000008000900710000000700060072720000080008"], 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$VIDIOC_S_SELECTION(r6, 0xc040565f, &(0x7f0000000940)={0xa, 0x100, 0x3, {0x8000, 0x1000, 0x4, 0x2}})
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_io_uring_submit(0x0, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x4)
ioctl$CDROMMULTISESSION(0xffffffffffffffff, 0x5310, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

307.803034ms ago: executing program 0 (id=477):
r0 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e27, 0xffffffff, @mcast2, 0x6}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000002cc0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000013c0)=ANY=[@ANYBLOB="200000002900000032000000fe800000000000000000000000000041", @ANYRES32, @ANYBLOB="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"], 0x1284}}], 0x1, 0x41400)

223.952194ms ago: executing program 0 (id=478):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_open_dev$vim2m(0x0, 0x0, 0x2)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}})
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$inet6_buf(r5, 0x29, 0x6, &(0x7f0000001500)=""/19, 0x0)
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
r6 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r6)
waitid(0x0, r6, &(0x7f00000000c0), 0x8, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r7, 0xe0, &(0x7f0000000480)={0x0, <r8=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000180)={@map=r1, r1, 0x19, 0x19, r7, @void, @value=r7}, 0x20)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r8}, 0x4)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)={@fallback=r0, r1, 0x3, 0x20, 0x0, @void, @void, @void, @value=r8}, 0x20)
waitid(0x0, r6, 0x0, 0x8, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async)
syz_open_dev$vim2m(0x0, 0x0, 0x2) (async)
syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101) (async)
dup(r0) (async)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c) (async)
syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x0, 0x0, 0x0, r1}, &(0x7f0000000080), &(0x7f00000001c0)) (async)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, {0x230}}) (async)
socket$inet6_tcp(0xa, 0x1, 0x0) (async)
getsockopt$inet6_buf(r5, 0x29, 0x6, &(0x7f0000001500)=""/19, 0x0) (async)
io_uring_enter(r2, 0x2ded, 0x4000, 0x0, 0x0, 0x0) (async)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
ptrace(0x10, r6) (async)
waitid(0x0, r6, &(0x7f00000000c0), 0x8, 0x0) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f00000013c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) (async)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000300)={r7, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10) (async)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000180)={@map=r1, r1, 0x19, 0x19, r7, @void, @value=r7}, 0x20) (async)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0)={r8}, 0x4) (async)
bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000140)={@fallback=r0, r1, 0x3, 0x20, 0x0, @void, @void, @void, @value=r8}, 0x20) (async)
waitid(0x0, r6, 0x0, 0x8, 0x0) (async)

0s ago: executing program 0 (id=479):
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
io_uring_setup(0x7d98, &(0x7f00000003c0)={0x0, 0xdf07, 0x2, 0x2})
set_mempolicy(0x6, &(0x7f00000003c0)=0x8000000000000001, 0xe0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
r0 = openat(0xffffffffffffffff, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
socket$igmp6(0xa, 0x3, 0x3a)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, 0x0)
socket$key(0xf, 0x3, 0x2)
socket$inet6_mptcp(0xa, 0x1, 0x106)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
setsockopt$MRT6_INIT(r0, 0x29, 0xc8, 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setresgid(0x0, 0xee00, 0x0)
syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r3, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe}, {}, 0x0, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x33}, 0x0, @in=@private=0xa010100, 0x0, 0x0, 0x0, 0xb7, 0xffffffff}}, 0xe8)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x1c)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r6 = ioctl$KVM_CREATE_VM(r5, 0xae01, 0x0)
ioctl$KVM_CAP_MSR_PLATFORM_INFO(r6, 0x4068aea3, &(0x7f0000000040)={0x9f, 0x0, 0x1})

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:62949' (ED25519) to the list of known hosts.
[   41.763039][ T5938] cgroup: Unknown subsys name 'net'
[   41.845441][ T5938] cgroup: Unknown subsys name 'cpuset'
[   41.848924][ T5938] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   42.678849][ T5938] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.582984][ T5960] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   45.585464][ T5960] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   45.590499][ T5962] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   45.592695][ T5962] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   45.594156][ T5961] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   45.594803][ T5962] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   45.597192][ T5961] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   45.598705][ T5962] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   45.601425][ T5961] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   45.603132][ T5962] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   45.605104][ T5961] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   45.606745][ T5962] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   45.608390][ T5961] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   45.609419][ T5965] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   45.609894][ T5965] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   45.610596][ T5962] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   45.610838][ T5962] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   45.612650][ T5961] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   45.616034][ T5962] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   45.629118][ T5310] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   45.883423][ T5963] chnl_net:caif_netlink_parms(): no params data found
[   45.890046][ T5950] chnl_net:caif_netlink_parms(): no params data found
[   45.958225][ T5958] chnl_net:caif_netlink_parms(): no params data found
[   46.128907][ T5951] chnl_net:caif_netlink_parms(): no params data found
[   46.174288][ T5950] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.176607][ T5950] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.178644][ T5950] bridge_slave_0: entered allmulticast mode
[   46.181391][ T5950] bridge_slave_0: entered promiscuous mode
[   46.214405][ T5963] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.216604][ T5963] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.218734][ T5963] bridge_slave_0: entered allmulticast mode
[   46.221848][ T5963] bridge_slave_0: entered promiscuous mode
[   46.225265][ T5963] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.227256][ T5963] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.229300][ T5963] bridge_slave_1: entered allmulticast mode
[   46.231655][ T5963] bridge_slave_1: entered promiscuous mode
[   46.234127][ T5950] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.236215][ T5950] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.238219][ T5950] bridge_slave_1: entered allmulticast mode
[   46.240699][ T5950] bridge_slave_1: entered promiscuous mode
[   46.259767][ T5958] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.261849][ T5958] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.263858][ T5958] bridge_slave_0: entered allmulticast mode
[   46.266253][ T5958] bridge_slave_0: entered promiscuous mode
[   46.269813][ T5958] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.271919][ T5958] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.273977][ T5958] bridge_slave_1: entered allmulticast mode
[   46.276396][ T5958] bridge_slave_1: entered promiscuous mode
[   46.363085][ T5963] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.386429][ T5950] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.406016][ T5963] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.423531][ T5950] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.427575][ T5958] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.515415][ T5958] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.519713][ T5963] team0: Port device team_slave_0 added
[   46.522945][ T5963] team0: Port device team_slave_1 added
[   46.537778][ T5951] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.539808][ T5951] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.543253][ T5951] bridge_slave_0: entered allmulticast mode
[   46.545568][ T5951] bridge_slave_0: entered promiscuous mode
[   46.549538][ T5950] team0: Port device team_slave_0 added
[   46.594358][ T5951] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.596735][ T5951] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.599019][ T5951] bridge_slave_1: entered allmulticast mode
[   46.601855][ T5951] bridge_slave_1: entered promiscuous mode
[   46.606363][ T5950] team0: Port device team_slave_1 added
[   46.609911][ T5958] team0: Port device team_slave_0 added
[   46.614403][ T5958] team0: Port device team_slave_1 added
[   46.616574][ T5963] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.618494][ T5963] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.625484][ T5963] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.669634][ T5963] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.671676][ T5963] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.678599][ T5963] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.727565][ T5958] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.729541][ T5958] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.737246][ T5958] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.741624][ T5951] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.744690][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.746999][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.754437][ T5950] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.757835][ T5950] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.759800][ T5950] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.767532][ T5950] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.788029][ T5958] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.789732][ T5958] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.797473][ T5958] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.801495][ T5951] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.848415][ T5963] hsr_slave_0: entered promiscuous mode
[   46.850782][ T5963] hsr_slave_1: entered promiscuous mode
[   46.869338][ T5951] team0: Port device team_slave_0 added
[   46.903793][ T5951] team0: Port device team_slave_1 added
[   46.922576][ T5950] hsr_slave_0: entered promiscuous mode
[   46.924631][ T5950] hsr_slave_1: entered promiscuous mode
[   46.926429][ T5950] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.928558][ T5950] Cannot create hsr debugfs directory
[   47.002577][ T5951] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.004498][ T5951] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.013041][ T5951] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.037616][ T5958] hsr_slave_0: entered promiscuous mode
[   47.040726][ T5958] hsr_slave_1: entered promiscuous mode
[   47.043385][ T5958] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.046229][ T5958] Cannot create hsr debugfs directory
[   47.048505][ T5951] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.050420][ T5951] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.057398][ T5951] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.165663][ T5951] hsr_slave_0: entered promiscuous mode
[   47.167672][ T5951] hsr_slave_1: entered promiscuous mode
[   47.169610][ T5951] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.171900][ T5951] Cannot create hsr debugfs directory
[   47.399106][ T5963] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   47.407063][ T5963] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   47.411330][ T5963] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   47.418950][ T5963] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   47.438333][ T5951] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   47.443164][ T5951] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   47.446722][ T5951] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   47.453378][ T5951] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   47.495742][ T5950] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   47.499983][ T5950] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   47.506844][ T5950] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   47.511749][ T5950] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   47.562496][ T5958] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   47.567007][ T5958] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   47.572112][ T5958] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   47.576860][ T5958] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   47.599628][ T5963] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.620216][ T5951] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.631426][ T5310] Bluetooth: hci3: command tx timeout
[   47.633665][ T5310] Bluetooth: hci0: command tx timeout
[   47.635333][ T5310] Bluetooth: hci1: command tx timeout
[   47.639468][ T5963] 8021q: adding VLAN 0 to HW filter on device team0
[   47.643688][ T5951] 8021q: adding VLAN 0 to HW filter on device team0
[   47.651671][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.653797][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.662075][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.664067][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.677285][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.679260][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.683762][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.685711][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.712134][ T5954] Bluetooth: hci2: command tx timeout
[   47.732308][ T5950] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.753693][ T5950] 8021q: adding VLAN 0 to HW filter on device team0
[   47.758979][ T5958] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.762221][   T42] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.764229][   T42] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.774515][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.776568][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.797597][ T5958] 8021q: adding VLAN 0 to HW filter on device team0
[   47.801315][ T5950] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   47.815146][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.817179][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.822305][   T42] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.824319][   T42] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.847061][ T5963] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.856558][ T5951] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.888515][ T5963] veth0_vlan: entered promiscuous mode
[   47.902599][ T5951] veth0_vlan: entered promiscuous mode
[   47.906199][ T5950] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.912416][ T5963] veth1_vlan: entered promiscuous mode
[   47.919618][ T5951] veth1_vlan: entered promiscuous mode
[   47.945801][ T5963] veth0_macvtap: entered promiscuous mode
[   47.949427][ T5963] veth1_macvtap: entered promiscuous mode
[   47.964683][ T5958] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.967331][ T5951] veth0_macvtap: entered promiscuous mode
[   47.976137][ T5963] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.979119][ T5950] veth0_vlan: entered promiscuous mode
[   47.982488][ T5951] veth1_macvtap: entered promiscuous mode
[   47.988649][ T5963] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.997363][ T5963] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.999782][ T5963] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.002553][ T5963] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.004943][ T5963] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.008653][ T5950] veth1_vlan: entered promiscuous mode
[   48.020796][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.023757][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.027276][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.039291][ T5951] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.042971][ T5951] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.046440][ T5951] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.050064][ T5951] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.053514][ T5951] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.055958][ T5951] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.058349][ T5951] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.078466][ T5950] veth0_macvtap: entered promiscuous mode
[   48.085506][ T5958] veth0_vlan: entered promiscuous mode
[   48.093416][ T5950] veth1_macvtap: entered promiscuous mode
[   48.097073][ T1228] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.097422][ T5958] veth1_vlan: entered promiscuous mode
[   48.099265][ T1228] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.128788][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.135544][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.135841][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.138427][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.145075][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.148153][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.152753][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.159107][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.162096][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.164791][ T5950] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.167659][ T5950] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.171448][ T5950] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.174856][ T5958] veth0_macvtap: entered promiscuous mode
[   48.178244][   T71] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.180368][   T71] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.187255][ T5950] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.189692][ T5950] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.192655][ T5950] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.195080][ T5950] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.199310][ T5958] veth1_macvtap: entered promiscuous mode
[   48.204810][ T5963] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   48.222802][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.226830][ T5958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.226945][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.229694][ T5958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.229702][ T5958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.237932][ T5958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.241315][ T5958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.244140][ T5958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.248051][ T5958] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.261181][ T5958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.264082][ T5958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.267101][ T5958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.270388][ T5958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.273827][ T5958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.276709][ T5958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.280133][ T5958] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.288589][ T5958] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.291272][ T5958] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.293563][ T5958] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.295838][ T5958] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.307018][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.315007][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.345970][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.348370][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.366623][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.371588][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.387089][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.389186][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.517179][ T6030] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   48.795614][ T6019] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3'.
[   48.802724][ T6020] IPVS: starting estimator thread 0...
[   48.822331][ T6025] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4'.
[   48.900602][ T6035] IPVS: using max 46 ests per chain, 110400 per kthread
[   49.270925][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.340724][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.370670][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.694441][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.696965][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.699456][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.720560][ T5954] Bluetooth: hci1: command tx timeout
[   49.720840][ T5310] Bluetooth: hci0: command tx timeout
[   49.722574][ T5954] Bluetooth: hci3: command tx timeout
[   49.778851][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.800608][ T5961] Bluetooth: hci2: command tx timeout
[   50.032421][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.034866][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.170966][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   51.352884][ T6123] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   51.355607][ T6123] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   51.360363][ T6123] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   51.365311][ T6123] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   51.367343][ T6123] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   51.370622][ T6123] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   51.375680][ T6123] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   51.377485][ T6123] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   51.380331][ T6123] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   51.384057][ T6123] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   51.385831][ T6123] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   51.389100][ T6123] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   51.591441][ T6136] syz.3.18 uses obsolete (PF_INET,SOCK_PACKET)
[   53.325138][ T6183] overlayfs: overlapping lowerdir path
[   53.391105][ T5961] Bluetooth: hci0: command 0x0419 tx timeout
[   53.392565][ T5954] Bluetooth: hci3: command 0x0419 tx timeout
[   53.392603][ T5310] Bluetooth: hci2: command 0x0419 tx timeout
[   53.392642][ T5310] Bluetooth: hci1: command 0x0419 tx timeout
[   53.649558][ T6191] ucma_write: process 27 (syz.0.29) changed security contexts after opening file descriptor, this is not allowed.
[   54.572770][ T6202] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.619480][ T6202] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.665211][ T6200] netlink: 8 bytes leftover after parsing attributes in process `syz.2.31'.
[   54.680225][ T6202] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.693536][ T6199] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   54.752517][ T6202] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.838642][ T6202] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.845139][ T6202] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.850949][ T6202] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.856893][ T6202] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.470536][ T5954] Bluetooth: hci1: command 0x0419 tx timeout
[   55.472929][ T5954] Bluetooth: hci0: command 0x0419 tx timeout
[   55.474723][ T5961] Bluetooth: hci2: command 0x0419 tx timeout
[   55.482013][ T5954] Bluetooth: hci3: command 0x0419 tx timeout
[   55.656080][ T6240] overlayfs: overlapping lowerdir path
[   57.550614][ T5961] Bluetooth: hci1: command 0x0419 tx timeout
[   57.551961][ T5962] Bluetooth: hci0: command 0x0419 tx timeout
[   57.552325][ T5961] Bluetooth: hci2: command 0x0419 tx timeout
[   57.555667][ T5954] Bluetooth: hci3: command 0x0419 tx timeout
[   58.087927][ T6310] process 'syz.1.53' launched './file0' with NULL argv: empty string added
[   58.707547][ T6326] netlink: 4 bytes leftover after parsing attributes in process `syz.3.57'.
[   59.184944][ T6343] netlink: 8 bytes leftover after parsing attributes in process `syz.2.66'.
[   59.640702][ T5961] Bluetooth: hci0: command 0x0419 tx timeout
[   59.642600][ T5961] Bluetooth: hci2: command 0x0419 tx timeout
[   59.644491][ T5961] Bluetooth: hci1: command 0x0419 tx timeout
[   59.646463][ T5954] Bluetooth: hci3: command 0x0419 tx timeout
[   60.093035][ T6367] netlink: 8 bytes leftover after parsing attributes in process `syz.0.68'.
[   60.202461][ T6364] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[   60.214523][ T1342] IPVS: starting estimator thread 0...
[   60.300574][ T6373] IPVS: using max 46 ests per chain, 110400 per kthread
[   61.157876][ T6400] kvm: apic: phys broadcast and lowest prio
[   61.161015][ T6400] capability: warning: `syz.3.77' uses deprecated v2 capabilities in a way that may be insecure
[   61.164814][ T6400] program syz.3.77 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   61.299868][ T6408] netlink: 4 bytes leftover after parsing attributes in process `syz.3.80'.
[   61.313065][ T6408] Zero length message leads to an empty skb
[   61.867767][ T6432] FAULT_INJECTION: forcing a failure.
[   61.867767][ T6432] name failslab, interval 1, probability 0, space 0, times 1
[   61.873293][ T6432] CPU: 2 UID: 0 PID: 6432 Comm: syz.3.87 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   61.873307][ T6432] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   61.873313][ T6432] Call Trace:
[   61.873317][ T6432]  <TASK>
[   61.873321][ T6432]  dump_stack_lvl+0x16c/0x1f0
[   61.873338][ T6432]  should_fail_ex+0x512/0x640
[   61.873350][ T6432]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[   61.873368][ T6432]  should_failslab+0xc2/0x120
[   61.873377][ T6432]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[   61.873391][ T6432]  ? __pfx_inode_set_ctime_current+0x10/0x10
[   61.873402][ T6432]  ? __d_alloc+0x31/0xaa0
[   61.873412][ T6432]  __d_alloc+0x31/0xaa0
[   61.873420][ T6432]  ? _raw_spin_unlock+0x28/0x50
[   61.873434][ T6432]  d_make_root+0x3e/0x90
[   61.873443][ T6432]  pseudo_fs_fill_super+0x359/0x4f0
[   61.873459][ T6432]  ? __pfx_pseudo_fs_fill_super+0x10/0x10
[   61.873473][ T6432]  get_tree_nodev+0xda/0x190
[   61.873488][ T6432]  vfs_get_tree+0x8b/0x340
[   61.873499][ T6432]  path_mount+0x14d4/0x1f30
[   61.873510][ T6432]  ? kmem_cache_free+0x2d4/0x4d0
[   61.873523][ T6432]  ? __pfx_path_mount+0x10/0x10
[   61.873534][ T6432]  ? putname+0x154/0x1a0
[   61.873545][ T6432]  __ia32_sys_mount+0x28b/0x310
[   61.873554][ T6432]  ? __pfx___ia32_sys_mount+0x10/0x10
[   61.873565][ T6432]  ? rcu_is_watching+0x12/0xc0
[   61.873579][ T6432]  __do_fast_syscall_32+0x73/0x120
[   61.873595][ T6432]  do_fast_syscall_32+0x32/0x80
[   61.873609][ T6432]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   61.873621][ T6432] RIP: 0023:0xf7f68579
[   61.873629][ T6432] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   61.873638][ T6432] RSP: 002b:00000000f504455c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[   61.873647][ T6432] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000080000240
[   61.873653][ T6432] RDX: 0000000080000280 RSI: 0000000001000000 RDI: 0000000000000000
[   61.873658][ T6432] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   61.873663][ T6432] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   61.873669][ T6432] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   61.873680][ T6432]  </TASK>
[   62.028637][    C3] IPv4: Oversized IP packet from 172.20.20.24
[   62.279011][ T6438] Bluetooth: MGMT ver 1.23
[   62.417779][ T6443] isofs_fill_super: bread failed, dev=sr0, iso_blknum=32, block=32
[   62.875635][ T6465] input: syz0 as /devices/virtual/input/input5
[   62.894868][ T6465] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[   63.193284][ T6474] bridge1: entered promiscuous mode
[   63.211599][ T6474] syz.3.101: attempt to access beyond end of device
[   63.211599][ T6474] loop3: rw=6144, sector=128, nr_sectors = 8 limit=0
[   63.220966][ T6474] gfs2: error -5 reading superblock
[   63.723806][ T6480] netlink: 16 bytes leftover after parsing attributes in process `syz.1.103'.
[   64.378550][ T6503] FAULT_INJECTION: forcing a failure.
[   64.378550][ T6503] name failslab, interval 1, probability 0, space 0, times 0
[   64.383171][ T6503] CPU: 1 UID: 0 PID: 6503 Comm: syz.3.110 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   64.383185][ T6503] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   64.383192][ T6503] Call Trace:
[   64.383196][ T6503]  <TASK>
[   64.383200][ T6503]  dump_stack_lvl+0x16c/0x1f0
[   64.383218][ T6503]  should_fail_ex+0x512/0x640
[   64.383230][ T6503]  ? __kmalloc_noprof+0xbf/0x510
[   64.383246][ T6503]  ? mpi_alloc_limb_space+0x31/0x60
[   64.383261][ T6503]  should_failslab+0xc2/0x120
[   64.383270][ T6503]  __kmalloc_noprof+0xd2/0x510
[   64.383287][ T6503]  mpi_alloc_limb_space+0x31/0x60
[   64.383302][ T6503]  mpi_alloc+0x199/0x230
[   64.383317][ T6503]  mpi_read_raw_data+0x133/0x4a0
[   64.383333][ T6503]  dh_set_secret+0x190/0x260
[   64.383348][ T6503]  ? __pfx_dh_set_secret+0x10/0x10
[   64.383361][ T6503]  ? crypto_alloc_tfmmem.isra.0+0xd2/0x110
[   64.383374][ T6503]  ? trace_kmalloc+0x2b/0xd0
[   64.383385][ T6503]  ? crypto_alloc_tfm_node+0x126/0x260
[   64.383398][ T6503]  __keyctl_dh_compute+0x4da/0x10e0
[   64.383415][ T6503]  ? __pfx___keyctl_dh_compute+0x10/0x10
[   64.383444][ T6503]  compat_keyctl_dh_compute+0x143/0x1c0
[   64.383457][ T6503]  ? __pfx_compat_keyctl_dh_compute+0x10/0x10
[   64.383476][ T6503]  ? ksys_write+0x1b9/0x240
[   64.383490][ T6503]  ? __pfx_ksys_write+0x10/0x10
[   64.383505][ T6503]  __do_compat_sys_keyctl+0x27b/0x440
[   64.383518][ T6503]  __do_fast_syscall_32+0x73/0x120
[   64.383534][ T6503]  do_fast_syscall_32+0x32/0x80
[   64.383548][ T6503]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   64.383561][ T6503] RIP: 0023:0xf7f68579
[   64.383586][ T6503] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   64.383596][ T6503] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000120
[   64.383606][ T6503] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 0000000080000100
[   64.383611][ T6503] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000080000180
[   64.383617][ T6503] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   64.383622][ T6503] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   64.383627][ T6503] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   64.383638][ T6503]  </TASK>
[   64.841488][ T6513] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[   64.908668][ T6523] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[   64.910613][ T6523] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   64.913783][ T6523] vhci_hcd vhci_hcd.0: Device attached
[   65.080546][ T6521] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   65.082324][ T6521] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   65.084034][ T6521] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   65.085743][ T6521] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   65.117411][ T6530] netlink: 'syz.0.116': attribute type 10 has an invalid length.
[   65.125705][ T6530] team0: Device ipvlan1 failed to register rx_handler
[   65.144751][ T6525] vhci_hcd: connection closed
[   65.158041][ T1228] vhci_hcd: stop threads
[   65.160949][   T70] usb 37-1: new low-speed USB device number 2 using vhci_hcd
[   65.164367][ T1228] vhci_hcd: release socket
[   65.167035][ T1228] vhci_hcd: disconnect device
[   65.248116][ T6532] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   65.695041][ T6539] lo speed is unknown, defaulting to 1000
[   65.696982][ T6539] lo speed is unknown, defaulting to 1000
[   65.699585][ T6539] lo speed is unknown, defaulting to 1000
[   65.704965][ T6539] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   65.711316][ T6539] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[   65.725506][ T6539] lo speed is unknown, defaulting to 1000
[   65.728408][ T6539] lo speed is unknown, defaulting to 1000
[   65.730987][ T6539] lo speed is unknown, defaulting to 1000
[   65.733249][ T6539] lo speed is unknown, defaulting to 1000
[   66.003593][ T6555] lo speed is unknown, defaulting to 1000
[   66.881687][ T6574] FAULT_INJECTION: forcing a failure.
[   66.881687][ T6574] name failslab, interval 1, probability 0, space 0, times 0
[   66.885502][ T6574] CPU: 3 UID: 0 PID: 6574 Comm: syz.1.130 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   66.885515][ T6574] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   66.885521][ T6574] Call Trace:
[   66.885525][ T6574]  <TASK>
[   66.885529][ T6574]  dump_stack_lvl+0x16c/0x1f0
[   66.885547][ T6574]  should_fail_ex+0x512/0x640
[   66.885559][ T6574]  ? fs_reclaim_acquire+0xae/0x150
[   66.885572][ T6574]  ? tomoyo_realpath_from_path+0xc2/0x6e0
[   66.885586][ T6574]  should_failslab+0xc2/0x120
[   66.885596][ T6574]  __kmalloc_noprof+0xd2/0x510
[   66.885613][ T6574]  tomoyo_realpath_from_path+0xc2/0x6e0
[   66.885628][ T6574]  ? tomoyo_profile+0x47/0x60
[   66.885644][ T6574]  tomoyo_path_number_perm+0x245/0x580
[   66.885654][ T6574]  ? tomoyo_path_number_perm+0x237/0x580
[   66.885666][ T6574]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   66.885678][ T6574]  ? find_held_lock+0x2b/0x80
[   66.885702][ T6574]  ? find_held_lock+0x2b/0x80
[   66.885717][ T6574]  ? hook_file_ioctl_common+0x145/0x410
[   66.885738][ T6574]  ? __fget_files+0x20e/0x3c0
[   66.885758][ T6574]  security_file_ioctl_compat+0x9b/0x240
[   66.885772][ T6574]  __do_compat_sys_ioctl+0x4e/0x2c0
[   66.885785][ T6574]  __do_fast_syscall_32+0x73/0x120
[   66.885800][ T6574]  do_fast_syscall_32+0x32/0x80
[   66.885814][ T6574]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   66.885827][ T6574] RIP: 0023:0xf7fb5579
[   66.885835][ T6574] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   66.885844][ T6574] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   66.885854][ T6574] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000c01c64a3
[   66.885860][ T6574] RDX: 0000000080000280 RSI: 0000000000000000 RDI: 0000000000000000
[   66.885865][ T6574] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   66.885870][ T6574] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   66.885876][ T6574] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   66.885887][ T6574]  </TASK>
[   66.885891][ T6574] ERROR: Out of memory at tomoyo_realpath_from_path.
[   67.070887][ T5310] Bluetooth: hci0: command 0x0419 tx timeout
[   67.151041][ T5310] Bluetooth: hci3: command 0x0419 tx timeout
[   67.152227][ T5954] Bluetooth: hci1: command 0x0419 tx timeout
[   67.154887][ T5961] Bluetooth: hci2: command 0x0419 tx timeout
[   67.240556][  T143] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   67.410492][  T143] usb 8-1: Using ep0 maxpacket: 16
[   67.421297][ T6576] xt_ipcomp: unknown flags 12
[   67.429985][  T143] usb 8-1: unable to get BOS descriptor or descriptor too short
[   67.436501][  T143] usb 8-1: unable to read config index 0 descriptor/start: -71
[   67.439288][  T143] usb 8-1: can't read configurations, error -71
[   68.820546][ T5955] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[   69.141352][ T5955] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   69.145253][ T5955] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   69.148770][ T5955] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   69.160508][ T5955] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   69.163848][ T5955] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.171309][ T5955] usb 8-1: config 0 descriptor??
[   69.788054][ T5955] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[   69.818598][ T5955] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[   70.271573][   T70] vhci_hcd: vhci_device speed not set
[   70.593346][ T6589] syz.0.134 (6589) used greatest stack depth: 20248 bytes left
[   70.693019][ T6574] syz.1.130 (6574) used greatest stack depth: 19416 bytes left
[   70.754057][ T1418] ieee802154 phy0 wpan0: encryption failed: -22
[   70.756192][ T1418] ieee802154 phy1 wpan1: encryption failed: -22
[   71.293451][   T40] audit: type=1326 audit(1744281167.381:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6628 comm="syz.2.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[   71.299565][   T40] audit: type=1326 audit(1744281167.381:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6628 comm="syz.2.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[   71.300844][ T6014] usb 8-1: reset high-speed USB device number 4 using dummy_hcd
[   71.306876][   T40] audit: type=1326 audit(1744281167.381:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6628 comm="syz.2.144" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf73ee579 code=0x7ffc0000
[   71.313734][   T40] audit: type=1326 audit(1744281167.381:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6628 comm="syz.2.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[   71.319694][   T40] audit: type=1326 audit(1744281167.381:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6628 comm="syz.2.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[   71.325698][   T40] audit: type=1326 audit(1744281167.381:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6628 comm="syz.2.144" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf73ee579 code=0x7ffc0000
[   71.331787][   T40] audit: type=1326 audit(1744281167.381:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6628 comm="syz.2.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[   71.337720][   T40] audit: type=1326 audit(1744281167.381:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6628 comm="syz.2.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[   71.343705][   T40] audit: type=1326 audit(1744281167.381:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6628 comm="syz.2.144" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73ee579 code=0x7ffc0000
[   71.349642][   T40] audit: type=1326 audit(1744281167.381:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6628 comm="syz.2.144" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ee579 code=0x7ffc0000
[   71.465813][ T6633] netlink: 'syz.2.145': attribute type 10 has an invalid length.
[   71.920820][ T6655] netlink: 8 bytes leftover after parsing attributes in process `syz.3.149'.
[   72.028774][ T1342] IPVS: starting estimator thread 0...
[   72.130610][ T6657] IPVS: using max 46 ests per chain, 110400 per kthread
[   72.217119][ T6660] netlink: 24 bytes leftover after parsing attributes in process `syz.0.150'.
[   72.464330][ T5955] usb 8-1: USB disconnect, device number 4
[   72.682049][ T6682] lo speed is unknown, defaulting to 1000
[   73.428686][ T6703] kernel profiling enabled (shift: 63)
[   73.430318][ T6703] profiling shift: 63 too large
[   74.023880][  T143] IPVS: starting estimator thread 0...
[   74.182115][ T6716] netlink: 8 bytes leftover after parsing attributes in process `syz.2.165'.
[   74.270135][ T6713] IPVS: using max 46 ests per chain, 110400 per kthread
[   74.834010][ T6731] 9pnet_virtio: no channels available for device syz
[   74.851158][ T6731] lo speed is unknown, defaulting to 1000
[   74.928921][ T6741] pim6reg: entered allmulticast mode
[   74.955393][ T6741] pim6reg: left allmulticast mode
[   75.741787][ T6761] warning: `syz.2.178' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   75.756923][ T6761] netlink: 8 bytes leftover after parsing attributes in process `syz.2.178'.
[   76.430700][ T6775] netlink: 8 bytes leftover after parsing attributes in process `syz.1.181'.
[   77.432268][ T6810] block nbd3: NBD_DISCONNECT
[   77.435410][ T6810] block nbd3: Send disconnect failed -22
[   77.438185][ T6807] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[   77.491674][ T6814] FAULT_INJECTION: forcing a failure.
[   77.491674][ T6814] name failslab, interval 1, probability 0, space 0, times 0
[   77.495254][ T6814] CPU: 2 UID: 0 PID: 6814 Comm: syz.2.193 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   77.495267][ T6814] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   77.495273][ T6814] Call Trace:
[   77.495277][ T6814]  <TASK>
[   77.495281][ T6814]  dump_stack_lvl+0x16c/0x1f0
[   77.495299][ T6814]  should_fail_ex+0x512/0x640
[   77.495311][ T6814]  ? __kvmalloc_node_noprof+0x122/0x600
[   77.495327][ T6814]  should_failslab+0xc2/0x120
[   77.495336][ T6814]  __kvmalloc_node_noprof+0x135/0x600
[   77.495350][ T6814]  ? net_generic+0xea/0x2a0
[   77.495362][ T6814]  ? nf_tables_newset+0x24f2/0x4310
[   77.495375][ T6814]  ? nf_tables_newset+0x24f2/0x4310
[   77.495385][ T6814]  nf_tables_newset+0x24f2/0x4310
[   77.495401][ T6814]  ? __pfx_nf_tables_newset+0x10/0x10
[   77.495416][ T6814]  ? __nla_validate_parse+0x600/0x2880
[   77.495440][ T6814]  ? __nla_parse+0x40/0x60
[   77.495479][ T6814]  nfnetlink_rcv_batch+0x1908/0x2350
[   77.495502][ T6814]  ? __pfx_nfnetlink_rcv_batch+0x10/0x10
[   77.495517][ T6814]  ? consume_skb+0xcc/0x100
[   77.495532][ T6814]  ? find_held_lock+0x2b/0x80
[   77.495546][ T6814]  ? __local_bh_enable_ip+0xa4/0x120
[   77.495559][ T6814]  ? lockdep_hardirqs_on+0x7c/0x110
[   77.495579][ T6814]  ? __pfx___dev_queue_xmit+0x10/0x10
[   77.495602][ T6814]  ? __nla_parse+0x40/0x60
[   77.495618][ T6814]  nfnetlink_rcv+0x3c1/0x430
[   77.495633][ T6814]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   77.495651][ T6814]  netlink_unicast+0x53a/0x7f0
[   77.495668][ T6814]  ? __pfx_netlink_unicast+0x10/0x10
[   77.495685][ T6814]  netlink_sendmsg+0x8d1/0xdd0
[   77.495701][ T6814]  ? __pfx_netlink_sendmsg+0x10/0x10
[   77.495716][ T6814]  ? __import_iovec+0x1c8/0x660
[   77.495732][ T6814]  ____sys_sendmsg+0xa95/0xc70
[   77.495748][ T6814]  ? __pfx_____sys_sendmsg+0x10/0x10
[   77.495763][ T6814]  ? get_compat_msghdr+0x11a/0x170
[   77.495781][ T6814]  ___sys_sendmsg+0x134/0x1d0
[   77.495794][ T6814]  ? __pfx____sys_sendmsg+0x10/0x10
[   77.495823][ T6814]  __sys_sendmsg+0x16d/0x220
[   77.495835][ T6814]  ? __pfx___sys_sendmsg+0x10/0x10
[   77.495854][ T6814]  ? rcu_is_watching+0x12/0xc0
[   77.495868][ T6814]  __do_fast_syscall_32+0x73/0x120
[   77.495883][ T6814]  do_fast_syscall_32+0x32/0x80
[   77.495897][ T6814]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   77.495909][ T6814] RIP: 0023:0xf73ee579
[   77.495917][ T6814] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   77.495926][ T6814] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   77.495935][ T6814] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000800000c0
[   77.495941][ T6814] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   77.495946][ T6814] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   77.495951][ T6814] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   77.495957][ T6814] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   77.495968][ T6814]  </TASK>
[   78.202876][ T6806] block nbd3: Disconnected due to user request.
[   78.204633][ T6806] block nbd3: shutting down sockets
[   78.298305][ T6821] netlink: 8 bytes leftover after parsing attributes in process `syz.3.195'.
[   78.570626][   T24] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[   78.720596][   T24] usb 8-1: Using ep0 maxpacket: 8
[   78.724917][   T24] usb 8-1: config 179 has an invalid interface number: 65 but max is 0
[   78.727170][   T24] usb 8-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config
[   78.729970][   T24] usb 8-1: config 179 has no interface number 0
[   78.732020][   T24] usb 8-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid wMaxPacketSize 0
[   78.734826][   T24] usb 8-1: config 179 interface 65 altsetting 12 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[   78.738375][   T24] usb 8-1: config 179 interface 65 has no altsetting 0
[   78.742895][   T24] usb 8-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[   78.745429][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.868722][   T40] kauditd_printk_skb: 66 callbacks suppressed
[   78.868732][   T40] audit: type=1326 audit(1744281174.951:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.0.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[   78.880554][   T40] audit: type=1326 audit(1744281174.961:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.0.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[   78.886683][   T40] audit: type=1326 audit(1744281174.971:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.0.201" exe="/syz-executor" sig=0 arch=40000003 syscall=277 compat=1 ip=0xf73ce579 code=0x7ffc0000
[   78.895506][   T40] audit: type=1326 audit(1744281174.971:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.0.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[   78.902549][   T40] audit: type=1326 audit(1744281174.971:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.0.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[   78.909383][   T40] audit: type=1326 audit(1744281174.971:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.0.201" exe="/syz-executor" sig=0 arch=40000003 syscall=279 compat=1 ip=0xf73ce579 code=0x7ffc0000
[   78.915208][   T40] audit: type=1326 audit(1744281174.981:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.0.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[   78.921417][   T40] audit: type=1326 audit(1744281174.981:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.0.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[   78.928116][   T40] audit: type=1326 audit(1744281174.981:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.0.201" exe="/syz-executor" sig=0 arch=40000003 syscall=245 compat=1 ip=0xf73ce579 code=0x7ffc0000
[   78.934361][   T40] audit: type=1326 audit(1744281174.981:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6832 comm="syz.0.201" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ce579 code=0x7ffc0000
[   78.997054][ T1342] usb 8-1: USB disconnect, device number 5
[   79.401942][ T6854] netlink: 8 bytes leftover after parsing attributes in process `syz.1.205'.
[   79.538023][ T6859] netlink: 'syz.1.207': attribute type 1 has an invalid length.
[   79.671778][ T6872] tmpfs: Bad value for 'nr_blocks'
[   79.677679][ T6871] FAULT_INJECTION: forcing a failure.
[   79.677679][ T6871] name failslab, interval 1, probability 0, space 0, times 0
[   79.690552][ T6871] CPU: 2 UID: 0 PID: 6871 Comm: syz.1.212 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   79.690566][ T6871] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.690572][ T6871] Call Trace:
[   79.690577][ T6871]  <TASK>
[   79.690581][ T6871]  dump_stack_lvl+0x16c/0x1f0
[   79.690599][ T6871]  should_fail_ex+0x512/0x640
[   79.690610][ T6871]  ? __kmalloc_noprof+0xbf/0x510
[   79.690627][ T6871]  ? ethnl_default_notify+0x1a7/0x940
[   79.690639][ T6871]  should_failslab+0xc2/0x120
[   79.690649][ T6871]  __kmalloc_noprof+0xd2/0x510
[   79.690663][ T6871]  ? __pfx___ethnl_set_coalesce.isra.0+0x10/0x10
[   79.690673][ T6871]  ? rpm_resume+0x741/0x1310
[   79.690689][ T6871]  ? __pfx_ethnl_default_notify+0x10/0x10
[   79.690702][ T6871]  ethnl_default_notify+0x1a7/0x940
[   79.690715][ T6871]  ? __pfx_ethnl_default_notify+0x10/0x10
[   79.690733][ T6871]  ? ethnl_set_coalesce+0xb8/0x170
[   79.690742][ T6871]  ? __pfx_ethnl_set_coalesce+0x10/0x10
[   79.690754][ T6871]  ? __pfx_ethnl_default_notify+0x10/0x10
[   79.690766][ T6871]  ethtool_notify+0xbf/0x200
[   79.690778][ T6871]  ethnl_default_set_doit+0x4e5/0xb10
[   79.690792][ T6871]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[   79.690806][ T6871]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[   79.690822][ T6871]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[   79.690841][ T6871]  genl_family_rcv_msg_doit+0x206/0x2f0
[   79.690858][ T6871]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   79.690874][ T6871]  ? trace_cap_capable+0x18d/0x200
[   79.690887][ T6871]  ? bpf_lsm_capable+0x9/0x10
[   79.690901][ T6871]  ? security_capable+0x7e/0x260
[   79.690911][ T6871]  ? ns_capable+0xd7/0x110
[   79.690924][ T6871]  genl_rcv_msg+0x55c/0x800
[   79.690935][ T6871]  ? __pfx_genl_rcv_msg+0x10/0x10
[   79.690943][ T6871]  ? __pfx___dev_queue_xmit+0x10/0x10
[   79.690954][ T6871]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[   79.690967][ T6871]  ? __lock_acquire+0xaa4/0x1ba0
[   79.690979][ T6871]  netlink_rcv_skb+0x16a/0x440
[   79.690993][ T6871]  ? __pfx_genl_rcv_msg+0x10/0x10
[   79.691003][ T6871]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   79.691029][ T6871]  ? __pfx_down_read+0x10/0x10
[   79.691045][ T6871]  ? netlink_deliver_tap+0x1ae/0xd30
[   79.691061][ T6871]  genl_rcv+0x28/0x40
[   79.691074][ T6871]  netlink_unicast+0x53a/0x7f0
[   79.691090][ T6871]  ? __pfx_netlink_unicast+0x10/0x10
[   79.691108][ T6871]  netlink_sendmsg+0x8d1/0xdd0
[   79.691124][ T6871]  ? __pfx_netlink_sendmsg+0x10/0x10
[   79.691139][ T6871]  ? __import_iovec+0x1c8/0x660
[   79.691155][ T6871]  ____sys_sendmsg+0xa95/0xc70
[   79.691172][ T6871]  ? __pfx_____sys_sendmsg+0x10/0x10
[   79.691187][ T6871]  ? get_compat_msghdr+0x11a/0x170
[   79.691205][ T6871]  ___sys_sendmsg+0x134/0x1d0
[   79.691218][ T6871]  ? __pfx____sys_sendmsg+0x10/0x10
[   79.691248][ T6871]  __sys_sendmsg+0x16d/0x220
[   79.691260][ T6871]  ? __pfx___sys_sendmsg+0x10/0x10
[   79.691277][ T6871]  ? rcu_is_watching+0x12/0xc0
[   79.691290][ T6871]  ? rcu_is_watching+0x12/0xc0
[   79.691304][ T6871]  __do_fast_syscall_32+0x73/0x120
[   79.691320][ T6871]  do_fast_syscall_32+0x32/0x80
[   79.691334][ T6871]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   79.691346][ T6871] RIP: 0023:0xf7fb5579
[   79.691354][ T6871] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   79.691363][ T6871] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   79.691373][ T6871] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000540
[   79.691378][ T6871] RDX: 0000000000004010 RSI: 0000000000000000 RDI: 0000000000000000
[   79.691384][ T6871] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   79.691389][ T6871] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   79.691394][ T6871] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   79.691406][ T6871]  </TASK>
[   79.869304][ T6881] fuse: Unknown parameter '0x0000000000000005'
[   79.890873][ T6883] netlink: 8 bytes leftover after parsing attributes in process `syz.0.214'.
[   80.283059][ T6903] FAULT_INJECTION: forcing a failure.
[   80.283059][ T6903] name failslab, interval 1, probability 0, space 0, times 0
[   80.286437][ T6903] CPU: 3 UID: 0 PID: 6903 Comm: syz.2.219 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   80.286450][ T6903] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.286457][ T6903] Call Trace:
[   80.286469][ T6903]  <TASK>
[   80.286475][ T6903]  dump_stack_lvl+0x16c/0x1f0
[   80.286492][ T6903]  should_fail_ex+0x512/0x640
[   80.286504][ T6903]  ? fs_reclaim_acquire+0xae/0x150
[   80.286517][ T6903]  ? tomoyo_encode2+0x100/0x3e0
[   80.286530][ T6903]  should_failslab+0xc2/0x120
[   80.286540][ T6903]  __kmalloc_noprof+0xd2/0x510
[   80.286558][ T6903]  tomoyo_encode2+0x100/0x3e0
[   80.286572][ T6903]  tomoyo_encode+0x29/0x50
[   80.286585][ T6903]  tomoyo_realpath_from_path+0x18f/0x6e0
[   80.286599][ T6903]  ? tomoyo_profile+0x47/0x60
[   80.286615][ T6903]  tomoyo_path_number_perm+0x245/0x580
[   80.286626][ T6903]  ? tomoyo_path_number_perm+0x237/0x580
[   80.286638][ T6903]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   80.286650][ T6903]  ? find_held_lock+0x2b/0x80
[   80.286675][ T6903]  ? find_held_lock+0x2b/0x80
[   80.286687][ T6903]  ? hook_file_ioctl_common+0x145/0x410
[   80.286700][ T6903]  ? __fget_files+0x20e/0x3c0
[   80.286717][ T6903]  security_file_ioctl_compat+0x9b/0x240
[   80.286730][ T6903]  __do_compat_sys_ioctl+0x4e/0x2c0
[   80.286744][ T6903]  __do_fast_syscall_32+0x73/0x120
[   80.286760][ T6903]  do_fast_syscall_32+0x32/0x80
[   80.286774][ T6903]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   80.286786][ T6903] RIP: 0023:0xf73ee579
[   80.286793][ T6903] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   80.286802][ T6903] RSP: 002b:00000000f505555c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   80.286812][ T6903] RAX: ffffffffffffffda RBX: 0000000000000006 RCX: 00000000400448c8
[   80.286818][ T6903] RDX: 0000000080000340 RSI: 0000000000000000 RDI: 0000000000000000
[   80.286823][ T6903] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   80.286828][ T6903] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   80.286834][ T6903] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   80.286846][ T6903]  </TASK>
[   80.286909][ T6903] ERROR: Out of memory at tomoyo_realpath_from_path.
[   80.287154][ T6900] netlink: 8 bytes leftover after parsing attributes in process `syz.3.221'.
[   80.352589][ T6900] netlink: 72 bytes leftover after parsing attributes in process `syz.3.221'.
[   80.384980][ T6908] FAULT_INJECTION: forcing a failure.
[   80.384980][ T6908] name failslab, interval 1, probability 0, space 0, times 0
[   80.388344][ T6908] CPU: 0 UID: 0 PID: 6908 Comm: syz.3.223 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   80.388357][ T6908] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   80.388363][ T6908] Call Trace:
[   80.388367][ T6908]  <TASK>
[   80.388371][ T6908]  dump_stack_lvl+0x16c/0x1f0
[   80.388389][ T6908]  should_fail_ex+0x512/0x640
[   80.388401][ T6908]  ? __kmalloc_noprof+0xbf/0x510
[   80.388417][ T6908]  ? bpf_test_init.isra.0+0x9e/0x140
[   80.388429][ T6908]  should_failslab+0xc2/0x120
[   80.388438][ T6908]  __kmalloc_noprof+0xd2/0x510
[   80.388452][ T6908]  ? __lock_acquire+0x5ca/0x1ba0
[   80.388464][ T6908]  bpf_test_init.isra.0+0x9e/0x140
[   80.388477][ T6908]  bpf_prog_test_run_xdp+0x4f0/0x1540
[   80.388495][ T6908]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   80.388509][ T6908]  ? __might_fault+0x50/0x190
[   80.388526][ T6908]  ? fput+0x70/0xf0
[   80.388537][ T6908]  ? __bpf_prog_get+0xa0/0x290
[   80.388558][ T6908]  ? __pfx_bpf_prog_test_run_xdp+0x10/0x10
[   80.388576][ T6908]  __sys_bpf+0x1485/0x4d80
[   80.388595][ T6908]  ? __pfx___sys_bpf+0x10/0x10
[   80.388613][ T6908]  ? ksys_write+0x190/0x240
[   80.388637][ T6908]  ? __mutex_unlock_slowpath+0x161/0x6a0
[   80.388674][ T6908]  ? fput+0x70/0xf0
[   80.388690][ T6908]  ? ksys_write+0x1b9/0x240
[   80.388709][ T6908]  ? __pfx_ksys_write+0x10/0x10
[   80.388733][ T6908]  __ia32_sys_bpf+0x76/0xe0
[   80.388752][ T6908]  __do_fast_syscall_32+0x73/0x120
[   80.388775][ T6908]  do_fast_syscall_32+0x32/0x80
[   80.388797][ T6908]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   80.388816][ T6908] RIP: 0023:0xf7f68579
[   80.388827][ T6908] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   80.388840][ T6908] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   80.388855][ T6908] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000800000c0
[   80.388864][ T6908] RDX: 000000000000004c RSI: 0000000000000000 RDI: 0000000000000000
[   80.388872][ T6908] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   80.388880][ T6908] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   80.388887][ T6908] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   80.388898][ T6908]  </TASK>
[   80.507284][ T6911] tipc: Started in network mode
[   80.508808][ T6911] tipc: Node identity ac14140f, cluster identity 4711
[   80.511181][ T6911] tipc: New replicast peer: 255.255.255.255
[   80.513458][ T6911] tipc: Enabled bearer <udp:syz2>, priority 10
[   80.991809][   T63] cfg80211: failed to load regulatory.db
[   81.079899][ T6918] netlink: 8 bytes leftover after parsing attributes in process `syz.3.226'.
[   81.654834][ T6013] tipc: Node number set to 2886997007
[   81.989884][ T5961] Bluetooth: hci1: unexpected cc 0x201c length: 1 < 9
[   81.993113][ T5961] Bluetooth: hci1: unexpected event for opcode 0x201c
[   82.793849][ T6991] loop6: detected capacity change from 0 to 63
[   83.261350][ T7020] netlink: 4 bytes leftover after parsing attributes in process `syz.3.258'.
[   83.265192][ T7020] netlink: 4 bytes leftover after parsing attributes in process `syz.3.258'.
[   83.273369][ T5954] Bluetooth: hci0: ACL packet for unknown connection handle 200
[   83.287278][ T7020] ipvlan2: entered promiscuous mode
[   83.291676][ T7020] bridge0: port 3(ipvlan2) entered blocking state
[   83.293542][ T7020] bridge0: port 3(ipvlan2) entered disabled state
[   83.295423][ T7020] ipvlan2: entered allmulticast mode
[   83.296959][ T7020] bridge0: entered allmulticast mode
[   83.299876][ T7020] ipvlan2: left allmulticast mode
[   83.302606][ T7020] bridge0: left allmulticast mode
[   83.691803][ T6796] hid-generic C990:0003:0000.0003: unknown main item tag 0x0
[   83.694165][ T6796] hid-generic C990:0003:0000.0003: unknown main item tag 0x0
[   83.698751][ T6796] hid-generic C990:0003:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   83.720103][ T7034] netlink: 8 bytes leftover after parsing attributes in process `syz.1.262'.
[   83.735552][ T1342] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   83.749409][ T7038] FAULT_INJECTION: forcing a failure.
[   83.749409][ T7038] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   83.753544][ T7038] CPU: 3 UID: 0 PID: 7038 Comm: syz.3.265 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   83.753558][ T7038] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.753564][ T7038] Call Trace:
[   83.753567][ T7038]  <TASK>
[   83.753571][ T7038]  dump_stack_lvl+0x16c/0x1f0
[   83.753591][ T7038]  should_fail_ex+0x512/0x640
[   83.753610][ T7038]  _copy_to_user+0x32/0xd0
[   83.753628][ T7038]  uhid_char_read+0x4fc/0x800
[   83.753649][ T7038]  ? __pfx_uhid_char_read+0x10/0x10
[   83.753664][ T7038]  ? __pfx_autoremove_wake_function+0x10/0x10
[   83.753680][ T7038]  ? bpf_lsm_file_permission+0x9/0x10
[   83.753692][ T7038]  ? security_file_permission+0x71/0x210
[   83.753705][ T7038]  ? iov_iter_advance+0x1e3/0x6c0
[   83.753716][ T7038]  ? rw_verify_area+0xcf/0x680
[   83.753728][ T7038]  ? __pfx_uhid_char_read+0x10/0x10
[   83.753738][ T7038]  vfs_readv+0x6bc/0x8a0
[   83.753754][ T7038]  ? __pfx_vfs_readv+0x10/0x10
[   83.753775][ T7038]  ? __fget_files+0x20e/0x3c0
[   83.753788][ T7038]  ? __fget_files+0x1e0/0x3c0
[   83.753805][ T7038]  ? do_readv+0x295/0x330
[   83.753815][ T7038]  do_readv+0x295/0x330
[   83.753827][ T7038]  ? __pfx_do_readv+0x10/0x10
[   83.753840][ T7038]  ? rcu_is_watching+0x12/0xc0
[   83.753854][ T7038]  __do_fast_syscall_32+0x73/0x120
[   83.753870][ T7038]  do_fast_syscall_32+0x32/0x80
[   83.753884][ T7038]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   83.753896][ T7038] RIP: 0023:0xf7f68579
[   83.753904][ T7038] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   83.753913][ T7038] RSP: 002b:00000000f506555c EFLAGS: 00000296 ORIG_RAX: 0000000000000091
[   83.753922][ T7038] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000080000140
[   83.753928][ T7038] RDX: 0000000000000002 RSI: 0000000000000000 RDI: 0000000000000000
[   83.753933][ T7038] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   83.753938][ T7038] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   83.753943][ T7038] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   83.753956][ T7038]  </TASK>
[   83.818072][    C3] vkms_vblank_simulate: vblank timer overrun
[   83.892184][ T1342] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   83.895022][ T1342] usb 7-1: config 0 has no interfaces?
[   83.896635][ T1342] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   83.899228][ T1342] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   83.905698][ T1342] usb 7-1: config 0 descriptor??
[   83.961825][ T7048] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[   83.963615][ T7048] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   83.967270][ T7048] vhci_hcd vhci_hcd.0: Device attached
[   84.425723][ T7051] netlink: 'syz.3.268': attribute type 10 has an invalid length.
[   84.430336][ T7051] team0: Device ipvlan1 failed to register rx_handler
[   84.440527][   T10] usb 43-1: new low-speed USB device number 2 using vhci_hcd
[   84.450086][ T1342] usb 7-1: USB disconnect, device number 2
[   84.805962][ T7049] vhci_hcd: connection reset by peer
[   84.808904][   T12] vhci_hcd: stop threads
[   84.810236][   T12] vhci_hcd: release socket
[   84.811684][   T12] vhci_hcd: disconnect device
[   84.871642][   T63] hid-generic C990:0003:0000.0004: unknown main item tag 0x0
[   84.873695][   T63] hid-generic C990:0003:0000.0004: unknown main item tag 0x0
[   84.876641][   T63] hid-generic C990:0003:0000.0004: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[   84.916741][ T7060] tmpfs: Bad value for 'mpol'
[   85.310625][ T5954] Bluetooth: hci0: command 0x0419 tx timeout
[   85.312746][ T5961] Bluetooth: hci0: Opcode 0x206a failed: -110
[   85.405771][ T7068] netlink: 32 bytes leftover after parsing attributes in process `syz.1.272'.
[   85.409644][ T7068] netlink: 24 bytes leftover after parsing attributes in process `syz.1.272'.
[   85.434498][ T7077] input: syz1 as /devices/virtual/input/input8
[   85.462192][ T7077] netlink: 40 bytes leftover after parsing attributes in process `syz.3.275'.
[   85.465472][ T5961] Bluetooth: hci3: SCO packet for unknown connection handle 200
[   85.497317][ T7080] netlink: 76 bytes leftover after parsing attributes in process `syz.3.276'.
[   85.624609][ T7080] tmpfs: Bad value for 'size'
[   85.836837][ T7098] hfsplus: Unknown parameter 'barrier'
[   85.839275][ T7098] MTD: Attempt to mount non-MTD device "/dev/sr0"
[   85.932298][ T7098] /dev/sr0: Can't open blockdev
[   86.627355][ T7105] QAT: failed to copy from user cfg_data.
[   87.128396][ T7121] [U] 
[   87.129603][ T7121] [U] 
[   87.130685][ T7121] [U] 
[   87.131732][ T7121] [U] 
[   87.135411][ T7121] [U] 
[   87.136539][ T7121] [U] 
[   87.137097][ T7115] block device autoloading is deprecated and will be removed.
[   87.137547][ T7121] [U] 
[   87.141062][ T7121] [U] 
[   87.142560][ T7121] [U] 
[   87.143653][ T7121] [U] 
[   87.144638][ T7121] [U] 
[   87.145472][ T7121] [U] 
[   87.146334][ T7121] [U] 
[   87.147155][ T7121] [U] 
[   87.147986][ T7121] [U] 
[   87.148800][ T7121] [U] 
[   87.149629][ T7121] [U] 
[   87.150457][ T7121] [U] 
[   87.151503][ T7121] [U] 
[   87.152322][ T7121] [U] 
[   87.154753][ T7121] [U] 
[   87.155761][ T7121] [U] 
[   87.156599][ T7121] [U] 
[   87.157383][ T7121] [U] 
[   87.158262][ T7121] [U] 
[   87.159058][ T7121] [U] 
[   87.159811][ T7121] [U] 
[   87.160723][ T7121] [U] 
[   87.161907][ T7121] [U] 
[   87.163012][ T7121] [U] 
[   87.164043][ T7121] [U] 
[   87.165115][ T7121] [U] 
[   87.166359][ T7121] [U] 
[   87.167508][ T7121] [U] 
[   87.168642][ T7121] [U] 
[   87.169771][ T7121] [U] 
[   87.172045][ T7121] [U] 
[   87.173187][ T7121] [U] 
[   87.174290][ T7121] [U] 
[   87.175418][ T7121] [U] 
[   87.177155][ T7121] [U] 
[   87.177981][ T7121] [U] 
[   87.178920][ T7121] [U] 
[   87.179974][ T7121] [U] 
[   87.181525][ T7121] [U] 
[   87.182661][ T7121] [U] 
[   87.183723][ T7121] [U] 
[   87.184750][ T7121] [U] 
[   87.185892][ T7121] [U] 
[   87.186970][ T7121] [U] 
[   87.188036][ T7121] [U] 
[   87.189104][ T7121] [U] 
[   87.190667][ T7121] [U] 
[   87.191815][ T7121] [U] 
[   87.192870][ T7121] [U] 
[   87.193949][ T7121] [U] 
[   87.197007][ T7121] [U] 
[   87.197938][ T7121] [U] 
[   87.198726][ T7121] [U] 
[   87.199635][ T7121] [U] 
[   87.201269][ T7121] [U] 
[   87.202103][ T7121] [U] 
[   87.202913][ T7121] [U] 
[   87.203732][ T7121] [U] 
[   87.204879][ T7121] [U] 
[   87.206020][ T7121] [U] 
[   87.207126][ T7121] [U] 
[   87.208233][ T7121] [U] 
[   87.209409][ T7121] [U] 
[   87.210534][ T7121] [U] 
[   87.211624][ T7121] [U] 
[   87.212717][ T7121] [U] 
[   87.213911][ T7121] [U] 
[   87.214993][ T7121] [U] 
[   87.216075][ T7121] [U] 
[   87.217161][ T7121] [U] 
[   87.218324][ T7121] [U] 
[   87.219444][ T7121] [U] 
[   87.220540][ T7121] [U] 
[   87.221633][ T7121] [U] 
[   87.222828][ T7121] [U] 
[   87.223965][ T7121] [U] 
[   87.225051][ T7121] [U] 
[   87.226161][ T7121] [U] 
[   87.227340][ T7121] [U] 
[   87.228472][ T7121] [U] 
[   87.229561][ T7121] [U] 
[   87.230676][ T7121] [U] 
[   87.231944][ T7121] [U] 
[   87.233099][ T7121] [U] 
[   87.234288][ T7121] [U] 
[   87.235385][ T7121] [U] 
[   87.236547][ T7121] [U] 
[   87.237643][ T7121] [U] 
[   87.238700][ T7121] [U] 
[   87.239753][ T7121] [U] 
[   87.241566][ T7121] [U] 
[   87.242683][ T7121] [U] 
[   87.243771][ T7121] [U] 
[   87.244816][ T7121] [U] 
[   87.245994][ T7121] [U] 
[   87.247094][ T7121] [U] 
[   87.248179][ T7121] [U] 
[   87.249239][ T7121] [U] 
[   87.250362][ T7121] [U] 
[   87.251426][ T7121] [U] 
[   87.252481][ T7121] [U] 
[   87.253534][ T7121] [U] 
[   87.254718][ T7121] [U] 
[   87.255799][ T7121] [U] 
[   87.256844][ T7121] [U] 
[   87.257891][ T7121] [U] 
[   87.258990][ T7121] [U] 
[   87.260059][ T7121] [U] 
[   87.260960][ T7121] [U] 
[   87.262041][ T7121] [U] 
[   87.264102][ T7121] [U] 
[   87.265197][ T7121] [U] 
[   87.266299][ T7121] [U] 
[   87.267169][ T7121] [U] 
[   87.267996][ T7121] [U] 
[   87.268763][ T7121] [U] 
[   87.269510][ T7121] [U] 
[   87.270292][ T7121] [U] 
[   87.271339][ T7121] [U] 
[   87.272245][ T7121] [U] 
[   87.273337][ T7121] [U] 
[   87.353533][ T7120] tmpfs: Bad value for 'mpol'
[   87.356233][ T7119] [U] 
[   89.049507][ T7150] "syz.2.297" (7150) uses obsolete ecb(arc4) skcipher
[   89.263787][ T7164] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[   89.265623][ T7164] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   89.270142][ T7164] vhci_hcd vhci_hcd.0: Device attached
[   89.553219][ T1017] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[   89.692206][   T10] vhci_hcd: vhci_device speed not set
[   90.152657][ T7165] vhci_hcd: connection reset by peer
[   90.159245][ T1141] vhci_hcd: stop threads
[   90.160807][ T1141] vhci_hcd: release socket
[   90.164568][ T1141] vhci_hcd: disconnect device
[   90.182536][ T7196] mmap: syz.3.307 (7196) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   91.927908][ T7244] FAULT_INJECTION: forcing a failure.
[   91.927908][ T7244] name failslab, interval 1, probability 0, space 0, times 0
[   91.933334][ T7244] CPU: 2 UID: 0 PID: 7244 Comm: syz.3.320 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   91.933350][ T7244] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   91.933356][ T7244] Call Trace:
[   91.933360][ T7244]  <TASK>
[   91.933365][ T7244]  dump_stack_lvl+0x16c/0x1f0
[   91.933383][ T7244]  should_fail_ex+0x512/0x640
[   91.933395][ T7244]  ? __kmalloc_cache_noprof+0x57/0x3e0
[   91.933410][ T7244]  should_failslab+0xc2/0x120
[   91.933419][ T7244]  __kmalloc_cache_noprof+0x6a/0x3e0
[   91.933433][ T7244]  ? fou_create.constprop.0+0x156/0x910
[   91.933445][ T7244]  fou_create.constprop.0+0x156/0x910
[   91.933456][ T7244]  ? __pfx_fou_create.constprop.0+0x10/0x10
[   91.933466][ T7244]  ? __asan_memset+0x23/0x50
[   91.933478][ T7244]  ? parse_nl_config+0x15b/0xa90
[   91.933493][ T7244]  fou_nl_add_doit+0xcf/0x130
[   91.933502][ T7244]  ? __pfx_fou_nl_add_doit+0x10/0x10
[   91.933514][ T7244]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1aa/0x290
[   91.933532][ T7244]  ? genl_family_rcv_msg_attrs_parse.constprop.0+0x1b4/0x290
[   91.933551][ T7244]  genl_family_rcv_msg_doit+0x206/0x2f0
[   91.933568][ T7244]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[   91.933583][ T7244]  ? rcu_is_watching+0x12/0xc0
[   91.933600][ T7244]  ? bpf_lsm_capable+0x9/0x10
[   91.933614][ T7244]  ? security_capable+0x7e/0x260
[   91.933627][ T7244]  genl_rcv_msg+0x55c/0x800
[   91.933637][ T7244]  ? __pfx_genl_rcv_msg+0x10/0x10
[   91.933646][ T7244]  ? __pfx___dev_queue_xmit+0x10/0x10
[   91.933657][ T7244]  ? __pfx_fou_nl_add_doit+0x10/0x10
[   91.933668][ T7244]  ? __lock_acquire+0xaa4/0x1ba0
[   91.933679][ T7244]  netlink_rcv_skb+0x16a/0x440
[   91.933693][ T7244]  ? __pfx_genl_rcv_msg+0x10/0x10
[   91.933703][ T7244]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   91.933723][ T7244]  ? __pfx_down_read+0x10/0x10
[   91.933740][ T7244]  ? netlink_deliver_tap+0x1ae/0xd30
[   91.933755][ T7244]  genl_rcv+0x28/0x40
[   91.933769][ T7244]  netlink_unicast+0x53a/0x7f0
[   91.933784][ T7244]  ? __pfx_netlink_unicast+0x10/0x10
[   91.933802][ T7244]  netlink_sendmsg+0x8d1/0xdd0
[   91.933818][ T7244]  ? __pfx_netlink_sendmsg+0x10/0x10
[   91.933833][ T7244]  ? __import_iovec+0x1c8/0x660
[   91.933849][ T7244]  ____sys_sendmsg+0xa95/0xc70
[   91.933867][ T7244]  ? __pfx_____sys_sendmsg+0x10/0x10
[   91.933881][ T7244]  ? get_compat_msghdr+0x11a/0x170
[   91.933902][ T7244]  ___sys_sendmsg+0x134/0x1d0
[   91.933916][ T7244]  ? __pfx____sys_sendmsg+0x10/0x10
[   91.933944][ T7244]  __sys_sendmsg+0x16d/0x220
[   91.933957][ T7244]  ? __pfx___sys_sendmsg+0x10/0x10
[   91.933973][ T7244]  ? rcu_is_watching+0x12/0xc0
[   91.933986][ T7244]  ? rcu_is_watching+0x12/0xc0
[   91.933999][ T7244]  __do_fast_syscall_32+0x73/0x120
[   91.934028][ T7244]  do_fast_syscall_32+0x32/0x80
[   91.934042][ T7244]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   91.934054][ T7244] RIP: 0023:0xf7f68579
[   91.934063][ T7244] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   91.934071][ T7244] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   91.934081][ T7244] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080000180
[   91.934087][ T7244] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   91.934092][ T7244] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   91.934097][ T7244] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   91.934102][ T7244] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   91.934115][ T7244]  </TASK>
[   92.851743][ T7273] netlink: 12 bytes leftover after parsing attributes in process `syz.2.328'.
[   92.893196][ T7275] netlink: 8 bytes leftover after parsing attributes in process `syz.3.330'.
[   92.904301][ T7275] netlink: 8 bytes leftover after parsing attributes in process `syz.3.330'.
[   92.909786][ T7275] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   93.803424][ T7307] netlink: 12 bytes leftover after parsing attributes in process `syz.0.338'.
[   93.894976][ T5961] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   93.895032][ T5954] Bluetooth: hci4: command 0x1003 tx timeout
[   95.007125][ T1017] vhci_hcd: vhci_device speed not set
[   95.200167][ T7334] block nbd0: server does not support multiple connections per device.
[   95.204289][ T7334] block nbd0: shutting down sockets
[   95.306642][ T7345] block nbd0: server does not support multiple connections per device.
[   95.309373][ T7345] block nbd0: shutting down sockets
[   95.324645][ T7345] FAULT_INJECTION: forcing a failure.
[   95.324645][ T7345] name failslab, interval 1, probability 0, space 0, times 0
[   95.333796][ T7345] CPU: 0 UID: 0 PID: 7345 Comm: syz.1.350 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   95.333811][ T7345] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   95.333818][ T7345] Call Trace:
[   95.333821][ T7345]  <TASK>
[   95.333825][ T7345]  dump_stack_lvl+0x16c/0x1f0
[   95.333843][ T7345]  should_fail_ex+0x512/0x640
[   95.333855][ T7345]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   95.333872][ T7345]  should_failslab+0xc2/0x120
[   95.333881][ T7345]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   95.333896][ T7345]  ? __alloc_skb+0x2b2/0x380
[   95.333914][ T7345]  __alloc_skb+0x2b2/0x380
[   95.333926][ T7345]  ? __pfx___alloc_skb+0x10/0x10
[   95.333938][ T7345]  ? genl_rcv_msg+0x4bb/0x800
[   95.333951][ T7345]  netlink_ack+0x15d/0xb80
[   95.333965][ T7345]  ? __lock_acquire+0xaa4/0x1ba0
[   95.333977][ T7345]  netlink_rcv_skb+0x347/0x440
[   95.333991][ T7345]  ? __pfx_genl_rcv_msg+0x10/0x10
[   95.334001][ T7345]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   95.334021][ T7345]  ? __pfx_down_read+0x10/0x10
[   95.334037][ T7345]  ? netlink_deliver_tap+0x1ae/0xd30
[   95.334052][ T7345]  genl_rcv+0x28/0x40
[   95.334066][ T7345]  netlink_unicast+0x53a/0x7f0
[   95.334081][ T7345]  ? __pfx_netlink_unicast+0x10/0x10
[   95.334099][ T7345]  netlink_sendmsg+0x8d1/0xdd0
[   95.334115][ T7345]  ? __pfx_netlink_sendmsg+0x10/0x10
[   95.334144][ T7345]  ? __import_iovec+0x1c8/0x660
[   95.334163][ T7345]  ____sys_sendmsg+0xa95/0xc70
[   95.334180][ T7345]  ? __pfx_____sys_sendmsg+0x10/0x10
[   95.334194][ T7345]  ? get_compat_msghdr+0x11a/0x170
[   95.334212][ T7345]  ___sys_sendmsg+0x134/0x1d0
[   95.334226][ T7345]  ? __pfx____sys_sendmsg+0x10/0x10
[   95.334255][ T7345]  __sys_sendmsg+0x16d/0x220
[   95.334268][ T7345]  ? __pfx___sys_sendmsg+0x10/0x10
[   95.334286][ T7345]  ? rcu_is_watching+0x12/0xc0
[   95.334300][ T7345]  __do_fast_syscall_32+0x73/0x120
[   95.334316][ T7345]  do_fast_syscall_32+0x32/0x80
[   95.334330][ T7345]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   95.334342][ T7345] RIP: 0023:0xf7fb5579
[   95.334350][ T7345] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   95.334359][ T7345] RSP: 002b:00000000f50d655c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   95.334369][ T7345] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000800027c0
[   95.334374][ T7345] RDX: 0000000000004000 RSI: 0000000000000000 RDI: 0000000000000000
[   95.334380][ T7345] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   95.334385][ T7345] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   95.334390][ T7345] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   95.334402][ T7345]  </TASK>
[   97.135411][ T6013] kernel write not supported for file /dsp (pid: 6013 comm: kworker/1:3)
[   97.673071][ T7441] netlink: 8 bytes leftover after parsing attributes in process `syz.3.375'.
[   97.874018][ T7451] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   98.064735][ T7455] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[   98.068345][   T40] kauditd_printk_skb: 54 callbacks suppressed
[   98.068353][   T40] audit: type=1326 audit(1744281193.457:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.3.381" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000
[   98.075974][   T40] audit: type=1326 audit(1744281193.457:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.3.381" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000
[   98.081978][   T40] audit: type=1326 audit(1744281193.457:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.3.381" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f68579 code=0x7ffc0000
[   98.088396][   T40] audit: type=1326 audit(1744281193.457:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.3.381" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000
[   98.094885][   T40] audit: type=1326 audit(1744281193.457:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.3.381" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000
[   98.102043][   T40] audit: type=1326 audit(1744281193.457:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.3.381" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f68579 code=0x7ffc0000
[   98.108613][   T40] audit: type=1326 audit(1744281193.457:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.3.381" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000
[   98.115206][   T40] audit: type=1326 audit(1744281193.457:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.3.381" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000
[   98.121254][   T40] audit: type=1326 audit(1744281193.457:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.3.381" exe="/syz-executor" sig=0 arch=40000003 syscall=354 compat=1 ip=0xf7f68579 code=0x7ffc0000
[   98.127225][   T40] audit: type=1326 audit(1744281193.457:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7454 comm="syz.3.381" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f68579 code=0x7ffc0000
[   98.290953][ T7461] FAULT_INJECTION: forcing a failure.
[   98.290953][ T7461] name failslab, interval 1, probability 0, space 0, times 0
[   98.294508][ T7461] CPU: 3 UID: 0 PID: 7461 Comm: syz.2.383 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[   98.294522][ T7461] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   98.294528][ T7461] Call Trace:
[   98.294531][ T7461]  <TASK>
[   98.294535][ T7461]  dump_stack_lvl+0x16c/0x1f0
[   98.294552][ T7461]  should_fail_ex+0x512/0x640
[   98.294564][ T7461]  ? __kvmalloc_node_noprof+0x122/0x600
[   98.294579][ T7461]  should_failslab+0xc2/0x120
[   98.294589][ T7461]  __kvmalloc_node_noprof+0x135/0x600
[   98.294602][ T7461]  ? bpf_lsm_capable+0x9/0x10
[   98.294615][ T7461]  ? security_capable+0x7e/0x260
[   98.294625][ T7461]  ? bpf_check+0x19ac/0xb460
[   98.294641][ T7461]  ? bpf_check+0x19ac/0xb460
[   98.294654][ T7461]  bpf_check+0x19ac/0xb460
[   98.294667][ T7461]  ? __mutex_trylock_common+0xe9/0x250
[   98.294685][ T7461]  ? __pfx_bpf_check+0x10/0x10
[   98.294698][ T7461]  ? pcpu_alloc_noprof+0x949/0x1470
[   98.294717][ T7461]  ? __lock_acquire+0xaa4/0x1ba0
[   98.294733][ T7461]  ? find_held_lock+0x2b/0x80
[   98.294746][ T7461]  ? rcu_is_watching+0x12/0xc0
[   98.294758][ T7461]  ? ktime_get_with_offset+0x26e/0x3b0
[   98.294773][ T7461]  ? __asan_memset+0x23/0x50
[   98.294785][ T7461]  ? bpf_obj_name_cpy+0x14a/0x1a0
[   98.294797][ T7461]  bpf_prog_load+0xe41/0x2490
[   98.294809][ T7461]  ? __pfx_bpf_prog_load+0x10/0x10
[   98.294829][ T7461]  ? bpf_lsm_bpf+0x9/0x10
[   98.294844][ T7461]  __sys_bpf+0x433c/0x4d80
[   98.294859][ T7461]  ? __pfx___sys_bpf+0x10/0x10
[   98.294870][ T7461]  ? ksys_write+0x190/0x240
[   98.294886][ T7461]  ? __mutex_unlock_slowpath+0x161/0x6a0
[   98.294907][ T7461]  ? fput+0x70/0xf0
[   98.294916][ T7461]  ? ksys_write+0x1b9/0x240
[   98.294929][ T7461]  ? __pfx_ksys_write+0x10/0x10
[   98.294944][ T7461]  __ia32_sys_bpf+0x76/0xe0
[   98.294956][ T7461]  __do_fast_syscall_32+0x73/0x120
[   98.294971][ T7461]  do_fast_syscall_32+0x32/0x80
[   98.294985][ T7461]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   98.294997][ T7461] RIP: 0023:0xf73ee579
[   98.295005][ T7461] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   98.295014][ T7461] RSP: 002b:00000000f507655c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[   98.295023][ T7461] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 0000000080000140
[   98.295029][ T7461] RDX: 0000000000000094 RSI: 0000000000000000 RDI: 0000000000000000
[   98.295034][ T7461] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   98.295039][ T7461] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   98.295045][ T7461] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   98.295056][ T7461]  </TASK>
[   98.372339][    C3] vkms_vblank_simulate: vblank timer overrun
[   98.664031][ T7472] netlink: 8 bytes leftover after parsing attributes in process `syz.1.384'.
[  100.251491][ T7518] netlink: 8 bytes leftover after parsing attributes in process `syz.3.399'.
[  100.769594][ T7532] lo speed is unknown, defaulting to 1000
[  102.193627][   T13] wlan1: Trigger new scan to find an IBSS to join
[  102.775506][ T7582] netlink: 8 bytes leftover after parsing attributes in process `syz.3.414'.
[  102.880134][ T7590] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  103.617648][ T7605] block nbd0: server does not support multiple connections per device.
[  103.620086][ T7605] block nbd0: shutting down sockets
[  103.756210][ T7617] netlink: 4 bytes leftover after parsing attributes in process `syz.1.425'.
[  103.853655][ T7629] futex_wake_op: syz.1.428 tries to shift op by -1; fix this program
[  103.856001][ T7628] futex_wake_op: syz.1.428 tries to shift op by -1; fix this program
[  103.860377][ T7628] QÐ÷ÿ: renamed from veth0_vlan (while UP)
[  103.894656][ T7632] netlink: 216 bytes leftover after parsing attributes in process `syz.1.429'.
[  103.897194][ T7632] netlink: 216 bytes leftover after parsing attributes in process `syz.1.429'.
[  103.968799][ T7634] fuse: Unknown parameter 'use'
[  104.116590][ T7639] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  104.121528][   T13] Bluetooth: hci4: Frame reassembly failed (-84)
[  104.217085][   T40] kauditd_printk_skb: 9 callbacks suppressed
[  104.217094][   T40] audit: type=1800 audit(1744281199.208:161): pid=7648 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.434" name="SYSV00000000" dev="tmpfs" ino=0 res=0 errno=0
[  105.446944][   T13] wlan1: Trigger new scan to find an IBSS to join
[  105.678249][ T7697] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  105.683652][ T7695] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  105.748761][ T7702] netlink: 20 bytes leftover after parsing attributes in process `syz.0.449'.
[  105.840382][ T7706] FAULT_INJECTION: forcing a failure.
[  105.840382][ T7706] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  105.844186][ T7706] CPU: 2 UID: 0 PID: 7706 Comm: syz.1.452 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  105.844200][ T7706] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  105.844206][ T7706] Call Trace:
[  105.844209][ T7706]  <TASK>
[  105.844213][ T7706]  dump_stack_lvl+0x16c/0x1f0
[  105.844231][ T7706]  should_fail_ex+0x512/0x640
[  105.844245][ T7706]  should_fail_alloc_page+0xe7/0x130
[  105.844256][ T7706]  prepare_alloc_pages+0x3c2/0x610
[  105.844269][ T7706]  ? rcu_is_watching+0x12/0xc0
[  105.844283][ T7706]  __alloc_frozen_pages_noprof+0x18f/0x23a0
[  105.844304][ T7706]  ? __pfx___alloc_frozen_pages_noprof+0x10/0x10
[  105.844325][ T7706]  ? rcu_is_watching+0x12/0xc0
[  105.844336][ T7706]  ? trace_kmalloc+0x2b/0xd0
[  105.844346][ T7706]  ? __kmalloc_node_track_caller_noprof+0x23e/0x510
[  105.844362][ T7706]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  105.844373][ T7706]  ? policy_nodemask+0xea/0x4e0
[  105.844384][ T7706]  alloc_pages_mpol+0x1fb/0x550
[  105.844393][ T7706]  ? __pfx_alloc_pages_mpol+0x10/0x10
[  105.844401][ T7706]  ? __pfx___alloc_skb+0x10/0x10
[  105.844417][ T7706]  alloc_pages_noprof+0x131/0x390
[  105.844426][ T7706]  alloc_skb_with_frags+0x24a/0x860
[  105.844444][ T7706]  sock_alloc_send_pskb+0x7fb/0x990
[  105.844459][ T7706]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  105.844474][ T7706]  ? find_held_lock+0x2b/0x80
[  105.844489][ T7706]  tun_get_user+0x502/0x3b10
[  105.844508][ T7706]  ? __pfx_tun_get_user+0x10/0x10
[  105.844521][ T7706]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  105.844537][ T7706]  ? find_held_lock+0x2b/0x80
[  105.844549][ T7706]  ? tun_get+0x191/0x370
[  105.844563][ T7706]  tun_chr_write_iter+0xdc/0x210
[  105.844578][ T7706]  vfs_write+0x5ba/0x1180
[  105.844592][ T7706]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  105.844607][ T7706]  ? __pfx_vfs_write+0x10/0x10
[  105.844619][ T7706]  ? find_held_lock+0x2b/0x80
[  105.844638][ T7706]  ksys_write+0x12a/0x240
[  105.844651][ T7706]  ? __pfx_ksys_write+0x10/0x10
[  105.844665][ T7706]  ? rcu_is_watching+0x12/0xc0
[  105.844679][ T7706]  __do_fast_syscall_32+0x73/0x120
[  105.844695][ T7706]  do_fast_syscall_32+0x32/0x80
[  105.844711][ T7706]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  105.844728][ T7706] RIP: 0023:0xf7fb5579
[  105.844739][ T7706] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  105.844751][ T7706] RSP: 002b:00000000f50d6520 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  105.844765][ T7706] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000080000380
[  105.844774][ T7706] RDX: 0000000000011dc0 RSI: 00000000f743dff4 RDI: 0000000000000000
[  105.844782][ T7706] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  105.844790][ T7706] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  105.844797][ T7706] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  105.844815][ T7706]  </TASK>
[  106.300055][ T5961] Bluetooth: hci4: Opcode 0x1003 failed: -110
[  106.424124][ T7722] 9pnet_fd: Insufficient options for proto=fd
[  106.574840][ T7726] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  106.578605][ T7726] overlayfs: missing 'lowerdir'
[  106.586167][ T7726] random: crng reseeded on system resumption
[  106.592291][ T7726] netlink: 'syz.0.461': attribute type 10 has an invalid length.
[  106.594955][ T7726] netlink: 12 bytes leftover after parsing attributes in process `syz.0.461'.
[  106.598160][ T7726] openvswitch: netlink: Flow key attr not present in new flow.
[  106.716458][ T7730] netlink: 8 bytes leftover after parsing attributes in process `syz.3.460'.
[  106.726877][ T6013] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  106.901051][ T6013] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.904499][ T6013] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  106.907690][ T6013] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  106.912456][ T6013] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  106.914936][ T6013] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.918143][ T6013] usb 7-1: config 0 descriptor??
[  107.060531][ T7738] FAULT_INJECTION: forcing a failure.
[  107.060531][ T7738] name failslab, interval 1, probability 0, space 0, times 0
[  107.063949][ T7738] CPU: 0 UID: 0 PID: 7738 Comm: syz.0.463 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  107.063964][ T7738] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  107.063970][ T7738] Call Trace:
[  107.063973][ T7738]  <TASK>
[  107.063977][ T7738]  dump_stack_lvl+0x16c/0x1f0
[  107.063995][ T7738]  should_fail_ex+0x512/0x640
[  107.064009][ T7738]  should_failslab+0xc2/0x120
[  107.064019][ T7738]  kmem_cache_alloc_noprof+0x6d/0x3b0
[  107.064035][ T7738]  ? skb_clone+0x190/0x3f0
[  107.064050][ T7738]  skb_clone+0x190/0x3f0
[  107.064063][ T7738]  netlink_deliver_tap+0xabd/0xd30
[  107.064080][ T7738]  netlink_unicast+0x6b2/0x7f0
[  107.064095][ T7738]  ? __pfx_netlink_unicast+0x10/0x10
[  107.064113][ T7738]  nl_fib_input+0x2aa/0x350
[  107.064128][ T7738]  netlink_unicast+0x53a/0x7f0
[  107.064144][ T7738]  ? __pfx_netlink_unicast+0x10/0x10
[  107.064156][ T7738]  ? __build_skb_around+0x278/0x3b0
[  107.064167][ T7738]  ? __build_skb+0x6e/0x90
[  107.064178][ T7738]  ? is_vmalloc_addr+0x30/0x40
[  107.064194][ T7738]  netlink_sendmsg+0x8d1/0xdd0
[  107.064210][ T7738]  ? __pfx_netlink_sendmsg+0x10/0x10
[  107.064223][ T7738]  ? stack_trace_save+0x8e/0xc0
[  107.064237][ T7738]  ? stack_depot_save_flags+0x28/0xa50
[  107.064252][ T7738]  sock_sendmsg+0x3c9/0x470
[  107.064261][ T7738]  ? __kasan_slab_free+0x51/0x70
[  107.064276][ T7738]  ? __pfx_sock_sendmsg+0x10/0x10
[  107.064284][ T7738]  ? splice_direct_to_actor+0x2a1/0xa30
[  107.064306][ T7738]  splice_to_socket+0xaf6/0x1110
[  107.064326][ T7738]  ? __pfx_splice_to_socket+0x10/0x10
[  107.064340][ T7738]  ? lockdep_hardirqs_on+0x7c/0x110
[  107.064369][ T7738]  ? lockdep_init_map_type+0x5c/0x280
[  107.064379][ T7738]  ? __pfx_pipe_lock_cmp_fn+0x10/0x10
[  107.064394][ T7738]  ? __pfx_splice_to_socket+0x10/0x10
[  107.064408][ T7738]  direct_splice_actor+0x18f/0x6c0
[  107.064423][ T7738]  splice_direct_to_actor+0x342/0xa30
[  107.064437][ T7738]  ? __pfx_direct_splice_actor+0x10/0x10
[  107.064453][ T7738]  ? __pfx_splice_direct_to_actor+0x10/0x10
[  107.064466][ T7738]  ? get_pid_task+0xfc/0x250
[  107.064479][ T7738]  do_splice_direct+0x174/0x240
[  107.064493][ T7738]  ? __pfx_do_splice_direct+0x10/0x10
[  107.064506][ T7738]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  107.064520][ T7738]  ? bpf_lsm_file_permission+0x9/0x10
[  107.064532][ T7738]  ? security_file_permission+0x71/0x210
[  107.064546][ T7738]  ? rw_verify_area+0xcf/0x680
[  107.064559][ T7738]  do_sendfile+0xafd/0xe50
[  107.064574][ T7738]  ? __pfx_do_sendfile+0x10/0x10
[  107.064587][ T7738]  ? __fget_files+0x20e/0x3c0
[  107.064604][ T7738]  __ia32_compat_sys_sendfile+0x1e5/0x220
[  107.064614][ T7738]  ? ksys_write+0x1b9/0x240
[  107.064627][ T7738]  ? __pfx___ia32_compat_sys_sendfile+0x10/0x10
[  107.064638][ T7738]  ? rcu_is_watching+0x12/0xc0
[  107.064652][ T7738]  __do_fast_syscall_32+0x73/0x120
[  107.064667][ T7738]  do_fast_syscall_32+0x32/0x80
[  107.064681][ T7738]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  107.064693][ T7738] RIP: 0023:0xf73ce579
[  107.064701][ T7738] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  107.064710][ T7738] RSP: 002b:00000000f505655c EFLAGS: 00000296 ORIG_RAX: 00000000000000bb
[  107.064719][ T7738] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000005
[  107.064725][ T7738] RDX: 0000000000000000 RSI: 000000001d00c0d1 RDI: 0000000000000000
[  107.064730][ T7738] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  107.064735][ T7738] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  107.064740][ T7738] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  107.064752][ T7738]  </TASK>
[  107.595560][ T6013] usbhid 7-1:0.0: can't add hid device: -71
[  107.597354][ T6013] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  107.610659][ T6013] usb 7-1: USB disconnect, device number 3
[  108.163652][ T7766] netlink: 8 bytes leftover after parsing attributes in process `syz.0.471'.
[  108.444821][ T7774] netlink: 8 bytes leftover after parsing attributes in process `syz.1.474'.
[  108.447231][ T7774] netlink: 72 bytes leftover after parsing attributes in process `syz.1.474'.
[  108.611919][ T1141] wlan1: Trigger new scan to find an IBSS to join
[  108.716884][ T6796] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  108.899833][ T6796] usb 6-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  108.902794][ T6796] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  108.907638][ T6796] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  108.910198][ T6796] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.912571][ T6796] usb 6-1: Product: syz
[  108.913938][ T6796] usb 6-1: Manufacturer: syz
[  108.915236][ T6796] usb 6-1: SerialNumber: syz
[  109.128294][ T7788] netlink: 8 bytes leftover after parsing attributes in process `syz.3.476'.
[  109.690316][ T1141] wlan1: Creating new IBSS network, BSSID 2e:e6:2d:c0:8f:b0
[  109.733039][ T1017] ------------[ cut here ]------------
[  109.734658][ T1017] no supported rates for sta (null) (0xffffffff, band 0) in rate_mask 0xfff with flags 0x40
[  109.737681][ T1017] WARNING: CPU: 3 PID: 1017 at net/mac80211/rate.c:399 __rate_control_send_low+0x6d9/0x800
[  109.740471][ T1017] Modules linked in:
[  109.741954][ T1017] CPU: 3 UID: 0 PID: 1017 Comm: kworker/3:2 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  109.746803][ T1017] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.749737][ T1017] Workqueue: mld mld_ifc_work
[  109.750998][ T1017] RIP: 0010:__rate_control_send_low+0x6d9/0x800
[  109.752683][ T1017] Code: a4 a0 d4 00 00 00 e8 56 96 d4 f6 44 8b 44 24 3c 45 89 e9 89 d9 48 8b 74 24 18 44 89 e2 48 c7 c7 20 ad e4 8c e8 58 28 94 f6 90 <0f> 0b 90 90 e9 ff fc ff ff 48 8b 7c 24 30 e8 f4 05 39 f7 e9 e1 fb
[  109.757854][ T1017] RSP: 0018:ffffc90006796a28 EFLAGS: 00010286
[  109.759510][ T1017] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817ad098
[  109.761647][ T1017] RDX: ffff888024e5a440 RSI: ffffffff817ad0a5 RDI: 0000000000000001
[  109.763759][ T1017] RBP: 000000000000000b R08: 0000000000000001 R09: 0000000000000000
[  109.765909][ T1017] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000ffffffff
[  109.768014][ T1017] R13: 0000000000000040 R14: 000000000000000c R15: dffffc0000000000
[  109.770080][ T1017] FS:  0000000000000000(0000) GS:ffff888097ab9000(0000) knlGS:0000000000000000
[  109.772460][ T1017] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  109.774209][ T1017] CR2: 00000000805ef000 CR3: 0000000065c40000 CR4: 0000000000352ef0
[  109.776364][ T1017] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  109.778510][ T1017] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  109.780642][ T1017] Call Trace:
[  109.781553][ T1017]  <TASK>
[  109.782373][ T1017]  rate_control_send_low+0x29a/0x820
[  109.783799][ T1017]  ? kasan_save_stack+0x42/0x60
[  109.785173][ T1017]  ? kasan_save_stack+0x33/0x60
[  109.786598][ T1017]  ? kasan_save_track+0x14/0x30
[  109.787921][ T1017]  rate_control_get_rate+0x1be/0x5e0
[  109.789342][ T1017]  ieee80211_tx_h_rate_ctrl+0xad3/0x1a90
[  109.790875][ T1017]  ? __pfx_ieee80211_tx_h_rate_ctrl+0x10/0x10
[  109.792510][ T1017]  invoke_tx_handlers_late+0xca9/0x2b40
[  109.794037][ T1017]  ? ieee80211_tx_h_select_key+0x279/0x1a50
[  109.795642][ T1017]  ieee80211_tx_dequeue+0x2ffc/0x4330
[  109.797160][ T1017]  ? __lock_acquire+0xaa4/0x1ba0
[  109.798551][ T1017]  ? __pfx_ieee80211_tx_dequeue+0x10/0x10
[  109.800099][ T1017]  ? do_raw_spin_lock+0x12c/0x2b0
[  109.801464][ T1017]  ? ieee80211_next_txq+0xd8/0xa50
[  109.802863][ T1017]  ieee80211_handle_wake_tx_queue+0x19c/0x260
[  109.804516][ T1017]  ? __ieee80211_schedule_txq+0x167/0xc80
[  109.806071][ T1017]  ? __pfx_ieee80211_handle_wake_tx_queue+0x10/0x10
[  109.808025][ T1017]  ? __pfx___ieee80211_schedule_txq+0x10/0x10
[  109.809730][ T1017]  ? mark_held_locks+0x49/0x80
[  109.811036][ T1017]  ? __local_bh_enable_ip+0xa4/0x120
[  109.812458][ T1017]  ieee80211_queue_skb+0x12be/0x2010
[  109.813902][ T1017]  ieee80211_tx+0x2e4/0x420
[  109.815138][ T1017]  ? __pfx_ieee80211_tx+0x10/0x10
[  109.816595][ T1017]  ? ieee80211_skb_resize+0x22a/0x630
[  109.818097][ T1017]  ? ieee80211_set_qos_hdr+0xba/0x3f0
[  109.819595][ T1017]  ieee80211_xmit+0x30f/0x3e0
[  109.820865][ T1017]  __ieee80211_subif_start_xmit+0xa6d/0x13f0
[  109.822509][ T1017]  ? kasan_save_stack+0x15/0x60
[  109.823902][ T1017]  ? neigh_resolve_output+0x53a/0x940
[  109.825375][ T1017]  ? __pfx___ieee80211_subif_start_xmit+0x10/0x10
[  109.827128][ T1017]  ? mld_sendpack+0x9e9/0x1220
[  109.828470][ T1017]  ? process_one_work+0x9cc/0x1b70
[  109.829876][ T1017]  ? worker_thread+0x6c8/0xf10
[  109.831186][ T1017]  ? kthread+0x3c2/0x780
[  109.832350][ T1017]  ? ret_from_fork+0x45/0x80
[  109.833558][ T1017]  ? ret_from_fork_asm+0x1a/0x30
[  109.834884][ T1017]  ieee80211_subif_start_xmit+0x112/0x1710
[  109.836520][ T1017]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  109.838105][ T1017]  ? __pfx_ieee80211_subif_start_xmit+0x10/0x10
[  109.839831][ T1017]  ? dev_hard_start_xmit+0x93/0x740
[  109.841246][ T1017]  dev_hard_start_xmit+0x93/0x740
[  109.842610][ T1017]  __dev_queue_xmit+0x7eb/0x43e0
[  109.843963][ T1017]  ? __lock_acquire+0x5ca/0x1ba0
[  109.845289][ T1017]  ? __pfx___dev_queue_xmit+0x10/0x10
[  109.846731][ T1017]  ? register_lock_class+0x41/0x4c0
[  109.848141][ T1017]  ? __lock_acquire+0xaa4/0x1ba0
[  109.849494][ T1017]  ? __asan_memcpy+0x3c/0x60
[  109.850774][ T1017]  ? eth_header+0x11c/0x1f0
[  109.852037][ T1017]  neigh_resolve_output+0x53a/0x940
[  109.853433][ T1017]  ip6_finish_output2+0xaeb/0x2020
[  109.854875][ T1017]  ? ip6_mtu+0x1a3/0x4a0
[  109.856064][ T1017]  ip6_finish_output+0x3f9/0x1360
[  109.857426][ T1017]  ip6_output+0x1f9/0x540
[  109.858616][ T1017]  mld_sendpack+0x9e9/0x1220
[  109.859893][ T1017]  ? __pfx_mld_sendpack+0x10/0x10
[  109.861338][ T1017]  ? lockdep_hardirqs_on+0x7c/0x110
[  109.862787][ T1017]  mld_ifc_work+0x740/0xca0
[  109.864033][ T1017]  process_one_work+0x9cc/0x1b70
[  109.865398][ T1017]  ? __pfx_process_one_work+0x10/0x10
[  109.866935][ T1017]  ? assign_work+0x1a0/0x250
[  109.868218][ T1017]  worker_thread+0x6c8/0xf10
[  109.869505][ T1017]  ? __pfx_worker_thread+0x10/0x10
[  109.870867][ T1017]  kthread+0x3c2/0x780
[  109.871997][ T1017]  ? __pfx_kthread+0x10/0x10
[  109.873258][ T1017]  ? __pfx_kthread+0x10/0x10
[  109.874521][ T1017]  ? __pfx_kthread+0x10/0x10
[  109.875780][ T1017]  ? __pfx_kthread+0x10/0x10
[  109.877035][ T1017]  ? rcu_is_watching+0x12/0xc0
[  109.878309][ T1017]  ? __pfx_kthread+0x10/0x10
[  109.879556][ T1017]  ret_from_fork+0x45/0x80
[  109.880754][ T1017]  ? __pfx_kthread+0x10/0x10
[  109.882027][ T1017]  ret_from_fork_asm+0x1a/0x30
[  109.883359][ T1017]  </TASK>
[  109.884212][ T1017] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  109.886176][ T1017] CPU: 3 UID: 0 PID: 1017 Comm: kworker/3:2 Not tainted 6.15.0-rc1-syzkaller-00065-g3b07108ada81 #0 PREEMPT(full) 
[  109.889298][ T1017] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.892139][ T1017] Workqueue: mld mld_ifc_work
[  109.893448][ T1017] Call Trace:
[  109.894348][ T1017]  <TASK>
[  109.895162][ T1017]  dump_stack_lvl+0x3d/0x1f0
[  109.896437][ T1017]  panic+0x71c/0x800
[  109.897497][ T1017]  ? __pfx_panic+0x10/0x10
[  109.898754][ T1017]  ? show_trace_log_lvl+0x29b/0x3e0
[  109.900240][ T1017]  ? check_panic_on_warn+0x1f/0xb0
[  109.901651][ T1017]  ? __rate_control_send_low+0x6d9/0x800
[  109.903158][ T1017]  check_panic_on_warn+0xab/0xb0
[  109.904463][ T1017]  __warn+0xf6/0x3c0
[  109.905537][ T1017]  ? __rate_control_send_low+0x6d9/0x800
[  109.907054][ T1017]  report_bug+0x3c3/0x580
[  109.908290][ T1017]  ? __rate_control_send_low+0x6d9/0x800
[  109.909852][ T1017]  handle_bug+0x184/0x210
[  109.911024][ T1017]  exc_invalid_op+0x17/0x50
[  109.912247][ T1017]  asm_exc_invalid_op+0x1a/0x20
[  109.913568][ T1017] RIP: 0010:__rate_control_send_low+0x6d9/0x800
[  109.915263][ T1017] Code: a4 a0 d4 00 00 00 e8 56 96 d4 f6 44 8b 44 24 3c 45 89 e9 89 d9 48 8b 74 24 18 44 89 e2 48 c7 c7 20 ad e4 8c e8 58 28 94 f6 90 <0f> 0b 90 90 e9 ff fc ff ff 48 8b 7c 24 30 e8 f4 05 39 f7 e9 e1 fb
[  109.920384][ T1017] RSP: 0018:ffffc90006796a28 EFLAGS: 00010286
[  109.921994][ T1017] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff817ad098
[  109.924123][ T1017] RDX: ffff888024e5a440 RSI: ffffffff817ad0a5 RDI: 0000000000000001
[  109.926254][ T1017] RBP: 000000000000000b R08: 0000000000000001 R09: 0000000000000000
[  109.928353][ T1017] R10: 0000000000000000 R11: 0000000000000000 R12: 00000000ffffffff
[  109.930491][ T1017] R13: 0000000000000040 R14: 000000000000000c R15: dffffc0000000000
[  109.932620][ T1017]  ? __warn_printk+0x198/0x350
[  109.933956][ T1017]  ? __warn_printk+0x1a5/0x350
[  109.935302][ T1017]  ? __rate_control_send_low+0x6d8/0x800
[  109.936789][ T1017]  rate_control_send_low+0x29a/0x820
[  109.938225][ T1017]  ? kasan_save_stack+0x42/0x60
[  109.939517][ T1017]  ? kasan_save_stack+0x33/0x60
[  109.940866][ T1017]  ? kasan_save_track+0x14/0x30
[  109.942225][ T1017]  rate_control_get_rate+0x1be/0x5e0
[  109.943671][ T1017]  ieee80211_tx_h_rate_ctrl+0xad3/0x1a90
[  109.945180][ T1017]  ? __pfx_ieee80211_tx_h_rate_ctrl+0x10/0x10
[  109.946826][ T1017]  invoke_tx_handlers_late+0xca9/0x2b40
[  109.948309][ T1017]  ? ieee80211_tx_h_select_key+0x279/0x1a50
[  109.949899][ T1017]  ieee80211_tx_dequeue+0x2ffc/0x4330
[  109.951369][ T1017]  ? __lock_acquire+0xaa4/0x1ba0
[  109.952679][ T1017]  ? __pfx_ieee80211_tx_dequeue+0x10/0x10
[  109.954269][ T1017]  ? do_raw_spin_lock+0x12c/0x2b0
[  109.955654][ T1017]  ? ieee80211_next_txq+0xd8/0xa50
[  109.957013][ T1017]  ieee80211_handle_wake_tx_queue+0x19c/0x260
[  109.958622][ T1017]  ? __ieee80211_schedule_txq+0x167/0xc80
[  109.960126][ T1017]  ? __pfx_ieee80211_handle_wake_tx_queue+0x10/0x10
[  109.961855][ T1017]  ? __pfx___ieee80211_schedule_txq+0x10/0x10
[  109.963474][ T1017]  ? mark_held_locks+0x49/0x80
[  109.964754][ T1017]  ? __local_bh_enable_ip+0xa4/0x120
[  109.966178][ T1017]  ieee80211_queue_skb+0x12be/0x2010
[  109.967615][ T1017]  ieee80211_tx+0x2e4/0x420
[  109.968870][ T1017]  ? __pfx_ieee80211_tx+0x10/0x10
[  109.970213][ T1017]  ? ieee80211_skb_resize+0x22a/0x630
[  109.971607][ T1017]  ? ieee80211_set_qos_hdr+0xba/0x3f0
[  109.973055][ T1017]  ieee80211_xmit+0x30f/0x3e0
[  109.974374][ T1017]  __ieee80211_subif_start_xmit+0xa6d/0x13f0
[  109.976001][ T1017]  ? kasan_save_stack+0x15/0x60
[  109.977295][ T1017]  ? neigh_resolve_output+0x53a/0x940
[  109.978747][ T1017]  ? __pfx___ieee80211_subif_start_xmit+0x10/0x10
[  109.980501][ T1017]  ? mld_sendpack+0x9e9/0x1220
[  109.981826][ T1017]  ? process_one_work+0x9cc/0x1b70
[  109.983215][ T1017]  ? worker_thread+0x6c8/0xf10
[  109.984505][ T1017]  ? kthread+0x3c2/0x780
[  109.985673][ T1017]  ? ret_from_fork+0x45/0x80
[  109.986911][ T1017]  ? ret_from_fork_asm+0x1a/0x30
[  109.988249][ T1017]  ieee80211_subif_start_xmit+0x112/0x1710
[  109.989821][ T1017]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  109.991397][ T1017]  ? __pfx_ieee80211_subif_start_xmit+0x10/0x10
[  109.993054][ T1017]  ? dev_hard_start_xmit+0x93/0x740
[  109.994471][ T1017]  dev_hard_start_xmit+0x93/0x740
[  109.995878][ T1017]  __dev_queue_xmit+0x7eb/0x43e0
[  109.997213][ T1017]  ? __lock_acquire+0x5ca/0x1ba0
[  109.998555][ T1017]  ? __pfx___dev_queue_xmit+0x10/0x10
[  110.000013][ T1017]  ? register_lock_class+0x41/0x4c0
[  110.001401][ T1017]  ? __lock_acquire+0xaa4/0x1ba0
[  110.002731][ T1017]  ? __asan_memcpy+0x3c/0x60
[  110.003979][ T1017]  ? eth_header+0x11c/0x1f0
[  110.005211][ T1017]  neigh_resolve_output+0x53a/0x940
[  110.006651][ T1017]  ip6_finish_output2+0xaeb/0x2020
[  110.008035][ T1017]  ? ip6_mtu+0x1a3/0x4a0
[  110.009260][ T1017]  ip6_finish_output+0x3f9/0x1360
[  110.010677][ T1017]  ip6_output+0x1f9/0x540
[  110.011912][ T1017]  mld_sendpack+0x9e9/0x1220
[  110.013207][ T1017]  ? __pfx_mld_sendpack+0x10/0x10
[  110.014552][ T1017]  ? lockdep_hardirqs_on+0x7c/0x110
[  110.015968][ T1017]  mld_ifc_work+0x740/0xca0
[  110.017197][ T1017]  process_one_work+0x9cc/0x1b70
[  110.018559][ T1017]  ? __pfx_process_one_work+0x10/0x10
[  110.020059][ T1017]  ? assign_work+0x1a0/0x250
[  110.021309][ T1017]  worker_thread+0x6c8/0xf10
[  110.022550][ T1017]  ? __pfx_worker_thread+0x10/0x10
[  110.023938][ T1017]  kthread+0x3c2/0x780
[  110.025041][ T1017]  ? __pfx_kthread+0x10/0x10
[  110.026303][ T1017]  ? __pfx_kthread+0x10/0x10
[  110.027564][ T1017]  ? __pfx_kthread+0x10/0x10
[  110.028804][ T1017]  ? __pfx_kthread+0x10/0x10
[  110.030042][ T1017]  ? rcu_is_watching+0x12/0xc0
[  110.031333][ T1017]  ? __pfx_kthread+0x10/0x10
[  110.032604][ T1017]  ret_from_fork+0x45/0x80
[  110.033806][ T1017]  ? __pfx_kthread+0x10/0x10
[  110.035034][ T1017]  ret_from_fork_asm+0x1a/0x30
[  110.036374][ T1017]  </TASK>
[  110.037777][ T1017] Kernel Offset: disabled
[  110.038925][ T1017] Rebooting in 86400 seconds..

VM DIAGNOSIS:
10:33:25  Registers:
info registers vcpu 0

CPU#0
RAX=00000000002de971 RBX=0000000000000000 RCX=ffffffff8b6ff439 RDX=0000000000000000
RSI=ffffffff8dbeaf36 RDI=ffffffff8bf451c0 RBP=fffffbfff1c12ee8 RSP=ffffffff8e007e10
R8 =0000000000000001 R9 =ffffed10056465bd R10=ffff88802b232deb R11=0000000000000000
R12=0000000000000000 R13=ffffffff8e097740 R14=ffffffff90867310 R15=0000000000000000
RIP=ffffffff8b6fdccf RFL=00000286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880977b9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005614ab7ba000 CR3=000000004f602000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=c4300dbfc4300dbf c4300dbfc4300dbf c4300dbfc4300dbf c4300dbfc4300dbf c4300dbfc4300dbf c4300dbfc4300dbf c4300dbfc4300dbf c4300dbfc4300dbf
ZMM22=fb5c9c49fb5c9c49 fb5c9c49fb5c9c49 fb5c9c49fb5c9c49 fb5c9c49fb5c9c49 fb5c9c49fb5c9c49 fb5c9c49fb5c9c49 fb5c9c49fb5c9c49 fb5c9c49fb5c9c49
ZMM23=d8663eadd8663ead d8663eadd8663ead d8663eadd8663ead d8663eadd8663ead d8663eadd8663ead d8663eadd8663ead d8663eadd8663ead d8663eadd8663ead
ZMM24=38985bad38985bad 38985bad38985bad 38985bad38985bad 38985bad38985bad 38985bad38985bad 38985bad38985bad 38985bad38985bad 38985bad38985bad
ZMM25=51b8569851b85698 51b8569851b85698 51b8569851b85698 51b8569851b85698 51b8569851b85698 51b8569851b85698 51b8569851b85698 51b8569851b85698
ZMM26=6a617fe06a617fe0 6a617fe06a617fe0 6a617fe06a617fe0 6a617fe06a617fe0 6a617fe06a617fe0 6a617fe06a617fe0 6a617fe06a617fe0 6a617fe06a617fe0
ZMM27=b7e6c253b7e6c253 b7e6c253b7e6c253 b7e6c253b7e6c253 b7e6c253b7e6c253 b7e6c253b7e6c253 b7e6c253b7e6c253 b7e6c253b7e6c253 b7e6c253b7e6c253
ZMM28=000000100000000f 0000000e0000000d 0000000c0000000b 0000000a00000009 0000000800000007 0000000600000005 0000000400000003 0000000200000001
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=2307000023070000 2307000023070000 2307000023070000 2307000023070000 2307000023070000 2307000023070000 2307000023070000 2307000023070000
info registers vcpu 1

CPU#1
RAX=1ffff110045a8538 RBX=ffff888022d429d0 RCX=ffffffff820e1d41 RDX=ffffc90003d78000
RSI=ffffc90004d78000 RDI=ffffc90004d78000 RBP=ffffc90004d78000 RSP=ffffc9000320f700
R8 =0000000000000006 R9 =ffffc90004d78000 R10=ffffc90003401000 R11=0000000000000000
R12=dffffc0000000000 R13=ffff888022d429c0 R14=0000000000000007 R15=ffffc90003d78000
RIP=ffffffff81bb379e RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880978b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f74431e8 CR3=0000000049a78000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=1ffff92000621efa RCX=0000000000000001 RDX=0000000000000000
RSI=00000000ffffffff RDI=ffffffff8dcdbf36 RBP=ffffffff8e3c14c0 RSP=ffffc9000310f778
R8 =bf7e3208a9fed81d R9 =0000000000000001 R10=0000000000000000 R11=0000000000000000
R12=ffff888023d28000 R13=ffff888023d28af0 R14=00000000ffffffff R15=0000000000000000
RIP=ffffffff8b6ffce0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880979b9000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000080ddf018 CR3=00000000224b2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ad0e8b4ad15adab1 f4b3c44f41eb1898
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f301b553c429139e 750c80958d0abb10
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1700ed5a0060d1ab 8b6b415424c47946
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 294389aadb5ead53 08016d58122d99af
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000780
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000436400004399 466aa90007fde800
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000436500000001 d41156a200000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000fedc8800 d2fe1f00a51d5a00
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 994c96005419bc00 0000439a6fcd6600
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 da45cae1d2c9cf71 ebf40f83b2d3e114
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ef804d70dc7bd1f3 4ab81be4659eccff
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854bd005 RDI=ffffffff9ae12bc0 RBP=ffffffff9ae12b80 RSP=ffffc90006796390
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=000000000000006b R14=ffffffff9ae12b80 R15=ffffffff854bcfa0
RIP=ffffffff854bd02f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff888097ab9000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000805ef000 CR3=0000000065c40000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000