last executing test programs:

5.635710274s ago: executing program 0 (id=474):
openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/cpuinfo\x00', 0x0, 0x0)
openat$cuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x200000, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_GSI_ROUTING(r1, 0x4008ae6a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x8, 0x7fdf, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000008500000023000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r2, &(0x7f00000021c0)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000004300)={0x50, 0x0, r5, {0x7, 0x26}}, 0x50)
syz_fuse_handle_req(r2, &(0x7f0000008400)="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", 0x2000, &(0x7f0000000ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e00)={0xa0, 0x0, 0x0, {{0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000, 0x0, 0x0, 0xee01}}}}, 0x0})
openat(0xffffffffffffff9c, &(0x7f00000006c0)='./file0/file0\x00', 0x80041, 0x0)
pselect6(0x40, &(0x7f0000000000)={0xfc, 0x40, 0x0, 0x9, 0x0, 0x0, 0x1, 0x40}, 0x0, 0x0, 0x0, 0x0)

5.559496643s ago: executing program 0 (id=476):
r0 = syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_ADD_IFACE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
ioctl$BLKTRACESETUP(r0, 0xc0401273, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$tipc2(0x0, 0xffffffffffffffff)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x7f, 0x0, &(0x7f0000001180))
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_encrypt_change={{0x8, 0x4}, {0x0, 0xc8, 0x2}}}, 0x7)
ioctl$CEC_ADAP_S_LOG_ADDRS(0xffffffffffffffff, 0xc05c6104, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x2, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0x1c, 0x0, 0x0)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r4 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r3, &(0x7f0000000440)=ANY=[@ANYBLOB="00000009000000ffffffaaaaaaaaaabb08004500452c00000000002f9078ac1e0001e00008000000655800189078040000000000000086ddffff00000000"], 0xfdef)
socket$pppoe(0x18, 0x1, 0x0)
r5 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r5, &(0x7f0000000080)={0x18, 0x0, {0x4, @broadcast, 'bridge_slave_1\x00'}}, 0x1e)
connect$pppoe(r5, &(0x7f0000000000)={0x18, 0x0, {0x4, @empty, 'ip6erspan0\x00'}}, 0x1e)
ioctl$PPPOEIOCSFWD(r5, 0x4008b100, &(0x7f0000000040)={0x18, 0x0, {0x4, @local, 'bridge_slave_1\x00'}})
sendmsg$TIPC_NL_MON_SET(0xffffffffffffffff, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000200)={0x0}, 0x1, 0x0, 0x0, 0x60040080}, 0x4000)
getpid()
openat$fb0(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)

4.500190836s ago: executing program 2 (id=485):
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = dup2(r1, r1)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f00000000c0))
sched_setaffinity(0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYRES16=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x78, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={0x0, r4}, 0x10)
r5 = socket(0x21, 0x2, 0x10000000000002)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r5, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r2, &(0x7f0000000000)="789eff0018001f05b9409b0dffff000d0203be040205060506014007040012000f000000fac8388827a685a168d9a4c6040045653600648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902003a03004a32000400040012000a00000000000000000000080756ede4ccbe5880", 0x78, 0x0, 0x0, 0x0)
r6 = socket$unix(0x1, 0x1, 0x0)
r7 = syz_io_uring_setup(0x24f9, &(0x7f0000000080)={0x0, 0x0, 0x2}, &(0x7f0000000100), &(0x7f0000000140))
sendmsg$unix(r6, &(0x7f0000000b80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a80)=[@rights={{0x10, 0x1, 0x1, [r7]}}], 0x10}, 0x0)
ioctl$SOUND_MIXER_READ_VOLUME(r0, 0x40086603, &(0x7f0000000040))
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="040e0700022008"], 0xa)
socket$key(0xf, 0x3, 0x2)

4.217430715s ago: executing program 2 (id=486):
sendmsg$TEAM_CMD_OPTIONS_SET(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=ANY=[@ANYBLOB="5000a747", @ANYRES16=0x0, @ANYBLOB="000000000000000000000100000008000100", @ANYRES32=0x0, @ANYBLOB="3c000280380001"], 0x58}, 0x1, 0xf000}, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000180)={0x0, 0xb00, &(0x7f0000000140)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="140100002b00010a000000000000001807"], 0x114}], 0x1, 0x0, 0x1f}, 0x0)

4.159949666s ago: executing program 2 (id=487):
add_key$keyring(&(0x7f0000000380), &(0x7f0000000400)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffb)
r0 = add_key$keyring(&(0x7f00000004c0), &(0x7f0000000480)={'syz', 0x1}, 0x0, 0x0, 0x0)
mknod(&(0x7f0000002400)='./file0\x00', 0x0, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002380)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r1, &(0x7f0000000200)={0x2020, 0x0, <r2=>0x0}, 0x2020)
open(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
write$FUSE_INIT(r1, &(0x7f0000002300)={0x50, 0x0, r2, {0x7, 0x9, 0x0, 0x20202}}, 0x50)
read$FUSE(r1, &(0x7f0000004580)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r1, &(0x7f0000002240)={0x10, 0xffffffffffffffda, r3}, 0x10)
r4 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
dup3(r4, r1, 0x0)
r5 = open$dir(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$lock(r5, 0x6, &(0x7f0000000000)={0x2})
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x9, 0x5, 0x2)
r6 = add_key(&(0x7f0000000840)='keyring\x00', &(0x7f0000000300)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, &(0x7f0000000140)="d8", 0x1, r6)
keyctl$search(0xa, r6, &(0x7f0000000080)='user\x00', &(0x7f0000000180)={'syz', 0x3}, r0)

4.059970452s ago: executing program 2 (id=488):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
connect$l2tp6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast2, 0xb, 0x8}, 0x20)
pipe(&(0x7f0000000100)={<r1=>0xffffffffffffffff})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
socket$nl_route(0x10, 0x3, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
madvise(&(0x7f00004b2000/0x3000)=nil, 0x3000, 0x4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
unlinkat(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYRES64=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x63, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$DVD_WRITE_STRUCT(r3, 0x5392, &(0x7f0000000d40)=@bca={0x3, 0xbc, "dc9abf26244d9bf65d42284949551d402472497c713e87741488cad71323d9b351a1a74c279a03459d4b33060184023dacfc41dbdc7433b43a28c2f2a7b64188f562de72cf586e4f51e40156f12574e140f7055d8dbecce81b5b2cfcb91f81d963afbc147a2fde78bf305a028f3cced79e460f7738d167d59e96325e80cc867e11e12038bfe4502e856ec2022719b35797fd74c4752d6e567a58e356dde4dec6c57dd9b192005733103a2ec9cb9e6e7c0b2f6cc5f647e963353a4f4c"})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f00000002c0)="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", 0x327, 0x0, &(0x7f00000001c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x9)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
poll(0x0, 0x0, 0x0)
ioctl$VT_RELDISP(0xffffffffffffffff, 0x5605)
io_setup(0xcf3, &(0x7f00000006c0)=<r4=>0x0)
r5 = socket$rxrpc(0x21, 0x2, 0xa)
bind$rxrpc(r5, &(0x7f0000000180)=@in4={0x21, 0x1, 0x2, 0x10, {0x2, 0x0, @broadcast}}, 0x24)
listen(r5, 0x0)
listen(r5, 0x0)
io_submit(r4, 0x1, &(0x7f0000000240)=[&(0x7f0000000040)={0x400000000812d000, 0x9, 0x3, 0x8, 0x1000, r5, 0x0, 0x0, 0x2}])
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="04e9ff00", @ANYRES16=r7, @ANYBLOB="010000000000000000000b0000000c0005800800010075647000"], 0x20}}, 0x0)

3.770326482s ago: executing program 2 (id=491):
r0 = creat(0x0, 0x0)
pipe2$9p(&(0x7f0000000080), 0x4000)
getsockopt$inet_IP_XFRM_POLICY(r0, 0x0, 0x11, &(0x7f0000000100)={{{@in=@private, @in6=@private0}}, {{}, 0x0, @in6=@mcast2}}, &(0x7f0000000540)=0xfffffe3b)
pipe(&(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write(r2, &(0x7f00000001c0), 0xfffffef3)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
write(r4, &(0x7f00000001c0)='4', 0x1)
tee(r3, r2, 0x3, 0x0)
close(r1)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x6)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x1000000000000160)
socket$packet(0x11, 0x3, 0x300)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @remote, 0x9}, 0xffffffffffffffa6)
writev(0xffffffffffffffff, 0x0, 0x0)
r6 = socket(0x10, 0x3, 0x0)
write(r6, &(0x7f0000000000)="240000001e00ff3bd90ea7eff078000000000000000000000000000008000f0016040000", 0x24)
readv(r6, &(0x7f0000000680)=[{&(0x7f0000000100)=""/215, 0xd7}], 0x1)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
r8 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r8, 0x0, 0x484, &(0x7f0000000000)=""/108, &(0x7f0000000080)=0x18)
r9 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
setsockopt$SO_RDS_TRANSPORT(0xffffffffffffffff, 0x114, 0xa, 0x0, 0x0)
memfd_create(&(0x7f0000000340)='D\xa3\xd5Wj\x00\x00x0\xc1\xac\x1a\x1a\vG\xa9~vB\xbc\t\x00\x00\x00VoA\xaa\xbc\xee[\xe1\xa2\xe0\xff\x04\x00\x00\x00\\i\xcf\t\xb0\xa9 +H/\x1a\xe7\x95\xce\"\"\xbd\xf9!\xfd\xa4\xcaN\x84\xadS\x8bqE\x99\x01t\xb1\x1f|\x99PL\x92\x8f\xc2\xf9\xcd\x8cj\x03X\x05\x17mwI\xf0\x01\xe5z\xcdJ)\xc7\xfa)\xaa}\xef\xbb\xf5\xcd\xb1o5\x18\xd6\v\x85q\x98\x9bB\xb9\xea\xe7\xff\x7f\x00\x00T\xc0\xd2\t?\bpBl\xf4*8\xc6\xe5\x06P\xc11\f^\x7f\x8e\xc1\xd1Wra\x19)\xe3\x8f\xd9\x9f\x15\x1e\xf2\x18\r\xad\b\xe0\x96NH\x85\r+\xfc\xb3\xdd\xddhg \x03\xa7\x92\xff\x00+h\xb7@#K\x9cMY\xd3\x9b\b-G\xb1\xdaS\x81\xb2\x93\xb83\x8a\x94*\x8d\\\b\xff/\xa1\xc0\xf9&\xd3M\xf6\n\xff\x83k\xe6\rDa\x16\xbd\x1a\xb2w\b', 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="6963e64243ea486da3a74e3deec6fc5bb9", 0x11)
dup3(r9, r7, 0x0)

3.769268044s ago: executing program 0 (id=492):
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
mount$nfs4(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f00000003c0)={[{'udp\x00'}]})
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_netdev_private(r0, 0x8914, &(0x7f0000000000))
bind$bt_sco(r0, &(0x7f0000000240)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = userfaultfd(0x1)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x8, 0x10, &(0x7f0000000400)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xbecd}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {}, [@ldst={0x2, 0x0, 0x3, 0x6, 0x5, 0x30}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x810}, 0x4000090)
r4 = io_uring_setup(0x4d66, &(0x7f0000000080))
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r1)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r5, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000004480)=ANY=[@ANYBLOB="571d1800", @ANYRES16=r6, @ANYBLOB="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"], 0x1d54}, 0x1, 0x0, 0x0, 0x4004}, 0x40000)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x54}}, 0x0)
writev(r7, &(0x7f0000000040), 0x2)
close(r7)
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$UFFDIO_COPY(r2, 0xc028aa05, &(0x7f0000000080)={&(0x7f0000c15000/0x1000)=nil, &(0x7f0000508000/0x4000)=nil, 0x1000})
r8 = syz_genetlink_get_family_id$fou(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$FOU_CMD_GET(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="01000040000000000000031e0000"], 0x14}}, 0x0)

3.609849566s ago: executing program 0 (id=494):
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x80000, 0x2480)
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000400))
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000600)=ANY=[@ANYBLOB="10000000031401002dbd7000d95b00003eda15c2390e03ec29101a53affef1ed94e4ca6eae5bc489d6359ca5f675fb45366f1728fca03590876f3c0976573d79ae48c0690d2565c2c83900c5d786a1ecfd24007580a0d6c16b2793833138d095bfbdb3517122c02352929655b4d4bc249332b24d2376fa29c0991a73ca0b6befce08c113d44fe7a4e27c88b79d2016a23acba367b59d9e3641a1dba5d306020948fb34c05016260e427e0d5c68c96e3caa27025d75a9e702ea7c0450dbfe39033d3b68f03d49f3007e70ce1f9b0d016ea636f25e25c551e41478c6635bd0"], 0x10}}, 0x0)
unshare(0x68040200)
socket$inet6_udp(0xa, 0x2, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000200)=0x1)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000001880)={0x11, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/anycast6\x00')
preadv(r5, &(0x7f0000000080)=[{0x0}], 0x1, 0x38, 0x0)
syz_emit_vhci(&(0x7f00000003c0)=ANY=[@ANYBLOB="040e04"], 0x7)
r6 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r7 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
r8 = syz_open_dev$media(&(0x7f00000001c0), 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="5c0000000206050000010000000000000000000005000100070900000000000000797a30000000000c0007", @ANYRES8=r8, @ANYRES8=r6, @ANYRES64=r4, @ANYRES32], 0x5c}, 0x1, 0x0, 0x0, 0x3400080d}, 0x40001)
r9 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r9, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
getsockopt$ARPT_SO_GET_INFO(r9, 0x0, 0x60, 0x0, &(0x7f0000000300))
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='io.stat\x00', 0x275a, 0x0)
writev(r5, 0x0, 0x0)
ioctl$MEDIA_IOC_G_TOPOLOGY(r6, 0xc0487c04, &(0x7f0000000700)={0x0, 0x0, 0x0, &(0x7f0000001880), 0x0, 0x0, 0x0, 0x6, 0x0, &(0x7f0000000500)=[{}, {}, {}, {}, {}, {}], 0x2, 0x0, &(0x7f0000000240)=[{}, {}, {}]})
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000780)=ANY=[@ANYRES16=<r11=>r10, @ANYBLOB="01c7c93f3dc3f61dc5ec35f1c9427265e82b7ac747799b2de0dddc42d403f991ab2108fcdcf941687e61bced3a4db4aa017835e753e7e50608807da4637e961cecf0448354f12bbfef1cae92784a7c3db7a927af1bc0d43ee29132ea607e5da0e52d1c361e14fdf75b5f69602291d7c4d739e978972f3cf8abb41b0b7e0b408c60f025b6cd1baf6567cc6d8e868827f739fd0b08f3ec25cba41c17c1c6c043641ccfac00cf24fae0133358b83ea3b7", @ANYRES32=<r12=>0xffffffffffffffff, @ANYRES32=r10, @ANYRES64=r9, @ANYBLOB="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"], 0xff2e)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000380)=ANY=[@ANYRESHEX=r8, @ANYRES8=r11, @ANYRES8=r12], &(0x7f0000000040)='GPL\x00', 0x5, 0xbf, &(0x7f00000020c0)=""/191, 0x0, 0x2, '\x00', 0x0, 0x0, r6, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x100006, @void, @value}, 0x90)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x2)

3.609433566s ago: executing program 1 (id=495):
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x84082)
ioctl$BLKTRACESTOP(r0, 0x1275, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x1)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xf, 0x4, 0x4, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffd, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000200000000000000000818110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r2, 0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
openat$vim2m(0xffffffffffffff9c, &(0x7f0000000440), 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a500000023"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r3}, 0x10)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, &(0x7f00000000c0)=0x3, 0x4)
syz_io_uring_setup(0x7011, &(0x7f0000000080)={0x0, 0x0, 0x2}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000340)=<r5=>0x0)
r6 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$VIDIOC_ENUMAUDIO(r6, 0xc0345641, &(0x7f0000000080)={0x0, "3875ea5c699e23f0a93e8d88f491f125be0b1e42caa926055efeba1609475907"})
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a4c000000060a0b04000000000000000002000000200004801c0001800a00010072656469720000000c00028008000340000000000900010073797a30000000000900020073797a32"], 0x74}}, 0x0)
timer_create(0x0, &(0x7f0000000140)={0x0, 0x11}, &(0x7f0000001400))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r8 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r9 = fcntl$dupfd(r8, 0x0, r8)
ioctl$VHOST_SET_FEATURES(r9, 0x4008af00, &(0x7f0000000080)=0x8001100)
syz_io_uring_submit(r4, r5, &(0x7f0000000180)=@IORING_OP_CONNECT={0x10, 0xa, 0x0, 0xffffffffffffffff, 0x3c, 0x0})
r10 = openat$cdrom(0xffffff9c, &(0x7f0000000140), 0x448800, 0x0)
ioctl$CDROMPAUSE(r10, 0x5301)
syz_emit_ethernet(0x1af, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_sctp_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f00000003c0), &(0x7f0000000400)=0x4)

2.711717553s ago: executing program 1 (id=504):
socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r0 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r0, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
syz_genetlink_get_family_id$devlink(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_udp_int(r1, 0x11, 0xb, &(0x7f00000003c0), 0x4)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$DEVLINK_CMD_TRAP_GET(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
syz_init_net_socket$rose(0xb, 0x5, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_udp(0x2, 0x2, 0x0)
syz_emit_vhci(&(0x7f0000000300)=ANY=[], 0x7)
syz_emit_vhci(&(0x7f0000000000)=@HCI_EVENT_PKT={0x4, @hci_ev_change_link_key_complete={{0x9, 0x3}, {0x11, 0xc8}}}, 0x6)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000006000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
fchdir(r5)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000200)='jbd2_write_superblock\x00', r6}, 0x10)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
r7 = inotify_init1(0x0)
getdents(r5, &(0x7f0000000380)=""/190, 0xbe)
fcntl$setown(r7, 0x8, 0xffffffffffffffff)
fcntl$getownex(r7, 0x10, &(0x7f0000000140)={0x0, <r8=>0x0})
syz_open_procfs(r8, &(0x7f0000000040)='fd/4\x00')

1.349641416s ago: executing program 0 (id=510):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$btrfs_control(0xffffff9c, &(0x7f0000000140), 0x40000, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r2)
fstat(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, <r3=>0x0})
mount$fuse(0x0, &(0x7f0000000000)='./file0/bus/file0\x00', &(0x7f0000000100), 0x51, &(0x7f0000000240)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {'user_id', 0x3d, r2}, 0x2c, {'group_id', 0x3d, r3}, 0x2c, {[{@default_permissions}], [{@appraise}, {@subj_user={'subj_user', 0x3d, 'z\xbe\\,}'}}, {@smackfsroot}]}})
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='sysfs\x00', 0x0, 0x0)
setxattr$security_capability(&(0x7f0000000340)='./file0/bus/file0\x00', &(0x7f0000000180), 0x0, 0x0, 0x0)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x20000000)
umount2(&(0x7f00000000c0)='./file0/bus/file0\x00', 0x2)

1.24949811s ago: executing program 0 (id=511):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001480)={0x18, 0x3, &(0x7f0000000140)=ANY=[], 0x0, 0x200003, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
write$P9_RXATTRCREATE(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$vbi(&(0x7f0000000800), 0x2, 0x2)
ioctl$VIDIOC_REQBUFS(r1, 0xc0145608, &(0x7f0000000080)={0x8, 0x6, 0x1})
ptrace$PTRACE_SECCOMP_GET_METADATA(0x420d, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$sock_int(r4, 0x1, 0x2a, 0x0, 0x0)
recvmmsg(r4, &(0x7f0000001440)=[{{&(0x7f0000000280)=@un=@abs, 0x80, &(0x7f0000001400)=[{&(0x7f0000000140)}, {&(0x7f0000000300)=""/102, 0x66}, {&(0x7f0000000380)=""/4086, 0xff6}, {&(0x7f00000000c0)=""/88, 0x58}], 0x4}}], 0x1, 0x0, 0x0)
write$binfmt_misc(r3, &(0x7f00000000c0), 0x3e)
ioctl$FS_IOC_GETFSLABEL(0xffffffffffffffff, 0x81009431, 0x0)
write$binfmt_misc(r3, 0x0, 0xffc1)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000340), 0x4)
r5 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000180)={'bond0\x00'})
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000080)=[@in6={0xa, 0x0, 0x0, @rand_addr=' \x01\x00'}], 0x1c)
setsockopt(r0, 0x84, 0x7f, &(0x7f0000000040)="020000000980ffff", 0x8)
setsockopt$inet_sctp6_SCTP_I_WANT_MAPPED_V4_ADDR(r0, 0x84, 0xc, &(0x7f0000000000), 0x4)

1.030098103s ago: executing program 3 (id=512):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0) (async, rerun: 64)
r0 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x400, 0x0) (async, rerun: 64)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x2) (async, rerun: 32)
prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) (async, rerun: 32)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8) (async)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x0, 0x0, 0x0, &(0x7f0000000140)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x1ff, @void, @value}, 0x94)
shutdown(0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) (async)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0) (async)
mkdirat(0xffffffffffffff9c, 0x0, 0x0) (async)
socket$packet(0x11, 0x0, 0x300) (async)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000008000000000000000000000095"], &(0x7f0000000440)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) (async)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000000)='ext4_discard_blocks\x00', r0, 0x0, 0x101}, 0x18)
bind$bt_hci(r2, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) (async)
write$binfmt_misc(r2, &(0x7f0000000200), 0xd) (async)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) (async, rerun: 64)
r3 = open(0x0, 0x0, 0x0) (async, rerun: 64)
ioprio_set$uid(0x3, 0x0, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5}, 0x0)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r4, 0x10d, 0xf, &(0x7f0000000000), &(0x7f0000000140)=0x4)
sendfile(r3, 0xffffffffffffffff, 0x0, 0x1000000201005) (async)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0xe, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) (async)
r5 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_FLUSH(r5, 0x29, 0xd0, &(0x7f0000000240), 0x4) (async, rerun: 32)
getrandom(&(0x7f0000000600)=""/274, 0xffffff4f, 0x0) (rerun: 32)

949.737609ms ago: executing program 3 (id=513):
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000180)='./file2\x00', 0x6000, 0x1)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000400), 0x4)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYRES64, @ANYRES64, @ANYRES8], 0x5)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000000c0)="2c385a4706", 0x5)
r1 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000019c0)={0x0, 0x0, &(0x7f0000000700)=[{&(0x7f0000000380)="7ad6b0cbece46455ad7452bc49819eea6530a6938deb1044940f34e51c0f1d1bb4041d4cc220d357ba482572970c0408dd14fa2febdb2bf81f99b4eb833c1cbc1c9b5c647b503fb272ddd6", 0x4b}, {&(0x7f0000000440)="37afc068404fc32f6d4a490dffffacbb802d682975ab4b8937099a76e4700fc6f049484bde5b1ff584b3d91f8ba5cca913c16d17d351dd6b33ffc898e25793b91fe99d69025576d5e877a0fa38909ff9bddb112e83ac81a0c6b412f671965bd52d0119d09fcde4896fe125299663b758cf9d1030c35813fdeca3db0f6cd119c8d356d63e1acfd10c5a8bf46074d35100fd5a5ef1f4e99ff0339d5f45545268ca21bd34f89d6a9885cfc160a5fc0865a1e731d6d099811448c6bd794a4bca989006df4f17cec6cf", 0xc7}, {&(0x7f0000000540)}, {&(0x7f0000000640)="e6758625dbad2d85b49bb59d513ecf4e29ebc8e29350b085df98918f00e26ed92d87b00b298581b23b1c2ba21ba0371da8ca3de932d19ff708d58e3a05aa2f8ab4346c29b2c1c5d3bb4bd159e9d972c48bd9b503a9d546af9665836c0ee2c1f11bb29c138d8c6ce2cb0283c709dfc6dfdd676b5b954a2ea15418bb43d39115dddcc897b09bbe7bdcfe9b3ccf3d9b10033273648c3c56bb04717dd225", 0x9c}, {&(0x7f0000000580)="85641c979f381d639881d5f2e412f1ef925aaf6a7ba3bba0c4fbfcd433ff759347494e38bfc1d5c745818ec6b0e081e0d517ae6fc0dcf63418d74dc481b64440417f17b1e13fe95ce4e42e6517417c9653b91c15bcaddf48d3615efe31941026051ff630f4f965c8cfc11c7f39122e3a468ae764e4b8245823fbaa60", 0x7c}], 0x5, 0x0, 0x0, 0xc0}, 0x800)
bind$netlink(r1, &(0x7f0000000100)={0x10, 0x0, 0x8020000, 0x2ffffffff}, 0xc)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(0xffffffffffffffff, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICLISTDEF(r2, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x54, r3, 0x2, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @multicast1}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'veth1_to_bridge\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'geneve0\x00'}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @rand_addr=0x64010101}]}, 0x54}, 0x1, 0x0, 0x0, 0x20800}, 0x41)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0xfffffffe, &(0x7f0000000300)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000005e140602000000000e000a0010000000028000001294", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e00000010008188e6b62aa73772cc9f1ba1f848430000", 0x17}], 0x1}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_emit_vhci(&(0x7f00000002c0)=ANY=[@ANYBLOB="02c910"], 0x1d)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'bond0\x00'})

720.888501ms ago: executing program 1 (id=514):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xc, 0xb, &(0x7f00000000c0)=ANY=[@ANYBLOB="18040000000000000000000000000000180000002020642500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b100000095"], &(0x7f00000005c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94) (async)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000002140))
r1 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000040)=0xd)
r2 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETSF(r2, 0x5404, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "64f30ea84907e175d5966472c23d26ce8d6f3c"}) (async)
r3 = syz_open_dev$ttys(0xc, 0x2, 0x1)
r4 = syz_open_dev$ptys(0xc, 0x3, 0x1) (async)
readv(r3, &(0x7f0000000180)=[{&(0x7f0000000280)=""/177, 0xb1}], 0x1) (async)
ioctl$TIOCPKT(r3, 0x5420, &(0x7f00000000c0)=0x8000) (async)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000f80)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000110900010073797a30000000003c000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000002580000000e0a01020000005633eed600010000000900020073797a32000000001800038014000080100001800400028006000180000000000900010073797a30e3ffffff140000001000010000000000000000000000000a"], 0xc8}}, 0x0)
ioctl$TIOCSTI(r4, 0x5412, &(0x7f0000000040)=0x13) (async)
r6 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$TCXONC(r6, 0x540a, 0x3) (async)
sendmsg$can_raw(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@canfd={{}, 0xee, 0x0, 0x0, 0x0, "bc27adc50d03fb36a26d1d33610708eb844846979c3e552e4f42636ec483561f986e3e2a5455252a03b32ffd44fd8a40b0353a4025411e0620ec9757810556d2"}, 0x48}, 0x2}, 0x0)
clock_gettime(0x0, &(0x7f0000000080)={<r7=>0x0, <r8=>0x0})
setsockopt$sock_timeval(0xffffffffffffffff, 0x1, 0x14, &(0x7f00000000c0)={r7, r8/1000+60000}, 0x8)
r9 = epoll_create1(0x0)
ioctl$FS_IOC_SETFLAGS(r9, 0x40088a01, &(0x7f0000000000)) (async)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001040)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000100)="b9ff03316844268cb89e14f00800", 0x0, 0x0, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x4c) (async)
connect$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e24, @multicast1}, 0x10) (async)
ioctl$F2FS_IOC_ABORT_ATOMIC_WRITE(0xffffffffffffffff, 0xf505, 0x0)

587.327149ms ago: executing program 3 (id=515):
r0 = socket(0x840000000002, 0x3, 0xff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00'}, 0x10)
socket$inet(0x2, 0x4, 0x8a9)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000500)=@ipv4_newroute={0x38, 0x18, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, [@RTA_ENCAP_TYPE={0x6, 0x15, 0x2}, @RTA_ENCAP={0x14, 0x16, 0x0, 0x1, @LWTUNNEL_IP_OPTS={0x10, 0x8, 0x0, 0x1, @LWTUNNEL_IP_OPTS_GENEVE={0x6, 0x2, 0x0, 0x1, @LWTUNNEL_IP_OPT_GENEVE_CLASS={0x6}}}}]}, 0x38}}, 0x0)
r2 = inotify_init1(0x0)
inotify_add_watch(r2, &(0x7f0000000200)='.\x00', 0x10000a0)
r3 = dup(r2)
lremovexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@known='user.syz\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000bc0)='memory.events\x00', 0x275a, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$sock_inet6_tcp_SIOCINQ(r3, 0x541b, &(0x7f0000000180))
connect$inet(r0, &(0x7f0000000540)={0x2, 0x0, @dev}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x300, 0x401eb94)

586.822794ms ago: executing program 1 (id=516):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000480)={'wlan1\x00', <r3=>0x0})
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x2c, r4, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1590}], @NL80211_ATTR_DURATION={0x8, 0x57, 0x80}]}, 0x2c}}, 0x0)
sendmsg$NL80211_CMD_FRAME_WAIT_CANCEL(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={0x28, r1, 0x1, 0x0, 0x0, {{0x38}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x1}]}, 0x28}}, 0x0)

583.579506ms ago: executing program 1 (id=517):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @rand_addr=0x300}, 0x10)

479.673514ms ago: executing program 1 (id=518):
r0 = openat$mixer(0xffffffffffffff9c, &(0x7f00000016c0), 0x0, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = dup2(r1, r1)
ioctl$MEDIA_IOC_REQUEST_ALLOC(0xffffffffffffffff, 0x80047c05, &(0x7f00000000c0))
sched_setaffinity(0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
gettid()
r4 = getpid()
process_vm_readv(r4, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYRES16=r1], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x78, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={0x0, r5}, 0x10)
r6 = socket(0x21, 0x2, 0x10000000000002)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r6, 0x0, 0x0, 0x0, 0x0)
sendto$inet6(r2, &(0x7f0000000000)="789eff0018001f05b9409b0dffff000d0203be040205060506014007040012000f000000fac8388827a685a168d9a4c6040045653600648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902003a03004a32000400040012000a00000000000000000000080756ede4ccbe5880", 0x78, 0x0, 0x0, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
r8 = syz_io_uring_setup(0x24f9, &(0x7f0000000080)={0x0, 0x0, 0x2}, &(0x7f0000000100), &(0x7f0000000140))
sendmsg$unix(r7, &(0x7f0000000b80)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000a80)=[@rights={{0x10, 0x1, 0x1, [r8]}}], 0x10}, 0x0)
ioctl$SOUND_MIXER_READ_VOLUME(r0, 0x40086603, &(0x7f0000000040))
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="040e0700022008"], 0xa)
socket$key(0xf, 0x3, 0x2)

380.349357ms ago: executing program 2 (id=519):
openat$sr(0xffffff9c, &(0x7f0000000000), 0xceb7a98fe7885247, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$devlink(&(0x7f0000000600), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @local}, 0xc)
syz_emit_ethernet(0x36, 0x0, 0x0)
gettid()
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r1}, 0x10)
keyctl$get_persistent(0x10, 0xffffffffffffffff, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x3, 0xe, &(0x7f00000022c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000640)={r2, 0x0, 0x62, 0xfe, &(0x7f0000000140)="cb74445b7d4c0b24676c6c71ae37efcedaf40242309766deb4e793f90000000000000000dbc856cbc664650634231454ca2d8034c4ca29e0d99c3b6615e91835a600c08f989af45438a54981be310aad92ae545b1c961e5f3762a51fe4c736edec6f", &(0x7f0000000440)=""/254, 0x2f00, 0x0, 0x103, 0x194, &(0x7f0000000980)="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", &(0x7f00000007c0)="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", 0x2, 0x0, 0x10000}, 0x4c)
clock_gettime(0x0, &(0x7f0000000000))
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x1, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r4, 0x1, 0xf, &(0x7f0000000000)=0x20, 0x4)
setsockopt$sock_attach_bpf(r4, 0x1, 0x34, &(0x7f00000000c0)=r3, 0x4)
socket$inet6_mptcp(0xa, 0x1, 0x106)
listen(0xffffffffffffffff, 0x9)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r5, &(0x7f0000002840), 0x0, 0x40014)

200.289942ms ago: executing program 3 (id=520):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x3}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)={0x88, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x35, 0xe, {{{}, {}, @device_b, @device_b, @random="6e84f399c9b4"}, 0xfffffffffffffffd, @default, 0x0, @void, @void, @void, @void, @void, @void, @val={0x25, 0x3, {0x0, 0x0, 0x5}}, @void, @void, @void, @void, @void, @val={0x76, 0x6}}}, @NL80211_ATTR_FTM_RESPONDER={0x1c, 0x10e, 0x0, 0x1, [@NL80211_FTM_RESP_ATTR_LCI={0xc, 0x2, "b348fec95b78df25"}, @NL80211_FTM_RESP_ATTR_ENABLED={0x4}, @NL80211_FTM_RESP_ATTR_CIVICLOC={0x5, 0x3, 'H'}]}], @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x98a}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}]}, 0x88}, 0x1, 0x0, 0x0, 0x8004}, 0x0)

139.944127ms ago: executing program 3 (id=521):
creat(&(0x7f00000001c0)='./file0\x00', 0x0)
mount$nfs4(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f00000003c0)={[{'udp\x00'}]})
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_netdev_private(r0, 0x8914, &(0x7f0000000000))
bind$bt_sco(r0, &(0x7f0000000240)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}}, 0x8)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = userfaultfd(0x1)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0))
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x8, 0x10, &(0x7f0000000400)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0xbecd}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x5}}, {}, [@ldst={0x2, 0x0, 0x3, 0x6, 0x5, 0x30}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, @void, @value}, 0x94)
sendmsg$BATADV_CMD_GET_DAT_CACHE(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x810}, 0x4000090)
r4 = io_uring_setup(0x4d66, &(0x7f0000000080))
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r1)
sendmsg$NL80211_CMD_ADD_NAN_FUNCTION(r5, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={&(0x7f0000004480)=ANY=[@ANYBLOB="571d1800", @ANYRES16=r6, @ANYBLOB="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"], 0x1d54}, 0x1, 0x0, 0x0, 0x4004}, 0x40000)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[], 0x54}}, 0x0)
writev(r7, &(0x7f0000000040), 0x2)
close(r7)
io_uring_register$IORING_REGISTER_BUFFERS(r4, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
ioctl$UFFDIO_COPY(r2, 0xc028aa05, &(0x7f0000000080)={&(0x7f0000c15000/0x1000)=nil, &(0x7f0000508000/0x4000)=nil, 0x1000})
r8 = syz_genetlink_get_family_id$fou(&(0x7f00000004c0), 0xffffffffffffffff)
sendmsg$FOU_CMD_GET(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000500)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="01000040000000000000031e0000"], 0x14}}, 0x0)

0s ago: executing program 3 (id=522):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40241, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket(0x26, 0xa, 0x8001)
socket(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x7, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
process_vm_readv(r2, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x36}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
r3 = dup3(r1, r0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r4, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000300)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000380)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000740)=[@transaction_sg={0x400c6313, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:61279' (ED25519) to the list of known hosts.
[   42.657291][ T5332] cgroup: Unknown subsys name 'net'
[   43.386853][ T5332] cgroup: Unknown subsys name 'cpuset'
[   43.398408][ T5332] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   44.705196][ T5332] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   47.696788][ T5349] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   47.699763][ T5349] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   47.705760][ T5356] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   47.709254][ T5356] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   47.712136][ T5356] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   47.715043][ T5356] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   47.717849][ T5356] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   47.720194][ T5356] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   47.722836][ T5356] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   47.725022][ T5356] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   47.727841][ T5356] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   47.730006][ T5356] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   47.731253][ T5361] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   47.732087][ T5356] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   47.735707][ T5358] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   47.736183][ T5356] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   47.737060][ T5361] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   47.737454][ T5361] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   47.738998][ T5349] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   47.741809][ T5358] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   47.745107][ T5349] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   47.747597][ T5358] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   47.748332][ T5349] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   47.755162][ T5349] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   47.962994][ T5345] chnl_net:caif_netlink_parms(): no params data found
[   47.983622][ T5353] chnl_net:caif_netlink_parms(): no params data found
[   48.037741][ T5346] chnl_net:caif_netlink_parms(): no params data found
[   48.110388][ T5345] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.112507][ T5345] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.114631][ T5345] bridge_slave_0: entered allmulticast mode
[   48.117519][ T5345] bridge_slave_0: entered promiscuous mode
[   48.120985][ T5357] chnl_net:caif_netlink_parms(): no params data found
[   48.160774][ T5345] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.162889][ T5345] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.164978][ T5345] bridge_slave_1: entered allmulticast mode
[   48.167948][ T5345] bridge_slave_1: entered promiscuous mode
[   48.176747][ T5353] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.178807][ T5353] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.180860][ T5353] bridge_slave_0: entered allmulticast mode
[   48.183357][ T5353] bridge_slave_0: entered promiscuous mode
[   48.263794][ T5353] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.266242][ T5353] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.269018][ T5353] bridge_slave_1: entered allmulticast mode
[   48.272018][ T5353] bridge_slave_1: entered promiscuous mode
[   48.290358][ T5345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   48.317462][ T5346] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.319868][ T5346] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.322300][ T5346] bridge_slave_0: entered allmulticast mode
[   48.324811][ T5346] bridge_slave_0: entered promiscuous mode
[   48.357671][ T5353] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   48.361957][ T5345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   48.373677][ T5346] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.376025][ T5346] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.378529][ T5346] bridge_slave_1: entered allmulticast mode
[   48.380910][ T5346] bridge_slave_1: entered promiscuous mode
[   48.402357][ T5353] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   48.436681][ T5345] team0: Port device team_slave_0 added
[   48.476465][ T5357] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.478462][ T5357] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.480998][ T5357] bridge_slave_0: entered allmulticast mode
[   48.483974][ T5357] bridge_slave_0: entered promiscuous mode
[   48.489968][ T5353] team0: Port device team_slave_0 added
[   48.493135][ T5345] team0: Port device team_slave_1 added
[   48.496323][ T5346] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   48.499251][ T5357] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.501739][ T5357] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.503860][ T5357] bridge_slave_1: entered allmulticast mode
[   48.506104][ T5357] bridge_slave_1: entered promiscuous mode
[   48.523564][ T5353] team0: Port device team_slave_1 added
[   48.549028][ T5346] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   48.573993][ T5357] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   48.597508][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_0
[   48.599938][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.608057][ T5345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   48.624734][ T5357] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   48.628063][ T5353] batman_adv: batadv0: Adding interface: batadv_slave_0
[   48.629902][ T5353] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.636692][ T5353] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   48.640988][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_1
[   48.642863][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.649925][ T5345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.654990][ T5346] team0: Port device team_slave_0 added
[   48.665704][ T5353] batman_adv: batadv0: Adding interface: batadv_slave_1
[   48.669474][ T5353] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.676403][ T5353] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.685118][ T5346] team0: Port device team_slave_1 added
[   48.697671][ T5357] team0: Port device team_slave_0 added
[   48.730860][ T5357] team0: Port device team_slave_1 added
[   48.759874][ T5345] hsr_slave_0: entered promiscuous mode
[   48.762225][ T5345] hsr_slave_1: entered promiscuous mode
[   48.765254][ T5346] batman_adv: batadv0: Adding interface: batadv_slave_0
[   48.768348][ T5346] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.776883][ T5346] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   48.788908][ T5357] batman_adv: batadv0: Adding interface: batadv_slave_0
[   48.790747][ T5357] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.797473][ T5357] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   48.820451][ T5346] batman_adv: batadv0: Adding interface: batadv_slave_1
[   48.822871][ T5346] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.831660][ T5346] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.838181][ T5357] batman_adv: batadv0: Adding interface: batadv_slave_1
[   48.840626][ T5357] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   48.849024][ T5357] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   48.857269][ T5353] hsr_slave_0: entered promiscuous mode
[   48.859226][ T5353] hsr_slave_1: entered promiscuous mode
[   48.860808][ T5353] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   48.862903][ T5353] Cannot create hsr debugfs directory
[   48.971505][ T5357] hsr_slave_0: entered promiscuous mode
[   48.974018][ T5357] hsr_slave_1: entered promiscuous mode
[   48.975971][ T5357] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   48.978104][ T5357] Cannot create hsr debugfs directory
[   48.982030][ T5346] hsr_slave_0: entered promiscuous mode
[   48.984592][ T5346] hsr_slave_1: entered promiscuous mode
[   48.986447][ T5346] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   48.988447][ T5346] Cannot create hsr debugfs directory
[   49.136239][ T5345] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   49.168919][ T5345] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   49.172704][ T5345] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   49.182395][ T5345] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   49.195562][ T5353] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   49.200691][ T5353] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   49.204543][ T5353] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   49.208097][ T5353] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   49.237614][ T5346] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   49.242882][ T5346] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   49.248558][ T5346] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   49.267056][ T5346] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   49.306259][ T5353] 8021q: adding VLAN 0 to HW filter on device bond0
[   49.312748][ T5357] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   49.318486][ T5357] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   49.323336][ T5357] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   49.327578][ T5357] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   49.344434][ T5353] 8021q: adding VLAN 0 to HW filter on device team0
[   49.369357][ T5345] 8021q: adding VLAN 0 to HW filter on device bond0
[   49.373932][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.376046][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   49.388456][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.390985][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   49.407438][ T5345] 8021q: adding VLAN 0 to HW filter on device team0
[   49.419627][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.422542][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   49.430605][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.432563][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   49.470550][ T5346] 8021q: adding VLAN 0 to HW filter on device bond0
[   49.486973][ T5346] 8021q: adding VLAN 0 to HW filter on device team0
[   49.497537][ T5357] 8021q: adding VLAN 0 to HW filter on device bond0
[   49.500342][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.502249][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   49.504843][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.506744][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   49.533731][ T5357] 8021q: adding VLAN 0 to HW filter on device team0
[   49.543629][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   49.545926][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   49.556667][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   49.558692][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   49.574744][ T5357] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   49.578865][ T5357] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   49.595003][ T5345] 8021q: adding VLAN 0 to HW filter on device batadv0
[   49.609352][ T5353] 8021q: adding VLAN 0 to HW filter on device batadv0
[   49.652366][ T5345] veth0_vlan: entered promiscuous mode
[   49.667456][ T5353] veth0_vlan: entered promiscuous mode
[   49.670002][ T5345] veth1_vlan: entered promiscuous mode
[   49.686585][ T5346] 8021q: adding VLAN 0 to HW filter on device batadv0
[   49.689452][ T5353] veth1_vlan: entered promiscuous mode
[   49.694071][ T5357] 8021q: adding VLAN 0 to HW filter on device batadv0
[   49.711776][ T5345] veth0_macvtap: entered promiscuous mode
[   49.727777][ T5345] veth1_macvtap: entered promiscuous mode
[   49.743729][ T5353] veth0_macvtap: entered promiscuous mode
[   49.751242][ T5353] veth1_macvtap: entered promiscuous mode
[   49.760996][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.771422][ T5357] veth0_vlan: entered promiscuous mode
[   49.773624][ T5346] veth0_vlan: entered promiscuous mode
[   49.777910][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.784072][ T5357] veth1_vlan: entered promiscuous mode
[   49.790851][ T5345] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.793888][ T5345] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.798748][ T5358] Bluetooth: hci1: command tx timeout
[   49.801023][ T5349] Bluetooth: hci2: command tx timeout
[   49.801306][ T5345] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.805713][ T5345] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.807045][ T5349] Bluetooth: hci0: command tx timeout
[   49.807265][ T5358] Bluetooth: hci3: command tx timeout
[   49.813549][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.816227][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.819470][ T5353] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.821562][ T5346] veth1_vlan: entered promiscuous mode
[   49.833819][ T5353] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.837439][ T5353] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.841475][ T5353] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.863755][ T5353] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.866806][ T5353] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.869559][ T5353] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.872398][ T5353] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.899054][ T5357] veth0_macvtap: entered promiscuous mode
[   49.902319][ T5357] veth1_macvtap: entered promiscuous mode
[   49.920540][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.922909][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.941247][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.943242][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.944598][ T5346] veth0_macvtap: entered promiscuous mode
[   49.964285][ T5346] veth1_macvtap: entered promiscuous mode
[   49.967718][ T5357] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.970851][ T5357] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.974192][ T5357] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.978303][ T5357] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.982699][ T5357] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.997255][  T502] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   50.000084][ T5357] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   50.000376][  T502] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.000394][ T5345] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   50.002947][ T5357] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.002963][ T5357] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   50.002970][ T5357] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.017599][ T5357] batman_adv: batadv0: Interface activated: batadv_slave_1
[   50.022113][ T5357] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.024396][ T5357] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.026895][ T5357] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.029003][ T5357] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.042102][ T5346] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   50.045401][ T5346] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.049089][ T5346] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   50.052786][ T5346] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.056145][ T5346] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   50.059985][ T5346] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.065110][ T5346] batman_adv: batadv0: Interface activated: batadv_slave_0
[   50.076176][ T5346] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   50.080637][ T5346] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.083553][ T5346] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   50.086228][ T5346] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.089424][ T5346] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   50.092978][ T5346] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   50.096986][ T5346] batman_adv: batadv0: Interface activated: batadv_slave_1
[   50.112745][ T5346] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   50.116083][ T5346] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   50.118962][ T5346] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   50.121037][ T5411] UBIFS error (pid: 5411): cannot open "./file0", error -22
[   50.121618][ T5346] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   50.134233][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   50.138114][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.192709][  T502] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   50.201997][  T502] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.254629][  T502] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   50.256458][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   50.257150][  T502] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.264620][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.276045][ T1098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   50.282636][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   50.362076][ T5421] UBIFS error (pid: 5421): cannot open "./file0", error -22
[   50.539546][ T5427] pim6reg: entered allmulticast mode
[   50.560793][ T5424] pim6reg: left allmulticast mode
[   51.499770][ T5432] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   51.876762][ T5349] Bluetooth: hci0: command tx timeout
[   51.886545][ T5349] Bluetooth: hci3: command tx timeout
[   51.886698][ T5352] Bluetooth: hci2: command tx timeout
[   51.890251][ T5358] Bluetooth: hci1: command tx timeout
[   52.368240][ T5445] 9pnet_fd: Insufficient options for proto=fd
[   52.490335][ T5448] UBIFS error (pid: 5448): cannot open "./file0", error -22
[   52.586534][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   52.596741][ T5391] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[   52.766959][ T5391] usb 5-1: config 0 has no interfaces?
[   52.772582][ T5391] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[   52.776325][ T5391] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   52.790654][ T5391] usb 5-1: config 0 descriptor??
[   53.050037][ T5441] block nbd0: NBD_DISCONNECT
[   53.055706][ T5441] syz.0.9: vmalloc error: size 1982232576, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   53.060214][ T5441] CPU: 0 UID: 0 PID: 5441 Comm: syz.0.9 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[   53.063124][ T5441] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   53.066014][ T5441] Call Trace:
[   53.067057][ T5441]  <TASK>
[   53.067913][ T5441]  dump_stack_lvl+0x16c/0x1f0
[   53.069235][ T5441]  warn_alloc+0x24d/0x3a0
[   53.070453][ T5441]  ? __pfx_warn_alloc+0x10/0x10
[   53.071942][ T5441]  ? __pfx___lock_acquire+0x10/0x10
[   53.073355][ T5441]  ? get_ctrl+0x394/0x4f0
[   53.074527][ T5441]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   53.076008][ T5441]  __vmalloc_node_range_noprof+0x11a7/0x15a0
[   53.077546][ T5441]  ? __mutex_trylock_common+0xea/0x250
[   53.078946][ T5441]  ? __pfx___mutex_trylock_common+0x10/0x10
[   53.080446][ T5441]  ? __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[   53.082163][ T5441]  ? rcu_is_watching+0x12/0xc0
[   53.083415][ T5441]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   53.085061][ T5441]  ? rcu_is_watching+0x12/0xc0
[   53.086321][ T5441]  ? rcu_is_watching+0x12/0xc0
[   53.087580][ T5441]  ? trace_kmalloc+0x2d/0xe0
[   53.088787][ T5441]  ? __kmalloc_node_noprof.cold+0x5a/0x5f
[   53.090253][ T5441]  ? __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[   53.091840][ T5441]  __kvmalloc_node_noprof+0x14f/0x1a0
[   53.093217][ T5441]  ? __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[   53.094939][ T5441]  __v4l2_ctrl_modify_dimensions+0x1c7/0x650
[   53.096499][ T5441]  vivid_update_format_cap+0x127b/0x2530
[   53.097915][ T5441]  ? __pfx_vivid_update_format_cap+0x10/0x10
[   53.099418][ T5441]  ? v4l2_match_dv_timings+0x1df/0x1010
[   53.100850][ T5441]  vivid_vid_cap_s_dv_timings+0xc0f/0xfb0
[   53.102828][ T5441]  vidioc_s_dv_timings+0xa5/0xc0
[   53.104700][ T5441]  ? v4l_stub_s_dv_timings+0x1b/0x60
[   53.106735][ T5441]  __video_do_ioctl+0xaf0/0xf00
[   53.108825][ T5441]  ? __pfx___video_do_ioctl+0x10/0x10
[   53.110854][ T5441]  video_usercopy+0x426/0x1500
[   53.112654][ T5441]  ? __pfx___video_do_ioctl+0x10/0x10
[   53.114518][ T5441]  ? __pfx_video_usercopy+0x10/0x10
[   53.116388][ T5441]  v4l2_ioctl+0x1ba/0x250
[   53.117893][ T5441]  v4l2_compat_ioctl32+0x214/0x2c0
[   53.119682][ T5441]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[   53.121729][ T5441]  __do_compat_sys_ioctl+0x259/0x2b0
[   53.123407][ T5441]  __do_fast_syscall_32+0x73/0x120
[   53.124649][ T5441]  do_fast_syscall_32+0x32/0x80
[   53.125853][ T5441]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   53.127788][ T5441] RIP: 0023:0xf7f38579
[   53.128805][ T5441] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   53.134091][ T5441] RSP: 002b:00000000f56b656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   53.137088][ T5441] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 00000000c0845657
[   53.139084][ T5441] RDX: 0000000020000200 RSI: 0000000000000000 RDI: 0000000000000000
[   53.141223][ T5441] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   53.143629][ T5441] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   53.146021][ T5441] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   53.148116][ T5441]  </TASK>
[   53.157409][ T5441] Mem-Info:
[   53.158263][ T5441] active_anon:1723 inactive_anon:5 isolated_anon:0
[   53.158263][ T5441]  active_file:2252 inactive_file:32186 isolated_file:0
[   53.158263][ T5441]  unevictable:2816 dirty:681 writeback:0
[   53.158263][ T5441]  slab_reclaimable:4606 slab_unreclaimable:50169
[   53.158263][ T5441]  mapped:16805 shmem:809 pagetables:635
[   53.158263][ T5441]  sec_pagetables:307 bounce:0
[   53.158263][ T5441]  kernel_misc_reclaimable:0
[   53.158263][ T5441]  free:105270 free_pcp:1658 free_cma:0
[   53.171603][ T5441] Node 0 active_anon:0kB inactive_anon:4kB active_file:760kB inactive_file:1116kB unevictable:1912kB isolated(anon):0kB isolated(file):0kB mapped:6520kB dirty:1872kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9808kB pagetables:1424kB sec_pagetables:1216kB all_unreclaimable? no
[   53.182413][ T5441] Node 1 active_anon:6912kB inactive_anon:4kB active_file:8164kB inactive_file:127780kB unevictable:9352kB isolated(anon):0kB isolated(file):0kB mapped:60712kB dirty:900kB writeback:0kB shmem:1704kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:1492kB pagetables:1212kB sec_pagetables:12kB all_unreclaimable? no
[   53.192085][ T5441] Node 0 DMA free:888kB boost:0kB min:760kB low:948kB high:1136kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:1056kB inactive_file:44kB unevictable:40kB writepending:1100kB present:15992kB managed:15360kB mlocked:40kB bounce:0kB free_pcp:80kB local_pcp:28kB free_cma:0kB
[   53.200104][ T5441] lowmem_reserve[]: 0 273 0 0 0
[   53.201468][ T5441] Node 0 DMA32 free:21112kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:4kB active_file:504kB inactive_file:272kB unevictable:1872kB writepending:772kB present:1032196kB managed:306284kB mlocked:336kB bounce:0kB free_pcp:288kB local_pcp:48kB free_cma:0kB
[   53.211202][ T5441] lowmem_reserve[]: 0 0 0 0 0
[   53.212496][ T5441] Node 1 DMA32 free:400376kB boost:0kB min:47144kB low:58928kB high:70712kB reserved_highatomic:0KB active_anon:6912kB inactive_anon:4kB active_file:8164kB inactive_file:127780kB unevictable:9352kB writepending:900kB present:1048432kB managed:948252kB mlocked:7816kB bounce:0kB free_pcp:5376kB local_pcp:1280kB free_cma:0kB
[   53.221592][ T5441] lowmem_reserve[]: 0 0 0 0 0
[   53.222854][ T5441] Node 0 DMA: 0*4kB 1*8kB (U) 3*16kB (U) 26*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 888kB
[   53.226433][ T5441] Node 0 DMA32: 75*4kB (UMEH) 56*8kB (UMH) 104*16kB (UMEH) 88*32kB (UMEH) 67*64kB (UMEH) 42*128kB (UMEH) 12*256kB (UM) 5*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 21548kB
[   53.231668][ T5441] Node 1 DMA32: 12*4kB (UME) 23*8kB (UME) 17*16kB (UM) 23*32kB (UME) 11*64kB (UME) 3*128kB (ME) 5*256kB (ME) 1*512kB (E) 3*1024kB (ME) 8*2048kB (UME) 92*4096kB (M) = 400408kB
[   53.236180][ T5441] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   53.238947][ T5441] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   53.241364][ T5441] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   53.243897][ T5441] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   53.246284][ T5441] 35731 total pagecache pages
[   53.247796][ T5441] 463 pages in swap cache
[   53.249065][ T5441] Free swap  = 108596kB
[   53.250219][ T5441] Total swap = 124996kB
[   53.251377][ T5441] 524155 pages RAM
[   53.252405][ T5441] 0 pages HighMem/MovableOnly
[   53.253863][ T5441] 206681 pages reserved
[   53.255356][ T5441] 0 pages cma reserved
[   53.272032][   T35] usb 5-1: USB disconnect, device number 2
[   53.829279][ T5456] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   53.880200][ T5460] UBIFS error (pid: 5460): cannot open "./file0", error -22
[   53.927114][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   53.966417][ T5358] Bluetooth: hci1: command tx timeout
[   53.966635][ T5352] Bluetooth: hci2: command tx timeout
[   53.966686][ T5349] Bluetooth: hci3: command tx timeout
[   53.966712][ T4780] Bluetooth: hci0: command tx timeout
[   54.274228][ T5467] process 'syz.1.16' launched './file2' with NULL argv: empty string added
[   54.661335][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   55.173333][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   55.656603][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   55.756560][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   55.823158][ T5477] netlink: 16 bytes leftover after parsing attributes in process `syz.3.18'.
[   55.905438][ T5481] UBIFS error (pid: 5481): cannot open "./file0", error -22
[   56.037824][ T5352] Bluetooth: hci1: command tx timeout
[   56.037981][ T5358] Bluetooth: hci0: command tx timeout
[   56.038028][ T4780] Bluetooth: hci2: command tx timeout
[   56.046465][ T5358] Bluetooth: hci3: command tx timeout
[   56.197358][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   56.504611][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   56.594867][ T5483] llcp: llcp_sock_recvmsg: Recv datagram failed state 4 -512 0
[   56.626540][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   56.783916][ T5497] netlink: 8 bytes leftover after parsing attributes in process `syz.2.23'.
[   56.786157][ T5497] netlink: 8 bytes leftover after parsing attributes in process `syz.2.23'.
[   56.791913][ T5497] veth1_to_bridge: entered promiscuous mode
[   56.794342][ T5497] macvlan2: entered promiscuous mode
[   56.796152][ T5497] macvlan2: entered allmulticast mode
[   56.800164][ T5497] veth1_to_bridge: entered allmulticast mode
[   56.822021][ T5497] netlink: 8 bytes leftover after parsing attributes in process `syz.2.23'.
[   56.907291][ T5499] binder: 5498:5499 ioctl c018937d 20000480 returned -22
[   56.938415][ T5501] IPVS: set_ctl: invalid protocol: 1 255.255.255.255:0
[   57.016608][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   58.101668][ T5508] netlink: 4 bytes leftover after parsing attributes in process `syz.0.26'.
[   58.104859][ T5508] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   58.107815][ T5508] batman_adv: batadv0: Removing interface: batadv_slave_0
[   58.119337][ T5508] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   58.122066][ T5508] batman_adv: batadv0: Removing interface: batadv_slave_1
[   58.308859][ T5518] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   58.447789][ T5520] program syz.3.30 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   59.318984][ T5530] syz.3.31 (5530): drop_caches: 2
[   59.357270][ T5530] syz.3.31 (5530): drop_caches: 2
[   59.919457][ T5535] fuse: Bad value for 'group_id'
[   59.921119][ T5535] fuse: Bad value for 'group_id'
[   61.420679][ T5558] netlink: 200 bytes leftover after parsing attributes in process `syz.2.41'.
[   61.424497][ T5558] netlink: 4 bytes leftover after parsing attributes in process `syz.2.41'.
[   62.608788][   T39] audit: type=1326 audit(1728029140.117:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5576 comm="syz.0.46" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000
[   62.615424][   T39] audit: type=1326 audit(1728029140.117:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5576 comm="syz.0.46" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000
[   62.621653][   T39] audit: type=1326 audit(1728029140.127:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5576 comm="syz.0.46" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f38579 code=0x7ffc0000
[   62.629174][   T39] audit: type=1326 audit(1728029140.127:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5576 comm="syz.0.46" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f38579 code=0x7ffc0000
[   62.634678][   T39] audit: type=1326 audit(1728029140.127:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5576 comm="syz.0.46" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000
[   62.640344][   T56] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   62.641825][   T39] audit: type=1326 audit(1728029140.127:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5576 comm="syz.0.46" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x7ffc0000
[   62.650406][   T39] audit: type=1326 audit(1728029140.127:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5576 comm="syz.0.46" exe="/syz-executor" sig=0 arch=40000003 syscall=1 compat=1 ip=0xf7f38579 code=0x7ffc0000
[   62.806808][   T56] usb 7-1: Using ep0 maxpacket: 32
[   62.810695][   T56] usb 7-1: config index 0 descriptor too short (expected 156, got 27)
[   62.812935][   T56] usb 7-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[   62.815796][   T56] usb 7-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[   62.819313][   T56] usb 7-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[   62.822760][   T56] usb 7-1: config 0 interface 0 has no altsetting 0
[   62.828899][   T56] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[   62.831224][   T56] usb 7-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[   62.833409][   T56] usb 7-1: Product: syz
[   62.834526][   T56] usb 7-1: Manufacturer: syz
[   62.835758][   T56] usb 7-1: SerialNumber: syz
[   62.839570][   T56] usb 7-1: config 0 descriptor??
[   62.845329][   T56] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[   62.854243][   T56] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[   63.307159][ T5583] netlink: 344 bytes leftover after parsing attributes in process `syz.1.47'.
[   63.645686][ T5573] netlink: 'syz.2.45': attribute type 4 has an invalid length.
[   63.697111][   T56] usb 7-1: USB disconnect, device number 2
[   63.705242][   T56] ldusb 7-1:0.0: LD USB Device #0 now disconnected
[   63.738026][ T5587] Zero length message leads to an empty skb
[   63.997021][ T5590] sd 0:0:0:0: PR command failed: 1026
[   63.998937][ T5590] sd 0:0:0:0: Sense Key : Illegal Request [current] 
[   64.001263][ T5590] sd 0:0:0:0: Add. Sense: Invalid command operation code
[   64.500536][ T5602] UBIFS error (pid: 5602): cannot open "./file0", error -22
[   64.647316][ T5610] UBIFS error (pid: 5610): cannot open "./file0", error -22
[   65.957631][ T5358] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[   65.962272][ T5358] Bluetooth: hci1: Injecting HCI hardware error event
[   65.964938][ T5358] Bluetooth: hci1: hardware error 0x00
[   66.384112][ T5620] netlink: 4 bytes leftover after parsing attributes in process `syz.3.57'.
[   67.116780][ T5390] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   67.287197][ T5390] usb 5-1: Using ep0 maxpacket: 8
[   67.292586][ T5390] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[   67.295544][ T5390] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[   67.299170][ T5390] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[   67.301964][ T5390] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[   67.305439][ T5390] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[   67.308694][ T5390] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.036477][ T5358] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[   68.135485][ T5390] usb 5-1: GET_CAPABILITIES returned 0
[   68.137948][ T5390] usbtmc 5-1:16.0: can't read capabilities
[   68.578758][ T5639] syz.1.62 uses obsolete (PF_INET,SOCK_PACKET)
[   69.334198][ T5651] program syz.2.66 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   69.831019][  T979] usb 5-1: USB disconnect, device number 3
[   70.565276][ T5659] netlink: 'syz.0.68': attribute type 1 has an invalid length.
[   70.571724][ T5659] netlink: 224 bytes leftover after parsing attributes in process `syz.0.68'.
[   70.760006][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[   71.173773][ T5665] UBIFS error (pid: 5665): cannot open "./file0", error -22
[   71.666436][ T5622] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   71.837191][ T5622] usb 8-1: Using ep0 maxpacket: 32
[   71.840778][ T5622] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1023
[   71.844215][ T5622] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 8
[   71.854994][ T5622] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   71.858178][ T5622] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   71.860359][ T5622] usb 8-1: Product: syz
[   71.864874][ T5622] usb 8-1: Manufacturer: syz
[   71.867811][ T5622] usb 8-1: SerialNumber: syz
[   72.094540][ T5670] netlink: 4 bytes leftover after parsing attributes in process `syz.3.71'.
[   72.108413][ T5670] netlink: 4 bytes leftover after parsing attributes in process `syz.3.71'.
[   72.113801][ T5670] netlink: 4 bytes leftover after parsing attributes in process `syz.3.71'.
[   72.332283][ T5622] cdc_ncm 8-1:1.0: bind() failure
[   72.335345][ T5622] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[   72.338315][ T5622] cdc_ncm 8-1:1.1: bind() failure
[   72.347432][ T5622] usb 8-1: USB disconnect, device number 2
[   73.031878][ T5687] 9pnet_fd: Insufficient options for proto=fd
[   74.511047][ T5710] UBIFS error (pid: 5710): cannot open "./file0", error -22
[   75.334466][ T5719] capability: warning: `syz.3.85' uses deprecated v2 capabilities in a way that may be insecure
[   75.885405][  T982] cfg80211: failed to load regulatory.db
[   76.477414][ T5726] netlink: 20 bytes leftover after parsing attributes in process `syz.2.87'.
[   76.750887][ T5738] UBIFS error (pid: 5738): cannot open "./file0", error -22
[   76.984717][ T5745] overlayfs: upper fs does not support RENAME_WHITEOUT.
[   76.989413][ T5745] overlayfs: failed to set xattr on upper
[   76.992347][ T5745] overlayfs: ...falling back to redirect_dir=nofollow.
[   76.994161][ T5745] overlayfs: ...falling back to index=off.
[   76.995742][ T5745] overlayfs: ...falling back to uuid=null.
[   77.567539][ T5765] UBIFS error (pid: 5765): cannot open "./file0", error -22
[   78.120469][ T5352] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   78.129711][ T5352] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   78.135336][ T5352] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   78.140647][ T5352] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   78.142946][ T5352] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   78.145180][ T5352] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   78.191502][  T502] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.282626][  T502] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.293432][ T5779] ieee802154 phy1 wpan1: encryption failed: -22
[   78.456871][ T5784] block nbd3: NBD_DISCONNECT
[   78.467835][  T502] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.509790][ T5773] chnl_net:caif_netlink_parms(): no params data found
[   78.558515][  T502] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   78.621169][ T5773] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.626081][ T5773] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.629856][ T5773] bridge_slave_0: entered allmulticast mode
[   78.631935][ T5773] bridge_slave_0: entered promiscuous mode
[   78.636532][ T5773] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.638437][ T5773] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.640392][ T5773] bridge_slave_1: entered allmulticast mode
[   78.643652][ T5773] bridge_slave_1: entered promiscuous mode
[   78.718554][ T5773] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   78.741198][ T5773] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   78.860828][ T5773] team0: Port device team_slave_0 added
[   78.867533][ T5773] team0: Port device team_slave_1 added
[   78.870502][  T502] bridge_slave_1: left allmulticast mode
[   78.872779][  T502] bridge_slave_1: left promiscuous mode
[   78.876213][  T502] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.884818][  T502] bridge_slave_0: left allmulticast mode
[   78.888595][  T502] bridge_slave_0: left promiscuous mode
[   78.892087][  T502] bridge0: port 1(bridge_slave_0) entered disabled state
[   79.352417][ T5794] tmpfs: Unknown parameter '�'
[   79.461553][  T502] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   79.478272][  T502] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   79.488760][  T502] bond0 (unregistering): Released all slaves
[   79.614929][ T5773] batman_adv: batadv0: Adding interface: batadv_slave_0
[   79.623819][ T5773] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.653592][ T5773] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   79.658136][ T5773] batman_adv: batadv0: Adding interface: batadv_slave_1
[   79.663661][ T5773] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   79.683976][ T5773] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   80.197637][ T5358] Bluetooth: hci1: command tx timeout
[   80.536272][ T5773] hsr_slave_0: entered promiscuous mode
[   80.539330][ T5773] hsr_slave_1: entered promiscuous mode
[   80.542083][ T5773] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   80.544903][ T5773] Cannot create hsr debugfs directory
[   80.809081][  T502] hsr_slave_0: left promiscuous mode
[   80.812543][  T502] hsr_slave_1: left promiscuous mode
[   80.825010][  T502] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   80.833181][  T502] batman_adv: batadv0: Removing interface: batadv_slave_0
[   80.843087][  T502] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   80.845771][  T502] batman_adv: batadv0: Removing interface: batadv_slave_1
[   80.922765][  T502] veth1_to_bridge: left promiscuous mode
[   80.924593][  T502] veth1_macvtap: left promiscuous mode
[   80.926182][  T502] veth0_macvtap: left promiscuous mode
[   80.927931][  T502] veth1_vlan: left promiscuous mode
[   80.929624][  T502] veth0_vlan: left promiscuous mode
[   81.843959][  T502] team0 (unregistering): Port device team_slave_1 removed
[   81.902730][  T502] team0 (unregistering): Port device team_slave_0 removed
[   82.286664][ T5358] Bluetooth: hci1: command tx timeout
[   82.894203][ T5773] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   82.900066][ T5773] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   82.905057][ T5773] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   82.911826][ T5773] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   83.045297][ T5773] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.056943][ T5773] 8021q: adding VLAN 0 to HW filter on device team0
[   83.064720][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.066764][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.168444][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.170940][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.402589][ T5773] 8021q: adding VLAN 0 to HW filter on device batadv0
[   83.420425][ T5773] veth0_vlan: entered promiscuous mode
[   83.424750][ T5773] veth1_vlan: entered promiscuous mode
[   83.434916][ T5773] veth0_macvtap: entered promiscuous mode
[   83.439720][ T5773] veth1_macvtap: entered promiscuous mode
[   83.445337][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.448113][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.450602][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   83.453314][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.456988][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_0
[   83.460581][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.463343][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.465817][ T5773] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   83.468968][ T5773] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   83.472998][ T5773] batman_adv: batadv0: Interface activated: batadv_slave_1
[   83.478381][ T5773] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   83.480735][ T5773] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   83.483001][ T5773] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   83.485264][ T5773] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   83.524146][ T1100] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.527334][ T1100] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.543544][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   83.545849][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   83.598535][ T5880] fuse: Bad value for 'fd'
[   83.831347][   T39] audit: type=1400 audit(1728029161.347:9): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=5888 comm="syz.2.119"
[   84.356489][ T5358] Bluetooth: hci1: command tx timeout
[   84.601101][ T5920] netlink: 132 bytes leftover after parsing attributes in process `syz.1.125'.
[   85.323609][ T5940] capability: warning: `syz.3.126' uses 32-bit capabilities (legacy support in use)
[   85.326701][ T5940] sg_write: process 90 (syz.3.126) changed security contexts after opening file descriptor, this is not allowed.
[   85.392172][ T5942] netlink: 4 bytes leftover after parsing attributes in process `syz.3.127'.
[   85.671991][ T5952] FAULT_INJECTION: forcing a failure.
[   85.671991][ T5952] name failslab, interval 1, probability 0, space 0, times 1
[   85.676505][ T5952] CPU: 3 UID: 0 PID: 5952 Comm: syz.2.130 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[   85.680080][ T5952] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   85.683797][ T5952] Call Trace:
[   85.684961][ T5952]  <TASK>
[   85.685987][ T5952]  dump_stack_lvl+0x16c/0x1f0
[   85.687634][ T5952]  should_fail_ex+0x497/0x5b0
[   85.689254][ T5952]  should_failslab+0xc2/0x120
[   85.690882][ T5952]  kmem_cache_alloc_noprof+0x6e/0x2f0
[   85.692714][ T5952]  ? dev_queue_xmit_nit+0x43/0xba0
[   85.694466][ T5952]  ? skb_clone+0x190/0x3f0
[   85.696016][ T5952]  skb_clone+0x190/0x3f0
[   85.697728][ T5952]  dev_queue_xmit_nit+0x38f/0xba0
[   85.699479][ T5952]  dev_hard_start_xmit+0x56/0x790
[   85.701212][ T5952]  ? __dev_queue_xmit+0x252/0x4350
[   85.703000][ T5952]  __dev_queue_xmit+0x7c7/0x4350
[   85.704713][ T5952]  ? __pfx___dev_queue_xmit+0x10/0x10
[   85.706584][ T5952]  ? rcu_is_watching+0x12/0xc0
[   85.708291][ T5952]  ? __copy_skb_header+0x2e8/0x5b0
[   85.709896][ T5952]  ? __skb_clone+0x570/0x760
[   85.711163][ T5952]  netlink_deliver_tap+0xa8a/0xcf0
[   85.712554][ T5952]  netlink_unicast+0x5e1/0x7f0
[   85.713822][ T5952]  ? __pfx_netlink_unicast+0x10/0x10
[   85.715228][ T5952]  ? __phys_addr_symbol+0x30/0x80
[   85.716582][ T5952]  ? __check_object_size+0x488/0x710
[   85.718174][ T5952]  netlink_sendmsg+0x8b8/0xd70
[   85.719657][ T5952]  ? __pfx_netlink_sendmsg+0x10/0x10
[   85.721224][ T5952]  ? lock_acquire+0x2f/0xb0
[   85.722523][ T5952]  ____sys_sendmsg+0x9ae/0xb40
[   85.724155][ T5952]  ? __pfx_____sys_sendmsg+0x10/0x10
[   85.725723][ T5952]  ? get_compat_msghdr+0x11b/0x170
[   85.727410][ T5952]  ? __pfx___lock_acquire+0x10/0x10
[   85.728823][ T5952]  ___sys_sendmsg+0x135/0x1e0
[   85.730443][ T5952]  ? __pfx____sys_sendmsg+0x10/0x10
[   85.732166][ T5952]  ? lock_acquire+0x2f/0xb0
[   85.733382][ T5952]  ? __fget_files+0x40/0x3f0
[   85.734900][ T5952]  ? fdget+0x176/0x210
[   85.736067][ T5952]  __sys_sendmsg+0x117/0x1f0
[   85.737365][ T5952]  ? __pfx___sys_sendmsg+0x10/0x10
[   85.738989][ T5952]  ? __fget_files+0x244/0x3f0
[   85.740343][ T5952]  __do_fast_syscall_32+0x73/0x120
[   85.741889][ T5952]  do_fast_syscall_32+0x32/0x80
[   85.743349][ T5952]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   85.745570][ T5952] RIP: 0023:0xf7fc8579
[   85.747082][ T5952] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   85.753586][ T5952] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   85.756430][ T5952] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000200
[   85.759113][ T5952] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   85.761721][ T5952] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   85.764362][ T5952] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   85.767034][ T5952] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   85.769713][ T5952]  </TASK>
[   85.776085][ T5952] netlink: 16 bytes leftover after parsing attributes in process `syz.2.130'.
[   86.004003][ T5967] fuse: Bad value for 'fd'
[   86.196707][ T5969] netlink: 24 bytes leftover after parsing attributes in process `syz.2.136'.
[   86.436554][ T5358] Bluetooth: hci1: command tx timeout
[   86.731230][ T5984] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[   86.925252][   T64] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   86.995870][   T64] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.039215][ T5352] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   87.044574][ T5352] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   87.051247][ T5352] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   87.055107][ T5352] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   87.058244][ T5352] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   87.060863][ T5352] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   87.100995][   T64] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.191373][   T64] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.403344][   T64] bridge_slave_1: left allmulticast mode
[   87.405443][   T64] bridge_slave_1: left promiscuous mode
[   87.407384][   T64] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.417690][   T64] bridge_slave_0: left allmulticast mode
[   87.421611][   T64] bridge_slave_0: left promiscuous mode
[   87.448105][   T64] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.808170][   T64] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   87.815144][   T64] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   87.821403][   T64] bond0 (unregistering): Released all slaves
[   87.847024][ T5995] chnl_net:caif_netlink_parms(): no params data found
[   87.992833][ T6014] fuse: Bad value for 'fd'
[   88.188997][ T6026] openvswitch: netlink: Missing key (keys=20040, expected=2000)
[   88.192927][ T6026] netlink: 'syz.3.153': attribute type 9 has an invalid length.
[   88.194982][ T6026] netlink: 134660 bytes leftover after parsing attributes in process `syz.3.153'.
[   88.234634][ T5995] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.247057][ T5995] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.250734][ T5995] bridge_slave_0: entered allmulticast mode
[   88.254395][ T5995] bridge_slave_0: entered promiscuous mode
[   88.267030][ T5995] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.277808][ T5995] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.280440][ T5995] bridge_slave_1: entered allmulticast mode
[   88.283403][ T5995] bridge_slave_1: entered promiscuous mode
[   88.488657][ T5995] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   88.500686][ T5995] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   88.557103][   T64] hsr_slave_0: left promiscuous mode
[   88.564840][   T64] hsr_slave_1: left promiscuous mode
[   88.568659][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   88.570617][   T64] batman_adv: batadv0: Removing interface: batadv_slave_0
[   88.573861][   T64] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   88.576167][   T64] batman_adv: batadv0: Removing interface: batadv_slave_1
[   88.626551][ T6050] netlink: 84 bytes leftover after parsing attributes in process `syz.0.160'.
[   88.643997][   T64] veth1_macvtap: left promiscuous mode
[   88.645545][   T64] veth0_macvtap: left promiscuous mode
[   88.660676][   T64] veth1_vlan: left promiscuous mode
[   88.662545][   T64] veth0_vlan: left promiscuous mode
[   88.677711][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   89.068287][ T6063] fuse: Bad value for 'fd'
[   89.076889][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   89.096508][ T5358] Bluetooth: hci0: command tx timeout
[   89.376517][   T39] audit: type=1326 audit(1728029166.887:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6070 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   89.387073][   T39] audit: type=1326 audit(1728029166.887:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6070 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   89.394660][   T39] audit: type=1326 audit(1728029166.887:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6070 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   89.403056][   T39] audit: type=1326 audit(1728029166.887:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6070 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   89.410717][   T39] audit: type=1326 audit(1728029166.887:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6070 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   89.418320][   T39] audit: type=1326 audit(1728029166.887:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6070 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   89.425535][   T39] audit: type=1326 audit(1728029166.887:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6070 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   89.433414][   T39] audit: type=1326 audit(1728029166.887:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6070 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   89.441112][   T39] audit: type=1326 audit(1728029166.887:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6070 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   89.448808][   T39] audit: type=1326 audit(1728029166.887:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6070 comm="syz.3.163" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf73ae579 code=0x7ffc0000
[   89.721101][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   89.857941][   T64] team0 (unregistering): Port device team_slave_1 removed
[   89.927701][   T64] team0 (unregistering): Port device team_slave_0 removed
[   90.398010][ T5995] team0: Port device team_slave_0 added
[   90.402879][ T5995] team0: Port device team_slave_1 added
[   90.419982][ T6073] macvlan0: entered allmulticast mode
[   90.421474][ T6073] veth1_vlan: entered allmulticast mode
[   90.425107][ T6075] pim6reg: entered allmulticast mode
[   90.428116][ T6076] veth1_vlan: left allmulticast mode
[   90.438362][ T6076] macvlan0 (unregistering): left allmulticast mode
[   90.488803][ T5995] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.493333][ T5995] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.502947][ T5995] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.504395][ T5995] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.509947][ T5995] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.519297][ T5995] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.644790][ T5995] hsr_slave_0: entered promiscuous mode
[   90.680129][ T5995] hsr_slave_1: entered promiscuous mode
[   90.756998][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   90.846598][ T5409] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   91.156693][ T5358] Bluetooth: hci0: command tx timeout
[   91.368997][ T6109] fuse: Bad value for 'fd'
[   91.718386][ T5995] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   91.731337][ T5995] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   91.744782][ T5995] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   91.752972][ T5995] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   91.799608][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   91.872723][ T5995] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.880788][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   91.891423][ T5995] 8021q: adding VLAN 0 to HW filter on device team0
[   91.960949][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.963442][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.005056][ T1098] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.007742][ T1098] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.306304][ T5995] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.341422][ T5995] veth0_vlan: entered promiscuous mode
[   92.349099][ T5995] veth1_vlan: entered promiscuous mode
[   92.369978][ T5995] veth0_macvtap: entered promiscuous mode
[   92.374643][ T5995] veth1_macvtap: entered promiscuous mode
[   92.384330][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   92.389568][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.394101][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   92.397927][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.404466][ T5995] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.409914][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.414801][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.418525][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.423353][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.428181][ T5995] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.438235][ T5995] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.441468][ T5995] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.443843][ T5995] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   92.446148][ T5995] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.474106][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.480606][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.490837][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.492952][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.683026][ T6172] fuse: Invalid rootmode
[   92.846761][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   92.853183][ T6168] ip6t_REJECT: ECHOREPLY is not supported
[   92.916719][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   93.013028][ T6187] warning: `syz.2.186' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   93.246525][ T5358] Bluetooth: hci0: command tx timeout
[   93.346794][ T6197] 9pnet_fd: Insufficient options for proto=fd
[   93.421035][ T6199] fuse: Invalid rootmode
[   93.809598][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   93.876590][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   93.914775][ T6207] FAULT_INJECTION: forcing a failure.
[   93.914775][ T6207] name failslab, interval 1, probability 0, space 0, times 0
[   93.952653][ T6207] CPU: 0 UID: 0 PID: 6207 Comm: syz.0.192 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[   93.956251][ T6207] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   93.959005][ T6207] Call Trace:
[   93.960464][ T6207]  <TASK>
[   93.961308][ T6207]  dump_stack_lvl+0x16c/0x1f0
[   93.962795][ T6207]  should_fail_ex+0x497/0x5b0
[   93.964809][ T6207]  ? fs_reclaim_acquire+0xae/0x160
[   93.966143][ T6207]  should_failslab+0xc2/0x120
[   93.967655][ T6207]  kmem_cache_alloc_node_noprof+0x71/0x310
[   93.969160][ T6207]  ? __alloc_skb+0x2b3/0x380
[   93.970328][ T6207]  __alloc_skb+0x2b3/0x380
[   93.971586][ T6207]  ? __pfx___alloc_skb+0x10/0x10
[   93.972913][ T6207]  netlink_dump+0x6af/0xcc0
[   93.974108][ T6207]  ? __pfx_netlink_dump+0x10/0x10
[   93.975637][ T6207]  ? kfree_skbmem+0x1a4/0x1f0
[   93.976884][ T6207]  ? kfree_skbmem+0x1a4/0x1f0
[   93.978133][ T6207]  netlink_recvmsg+0xa0d/0xf30
[   93.979392][ T6207]  ? __pfx_netlink_recvmsg+0x10/0x10
[   93.980759][ T6207]  ? aa_sk_perm+0x2f5/0xb20
[   93.981949][ T6207]  ? __pfx_aa_sk_perm+0x10/0x10
[   93.983373][ T6207]  sock_recvmsg+0x1f6/0x250
[   93.985035][ T6207]  sock_read_iter+0x2bb/0x3b0
[   93.986577][ T6207]  ? __pfx_sock_read_iter+0x10/0x10
[   93.987939][ T6207]  do_iter_readv_writev+0x614/0x7f0
[   93.989301][ T6207]  ? __pfx_do_iter_readv_writev+0x10/0x10
[   93.990800][ T6207]  ? bpf_lsm_file_permission+0x9/0x10
[   93.992191][ T6207]  ? security_file_permission+0x71/0x210
[   93.993663][ T6207]  vfs_readv+0x4cf/0x890
[   93.994766][ T6207]  ? find_held_lock+0x2d/0x110
[   93.996024][ T6207]  ? __pfx_vfs_readv+0x10/0x10
[   93.997261][ T6207]  ? find_held_lock+0x2d/0x110
[   93.998501][ T6207]  ? __pfx_lock_release+0x10/0x10
[   93.999833][ T6207]  ? trace_lock_acquire+0x14a/0x1d0
[   94.001185][ T6207]  ? __fget_files+0x244/0x3f0
[   94.002411][ T6207]  ? do_readv+0x289/0x370
[   94.003568][ T6207]  do_readv+0x289/0x370
[   94.004649][ T6207]  ? __pfx_do_readv+0x10/0x10
[   94.005878][ T6207]  __do_fast_syscall_32+0x73/0x120
[   94.007220][ T6207]  do_fast_syscall_32+0x32/0x80
[   94.008490][ T6207]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   94.010143][ T6207] RIP: 0023:0xf7f38579
[   94.011228][ T6207] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   94.013775][   T57] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   94.016999][ T6207] RSP: 002b:00000000f569556c EFLAGS: 00000296 ORIG_RAX: 0000000000000091
[   94.017024][ T6207] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 0000000020000680
[   94.017031][ T6207] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[   94.017036][ T6207] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   94.017042][ T6207] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   94.017048][ T6207] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   94.017061][ T6207]  </TASK>
[   94.153921][ T6215] befs: (nullb0): No write support. Marking filesystem read-only
[   94.166303][ T6215] befs: (nullb0): invalid magic header
[   94.266248][ T5358] Bluetooth: hci2: hardware error 0x00
[   94.426859][ T1284] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   94.766594][ T5352] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[   94.770154][ T5352] Bluetooth: hci3: Injecting HCI hardware error event
[   94.773307][ T4780] Bluetooth: hci3: hardware error 0x00
[   94.916923][ T5588] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   95.008403][ T6223] fuse: Invalid rootmode
[   95.078688][  T979] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   95.873693][ T6237] netlink: 'syz.0.204': attribute type 3 has an invalid length.
[   95.876748][ T6237] netlink: 130984 bytes leftover after parsing attributes in process `syz.0.204'.
[   95.899821][ T6237] netlink: 4 bytes leftover after parsing attributes in process `syz.0.204'.
[   96.180682][ T6247] fuse: Bad value for 'rootmode'
[   96.377534][ T6256] UBIFS error (pid: 6256): cannot open "./file0", error -22
[   96.381494][ T6255] UBIFS error (pid: 6255): cannot open "./file0", error -22
[   96.436442][ T5358] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[   96.761155][   T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.836493][ T4780] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[   96.957593][   T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.997173][   T56] net_ratelimit: 4 callbacks suppressed
[   96.997195][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   97.000848][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   97.065229][   T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.074848][ T5358] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   97.078153][ T5358] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   97.081025][ T5358] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   97.084994][ T5358] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   97.088758][ T5358] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   97.090975][ T5358] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   97.151361][   T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.157505][ T5622] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   97.476858][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   97.485912][   T11] bridge_slave_1: left allmulticast mode
[   97.488402][   T11] bridge_slave_1: left promiscuous mode
[   97.489918][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[   97.494123][   T11] bridge_slave_0: left allmulticast mode
[   97.495625][   T11] bridge_slave_0: left promiscuous mode
[   97.499367][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[   97.646742][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   97.785922][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   97.791683][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   97.795832][   T11] bond0 (unregistering): Released all slaves
[   97.860956][ T6267] chnl_net:caif_netlink_parms(): no params data found
[   98.036746][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   98.096268][ T6267] bridge0: port 1(bridge_slave_0) entered blocking state
[   98.098213][ T6267] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.100078][ T6267] bridge_slave_0: entered allmulticast mode
[   98.102099][ T6267] bridge_slave_0: entered promiscuous mode
[   98.104823][ T6267] bridge0: port 2(bridge_slave_1) entered blocking state
[   98.107791][ T6267] bridge0: port 2(bridge_slave_1) entered disabled state
[   98.109755][ T6267] bridge_slave_1: entered allmulticast mode
[   98.111840][ T6267] bridge_slave_1: entered promiscuous mode
[   98.178184][ T6290] fuse: Bad value for 'rootmode'
[   98.197808][  T979] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   98.268859][ T6267] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   98.272965][ T6267] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   98.308226][   T11] hsr_slave_0: left promiscuous mode
[   98.311860][   T11] hsr_slave_1: left promiscuous mode
[   98.313897][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   98.315843][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[   98.321232][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   98.323264][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[   98.345763][   T11] veth1_macvtap: left promiscuous mode
[   98.348522][   T11] veth0_macvtap: left promiscuous mode
[   98.350517][   T11] veth1_vlan: left promiscuous mode
[   98.352159][   T11] veth0_vlan: left promiscuous mode
[   99.079895][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   99.093045][   T11] team0 (unregistering): Port device team_slave_1 removed
[   99.168314][ T5358] Bluetooth: hci0: command tx timeout
[   99.186278][   T11] team0 (unregistering): Port device team_slave_0 removed
[   99.238976][ T5622] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   99.406669][  T982] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[   99.765890][ T6267] team0: Port device team_slave_0 added
[   99.769476][ T6267] team0: Port device team_slave_1 added
[   99.866320][ T6267] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.869180][ T6267] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.879170][ T6267] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.884071][ T6267] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.886165][ T6267] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.893030][ T6267] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   99.980452][ T6267] hsr_slave_0: entered promiscuous mode
[   99.996263][ T6267] hsr_slave_1: entered promiscuous mode
[  100.088448][ T6324] netlink: 24 bytes leftover after parsing attributes in process `syz.3.226'.
[  100.340497][ T6331] netlink: 'syz.3.228': attribute type 3 has an invalid length.
[  100.343331][ T6331] netlink: 130984 bytes leftover after parsing attributes in process `syz.3.228'.
[  100.374090][ T6331] netlink: 88 bytes leftover after parsing attributes in process `syz.3.228'.
[  101.002480][ T6267] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  101.016416][ T6267] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  101.020738][ T6267] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  101.024022][ T6267] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  101.069525][ T6267] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.080209][ T6267] 8021q: adding VLAN 0 to HW filter on device team0
[  101.085519][ T1098] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.088100][ T1098] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.125214][   T45] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.127822][   T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.236753][ T5358] Bluetooth: hci0: command tx timeout
[  101.368673][ T6267] 8021q: adding VLAN 0 to HW filter on device batadv0
[  101.428397][ T6267] veth0_vlan: entered promiscuous mode
[  101.437622][ T6267] veth1_vlan: entered promiscuous mode
[  101.466722][ T6267] veth0_macvtap: entered promiscuous mode
[  101.471518][ T6267] veth1_macvtap: entered promiscuous mode
[  101.479910][ T6267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  101.482537][ T6267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.485875][ T6267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  101.490498][ T6267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.495121][ T6267] batman_adv: batadv0: Interface activated: batadv_slave_0
[  101.511359][ T6267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  101.514111][ T6267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.523702][ T6267] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  101.529913][ T6267] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.534424][ T6267] batman_adv: batadv0: Interface activated: batadv_slave_1
[  101.540520][ T6267] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.543584][ T6267] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.547001][ T6267] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.549738][ T6267] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.613354][   T64] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.615723][   T64] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.644580][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.649484][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.197389][ T2790] net_ratelimit: 6 callbacks suppressed
[  102.197407][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  102.285862][ T6397] netlink: 'syz.2.233': attribute type 13 has an invalid length.
[  102.356778][ T5622] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  102.358237][ T6398] netlink: 4 bytes leftover after parsing attributes in process `syz.0.232'.
[  102.436606][ T5409] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  102.556646][  T982] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  102.706522][  T982] usb 7-1: Using ep0 maxpacket: 32
[  102.710037][  T982] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  102.713788][  T982] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  102.719866][  T982] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  102.724190][  T982] usb 7-1: New USB device found, idVendor=0458, idProduct=5011, bcdDevice= 0.00
[  102.728187][  T982] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.733423][  T982] usb 7-1: config 0 descriptor??
[  103.246615][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  103.352124][  T982] usbhid 7-1:0.0: can't add hid device: -71
[  103.355015][  T982] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[  103.363508][  T982] usb 7-1: USB disconnect, device number 3
[  103.396830][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  103.449731][ T6411] veth0_vlan: left promiscuous mode
[  103.452143][ T6411] veth0_vlan: entered promiscuous mode
[  103.687363][    T8] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  103.877942][ T6421] overlayfs: missing 'lowerdir'
[  103.893792][ T6423] netlink: 'syz.3.238': attribute type 1 has an invalid length.
[  103.895926][ T6423] netlink: 224 bytes leftover after parsing attributes in process `syz.3.238'.
[  103.932548][ T6425] fuse: Unknown parameter 'use00000000000000000000'
[  104.288494][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  104.467561][ T6456] fuse: Unknown parameter 'user_i00000000000000000000'
[  104.491762][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  105.238356][ T6464] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.245484][ T6464] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.251767][ T6464] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  105.254307][ T6464] overlayfs: failed to set xattr on upper
[  105.256832][ T6464] overlayfs: ...falling back to redirect_dir=nofollow.
[  105.259311][ T6464] overlayfs: ...falling back to index=off.
[  105.261410][ T6464] overlayfs: ...falling back to uuid=null.
[  105.327655][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  105.466539][  T979] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  105.599148][  T979] usb 7-1: device descriptor read/64, error -71
[  105.611078][ T6474] tipc: Started in network mode
[  105.623587][  T982] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  105.637298][ T6474] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  105.641197][ T6474] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  105.644973][ T6474] tipc: Enabled bearer <udp:syz1>, priority 10
[  105.836475][  T979] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  105.886501][ T5358] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  105.888958][ T5358] Bluetooth: hci0: Injecting HCI hardware error event
[  105.891897][ T5358] Bluetooth: hci0: hardware error 0x00
[  105.966695][  T979] usb 7-1: device descriptor read/64, error -71
[  106.076574][  T979] usb usb7-port1: attempt power cycle
[  106.466602][  T979] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  106.487134][  T979] usb 7-1: device descriptor read/8, error -71
[  106.736496][  T979] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  106.758425][   T35] tipc: Node number set to 1
[  106.763154][  T979] usb 7-1: device descriptor read/8, error -71
[  106.866783][  T979] usb usb7-port1: unable to enumerate USB device
[  106.887032][   T39] kauditd_printk_skb: 10 callbacks suppressed
[  106.887052][   T39] audit: type=1804 audit(1728029440.398:30): pid=6491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.259" name="/newroot/8/file0/bus" dev="ramfs" ino=14954 res=1 errno=0
[  107.010311][   T39] audit: type=1800 audit(1728029440.528:31): pid=6491 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.259" name="bus" dev="ramfs" ino=14954 res=0 errno=0
[  107.237187][  T982] net_ratelimit: 6 callbacks suppressed
[  107.237206][  T982] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  107.871329][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  107.871373][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  107.958566][ T5358] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  108.603479][ T6515] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  108.605784][ T6515] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  108.608236][ T6515] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  108.611493][ T6515] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  108.613667][ T6515] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  108.666544][    C2] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  108.669883][ T6521] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  108.703453][ T6524] 9pnet_fd: Insufficient options for proto=fd
[  108.719648][ T6523] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  108.727493][ T6523] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  109.233505][ T6540] FAULT_INJECTION: forcing a failure.
[  109.233505][ T6540] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  109.239221][ T6540] CPU: 3 UID: 0 PID: 6540 Comm: syz.1.272 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  109.242435][ T6540] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  109.245625][ T6540] Call Trace:
[  109.246687][ T6540]  <TASK>
[  109.247560][ T6540]  dump_stack_lvl+0x16c/0x1f0
[  109.249069][ T6540]  should_fail_ex+0x497/0x5b0
[  109.250487][ T6540]  _copy_from_user+0x30/0xf0
[  109.251842][ T6540]  get_compat_msghdr+0xa8/0x170
[  109.253260][ T6540]  ? __pfx_get_compat_msghdr+0x10/0x10
[  109.254851][ T6540]  ? find_held_lock+0x2d/0x110
[  109.256251][ T6540]  ___sys_recvmsg+0x193/0x1a0
[  109.257629][ T6540]  ? __pfx____sys_recvmsg+0x10/0x10
[  109.259154][ T6540]  ? lock_acquire+0x2f/0xb0
[  109.260484][ T6540]  ? __fget_files+0x40/0x3f0
[  109.261837][ T6540]  ? __pfx___might_resched+0x10/0x10
[  109.263380][ T6540]  ? fdget+0x176/0x210
[  109.264570][ T6540]  do_recvmmsg+0x51a/0x750
[  109.265895][ T6540]  ? __pfx_do_recvmmsg+0x10/0x10
[  109.267429][ T6540]  ? __pfx_lock_release+0x10/0x10
[  109.268900][ T6540]  ? vfs_write+0x14d/0x1140
[  109.270236][ T6540]  ? __fget_files+0x244/0x3f0
[  109.271636][ T6540]  __sys_recvmmsg+0x21e/0x280
[  109.273028][ T6540]  ? __pfx___sys_recvmmsg+0x10/0x10
[  109.274555][ T6540]  ? __pfx_ksys_write+0x10/0x10
[  109.275996][ T6540]  __ia32_compat_sys_recvmmsg_time32+0xc4/0x160
[  109.277816][ T6540]  ? lockdep_hardirqs_on+0x7c/0x110
[  109.279333][ T6540]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  109.281232][ T6540]  __do_fast_syscall_32+0x73/0x120
[  109.282727][ T6540]  do_fast_syscall_32+0x32/0x80
[  109.284121][ T6540]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  109.285961][ T6540] RIP: 0023:0xf748e579
[  109.287162][ T6540] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  109.292711][ T6540] RSP: 002b:00000000f575556c EFLAGS: 00000296 ORIG_RAX: 0000000000000151
[  109.295198][ T6540] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000200055c0
[  109.298082][ T6540] RDX: 000000000400023c RSI: 0000000000000000 RDI: 0000000000000000
[  109.301113][ T6540] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  109.303695][ T6540] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  109.306018][ T6540] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  109.308421][ T6540]  </TASK>
[  110.488504][ T6559] UBIFS error (pid: 6559): cannot open "./file0", error -22
[  111.349599][ T6565] FAULT_INJECTION: forcing a failure.
[  111.349599][ T6565] name failslab, interval 1, probability 0, space 0, times 0
[  111.354955][ T6565] CPU: 3 UID: 0 PID: 6565 Comm: syz.1.280 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  111.357711][ T6565] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  111.360503][ T6565] Call Trace:
[  111.361399][ T6565]  <TASK>
[  111.362187][ T6565]  dump_stack_lvl+0x16c/0x1f0
[  111.363501][ T6565]  should_fail_ex+0x497/0x5b0
[  111.364842][ T6565]  ? fs_reclaim_acquire+0xae/0x160
[  111.366210][ T6565]  should_failslab+0xc2/0x120
[  111.367486][ T6565]  __kmalloc_noprof+0xcb/0x410
[  111.368776][ T6565]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  111.370265][ T6565]  tomoyo_realpath_from_path+0xbf/0x710
[  111.371805][ T6565]  ? tomoyo_path_number_perm+0x232/0x5b0
[  111.373372][ T6565]  tomoyo_path_number_perm+0x245/0x5b0
[  111.374870][ T6565]  ? tomoyo_path_number_perm+0x232/0x5b0
[  111.376360][ T6565]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  111.377961][ T6565]  ? trace_lock_acquire+0x14a/0x1d0
[  111.379355][ T6565]  ? lock_acquire+0x2f/0xb0
[  111.380558][ T6565]  ? __fget_files+0x40/0x3f0
[  111.381795][ T6565]  ? __fget_files+0x244/0x3f0
[  111.383138][ T6565]  security_file_ioctl_compat+0x9b/0x240
[  111.384744][ T6565]  __do_compat_sys_ioctl+0x52/0x2b0
[  111.386132][ T6565]  __do_fast_syscall_32+0x73/0x120
[  111.387492][ T6565]  do_fast_syscall_32+0x32/0x80
[  111.388801][ T6565]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  111.390466][ T6565] RIP: 0023:0xf748e579
[  111.391563][ T6565] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  111.397695][ T6565] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  111.399879][ T6565] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000402c5828
[  111.401942][ T6565] RDX: 0000000020000080 RSI: 0000000000000000 RDI: 0000000000000000
[  111.404388][ T6565] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  111.407284][ T6565] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  111.409707][ T6565] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  111.412562][ T6565]  </TASK>
[  111.420112][ T6565] ERROR: Out of memory at tomoyo_realpath_from_path.
[  111.464771][ T6567] fuse: Unknown parameter 'user_id00000000000000000000'
[  112.061783][ T6585] netlink: 16 bytes leftover after parsing attributes in process `syz.0.287'.
[  112.065409][ T6585] Bluetooth: MGMT ver 1.23
[  112.460864][ T6604] FAULT_INJECTION: forcing a failure.
[  112.460864][ T6604] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  112.464455][ T6604] CPU: 2 UID: 0 PID: 6604 Comm: syz.1.292 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  112.467249][ T6604] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.470034][ T6604] Call Trace:
[  112.470946][ T6604]  <TASK>
[  112.471740][ T6604]  dump_stack_lvl+0x16c/0x1f0
[  112.473006][ T6604]  should_fail_ex+0x497/0x5b0
[  112.474265][ T6604]  _copy_from_user+0x30/0xf0
[  112.475497][ T6604]  generic_map_update_batch+0x391/0x5f0
[  112.476951][ T6604]  ? __pfx_generic_map_update_batch+0x10/0x10
[  112.478541][ T6604]  ? __pfx_generic_map_update_batch+0x10/0x10
[  112.480131][ T6604]  bpf_map_do_batch+0x576/0x640
[  112.481414][ T6604]  __sys_bpf+0x1c9f/0x5780
[  112.482591][ T6604]  ? ksys_write+0x21e/0x260
[  112.483781][ T6604]  ? __pfx___sys_bpf+0x10/0x10
[  112.485050][ T6604]  ? vfs_write+0x14d/0x1140
[  112.486261][ T6604]  ? __mutex_unlock_slowpath+0x164/0x650
[  112.487777][ T6604]  ? fput+0x30/0x390
[  112.488819][ T6604]  ? ksys_write+0x1ad/0x260
[  112.490027][ T6604]  ? __pfx_ksys_write+0x10/0x10
[  112.491325][ T6604]  __ia32_sys_bpf+0x76/0xe0
[  112.492522][ T6604]  __do_fast_syscall_32+0x73/0x120
[  112.493865][ T6604]  do_fast_syscall_32+0x32/0x80
[  112.495367][ T6604]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  112.497045][ T6604] RIP: 0023:0xf748e579
[  112.498129][ T6604] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  112.503120][ T6604] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  112.505283][ T6604] RAX: ffffffffffffffda RBX: 000000000000001a RCX: 0000000020001880
[  112.507343][ T6604] RDX: 0000000000000038 RSI: 0000000000000000 RDI: 0000000000000000
[  112.509387][ T6604] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  112.511456][ T6604] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  112.513501][ T6604] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  112.514496][ T6601] netlink: 12 bytes leftover after parsing attributes in process `syz.0.291'.
[  112.515565][ T6604]  </TASK>
[  112.622694][ T6613] FAULT_INJECTION: forcing a failure.
[  112.622694][ T6613] name failslab, interval 1, probability 0, space 0, times 0
[  112.628634][ T6613] CPU: 1 UID: 0 PID: 6613 Comm: syz.2.295 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  112.633588][ T6613] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  112.633604][ T6613] Call Trace:
[  112.633611][ T6613]  <TASK>
[  112.633618][ T6613]  dump_stack_lvl+0x16c/0x1f0
[  112.633647][ T6613]  should_fail_ex+0x497/0x5b0
[  112.633669][ T6613]  ? fs_reclaim_acquire+0xae/0x160
[  112.642914][ T6613]  should_failslab+0xc2/0x120
[  112.644448][ T6613]  __kmalloc_node_track_caller_noprof+0xcf/0x440
[  112.646577][ T6613]  ? p9_client_create+0x48d/0x1150
[  112.648446][ T6613]  kstrdup+0x3c/0x80
[  112.649798][ T6613]  p9_client_create+0x48d/0x1150
[  112.651535][ T6613]  ? __pfx_p9_client_create+0x10/0x10
[  112.653363][ T6613]  ? __raw_spin_lock_init+0x3a/0x110
[  112.655173][ T6613]  v9fs_session_init+0x1f8/0x1a80
[  112.656875][ T6613]  ? __pfx_v9fs_session_init+0x10/0x10
[  112.658656][ T6613]  ? kasan_save_track+0x14/0x30
[  112.660350][ T6613]  v9fs_mount+0xc6/0xa50
[  112.661825][ T6613]  ? __pfx_v9fs_mount+0x10/0x10
[  112.663509][ T6613]  ? __pfx_v9fs_mount+0x10/0x10
[  112.665207][ T6613]  legacy_get_tree+0x109/0x220
[  112.666895][ T6613]  vfs_get_tree+0x8f/0x380
[  112.668257][ T6613]  path_mount+0x6e1/0x1f10
[  112.669675][ T6613]  ? kmem_cache_free+0x152/0x4b0
[  112.671376][ T6613]  ? __pfx_path_mount+0x10/0x10
[  112.673027][ T6613]  ? putname+0x12e/0x170
[  112.674500][ T6613]  __ia32_sys_mount+0x292/0x310
[  112.676193][ T6613]  ? __pfx___ia32_sys_mount+0x10/0x10
[  112.678048][ T6613]  __do_fast_syscall_32+0x73/0x120
[  112.679829][ T6613]  do_fast_syscall_32+0x32/0x80
[  112.681528][ T6613]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  112.683723][ T6613] RIP: 0023:0xf7fc8579
[  112.685151][ T6613] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  112.691773][ T6613] RSP: 002b:00000000f574656c EFLAGS: 00000296 ORIG_RAX: 0000000000000015
[  112.694624][ T6613] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000020000080
[  112.697340][ T6613] RDX: 00000000200000c0 RSI: 0000000000000000 RDI: 0000000020000440
[  112.700027][ T6613] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  112.702688][ T6613] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  112.705394][ T6613] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  112.708124][ T6613]  </TASK>
[  112.712805][ T6616] netlink: 12 bytes leftover after parsing attributes in process `syz.0.296'.
[  112.719924][ T6615] netlink: 'syz.1.293': attribute type 1 has an invalid length.
[  112.722623][ T6615] netlink: 512 bytes leftover after parsing attributes in process `syz.1.293'.
[  112.768470][ T6616] netlink: 20 bytes leftover after parsing attributes in process `syz.0.296'.
[  112.847018][   T63] net_ratelimit: 22 callbacks suppressed
[  112.847038][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  112.851608][ T6625] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  112.851642][ T6625] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  112.852473][ T6625] vhci_hcd vhci_hcd.0: Device attached
[  112.913683][ T6616] bridge0: port 2(bridge_slave_1) entered disabled state
[  112.917713][ T6616] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.996708][  T982] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  113.086552][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  113.136572][ T1284] usb 16-1: SetAddress Request (2) to port 0
[  113.138648][ T1284] usb 16-1: new SuperSpeed USB device number 2 using vhci_hcd
[  113.338275][ T6616] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  113.341532][ T6616] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  113.344593][ T6616] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  113.347870][ T6616] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  113.397328][ T6626] vhci_hcd: connection reset by peer
[  113.408101][   T45] vhci_hcd: stop threads
[  113.410132][   T45] vhci_hcd: release socket
[  113.412636][   T45] vhci_hcd: disconnect device
[  113.795594][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  114.107601][ T6647] netlink: 12 bytes leftover after parsing attributes in process `syz.1.303'.
[  114.117060][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  114.278395][    C0] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  114.285074][ T5390] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  114.542329][ T6660] sctp: [Deprecated]: syz.3.307 (pid 6660) Use of int in max_burst socket option deprecated.
[  114.542329][ T6660] Use struct sctp_assoc_value instead
[  115.156728][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  115.762889][ T6689] input: syz0 as /devices/virtual/input/input6
[  116.036519][  T982] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  116.197099][ T5358] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  116.200373][ T5358] Bluetooth: hci1: Injecting HCI hardware error event
[  116.203551][ T4780] Bluetooth: hci1: hardware error 0x00
[  116.214328][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.116288][ T6713] netlink: 4 bytes leftover after parsing attributes in process `syz.1.324'.
[  118.196515][ T1284] usb 16-1: device descriptor read/8, error -110
[  118.276715][ T4780] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  118.286538][   T56] net_ratelimit: 6 callbacks suppressed
[  118.286549][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  118.419243][ T6731] random: crng reseeded on system resumption
[  118.450226][ T6731] Restarting kernel threads ... done.
[  118.552891][ T6729] veth0_vlan: left promiscuous mode
[  118.557379][ T6729] veth0_vlan: entered promiscuous mode
[  118.588135][ T1284] usb usb16-port1: attempt power cycle
[  118.692038][ T6749] fuse: Bad value for 'fd'
[  119.086541][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  119.159558][ T1284] usb usb16-port1: unable to enumerate USB device
[  119.346526][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  119.607158][ T6788] FAULT_INJECTION: forcing a failure.
[  119.607158][ T6788] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  119.611482][ T6788] CPU: 0 UID: 0 PID: 6788 Comm: syz.3.342 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  119.614988][ T6788] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  119.618549][ T6788] Call Trace:
[  119.619674][ T6788]  <TASK>
[  119.620677][ T6788]  dump_stack_lvl+0x16c/0x1f0
[  119.622276][ T6788]  should_fail_ex+0x497/0x5b0
[  119.623883][ T6788]  ? fs_reclaim_acquire+0xae/0x160
[  119.625639][ T6788]  should_fail_alloc_page+0xe7/0x130
[  119.627502][ T6788]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  119.629549][ T6788]  __alloc_pages_noprof+0x190/0x25c0
[  119.631328][ T6788]  ? rcu_read_unlock+0x17/0x60
[  119.632923][ T6788]  ? __pfx_lock_release+0x10/0x10
[  119.634611][ T6788]  ? trace_lock_acquire+0x14a/0x1d0
[  119.636361][ T6788]  ? __lruvec_stat_mod_folio+0xa4/0x370
[  119.638219][ T6788]  ? lock_acquire+0x2f/0xb0
[  119.639823][ T6788]  ? __lruvec_stat_mod_folio+0xa4/0x370
[  119.641774][ T6788]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  119.643736][ T6788]  ? ___kmalloc_large_node+0x166/0x1b0
[  119.645544][ T6788]  ? lockdep_hardirqs_on+0x7c/0x110
[  119.647293][ T6788]  ? rcu_is_watching+0x12/0xc0
[  119.648897][ T6788]  ? trace_kmalloc+0x2d/0xe0
[  119.650468][ T6788]  ? __kmalloc_node_track_caller_noprof.cold+0x5a/0x5f
[  119.652785][ T6788]  ? __alloc_skb+0x164/0x380
[  119.654371][ T6788]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  119.656458][ T6788]  ? policy_nodemask+0xea/0x4e0
[  119.658157][ T6788]  alloc_pages_mpol_noprof+0x2c9/0x610
[  119.660000][ T6788]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  119.662014][ T6788]  ? __print_lock_name+0x1e0/0x260
[  119.663751][ T6788]  alloc_skb_with_frags+0x24b/0x850
[  119.665592][ T6788]  ? lock_acquire+0x2f/0xb0
[  119.667284][ T6788]  sock_alloc_send_pskb+0x7f1/0x980
[  119.669120][ T6788]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  119.671042][ T6788]  ? lock_acquire+0x2f/0xb0
[  119.672597][ T6788]  ? dev_get_by_index+0x37/0x380
[  119.674277][ T6788]  packet_sendmsg+0x1f18/0x54c0
[  119.675919][ T6788]  ? __pfx___might_resched+0x10/0x10
[  119.677685][ T6788]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  119.679683][ T6788]  ? aa_sk_perm+0x2f5/0xb20
[  119.681225][ T6788]  ? __pfx_packet_sendmsg+0x10/0x10
[  119.683004][ T6788]  ? __pfx_aa_sk_perm+0x10/0x10
[  119.684721][ T6788]  __sys_sendto+0x479/0x4d0
[  119.686269][ T6788]  ? __pfx___sys_sendto+0x10/0x10
[  119.687996][ T6788]  ? ksys_write+0x1ad/0x260
[  119.689553][ T6788]  ? __pfx_ksys_write+0x10/0x10
[  119.691219][ T6788]  __ia32_sys_sendto+0xdd/0x1b0
[  119.692926][ T6788]  ? lockdep_hardirqs_on+0x7c/0x110
[  119.694816][ T6788]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  119.697152][ T6788]  __do_fast_syscall_32+0x73/0x120
[  119.698961][ T6788]  do_fast_syscall_32+0x32/0x80
[  119.700544][ T6788]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  119.702125][ T6788] RIP: 0023:0xf73ae579
[  119.703219][ T6788] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  119.708216][ T6788] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000171
[  119.710558][ T6788] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000180
[  119.712883][ T6788] RDX: 00000000000100a6 RSI: 0000000000000000 RDI: 0000000020000140
[  119.715010][ T6788] RBP: 0000000000000014 R08: 0000000000000000 R09: 0000000000000000
[  119.717056][ T6788] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  119.719102][ T6788] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  119.721153][ T6788]  </TASK>
[  119.801187][ T6799] sp0: Synchronizing with TNC
[  120.350200][ T6814] FAULT_INJECTION: forcing a failure.
[  120.350200][ T6814] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  120.356600][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  120.359773][ T6814] CPU: 3 UID: 0 PID: 6814 Comm: syz.3.349 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  120.362573][ T6814] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  120.365372][ T6814] Call Trace:
[  120.366244][ T6814]  <TASK>
[  120.367036][ T6814]  dump_stack_lvl+0x16c/0x1f0
[  120.368262][ T6814]  should_fail_ex+0x497/0x5b0
[  120.369493][ T6814]  _copy_from_user+0x30/0xf0
[  120.370716][ T6814]  ucma_write+0x129/0x330
[  120.371844][ T6814]  ? __pfx_ucma_write+0x10/0x10
[  120.373114][ T6814]  ? bpf_lsm_file_permission+0x9/0x10
[  120.374702][ T6814]  ? security_file_permission+0x71/0x210
[  120.376161][ T6814]  ? __pfx_ucma_write+0x10/0x10
[  120.377428][ T6814]  vfs_write+0x28e/0x1140
[  120.378557][ T6814]  ? __fget_files+0x23a/0x3f0
[  120.379786][ T6814]  ? __pfx_lock_release+0x10/0x10
[  120.381092][ T6814]  ? trace_lock_acquire+0x14a/0x1d0
[  120.382785][ T6814]  ? __pfx_vfs_write+0x10/0x10
[  120.384375][ T6814]  ? lock_acquire+0x2f/0xb0
[  120.385955][ T6814]  ? __fget_files+0x40/0x3f0
[  120.387590][ T6814]  ? __fget_files+0x244/0x3f0
[  120.389211][ T6814]  ksys_write+0x1fa/0x260
[  120.390407][ T6814]  ? __pfx_ksys_write+0x10/0x10
[  120.391694][ T6814]  __do_fast_syscall_32+0x73/0x120
[  120.393026][ T6814]  do_fast_syscall_32+0x32/0x80
[  120.394396][ T6814]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  120.396449][ T6814] RIP: 0023:0xf73ae579
[  120.397509][ T6814] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  120.402687][ T6814] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000004
[  120.405078][ T6814] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000020000200
[  120.407584][ T6814] RDX: 0000000000000048 RSI: 0000000000000000 RDI: 0000000000000000
[  120.410139][ T6814] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  120.412281][ T6814] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  120.414745][ T6814] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  120.417254][ T6814]  </TASK>
[  120.477153][ T6817] blktrace: Concurrent blktraces are not allowed on nbd3
[  120.902184][ T6822] fuse: Bad value for 'fd'
[  121.193636][ T6835] FAULT_INJECTION: forcing a failure.
[  121.193636][ T6835] name failslab, interval 1, probability 0, space 0, times 0
[  121.199452][ T6835] CPU: 0 UID: 0 PID: 6835 Comm: syz.1.355 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  121.203062][ T6835] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  121.206719][ T6835] Call Trace:
[  121.207887][ T6835]  <TASK>
[  121.208927][ T6835]  dump_stack_lvl+0x16c/0x1f0
[  121.210648][ T6835]  should_fail_ex+0x497/0x5b0
[  121.212285][ T6835]  ? fs_reclaim_acquire+0xae/0x160
[  121.214042][ T6835]  should_failslab+0xc2/0x120
[  121.215688][ T6835]  __kmalloc_node_noprof+0xd1/0x440
[  121.217522][ T6835]  ? __kvmalloc_node_noprof+0xad/0x1a0
[  121.219487][ T6835]  __kvmalloc_node_noprof+0xad/0x1a0
[  121.221355][ T6835]  bpf_int_jit_compile+0x7a7/0x1450
[  121.223167][ T6835]  ? __pfx_bpf_int_jit_compile+0x10/0x10
[  121.225091][ T6835]  ? timekeeping_debug_get_ns+0x3e0/0x5b0
[  121.227142][ T6835]  bpf_prog_select_runtime+0x32a/0x4c0
[  121.229033][ T6835]  ? bpf_obj_name_cpy+0x156/0x1b0
[  121.230788][ T6835]  bpf_prog_load+0xe73/0x2670
[  121.232410][ T6835]  ? __pfx_bpf_prog_load+0x10/0x10
[  121.234425][ T6835]  ? find_held_lock+0x2d/0x110
[  121.236203][ T6835]  __sys_bpf+0x4c8c/0x5780
[  121.237837][ T6835]  ? ksys_write+0x21e/0x260
[  121.239463][ T6835]  ? __pfx___sys_bpf+0x10/0x10
[  121.241221][ T6835]  ? vfs_write+0x14d/0x1140
[  121.242856][ T6835]  ? __mutex_unlock_slowpath+0x164/0x650
[  121.244913][ T6835]  ? fput+0x30/0x390
[  121.246343][ T6835]  ? ksys_write+0x1ad/0x260
[  121.247991][ T6835]  ? __pfx_ksys_write+0x10/0x10
[  121.249723][ T6835]  __ia32_sys_bpf+0x76/0xe0
[  121.251418][ T6835]  __do_fast_syscall_32+0x73/0x120
[  121.253293][ T6835]  do_fast_syscall_32+0x32/0x80
[  121.255106][ T6835]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  121.257367][ T6835] RIP: 0023:0xf748e579
[  121.258813][ T6835] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  121.265725][ T6835] RSP: 002b:00000000f577656c EFLAGS: 00000296 ORIG_RAX: 0000000000000165
[  121.268654][ T6835] RAX: ffffffffffffffda RBX: 0000000000000005 RCX: 00000000202a0fb8
[  121.271419][ T6835] RDX: 0000000000000015 RSI: 0000000000000000 RDI: 0000000000000000
[  121.274087][ T6835] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  121.276777][ T6835] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  121.279308][ T6835] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  121.281830][ T6835]  </TASK>
[  121.415103][   T45] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  121.418284][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  121.422508][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  121.481888][ T6851] =======================================================
[  121.481888][ T6851] WARNING: The mand mount option has been deprecated and
[  121.481888][ T6851]          and is ignored by this kernel. Remove the mand
[  121.481888][ T6851]          option from the mount to silence this warning.
[  121.481888][ T6851] =======================================================
[  121.526059][ T6854] fuse: Bad value for 'fd'
[  121.752919][ T6858] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  121.798901][ T6860] hub 9-0:1.0: USB hub found
[  121.800294][ T6860] hub 9-0:1.0: 1 port detected
[  121.936079][ T6865] Illegal XDP return value 38 on prog  (id 105) dev N/A, expect packet loss!
[  121.987975][ T6868] hub 9-0:1.0: USB hub found
[  121.989541][ T6868] hub 9-0:1.0: 1 port detected
[  122.043741][ T6874] xfs: Unknown parameter 'gr'
[  122.116713][ T1100] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  122.120123][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  122.122677][  T982] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  123.476851][ T2790] net_ratelimit: 1 callbacks suppressed
[  123.476870][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  123.838155][ T6892] usb usb9: usbfs: process 6892 (syz.0.378) did not claim interface 0 before use
[  123.841469][ T6895] FAULT_INJECTION: forcing a failure.
[  123.841469][ T6895] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  123.844901][ T6895] CPU: 2 UID: 0 PID: 6895 Comm: syz.1.375 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  123.847590][ T6895] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  123.850534][ T6895] Call Trace:
[  123.851427][ T6895]  <TASK>
[  123.852213][ T6895]  dump_stack_lvl+0x16c/0x1f0
[  123.853465][ T6895]  should_fail_ex+0x497/0x5b0
[  123.854727][ T6895]  _copy_to_user+0x30/0xc0
[  123.855910][ T6895]  simple_read_from_buffer+0xd0/0x160
[  123.857334][ T6895]  proc_fail_nth_read+0x198/0x270
[  123.858671][ T6895]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  123.860139][ T6895]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  123.861604][ T6895]  vfs_read+0x1ce/0xbd0
[  123.862674][ T6895]  ? __fget_files+0x23a/0x3f0
[  123.863893][ T6895]  ? fdget_pos+0x24c/0x360
[  123.865072][ T6895]  ? __pfx_lock_release+0x10/0x10
[  123.866393][ T6895]  ? trace_lock_acquire+0x14a/0x1d0
[  123.867775][ T6895]  ? __pfx_vfs_read+0x10/0x10
[  123.869016][ T6895]  ? __pfx___mutex_lock+0x10/0x10
[  123.870352][ T6895]  ? __fget_files+0x244/0x3f0
[  123.871617][ T6895]  ksys_read+0x12f/0x260
[  123.872740][ T6895]  ? __pfx_ksys_read+0x10/0x10
[  123.874006][ T6895]  __do_fast_syscall_32+0x73/0x120
[  123.875363][ T6895]  do_fast_syscall_32+0x32/0x80
[  123.876646][ T6895]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  123.878299][ T6895] RIP: 0023:0xf748e579
[  123.879387][ T6895] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  123.884274][ T6895] RSP: 002b:00000000f57765a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  123.886440][ T6895] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00000000f5776620
[  123.888514][ T6895] RDX: 000000000000000f RSI: 00000000f747bff4 RDI: 0000000000000000
[  123.890587][ T6895] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[  123.892595][ T6895] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  123.894580][ T6895] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  123.896578][ T6895]  </TASK>
[  123.899474][   T93] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  123.902873][   T35] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  123.905556][ T5390] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  123.952352][ T6904] UBIFS error (pid: 6904): cannot open "./file0", error -22
[  123.980179][ T6906] netlink: 44 bytes leftover after parsing attributes in process `syz.3.377'.
[  124.073818][ T6909] netlink: 12 bytes leftover after parsing attributes in process `syz.2.376'.
[  124.139958][ T6914] netlink: 20 bytes leftover after parsing attributes in process `syz.2.376'.
[  124.146282][ T6914] netlink: 20 bytes leftover after parsing attributes in process `syz.2.376'.
[  124.162326][ T6914] (syz.2.376,6914,3):ocfs2_parse_options:1460 ERROR: Invalid heartbeat mount options
[  124.165782][ T6914] (syz.2.376,6914,3):ocfs2_fill_super:1178 ERROR: status = -22
[  124.526634][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  125.156686][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  125.567703][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  125.812657][ T6932] tipc: Failed to remove unknown binding: 66,1,1/1:2036038893/2036038895
[  125.816048][ T6932] tipc: Failed to remove unknown binding: 66,1,1/1:2036038893/2036038895
[  126.372821][ T6951] UBIFS error (pid: 6951): cannot open "./file0", error -22
[  126.593934][ T6955] netlink: 12 bytes leftover after parsing attributes in process `syz.0.393'.
[  126.599978][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  127.122439][ T6962] netlink: 124 bytes leftover after parsing attributes in process `syz.3.396'.
[  127.322463][ T6969] hugetlbfs: syz.3.398 (6969): Using mlock ulimits for SHM_HUGETLB is obsolete
[  127.646589][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  128.199471][ T5409] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  128.540031][ T6988] fuse: Bad value for 'fd'
[  128.550067][ T6988] netlink: 244 bytes leftover after parsing attributes in process `syz.2.403'.
[  128.686677][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  129.126945][   T39] audit: type=1326 audit(1728029462.648:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7008 comm="syz.0.411" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f38579 code=0x0
[  129.393570][ T7012] netlink: 'syz.3.412': attribute type 1 has an invalid length.
[  129.486606][  T979] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  129.650353][  T979] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  129.654078][  T979] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  129.657790][  T979] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  129.661035][  T979] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  129.664040][  T979] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.680529][  T979] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  129.717558][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  129.725545][ T7026] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  129.785909][  T979] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -12
[  130.766576][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  131.248154][  T982] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  131.806708][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  132.067071][ T7068] UBIFS error (pid: 7068): cannot open "./file0", error -22
[  132.103696][ T7066] netlink: 4 bytes leftover after parsing attributes in process `syz.3.429'.
[  132.189765][  T982] usb 5-1: USB disconnect, device number 4
[  132.199051][ T1376] ieee802154 phy1 wpan1: encryption failed: -22
[  132.264066][ T7072] netlink: 4 bytes leftover after parsing attributes in process `syz.0.431'.
[  132.837040][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  133.390349][ T7097] netlink: 'syz.3.440': attribute type 10 has an invalid length.
[  133.399890][ T7097] batman_adv: batadv0: Adding interface: team0
[  133.402261][ T7097] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  133.411654][ T7097] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  133.420762][ T7097] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  133.425119][ T7097] FAULT_INJECTION: forcing a failure.
[  133.425119][ T7097] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  133.429456][ T7097] CPU: 0 UID: 0 PID: 7097 Comm: syz.3.440 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  133.433009][ T7097] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  133.436653][ T7097] Call Trace:
[  133.437849][ T7097]  <TASK>
[  133.439049][ T7097]  dump_stack_lvl+0x16c/0x1f0
[  133.440984][ T7097]  should_fail_ex+0x497/0x5b0
[  133.442888][ T7097]  strncpy_from_user+0x3b/0x2a0
[  133.444636][ T7097]  getname_flags.part.0+0x8f/0x550
[  133.446409][ T7097]  getname_flags+0x93/0xf0
[  133.447953][ T7097]  __ia32_sys_renameat2+0xd4/0x130
[  133.449689][ T7097]  __do_fast_syscall_32+0x73/0x120
[  133.451447][ T7097]  do_fast_syscall_32+0x32/0x80
[  133.453097][ T7097]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  133.455229][ T7097] RIP: 0023:0xf73ae579
[  133.456615][ T7097] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  133.462921][ T7097] RSP: 002b:00000000f569656c EFLAGS: 00000296 ORIG_RAX: 0000000000000161
[  133.465183][ T7097] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000a00
[  133.467508][ T7097] RDX: 00000000ffffff9c RSI: 0000000020000600 RDI: 0000000000000002
[  133.469604][ T7097] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  133.471789][ T7097] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  133.473929][ T7097] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  133.476254][ T7097]  </TASK>
[  133.477637][ T1284] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  133.558167][ T7104] UBIFS error (pid: 7104): cannot open "./file0", error -22
[  133.686653][  T982] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  133.816585][  T982] usb 5-1: device descriptor read/64, error -71
[  133.876648][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  134.056932][  T982] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[  134.186437][  T982] usb 5-1: device descriptor read/64, error -71
[  134.276626][ T5409] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  134.296678][  T982] usb usb5-port1: attempt power cycle
[  134.636461][  T982] usb 5-1: new full-speed USB device number 7 using dummy_hcd
[  134.657116][  T982] usb 5-1: device descriptor read/8, error -71
[  134.899106][  T982] usb 5-1: new full-speed USB device number 8 using dummy_hcd
[  134.926656][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  134.937785][  T982] usb 5-1: device descriptor read/8, error -71
[  135.049513][  T982] usb usb5-port1: unable to enumerate USB device
[  135.715655][ T7142] netlink: 40 bytes leftover after parsing attributes in process `syz.2.453'.
[  135.876150][ T7145] netlink: 'syz.3.454': attribute type 10 has an invalid length.
[  135.882954][   T39] audit: type=1804 audit(1728029469.398:33): pid=7143 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.453" name="/newroot/97/bus/file0" dev="overlay" ino=548 res=1 errno=0
[  135.898771][ T7145] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  135.966591][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  136.997004][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  137.000140][ T7164] bond0: entered promiscuous mode
[  137.002016][ T7164] bond0: entered allmulticast mode
[  137.022165][ T7166] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable
[  137.026920][ T7166] input: syz0 as /devices/virtual/input/input8
[  137.054348][ T7168] netlink: 'syz.2.462': attribute type 11 has an invalid length.
[  137.057145][ T7168] netlink: 60 bytes leftover after parsing attributes in process `syz.2.462'.
[  137.078846][ T7168] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  137.083435][ T7168] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  137.086748][ T7168] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  137.089965][ T7168] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  137.206978][ T7173] netlink: 'syz.3.466': attribute type 10 has an invalid length.
[  137.222982][ T7173] team0: Failed to send options change via netlink (err -105)
[  137.225293][ T7173] team0: Port device netdevsim0 added
[  137.228043][  T502] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  137.241036][ T7173] netlink: 'syz.3.466': attribute type 10 has an invalid length.
[  137.252794][ T7173] team0: Failed to send options change via netlink (err -105)
[  137.255133][ T7173] team0: Failed to send port change of device netdevsim0 via netlink (err -105)
[  137.258888][ T7173] team0: Port device netdevsim0 removed
[  137.264445][ T7173] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[  137.433699][ T7178] mmap: syz.2.465 (7178) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  137.660921][ T7187] fuse: Unknown parameter 'ٱo"�e�[$�x�ɒ�i��}�'
[  139.296643][ T5390] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  139.459337][ T5390] usb 6-1: Using ep0 maxpacket: 32
[  139.472146][ T5390] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 36
[  139.483336][ T5390] usb 6-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[  139.489455][ T5390] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.492877][ T5390] usb 6-1: Product: syz
[  139.494594][ T5390] usb 6-1: Manufacturer: syz
[  139.496553][ T5390] usb 6-1: SerialNumber: syz
[  139.500980][ T5390] usb 6-1: config 0 descriptor??
[  139.504743][ T7215] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  139.507858][ T5390] hub 6-1:0.0: bad descriptor, ignoring hub
[  139.509607][ T5390] hub 6-1:0.0: probe with driver hub failed with error -5
[  139.515861][ T5390] input: syz syz as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/input/input9
[  139.722949][ T7215] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  139.744316][ T7215] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  139.778558][ T5390] usb 6-1: USB disconnect, device number 2
[  139.780722][    C0] usbtouchscreen 6-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[  139.876821][   T56] net_ratelimit: 204 callbacks suppressed
[  139.876840][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  140.356660][   T63] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  140.565146][ T7248] block nbd1: NBD_DISCONNECT
[  140.758891][ T7258] netlink: 830 bytes leftover after parsing attributes in process `syz.3.496'.
[  140.917438][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  141.571044][ T7277] netlink: 12 bytes leftover after parsing attributes in process `syz.3.503'.
[  141.956655][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  142.170733][ T7291] ref_tracker: memory allocation failure, unreliable refcount tracker.
[  142.996629][ T2790] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  143.079272][ T5390] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  143.396625][ T5409] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  144.052521][   T56] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  144.231503][ T7342] binder: 7341:7342 unknown command 0
[  144.233233][ T7342] binder: 7341:7342 ioctl c0306201 200001c0 returned -22
[  144.240472][ T1284] ==================================================================
[  144.242595][ T1284] BUG: KASAN: slab-use-after-free in __list_del_entry_valid_or_report+0x14c/0x1c0
[  144.245181][ T1284] Read of size 8 at addr ffff88805eddff88 by task kworker/0:2/1284
[  144.248293][ T1284] 
[  144.249233][ T1284] CPU: 0 UID: 0 PID: 1284 Comm: kworker/0:2 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  144.252520][ T1284] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.255359][ T1284] Workqueue: events binder_deferred_func
[  144.256866][ T1284] Call Trace:
[  144.257763][ T1284]  <TASK>
[  144.258555][ T1284]  dump_stack_lvl+0x116/0x1f0
[  144.259781][ T1284]  print_report+0xc3/0x620
[  144.260945][ T1284]  ? __virt_addr_valid+0x5e/0x590
[  144.262462][ T1284]  ? __phys_addr+0xc6/0x150
[  144.264009][ T1284]  kasan_report+0xd9/0x110
[  144.265523][ T1284]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  144.267686][ T1284]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  144.269844][ T1284]  __list_del_entry_valid_or_report+0x14c/0x1c0
[  144.271984][ T1284]  binder_release_work+0x9b/0x490
[  144.273693][ T1284]  binder_deferred_func+0xe6e/0x12e0
[  144.275500][ T1284]  process_one_work+0x958/0x1b30
[  144.277200][ T1284]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  144.279308][ T1284]  ? __pfx_process_one_work+0x10/0x10
[  144.281298][ T1284]  ? assign_work+0x1a0/0x250
[  144.283005][ T1284]  worker_thread+0x6c8/0xf00
[  144.284853][ T1284]  ? __kthread_parkme+0x148/0x220
[  144.286623][ T1284]  ? __pfx_worker_thread+0x10/0x10
[  144.288377][ T1284]  kthread+0x2c1/0x3a0
[  144.289970][ T1284]  ? _raw_spin_unlock_irq+0x23/0x50
[  144.291862][ T1284]  ? __pfx_kthread+0x10/0x10
[  144.293499][ T1284]  ret_from_fork+0x45/0x80
[  144.295238][ T1284]  ? __pfx_kthread+0x10/0x10
[  144.297083][ T1284]  ret_from_fork_asm+0x1a/0x30
[  144.298944][ T1284]  </TASK>
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  144.300248][ T1284] 
[  144.301245][ T1284] Allocated by task 7342:
[  144.302868][ T1284]  kasan_save_stack+0x33/0x60
[  144.304472][ T1284]  kasan_save_track+0x14/0x30
[  144.306259][ T1284]  __kasan_kmalloc+0xaa/0xb0
[  144.307977][ T1284]  binder_thread_write+0xe19/0x4c60
[  144.309986][ T1284]  binder_ioctl+0x268b/0x7050
[  144.311791][ T1284]  compat_ptr_ioctl+0x6b/0xa0
[  144.313188][ T1284]  __do_compat_sys_ioctl+0x259/0x2b0
[  144.314647][ T1284]  __do_fast_syscall_32+0x73/0x120
[  144.315988][ T1284]  do_fast_syscall_32+0x32/0x80
[  144.317331][ T1284]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.318995][ T1284] 
[  144.319642][ T1284] Freed by task 1284:
[  144.320696][ T1284]  kasan_save_stack+0x33/0x60
[  144.321930][ T1284]  kasan_save_track+0x14/0x30
[  144.323220][ T1284]  kasan_save_free_info+0x3b/0x60
[  144.324614][ T1284]  __kasan_slab_free+0x51/0x70
[  144.325891][ T1284]  kfree+0x14f/0x4b0
[  144.326964][ T1284]  binder_deferred_func+0xdd7/0x12e0
[  144.328408][ T1284]  process_one_work+0x958/0x1b30
[  144.329791][ T1284]  worker_thread+0x6c8/0xf00
[  144.331132][ T1284]  kthread+0x2c1/0x3a0
[  144.332319][ T1284]  ret_from_fork+0x45/0x80
[  144.333615][ T1284]  ret_from_fork_asm+0x1a/0x30
[  144.334912][ T1284] 
[  144.335540][ T1284] The buggy address belongs to the object at ffff88805eddff80
[  144.335540][ T1284]  which belongs to the cache kmalloc-64 of size 64
[  144.339092][ T1284] The buggy address is located 8 bytes inside of
[  144.339092][ T1284]  freed 64-byte region [ffff88805eddff80, ffff88805eddffc0)
[  144.342535][ T1284] 
[  144.343136][ T1284] The buggy address belongs to the physical page:
[  144.345029][ T1284] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x5eddf
[  144.348013][ T1284] ksm flags: 0x4fff00000000000(node=1|zone=1|lastcpupid=0x7ff)
[  144.350365][ T1284] page_type: f5(slab)
[  144.351495][ T1284] raw: 04fff00000000000 ffff88801ac428c0 ffffea0001778a80 dead000000000003
[  144.353605][ T1284] raw: 0000000000000000 0000000080200020 00000001f5000000 0000000000000000
[  144.355664][ T1284] page dumped because: kasan: bad access detected
[  144.357279][ T1284] page_owner tracks the page as allocated
[  144.358895][ T1284] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5357, tgid 5357 (syz-executor), ts 48247714963, free_ts 0
[  144.364365][ T1284]  post_alloc_hook+0x2d1/0x350
[  144.365963][ T1284]  get_page_from_freelist+0x101e/0x3070
[  144.367806][ T1284]  __alloc_pages_noprof+0x223/0x25c0
[  144.369507][ T1284]  alloc_pages_mpol_noprof+0x2c9/0x610
[  144.371147][ T1284]  new_slab+0x2ba/0x3f0
[  144.372229][ T1284]  ___slab_alloc+0xd1d/0x16f0
[  144.373472][ T1284]  __slab_alloc.constprop.0+0x56/0xb0
[  144.374916][ T1284]  __kmalloc_noprof+0x379/0x410
[  144.376212][ T1284]  kobject_get_path+0xcb/0x230
[  144.377576][ T1284]  kobject_uevent_env+0x289/0x1670
[  144.378938][ T1284]  __kobject_del+0x168/0x1f0
[  144.380208][ T1284]  kobject_put+0x327/0x5a0
[  144.381616][ T1284]  netdev_queue_update_kobjects+0x432/0x5b0
[  144.383949][ T1284]  netif_set_real_num_tx_queues+0x168/0x880
[  144.386363][ T1284]  veth_init_queues+0xe1/0x190
[  144.388390][ T1284]  veth_newlink+0x630/0x9e0
[  144.390105][ T1284] page_owner free stack trace missing
[  144.392076][ T1284] 
[  144.392929][ T1284] Memory state around the buggy address:
[  144.395048][ T1284]  ffff88805eddfe80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  144.397944][ T1284]  ffff88805eddff00: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  144.401031][ T1284] >ffff88805eddff80: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  144.404079][ T1284]                       ^
[  144.405688][ T1284]  ffff88805ede0000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  144.408650][ T1284]  ffff88805ede0080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  144.411324][ T1284] ==================================================================
[  144.415414][ T1284] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  144.418034][ T1284] CPU: 0 UID: 0 PID: 1284 Comm: kworker/0:2 Not tainted 6.12.0-rc1-syzkaller-00114-g3840cbe24cf0 #0
[  144.421933][ T1284] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.425872][ T1284] Workqueue: events binder_deferred_func
[  144.427989][ T1284] Call Trace:
[  144.429219][ T1284]  <TASK>
[  144.430320][ T1284]  dump_stack_lvl+0x3d/0x1f0
[  144.432026][ T1284]  panic+0x71d/0x800
[  144.433470][ T1284]  ? mark_held_locks+0x9f/0xe0
[  144.435274][ T1284]  ? __pfx_panic+0x10/0x10
[  144.437114][ T1284]  ? irqentry_exit+0x3b/0x90
[  144.438943][ T1284]  ? lockdep_hardirqs_on+0x7c/0x110
[  144.440872][ T1284]  ? check_panic_on_warn+0x1f/0xb0
[  144.442731][ T1284]  check_panic_on_warn+0xab/0xb0
[  144.444583][ T1284]  end_report+0x117/0x180
[  144.446543][ T1284]  kasan_report+0xe9/0x110
[  144.448231][ T1284]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  144.450635][ T1284]  ? __list_del_entry_valid_or_report+0x14c/0x1c0
[  144.453078][ T1284]  __list_del_entry_valid_or_report+0x14c/0x1c0
[  144.455489][ T1284]  binder_release_work+0x9b/0x490
[  144.457537][ T1284]  binder_deferred_func+0xe6e/0x12e0
[  144.459659][ T1284]  process_one_work+0x958/0x1b30
[  144.461545][ T1284]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  144.463686][ T1284]  ? __pfx_process_one_work+0x10/0x10
[  144.465704][ T1284]  ? assign_work+0x1a0/0x250
[  144.467205][ T1284]  worker_thread+0x6c8/0xf00
[  144.469037][ T1284]  ? __kthread_parkme+0x148/0x220
[  144.470785][ T1284]  ? __pfx_worker_thread+0x10/0x10
[  144.472618][ T1284]  kthread+0x2c1/0x3a0
[  144.474068][ T1284]  ? _raw_spin_unlock_irq+0x23/0x50
[  144.475845][ T1284]  ? __pfx_kthread+0x10/0x10
[  144.477093][ T1284]  ret_from_fork+0x45/0x80
[  144.478302][ T1284]  ? __pfx_kthread+0x10/0x10
[  144.479472][ T1284]  ret_from_fork_asm+0x1a/0x30
[  144.480657][ T1284]  </TASK>
[  144.482009][ T1284] Kernel Offset: disabled
[  144.483718][ T1284] Rebooting in 86400 seconds..

VM DIAGNOSIS:
08:07:01  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000006b RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85035855 RDI=ffffffff9a63a260 RBP=ffffffff9a63a220 RSP=ffffc9000763f620
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=3530383838666666
R12=0000000000000000 R13=000000000000006b R14=ffffffff850357f0 R15=0000000000000000
RIP=ffffffff8503587f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f735b2f0 CR3=00000000540e0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000014000000000 0000000400000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000058f3ff RBX=0000000000000001 RCX=ffffffff8b12f6f9 RDX=0000000000000000
RSI=ffffffff8b4cc8e0 RDI=ffffffff8bb12020 RBP=ffffed10036eb910 RSP=ffffc90000477e08
R8 =0000000000000001 R9 =ffffed10056a7025 R10=ffff88802b53812b R11=0000000000000000
R12=0000000000000001 R13=ffff88801b75c880 R14=ffffffff901ccb08 R15=0000000000000000
RIP=ffffffff8b130adf RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002003d000 CR3=000000005420a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000ac00000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000012 RCX=ffffffff848eeefc RDX=ffff888022734880
RSI=ffffffff848eef0a RDI=0000000000000005 RBP=ffffc900032e7538 RSP=ffffc900032e73f0
R8 =0000000000000005 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=ffffffff8bb1cb8c R13=dffffc0000000000 R14=0000000000000000 R15=0000000000000002
RIP=ffffffff818caf06 RFL=00000293 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f49d00dbd00 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000558067826000 CR3=00000000477fc000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000008082082 Opmask01=0000000000000000 Opmask02=00000000dfff7fff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000001 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 0054454955510029
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 554245440045534f 4252455600524f52 5245004c41544146 005445495551000c
ZMM20=0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004 0000000000000000 0000000000000004
ZMM21=c67f7ba4c67f7ba4 c67f7ba4c67f7ba4 c67f7ba4c67f7ba4 c67f7ba4c67f7ba4 c67f7ba4c67f7ba4 c67f7ba4c67f7ba4 c67f7ba4c67f7ba4 c67f7ba4c67f7ba4
ZMM22=8a1be10a8a1be10a 8a1be10a8a1be10a 8a1be10a8a1be10a 8a1be10a8a1be10a 8a1be10a8a1be10a 8a1be10a8a1be10a 8a1be10a8a1be10a 8a1be10a8a1be10a
ZMM23=58c6a48b58c6a48b 58c6a48b58c6a48b 58c6a48b58c6a48b 58c6a48b58c6a48b 58c6a48b58c6a48b 58c6a48b58c6a48b 58c6a48b58c6a48b 58c6a48b58c6a48b
ZMM24=cbb387dacbb387da cbb387dacbb387da cbb387dacbb387da cbb387dacbb387da cbb387dacbb387da cbb387dacbb387da cbb387dacbb387da cbb387dacbb387da
ZMM25=f994e319f994e319 f994e319f994e319 f994e319f994e319 f994e319f994e319 f994e319f994e319 f994e319f994e319 f994e319f994e319 f994e319f994e319
ZMM26=2661890c2661890c 2661890c2661890c 2661890c2661890c 2661890c2661890c 2661890c2661890c 2661890c2661890c 2661890c2661890c 2661890c2661890c
ZMM27=f1a3edc4f1a3edc4 f1a3edc4f1a3edc4 f1a3edc4f1a3edc4 f1a3edc4f1a3edc4 f1a3edc4f1a3edc4 f1a3edc4f1a3edc4 f1a3edc4f1a3edc4 f1a3edc4f1a3edc4
ZMM28=000000200000001f 0000001e0000001d 0000001c0000001b 0000001a00000019 0000001800000017 0000001600000015 0000001400000013 0000001200000011
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=6205000062050000 6205000062050000 6205000062050000 6205000062050000 6205000062050000 6205000062050000 6205000062050000 6205000062050000
info registers vcpu 3

CPU#3
RAX=0000000000000001 RBX=ffff88802b738128 RCX=ffffffff816a25b9 RDX=0000000000000000
RSI=ffffffff8bb11fa0 RDI=ffffffff8d819b98 RBP=0000000000000003 RSP=ffffc90001f5f260
R8 =0000000000000000 R9 =fffffbfff2039961 R10=ffffffff901ccb0f R11=0000000000000000
R12=ffffffff8ddb7800 R13=ffffea0000add7c0 R14=000000000003dbcc R15=dffffc0000000000
RIP=ffffffff8172fa60 RFL=00000082 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000000000000 CR3=00000000540e0000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000ac00000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000