last executing test programs:

8.204440179s ago: executing program 1 (id=1194):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-aesni-avx2\x00'}, 0x58)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, "7f12ddc1517600000000000000000000000002"})
syz_open_pts(r1, 0x0)
accept4(r0, 0x0, 0x0, 0x800)
openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
setsockopt$sock_attach_bpf(r4, 0x1, 0x32, &(0x7f0000000300), 0x4)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_io_uring_setup(0x117, &(0x7f0000000100)={0x0, 0xfffffffe, 0x0, 0x0, 0x386}, &(0x7f0000000280)=<r6=>0x0, &(0x7f0000000200)=<r7=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r6, 0x4, &(0x7f0000000080)=0xfffffc00, 0x0, 0x4)
syz_io_uring_submit(r6, r7, &(0x7f00000000c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x7, 0x0, 0x0, 0x0, 0xc})
io_uring_enter(r5, 0x47f6, 0x0, 0x0, 0x0, 0x0)

6.899591994s ago: executing program 1 (id=1197):
r0 = syz_usb_connect$cdc_ecm(0x0, 0x5a, &(0x7f0000000640)=ANY=[@ANYBLOB="12010000020000402505a1a4400001020301090248000101570000090400000002060000052406000005240000000d240f010000000000000000000424020009058103d707000000090582020000080000090503020000000000275f4af51170a06d5296f408ea256bce2c5d7c9765e84ca8b86d22928a1dff0c0aff0d547634f4f2ec5afd54bc08b5278150fa3f4b2020981351955b05ddff3c3d4e3bf94206a3f2f91ba228ea9ec1ea6567d6a14ce84e35be4e1c04503d7e571525df1142f2656b81829243cb2403d8d580ce28669b36cd616c039d4ccce249b17084f35249e5b46382f29d67997f4532132c692d"], 0x0)
syz_usb_disconnect(r0)
r1 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000040)=ANY=[@ANYRESOCT=r0, @ANYRES8=r0], 0x0)
syz_usb_control_io(r1, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a40)=@newtaction={0xe8, 0x30, 0x800, 0x70bd2e, 0x0, {}, [{0xd4, 0x1, [@m_ct={0x40, 0x1c, 0x0, 0x0, {{0x7}, {0x18, 0x2, 0x0, 0x1, [@TCA_CT_LABELS_MASK={0x14, 0x8, "fb484a0000000000000004ed3dc9a3aa"}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_sample={0x90, 0x1, 0x0, 0x0, {{0xb}, {0x14, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x406}, @TCA_SAMPLE_TRUNC_SIZE={0x8}]}, {0x51, 0x6, "428dc61a6a77f88f3abe15a87d453152544a948393eb2a104546858c98652a04c8baf00de4b5068f55ada96eb97a6d53ad75fa4109f43f60c02baa35a182d864b0d311c91f77fb2206260cc176"}, {0xc, 0x7, {0x1}}, {0xc}}}]}]}, 0xe8}, 0x1, 0x0, 0x0, 0x804}, 0x4000844)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
r4 = openat$vim2m(0xffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$vim2m_VIDIOC_TRY_FMT(r4, 0xc0cc5640, &(0x7f0000000540)={0x1, @sliced={0x0, [0x12a9, 0x400, 0xea, 0x8, 0xffff, 0x3, 0x6, 0x8, 0x83, 0x1, 0xe3c7, 0x5, 0x6, 0x8, 0x9, 0x200, 0x7, 0x9, 0x5, 0x3, 0x1ff, 0xad3f, 0x5, 0x4, 0x0, 0x3, 0x6, 0x8, 0x101, 0x515, 0x7, 0x2, 0x5, 0x9, 0x2, 0xfc00, 0x10, 0xfff, 0x9, 0x23, 0x38, 0x4, 0xfff4, 0x675, 0xa, 0x6, 0x9, 0x8], 0x3}})
syz_io_uring_setup(0x10d, &(0x7f0000000300)={0x0, 0xce5c, 0x200, 0xfffffffd, 0x89}, &(0x7f0000000000), &(0x7f0000000380))
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000080)=0x4f86, 0x4)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r5, &(0x7f0000000480)={0x2, 0x4e20, @multicast2}, 0x10)
sendmmsg(r5, &(0x7f0000006780)=[{{0x0, 0x0, 0x0}}], 0x80000000000020c, 0x0)
setsockopt$inet_int(r5, 0x0, 0xb, 0x0, 0x0)

6.307110871s ago: executing program 0 (id=1199):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
unshare(0x8000000)
r0 = mq_open(&(0x7f00000000c0)='${$\x00', 0x840, 0x0, 0x0)
socket$pppoe(0x18, 0x1, 0x0)
syz_open_dev$sndctrl(0x0, 0xfffffffd, 0x0)
r1 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
readv(r1, &(0x7f0000000240)=[{&(0x7f0000000040)=""/84, 0x9000}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r2 = getpid()
r3 = syz_open_dev$radio(&(0x7f0000000000), 0x3, 0x2)
ioctl$VIDIOC_SUBSCRIBE_EVENT(r3, 0x4020565a, &(0x7f0000000140)={0x3, 0x98f90f, 0x1})
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000100)=r2, 0x12)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
close_range(r0, 0xffffffffffffffff, 0x0)
mount$9p_tcp(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=tcp,port=0x'])

5.603791865s ago: executing program 0 (id=1201):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x8000001, 0x0, 0x3, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r3}, 0x10)
r4 = syz_open_dev$vim2m(&(0x7f0000000400), 0x6, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r4, 0xc0f8565c, &(0x7f0000000540)={0x81, 0x9, 0x4, {0x1, @win={{0x1, 0x8, 0x10001, 0xe21b}, 0x1, 0xe, 0x0, 0x3, 0x0}}, 0x8})
r5 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f0000000140)={0x19})
ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f00000000c0)={0x19, 0x1})
process_vm_readv(r2, &(0x7f0000008400), 0x0, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0), 0x1c)
sendmmsg(0xffffffffffffffff, &(0x7f00000092c0), 0x4ff, 0x80fe)

4.888738417s ago: executing program 0 (id=1202):
ioperm(0x0, 0x2, 0x2)
syz_io_uring_setup(0x5b8, &(0x7f00000001c0)={0x0, 0x7b5f, 0x20, 0x3, 0xd4}, &(0x7f0000000240)=<r0=>0x0, &(0x7f0000000040))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000100)=0x8f19, 0x0, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
dup(r2)
socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_io_uring_setup(0x117, 0x0, &(0x7f0000000280), &(0x7f0000000200))
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000063c0)={0x18, 0x2c, 0x1, 0x70bd26, 0x25dfdbfc, {0x4}, [@typed={0x4, 0x1d}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000d}, 0x20000000)

4.888305425s ago: executing program 2 (id=1203):
r0 = syz_open_dev$I2C(0x0, 0x0, 0x0)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f0000000040)={0x1, 0xff, 0x7, 0x0})
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x800, 0x34324152, 0x2, 0xb, [{}, {}, {0xfffffffd}, {0xfffffffd}, {}, {0x0, 0x1000000}]}})
arch_prctl$ARCH_SET_CPUID(0x1012, 0x0)
arch_prctl$ARCH_SET_CPUID(0x1012, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
link(&(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='./file0\x00')
r2 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20)
recvmmsg(r2, &(0x7f0000000ec0)=[{{&(0x7f0000000700)=@vsock={0x28, 0x0, 0x0, @local}, 0x80, 0x0}, 0x1}], 0x1, 0x2020, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x10, &(0x7f0000000040)=@framed={{0x18, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x80}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x5}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0xa6}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
connect$l2tp6(r2, &(0x7f0000000f40)={0xa, 0x0, 0x0, @empty}, 0x20)
setsockopt$inet6_IPV6_HOPOPTS(r2, 0x29, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB='2\x00\x00\x00\x00x\x00'], 0x10)
sendmmsg$inet6(r2, &(0x7f0000000ac0)=[{{&(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c, 0x0}}], 0x17fd147c801ae9ab, 0x0)

3.946559498s ago: executing program 2 (id=1205):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x13, r2, 0x0)
r3 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000580)={'veth1_virt_wifi\x00', <r4=>0x0})
setsockopt$sock_int(r3, 0x1, 0x29, &(0x7f0000000000)=0x3, 0x4)
bind$packet(r3, &(0x7f0000000080)={0x11, 0x0, r4, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendto$packet(r3, &(0x7f00000002c0)="fb57975e267951722b395d37bac8", 0x5ee, 0x0, 0x0, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000540)=@filter={'filter\x00', 0xe, 0x1, 0x1a8, [], 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="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"]}, 0x18a)
r5 = socket$rds(0x15, 0x5, 0x0)
sendmsg$rds(r5, &(0x7f0000000900)={&(0x7f00000000c0)={0x2, 0x0, @private=0xa010102}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@fadd={0x58, 0x114, 0x6, {{0x0, 0x20001000}, 0x0, 0x0}}], 0x58}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), r3)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000280), 0x9)
r7 = openat$cgroup_procs(r6, &(0x7f0000000440)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r7, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_subtree(r8, &(0x7f0000000080), 0x2, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000040)=ANY=[@ANYBLOB='+pids'], 0x6)

3.883921904s ago: executing program 3 (id=1207):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x8000001, 0x0, 0x3, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r3}, 0x10)
r4 = syz_open_dev$vim2m(&(0x7f0000000400), 0x6, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r4, 0xc0f8565c, &(0x7f0000000540)={0x81, 0x9, 0x4, {0x1, @win={{0x1, 0x8, 0x10001, 0xe21b}, 0x1, 0xe, 0x0, 0x3, 0x0}}, 0x8})
r5 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f0000000140)={0x19})
ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f00000000c0)={0x19, 0x1})
process_vm_readv(r2, &(0x7f0000008400), 0x0, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0), 0x1c)
sendmmsg(0xffffffffffffffff, &(0x7f00000092c0), 0x4ff, 0x80fe)

3.832031012s ago: executing program 2 (id=1208):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xb}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000000c0))
syz_usbip_server_init(0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000180)=ANY=[@ANYBLOB="611230000000000061134c0000000000bf2000000000000015000200071b1700bd030100000000009500000000000000bc26080000000000bf67000000000000070300000fff0700670200000300000016060a000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a82983d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf719506d2d6b05fe7030586"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
unshare(0x20020680)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x40440, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
unshare(0x2a020480)

3.428139929s ago: executing program 0 (id=1209):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @pix_mp={0x0, 0x0, 0x34324152, 0x0, 0xa, [{}, {0x10}, {}, {}, {}, {}, {0xfffffffc}, {0x400000}], 0x0, 0x4}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/sys/net/ipv4/vs/lblcr_expiration\x00', 0x2, 0x0)
write$char_usb(r0, &(0x7f00000008c0)='-0', 0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, 0x0, 0x0)
eventfd(0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f0000000380)=""/138, 0x0})
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, 0x0)
unshare(0x44040000)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=0x1, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="01"])
r2 = syz_open_dev$amidi(&(0x7f0000000140), 0x2, 0x181)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r2, 0x40045731, &(0x7f0000000180))
r3 = memfd_create(&(0x7f0000000200)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90+\xd6\x05\r\x84\x87\x1c\b\xdb\xe2\x00\x00A\x90m\xb6&\xd0\x9d\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<\x83z\x80\x8fQ|\xf5d\x10\x10\xd7\x01M\x7fML\x18\'\x1a<\xfee7{l\x16}\xa0I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa\xe5!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D\x15E^7%8\x94y\x98\xf0l\xa0\'Q%\xd4\xda\xee\x81}\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd70\xa2\x17\xca\xde\x1b\xaa\xe0l\xfc\x85\x8fc\x1c{|e\x8bs\xb0\x85E\xce;p)\xf8\xa6\xaa&QC4V\x81\x04\xcf\xd2\x81\xdc\xdf\xd7<\x9f\x93\x8bX\xd4\xea\xb2\xff\b\x92\xc7\x00\xef\xff\x00\x93\x1f\x92\xa7dcY\x9c\x9e9O-\xfcF\xbb\xbd{:IR\xea\xd8$\xe2\xa0\xc2\x8b\x1a\xead\xb8\xe1:6\x15M\x1d\xdak\x8c\x909\xd8\xb3\x02\xe0\x04\x9c\xc2\x06|\xf0\x0f\xa6Y&r\x9b\xc7\x1d\xe7jDf\x87@\x8fg\x15RJwe\xe2\xdcunu\xff`\xa40\xce\xffB%\xe4k\xff\x8d\x06\x0e\x89\xd9DC\x9fF\x9c[M=\xe0^\xa8\xed)\xe8Z\xe8\x99&\x87\x04\xa4\t\xaa\xd8\xd6\xd5pG\xcb\xc4\x8b\xf7\xb8#\xcb\xd8|\xa5\xa6S\x8b\x8cv\xb7)\x02k\xf3L\x03\xbb\xfa\xe1\\\xf1\x8cUj\xd5\xa5\x88GL\xe7_\xfd\x17C=G\x0f\xe9u\x1d\xfeg\xfex\xcd\xaa\xad\x906\xd0sy\xc6T\x93\xae\xd5r\xc8G\xc5\xfdS\xff\x04:`\x1e\xe3;l\xcd&\xd4\xf4\x8eum\x04\x00~\xfa\x05', 0x0)
ftruncate(r3, 0x80079a0)
mmap(&(0x7f0000200000/0x400000)=nil, 0x400000, 0xb, 0x2012, r3, 0x0)
lseek(r3, 0x1003ff, 0x4)
socket$inet6_sctp(0xa, 0x1, 0x84)

2.660221286s ago: executing program 3 (id=1210):
socket(0x22, 0x2, 0x4)
sendmsg$TIPC_NL_MEDIA_SET(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000d80)=ANY=[@ANYBLOB="d002000020336b8b4844d745f5015a08ea24ff42cbb11607e2062c3d785e64854ac144dc4895f4490696cc665d92c28772607f356e362b373942f67261fb0f5e365ab059e795614576ea5cf6502871b6f6b862057773b5e7e4d646eb98f94c2694c0892c10b8c36045b209a376dd68f627ee3facc9467bc46b745d6480688933df7cbbd36dd9614f9bf7a7d10193e72709c176d69f5bbdde63083530cab14309e1942232f5a146ae", @ANYBLOB], 0x2d0}, 0x1, 0x0, 0x0, 0x4048850}, 0x40)
syz_open_dev$mouse(0x0, 0x0, 0x8042)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r2, 0x84, 0x81, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x4e21, @multicast2}], 0x10)
sendto$inet6(r2, &(0x7f0000000480), 0x0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0x8b}, 0x1c)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, 0x0, 0xed)
socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(0xffffffffffffffff, 0x0, 0x487, &(0x7f0000000240), &(0x7f0000000280)=0x30)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r3 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)
getdents64(r3, &(0x7f0000000300)=""/154, 0x9a)

2.274175924s ago: executing program 3 (id=1211):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0x19, 0x20000000, 0x0)
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000003000000000000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r0}, 0x10)
syz_emit_ethernet(0xfdef, 0x0, 0x0)
r1 = openat$null(0xffffffffffffff9c, 0x0, 0x0, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r2, &(0x7f0000000040)='./file0\x00', 0x0)
mount(&(0x7f0000000040)=@nbd={'/dev/nbd', 0x0}, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='xfs\x00', 0x0, &(0x7f0000000140)='grpquota')
syz_emit_ethernet(0x4a, &(0x7f0000000280)={@local, @broadcast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0a8435", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="200000001100010100"/20, @ANYRES32=r5, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x20}}, 0x0)
lseek(r1, 0x400, 0x0)

2.165632128s ago: executing program 3 (id=1212):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x8000001, 0x0, 0x3, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r3}, 0x10)
r4 = syz_open_dev$vim2m(&(0x7f0000000400), 0x6, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r4, 0xc0f8565c, &(0x7f0000000540)={0x81, 0x9, 0x4, {0x1, @win={{0x1, 0x8, 0x10001, 0xe21b}, 0x1, 0xe, 0x0, 0x3, 0x0}}, 0x8})
r5 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f0000000140)={0x19})
ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f00000000c0)={0x19, 0x1})
process_vm_readv(r2, &(0x7f0000008400), 0x0, 0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f00000002c0), 0x1c)
sendmmsg(0xffffffffffffffff, &(0x7f00000092c0), 0x4ff, 0x80fe)

2.098777551s ago: executing program 1 (id=1213):
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x40, 0x0)
syz_open_dev$ndb(&(0x7f0000000040), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$netlink(0x10, 0x3, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000880)=ANY=[@ANYBLOB="0900000006000000040000"], 0x48)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f00000003c0)="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", 0x202f, 0x0)
bpf$MAP_UPDATE_BATCH(0x1b, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000600), 0x0, 0x3ff, r1, 0x0, 0x100000000000000}, 0x38)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000000)={0x0, 0x5b, &(0x7f0000000200)={&(0x7f0000002440)=ANY=[@ANYBLOB="68000000000101040000000000000000020000000c000180060003400004000000000e80000002800000010088000000000003400000000000000280000001002f000000380006801400040000000000000000000000ffffe00000020400038000000500000000000000000000000000000000ff03000380000001004e220000000001004e210000000002004e220000"], 0x68}, 0x1, 0x0, 0x0, 0x20000004}, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x3, 0x0, 0x1, 0x0)
r3 = gettid()
timer_create(0xb, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = syz_open_dev$cec(&(0x7f0000000100), 0x0, 0x80)
ioctl$CEC_RECEIVE(r4, 0xc0386106, &(0x7f0000000000)={0x0, 0x0, 0x1, 0x0, 0x0, 0x9, '&\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe})

1.169082159s ago: executing program 1 (id=1214):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
getsockopt$inet_pktinfo(r1, 0x0, 0x8, &(0x7f0000000080)={<r2=>0x0, @broadcast, @private}, &(0x7f00000000c0)=0xc)
r3 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r3, &(0x7f0000000040)={0x2a, 0x1, 0x3fff}, 0xc)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r6=>0x0})
sendmsg$NL80211_CMD_FRAME(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f00000003c0)={0x74, r5, 0x1, 0x0, 0x25dfdbfc, {{}, {@val={0x8, 0x3, r6}, @void}}, [@NL80211_ATTR_FRAME={0x52, 0x33, @probe_response={{{0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x1}, {}, @device_b, @device_a, @initial, {0xb}}, 0x0, @random=0x3d, 0x10, @val={0x0, 0x6, @default_ibss_ssid}, @val, @void, @void, @val={0x6, 0x2, 0x7}, @val={0x2d, 0x1a, {0x8, 0x3, 0x2, 0x0, {0x6, 0xf, 0x0, 0xe, 0x0, 0x0, 0x0, 0x2}, 0x1, 0x3, 0x2}}, @void, @void}}, @NL80211_ATTR_DONT_WAIT_FOR_ACK={0x4}]}, 0x74}, 0x1, 0x0, 0x0, 0xba4820d6e6815606}, 0x0)
mq_timedreceive(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
write$binfmt_script(r3, 0x0, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x20, &(0x7f0000000100)={@remote, @empty, r2}, 0xc)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
io_uring_register$IORING_UNREGISTER_EVENTFD(r1, 0x5, 0x0, 0x0)
syz_clone3(&(0x7f0000001240)={0x2d000000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
socket$inet_sctp(0x2, 0x1, 0x84)
mbind(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x0, 0x0, 0x2)

1.162804193s ago: executing program 0 (id=1222):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x0, {}, [{0x50, 0x1, [@m_mpls={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)
r4 = fsopen(&(0x7f0000000000)='proc\x00', 0x0)
write$proc_mixer(0xffffffffffffffff, &(0x7f0000000500)=ANY=[@ANYBLOB="414c5450434d0a50484f4e45495220274d69632043617074757265272030303030303030303030303030303030303030300a50484f4e45494e20274d617374657230506c61796261636b20566f6c756d65272030303030303030303030303030303030303030300a4449474954414c33202743442730303030303030303030300a535045414b4552202743442720303030e125714606a90c463030303030300000000052"], 0xe6)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x1d2)
fsmount(r4, 0x0, 0x0)
r5 = socket$inet(0xa, 0x801, 0x84)
sendto$inet(r5, &(0x7f0000000080)='w', 0x34000, 0x0, &(0x7f00000000c0)={0x2, 0x0, @rand_addr=0x64010102}, 0x10)
r6 = socket$netlink(0x10, 0x3, 0x4)
writev(r6, &(0x7f0000000000)=[{&(0x7f0000000140)="480000001400190d09004beafd0d8c560a84476080ffe00600000000590000a2bc5603ca00000f7f89000000200000000101ff0000000309ff5bffff00c7e5ed5e00000000000000", 0x40b}], 0x1)

1.134810902s ago: executing program 2 (id=1215):
personality(0x5400004)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000700)=ANY=[@ANYBLOB="18020000fffdffff0000000000000000850000"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x40, @void, @value}, 0x94)
r0 = memfd_create(&(0x7f0000000940)='y\x105\xfb\xf7u\x83%\b\x00\x00\x00\x00\x00\x00\x00\xea_\xccZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x10\x00\x00\x00\x04\x879\xa24\xa9a\b\x00\xb2\xd3\xcbZJ\x7fa\xc4\x1acB\xaa\xc1\xfb Q\x96\xd9xJ2\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea\b\x00\x00\x00\x00\x00\x00\x00\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9V\x01A\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\x0f<\x91\xb0\xa8\x9eo\xebF(\a\x00\x01vRk\xaabB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\x80\x81\xa0\xa2-g\b\x99\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\xd5\xf3\\\x00\xbe]Et\xad*\xecn\x02\xc8\xc4\f\x04\x99\xf6\xfc\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xc8L\xae\x1ff\xcf\xb3\xb65\x12\x89\x02\x82t\x0f\xb0\xe89\x16\fO\x19\x91\xfd\x10\x0e\xa7r\x12\xab\xd4\xd1d\xad\f\x11\xb3\xb3c\xe2\xfe\xcd\x9f7\xa1\x14\xfa\xe2\xdf\x7f\xf4NG\xe3\xeb\x18\xde|\xb3\xf5S\x9a\x04\xb4Lry\xa9\xd6\xfb\xbc\n+N\xf7\xf6\x87\x95\xd9+\xd2sc/\x06\xaa#K3,k\xf3(\xcc\xc7\xb47\xfa\xc3\x1c\x91!\xd3\xd2`-\xa2xrR\x1c\x81i\x87u|29Q\xdf\xed\x10\x9b\x930\xa8v\xa0\x88\xa4t\x17\xb2\xca9\x02\x03\xc9P\xcc\xe0\xb7\x9c\x82\xb4\x03\x83e\xee\x95\xccO\x1b\x83\f\n{\xf3\x12\x90\xcf\x10\xb5>\b3\x80\x8d\xb2%7\x10\xeee\xe4\xc3\xb2^\xad\xb6~\xa2\xbdE\xbf\x91\vqt\x81\xbd\x19\xde\x81\tw\xd4p\xd1\x8aNJ\xb3M\a\xc4\xfa\xb0,$\x81j\xb4Hs\x93>\x16U\xd0t\xe4\xca0T\xb7\xf7\x9d4\b\xd9\xdeps\xec\xa0\nJ\xa5\xfe\xda{(\xee\xb5\x11?\xc3I-\x8bc\xc9\xfb\a\xe5\xab\xf8v1\xdc\xc5\x8c\xebs1\x81\xca\x81l\xa12\xff<\xf5\x12\xcc+\xd4\xab\x84\x16\xa4+\x0e\xd4\x02\xe3\xaa1\xeam\x8ce\xb4r\x0eo&3wff\xe6\x91\x7f\xba\xad\x05\xdd\xc0+\"\xa5\x80\'#\xfd\x9dA&\xee \x18\xe5\x17\x1bd\xd0\xb9\x90\xde\xec\xe4M\xe5\x06\x03r\fc\x8c\x10\x99x\xec`e`\xc3F\xdf\xbc\xa8\xff\x05\xe6\xea\xc3u\xd7\t\x88<\"\xf7!\xd6\x0e\xbbE^\xcd\xb0\x15g\xe6\xf2?y1\x9f\xd3\x95\xc4E\xd0\xb4\x16`r\x14\xad\x02\x17\x9a\x86I]\x02f\xd3\xc9\xe1H\xd7c\xcaQ\x8cE7\xcc\xcf=\xf3\xf7\xb9\xf6s\x88\bZi\b*w\xc5;\x88\r\xab\xa1\t\xf1\x02)5\x00\x84', 0xb)
ftruncate(r0, 0xffff)
fcntl$addseals(r0, 0x409, 0x7)
ftruncate(r0, 0x5)
mmap(&(0x7f0000552000/0x2000)=nil, 0x2000, 0x9, 0x10031, 0xffffffffffffffff, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
socketpair(0x18, 0x0, 0x2, &(0x7f0000000000))
r2 = syz_open_dev$I2C(&(0x7f0000000000), 0x0, 0x0)
ioctl$I2C_SMBUS(r2, 0x720, &(0x7f0000000180)={0x0, 0x0, 0x8, &(0x7f0000000140)={0x1, "96e67ad2d329458afe83c910c40800000000000000000000000000f000"}})
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000180)={0x18, 0x1401, 0x7fc32be5eb343aa7, 0x0, 0x80000, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x18}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
socket$kcm(0x2, 0xa, 0x2)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='io.stat\x00', 0x26e1, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x58, 0x2, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0xa}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x58}}, 0x0)
close(r4)
socket$packet(0x11, 0x3, 0x300)
ioctl$SIOCSIFHWADDR(r4, 0x8b1a, &(0x7f0000000000)={'wlan1\x00', @random="020000202000"})
openat$fuse(0xffffff9c, &(0x7f0000000000), 0x2, 0x0)

830.424362ms ago: executing program 3 (id=1216):
socket(0x2000000000000021, 0x2, 0x10000000000002)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$sg(&(0x7f0000000180), 0x239, 0x4000)
ioctl$SG_SET_RESERVED_SIZE(r3, 0x2275, &(0x7f00000001c0)=0x1000)
r4 = fsopen(&(0x7f0000000380)='9p\x00', 0x0)
r5 = syz_open_dev$ttys(0xc, 0x2, 0x1)
ioctl$TIOCGPKT(r5, 0x80045438, &(0x7f0000000440))
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000000)='\x00>\xe7\xad\xc26\x86.\xa5\xd7\xb6\xc5{\xad\xe6\n\x14\xb7\xf8\x92\xd6Q\xc8)\xd4\x96\xe1', &(0x7f0000000300)='{}p\xa53\x87\xe4\x93-k\x89D\xf8\xef\xc8l\x1c0k%@\x00\xb1\x03e\x16\xac\x8f9\x14\xf4h\x9e\xc9\xe4\xe70V\xb0t\x99+\xae\x18\xb0\xf0\"\xe1\xd1q\xf76\x9e\x02\xab\xea\x03\xc8E\xd2*MtX\xb2\x8e\x8d>\x13\x17I\xb7*\xce\xc4N[xW\xcc\xd6\x91)2Y\xea\xf1\x0f\xc2-\xf3\x87u\xe9\xa4t\xd0\x88\xfd\x8a\xd1\xc3\xbb\x04=\xf9Zo\xe7e+_\xe5\xd0\x8f>\x8c\xa4;\xba-\xf9\xb4I\x9c', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
gettid()
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYRES8], 0x7c}}, 0x40898)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)

806.15443ms ago: executing program 2 (id=1217):
socket(0x10, 0x400000000080803, 0x0)
r0 = userfaultfd(0x801)
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
futex(0x0, 0x80000000000b, 0x0, 0x0, 0x0, 0x0)
futex(0x0, 0x3, 0x0, 0x0, &(0x7f0000048000), 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r3 = dup(r2)
write$6lowpan_enable(r3, &(0x7f0000000000)='0', 0xfffffd2c)
openat$tun(0xffffffffffffff9c, 0x0, 0x48241, 0x0)
close(0xffffffffffffffff)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(0xffffffffffffffff, 0x9)
socket$inet_mptcp(0x2, 0x1, 0x106)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x1})
r4 = openat$rdma_cm(0xffffff9c, &(0x7f0000002500), 0x2, 0x0)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r4, &(0x7f00000026c0)={0x15, 0x110, 0xfa00, {0xffffffffffffffff, 0x1d6c9b1c, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @broadcast}, @in6={0xa, 0x4e22, 0x9, @empty, 0x9}}}, 0x118)
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})

662.800734ms ago: executing program 1 (id=1218):
getgroups(0x3, &(0x7f0000000c80)=[<r0=>0xee01, <r1=>0xee00, <r2=>0xffffffffffffffff])
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x70bd2a, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz0\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'bond0\x00'}}]}, 0x85}, 0x1, 0x0, 0x0, 0x4000840}, 0x24004000)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f00005f5000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000300)={0x2, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, [@sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000}]}, 0x20}}, 0x140)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
r6 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000180)={<r7=>0xffffffffffffffff}, 0x2}}, 0x20)
write$RDMA_USER_CM_CMD_SET_OPTION(r6, &(0x7f0000000200)={0xe, 0x18, 0xfa00, @id_resuseaddr={&(0x7f0000000000), r7, 0x0, 0x1, 0x4}}, 0x20)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
r8 = openat$nmem0(0xffffff9c, &(0x7f0000000440), 0x10000, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_PARAMS(r8, 0xc0205710, &(0x7f0000000480)={0x1, 0x4, 0x2, 0x0, 0x3})
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x111, 0x2}}, 0x20)
sendmsg$RDMA_NLDEV_CMD_PORT_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=ANY=[@ANYBLOB="200000000414010026bd7000ffdbdf2508000100000000000800"], 0x20}, 0x1, 0x0, 0x0, 0x20048000}, 0x20000000)
r9 = syz_open_dev$video(&(0x7f0000000040), 0x4, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r9, 0xc0185649, &(0x7f0000000140)={0x0, 0x200, 0x4001, 0xffffffffffffffff, 0x0, &(0x7f0000000100)={0xa10907, 0x0, '\x00', @value64=0x1ff}})
setresgid(r2, r0, r1)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[@ANYRESOCT=r9], 0x28}}, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03002a", 0x5}], 0x1, 0x0, 0x0, 0x8100000}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r10 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$ARPT_SO_SET_REPLACE(r10, 0xa02000000000000, 0x60, &(0x7f0000000000)={'filter\x00', 0x1002, 0x4, 0x3ac, 0x0, 0x0, 0x0, 0x2cc, 0x2cc, 0x2cc, 0x7fffffe, 0x0, {[{{@uncond, 0xbc, 0xe0}, @unspec=@STANDARD={0x24, '\x00', 0x0, 0xe0}}, {{@uncond, 0xbc, 0x10c}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@multicast, @rand_addr=0x64010102, @rand_addr=0x64010101, 0x4}}}, {{@arp={@remote, @remote, 0xff000000, 0x80800000, 0x6, 0x4, {@mac=@multicast, {[0x0, 0x0, 0x0, 0x0, 0xff, 0xff]}}, {@mac=@local, {[0x0, 0xff, 0x0, 0xff, 0x0, 0xff]}}, 0x6, 0x81, 0x1, 0x1, 0xd13, 0xe106, 'pimreg1\x00', 'veth1_virt_wifi\x00', {0xff}, {0xff}, 0x0, 0x119}, 0xbc, 0xe0}, @unspec=@NFQUEUE0={0x24, 'NFQUEUE\x00', 0x0, {0xfff9}}}], {{'\x00', 0xbc, 0xe0}, {0x24}}}}, 0x3f8)

448.499904ms ago: executing program 2 (id=1219):
r0 = socket$alg(0x26, 0x5, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x2, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32, @ANYBLOB="08001b"], 0x34}}, 0x4004010)
bind$alg(r0, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000140)="2c385aa3d49100dc6626c892b6bc436a", 0x10)
r5 = accept4(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r5, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)=[@assoc={0x18, 0x117, 0x4, 0x204}], 0x18}, 0x0)
sendmsg$nl_route_sched_retired(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000012100), 0xe078}}, 0x0)
recvmmsg(r5, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000001ac0)=[{&(0x7f0000000300)=""/222, 0xde}, {&(0x7f0000000840)=""/134, 0x86}, {&(0x7f0000000400)=""/115, 0x73}, {&(0x7f0000000540)=""/34, 0x22}, {&(0x7f00000004c0)=""/21, 0x15}], 0x5}}], 0x1, 0x0, 0x0)

248.409249ms ago: executing program 0 (id=1220):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x8000001, 0x0, 0x3, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
mkdir(&(0x7f00000000c0)='./file0\x00', 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r3}, 0x10)
r4 = syz_open_dev$vim2m(&(0x7f0000000400), 0x6, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r4, 0xc0f8565c, &(0x7f0000000540)={0x81, 0x9, 0x4, {0x1, @win={{0x1, 0x8, 0x10001, 0xe21b}, 0x1, 0xe, 0x0, 0x3, 0x0}}, 0x8})
r5 = openat$fb1(0xffffffffffffff9c, &(0x7f0000000040), 0x80000, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f0000000140)={0x19})
ioctl$FBIOPUT_CON2FBMAP(r5, 0x4610, &(0x7f00000000c0)={0x19, 0x1})
process_vm_readv(r2, &(0x7f0000008400), 0x0, 0x0, 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0)

84.010956ms ago: executing program 1 (id=1221):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
ioctl$VIDIOC_EXPBUF(r1, 0xc0405610, &(0x7f00000001c0)={0x9, 0x6, 0x3, 0x4800})
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x3, 0x0, @loopback}, 0x1c)
r2 = openat$sndtimer(0xffffff9c, &(0x7f0000000000), 0x40000)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=@RTM_NEWMDB={0x18, 0x55, 0x1e5, 0x0, 0x0, {0x7, r5}}, 0x18}}, 0x0)
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r2, 0x54a2)
r6 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382)
r7 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x0)
pwritev(r7, &(0x7f0000000440)=[{0x0}, {0x0}, {0x0}], 0x3, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r6, 0x4c00, r7)
ioctl$LOOP_SET_BLOCK_SIZE(r6, 0x4c09, 0x1)
ioctl$LOOP_SET_STATUS(r6, 0x4c02, 0x0)
syz_emit_ethernet(0x6a, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], 0x0)
ioctl$LOOP_GET_STATUS(r6, 0x4c03, &(0x7f0000000040))
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='nv\x00', 0x3)
shutdown(r0, 0x2)

0s ago: executing program 3 (id=1223):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
preadv(r3, 0x0, 0x0, 0x0, 0x0)
socket$nl_sock_diag(0x10, 0x3, 0x4)
sendto$packet(0xffffffffffffffff, &(0x7f00000000c0)="3f030e0033e6120306001e0089e9aaa911d7c2290f0086dd1327c9167c64114a1b7880610cc96655b1b141ab059b24d0fbc50df71548a3f6c5609063382a0c1511fdf9435e3ffe46", 0xe94f, 0x0, &(0x7f0000000540)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
recvmmsg(0xffffffffffffffff, &(0x7f0000000080)=[{{0x0, 0x0, &(0x7f0000003e00)=[{&(0x7f0000000280)=""/4096, 0x1000}], 0x1}}], 0x1, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r4, &(0x7f0000000240)={0xa, 0x0, 0x0, @dev, 0x2}, 0x1c)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
sendmmsg$inet6(r4, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:3149' (ED25519) to the list of known hosts.
[   41.566699][ T5934] cgroup: Unknown subsys name 'net'
[   41.705284][ T5934] cgroup: Unknown subsys name 'cpuset'
[   41.710661][ T5934] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   42.544873][ T5934] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.172543][ T5299] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   45.183854][ T5947] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   45.186880][ T5947] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   45.189914][ T5947] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   45.196009][ T5955] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   45.198889][ T5955] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   45.201729][ T5955] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   45.204267][ T5955] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   45.206889][ T5955] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   45.209082][ T5955] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   45.212053][ T5955] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   45.214866][ T5955] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   45.217896][ T5959] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   45.220669][ T5957] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   45.221870][ T5959] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   45.222989][ T5957] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   45.225775][ T5959] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   45.227916][ T5957] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   45.232602][ T5957] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   45.236060][ T5957] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   45.238390][ T5958] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   45.249418][ T5955] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   45.253876][ T5955] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   45.256754][ T5955] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   45.458533][ T5952] chnl_net:caif_netlink_parms(): no params data found
[   45.467576][ T5945] chnl_net:caif_netlink_parms(): no params data found
[   45.524873][ T5954] chnl_net:caif_netlink_parms(): no params data found
[   45.601134][ T5949] chnl_net:caif_netlink_parms(): no params data found
[   45.653465][ T5952] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.656354][ T5952] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.659315][ T5952] bridge_slave_0: entered allmulticast mode
[   45.662987][ T5952] bridge_slave_0: entered promiscuous mode
[   45.668134][ T5952] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.670886][ T5952] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.674152][ T5952] bridge_slave_1: entered allmulticast mode
[   45.677157][ T5952] bridge_slave_1: entered promiscuous mode
[   45.697411][ T5945] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.700190][ T5945] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.703009][ T5945] bridge_slave_0: entered allmulticast mode
[   45.706015][ T5945] bridge_slave_0: entered promiscuous mode
[   45.749661][ T5952] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.753364][ T5945] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.755487][ T5945] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.757571][ T5945] bridge_slave_1: entered allmulticast mode
[   45.759771][ T5945] bridge_slave_1: entered promiscuous mode
[   45.770325][ T5954] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.772636][ T5954] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.774697][ T5954] bridge_slave_0: entered allmulticast mode
[   45.776827][ T5954] bridge_slave_0: entered promiscuous mode
[   45.804356][ T5952] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.817541][ T5954] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.819803][ T5954] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.822851][ T5954] bridge_slave_1: entered allmulticast mode
[   45.825762][ T5954] bridge_slave_1: entered promiscuous mode
[   45.856361][ T5945] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.876989][ T5949] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.879167][ T5949] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.881239][ T5949] bridge_slave_0: entered allmulticast mode
[   45.883660][ T5949] bridge_slave_0: entered promiscuous mode
[   45.900715][ T5945] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.905186][ T5954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   45.907915][ T5949] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.909968][ T5949] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.912445][ T5949] bridge_slave_1: entered allmulticast mode
[   45.914591][ T5949] bridge_slave_1: entered promiscuous mode
[   45.918155][ T5952] team0: Port device team_slave_0 added
[   45.953397][ T5954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   45.969813][ T5952] team0: Port device team_slave_1 added
[   45.995303][ T5945] team0: Port device team_slave_0 added
[   46.021901][ T5952] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.023928][ T5952] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.032060][ T5952] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.038156][ T5945] team0: Port device team_slave_1 added
[   46.065191][ T5949] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.068992][ T5952] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.071523][ T5952] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.080967][ T5952] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.099619][ T5954] team0: Port device team_slave_0 added
[   46.104395][ T5949] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.132693][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.134913][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.142517][ T5945] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.147354][ T5954] team0: Port device team_slave_1 added
[   46.164407][ T5949] team0: Port device team_slave_0 added
[   46.167086][ T5945] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.169082][ T5945] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.176485][ T5945] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.199809][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.202508][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.213598][ T5954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.219968][ T5949] team0: Port device team_slave_1 added
[   46.233023][ T5954] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.235609][ T5954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.245003][ T5954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.264221][ T5952] hsr_slave_0: entered promiscuous mode
[   46.266872][ T5952] hsr_slave_1: entered promiscuous mode
[   46.284973][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_0
[   46.287362][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.296134][ T5949] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   46.309657][ T5949] batman_adv: batadv0: Adding interface: batadv_slave_1
[   46.312513][ T5949] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   46.321066][ T5949] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   46.341039][ T5945] hsr_slave_0: entered promiscuous mode
[   46.343933][ T5945] hsr_slave_1: entered promiscuous mode
[   46.346636][ T5945] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.349918][ T5945] Cannot create hsr debugfs directory
[   46.449600][ T5954] hsr_slave_0: entered promiscuous mode
[   46.453753][ T5954] hsr_slave_1: entered promiscuous mode
[   46.456260][ T5954] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.459081][ T5954] Cannot create hsr debugfs directory
[   46.467773][ T5949] hsr_slave_0: entered promiscuous mode
[   46.470889][ T5949] hsr_slave_1: entered promiscuous mode
[   46.473311][ T5949] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   46.475841][ T5949] Cannot create hsr debugfs directory
[   46.720287][ T5952] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   46.728480][ T5952] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   46.735757][ T5952] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   46.742560][ T5952] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   46.758257][ T5945] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   46.765987][ T5945] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   46.772720][ T5945] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   46.778538][ T5945] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   46.813536][ T5949] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   46.816890][ T5949] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   46.834053][ T5949] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   46.839230][ T5949] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   46.866020][ T5954] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   46.869718][ T5954] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   46.874013][ T5954] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   46.878208][ T5954] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   46.935438][ T5945] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.942786][ T5952] 8021q: adding VLAN 0 to HW filter on device bond0
[   46.972168][ T5945] 8021q: adding VLAN 0 to HW filter on device team0
[   46.976265][ T5952] 8021q: adding VLAN 0 to HW filter on device team0
[   46.984923][  T217] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.987066][  T217] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.996201][  T217] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.998863][  T217] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.004435][  T217] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.007281][  T217] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.014423][ T1143] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.017032][ T1143] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.035908][ T5954] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.058917][ T5949] 8021q: adding VLAN 0 to HW filter on device bond0
[   47.063501][ T5954] 8021q: adding VLAN 0 to HW filter on device team0
[   47.072912][  T217] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.075762][  T217] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.083951][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.086879][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.099595][ T5949] 8021q: adding VLAN 0 to HW filter on device team0
[   47.113004][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.115117][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.123998][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.126612][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.147721][ T5954] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   47.153490][ T5954] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   47.178420][ T5949] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   47.181792][ T5949] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   47.235947][ T5952] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.253089][ T5955] Bluetooth: hci2: command tx timeout
[   47.253146][ T5947] Bluetooth: hci0: command tx timeout
[   47.256430][ T5299] Bluetooth: hci3: command tx timeout
[   47.267507][ T5945] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.283272][ T5952] veth0_vlan: entered promiscuous mode
[   47.289159][ T5949] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.294691][ T5954] 8021q: adding VLAN 0 to HW filter on device batadv0
[   47.315813][ T5952] veth1_vlan: entered promiscuous mode
[   47.332133][ T5299] Bluetooth: hci1: command tx timeout
[   47.338464][ T5945] veth0_vlan: entered promiscuous mode
[   47.344871][ T5949] veth0_vlan: entered promiscuous mode
[   47.349187][ T5945] veth1_vlan: entered promiscuous mode
[   47.363997][ T5949] veth1_vlan: entered promiscuous mode
[   47.369550][ T5952] veth0_macvtap: entered promiscuous mode
[   47.373451][ T5952] veth1_macvtap: entered promiscuous mode
[   47.376403][ T5954] veth0_vlan: entered promiscuous mode
[   47.390762][ T5945] veth0_macvtap: entered promiscuous mode
[   47.395486][ T5954] veth1_vlan: entered promiscuous mode
[   47.403764][ T5945] veth1_macvtap: entered promiscuous mode
[   47.407383][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.413497][ T5949] veth0_macvtap: entered promiscuous mode
[   47.418088][ T5949] veth1_macvtap: entered promiscuous mode
[   47.425637][ T5952] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.437468][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.442113][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.446612][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.459589][ T5949] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.464297][ T5949] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.468369][ T5949] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.471985][ T5952] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.474927][ T5952] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.477755][ T5952] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.480553][ T5952] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.486038][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.489287][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.493063][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.496111][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.499970][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.504474][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.507833][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.510946][ T5945] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.516759][ T5945] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.525092][ T5945] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.532402][ T5945] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.536141][ T5945] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.539703][ T5945] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.543591][ T5945] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.565288][ T5954] veth0_macvtap: entered promiscuous mode
[   47.568870][ T5949] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.572429][ T5949] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.576104][ T5949] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.580168][ T5949] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.596986][ T5954] veth1_macvtap: entered promiscuous mode
[   47.632630][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.635630][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.638439][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.642441][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.645517][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   47.648471][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.655130][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_0
[   47.666850][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.669825][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.673548][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.676548][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.679305][ T5954] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   47.682634][ T5954] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   47.685874][ T5954] batman_adv: batadv0: Interface activated: batadv_slave_1
[   47.690629][ T5954] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   47.690797][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.693240][ T5954] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   47.693269][ T5954] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   47.695833][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.698179][ T5954] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   47.719061][  T217] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.722816][  T217] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.726633][ T1173] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.729446][ T1173] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.735120][ T1173] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.737386][ T1173] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.755211][  T217] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.757614][  T217] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.767632][ T1143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.771310][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.788574][ T1173] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.788608][ T5945] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   47.795175][ T1173] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   47.798150][ T1173] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   47.800439][ T1173] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.391448][ T6026] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[   49.052610][ T6037] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   49.311557][ T6044] Cannot find add_set index 3 as target
[   49.339179][ T5299] Bluetooth: hci0: command tx timeout
[   49.342346][ T5299] Bluetooth: hci3: command tx timeout
[   49.344265][ T5299] Bluetooth: hci2: command tx timeout
[   49.396919][    C0] hrtimer: interrupt took 40809 ns
[   49.411586][ T5947] Bluetooth: hci1: command tx timeout
[   49.836990][ T6054] tipc: Started in network mode
[   49.838767][ T6054] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[   49.845580][ T6054] tipc: Enabled bearer <eth:team0>, priority 0
[   49.931451][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.934727][    T0] NOHZ tick-stop error: local softirq work is pending, handler #240!!!
[   49.941688][ T6058] loop2: detected capacity change from 0 to 524287999
[   49.950887][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[   49.953439][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.393655][   T39] audit: type=1800 audit(1737315541.035:2): pid=6065 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.14" name="bus" dev="overlay" ino=46 res=0 errno=0
[   50.548176][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   50.571553][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   50.581624][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.590294][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.595959][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.600250][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   50.957237][ T6073] vlan2: entered allmulticast mode
[   50.962666][ T6073] bond0: entered allmulticast mode
[   50.964581][ T6073] bond_slave_0: entered allmulticast mode
[   50.966565][ T6073] bond_slave_1: entered allmulticast mode
[   50.970365][ T6073] bond0: left allmulticast mode
[   50.972127][ T6073] bond_slave_0: left allmulticast mode
[   50.973984][ T6073] bond_slave_1: left allmulticast mode
[   50.982663][   T35] tipc: Node number set to 11578026
[   51.107273][ T6073] hub 9-0:1.0: USB hub found
[   51.109197][ T6073] hub 9-0:1.0: 1 port detected
[   51.407982][ T6082] netlink: 28 bytes leftover after parsing attributes in process `syz.0.21'.
[   51.422497][ T5947] Bluetooth: hci2: command tx timeout
[   51.437908][ T5947] Bluetooth: hci3: command tx timeout
[   51.456794][ T6085] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode
[   51.460412][ T6085] macvtap1: entered promiscuous mode
[   51.463562][ T6085] macvtap1: entered allmulticast mode
[   51.465847][ T6085] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode
[   51.470252][ T6085] mac80211_hwsim hwsim8 wlan0: left allmulticast mode
[   51.472768][ T6085] mac80211_hwsim hwsim8 wlan0: left promiscuous mode
[   51.501444][ T5299] Bluetooth: hci1: command tx timeout
[   51.906202][ T6091] netlink: zone id is out of range
[   51.908351][ T6091] netlink: zone id is out of range
[   51.910168][ T6091] netlink: zone id is out of range
[   52.223295][ T6094] Zero length message leads to an empty skb
[   52.550435][ T6098] evm: overlay not supported
[   52.851132][ T6103] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   53.212224][ T6113] ptrace attach of "/syz-executor exec"[5945] was attempted by "/syz-executor exec"[6113]
[   53.491960][ T5299] Bluetooth: hci3: command tx timeout
[   53.493744][ T5299] Bluetooth: hci2: command tx timeout
[   53.581391][ T5947] Bluetooth: hci1: command tx timeout
[   53.733976][ T6142] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   53.810274][ T6145] netlink: 'syz.2.30': attribute type 10 has an invalid length.
[   53.892592][ T6147] netlink: 'syz.2.30': attribute type 10 has an invalid length.
[   54.008361][ T5299] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[   54.013388][ T5299] Bluetooth: hci0: Injecting HCI hardware error event
[   54.016238][ T5299] Bluetooth: hci0: hardware error 0x00
[   54.045596][ T6145] team0: Port device netdevsim0 added
[   54.056447][ T6147] team0: Port device netdevsim0 removed
[   54.060457][ T6147] bond0: (slave netdevsim0): Enslaving as an active interface with an up link
[   54.110820][ T6142] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.173989][ T6149] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   54.263045][ T6142] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.534606][ T6142] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   54.724795][ T6142] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   54.733360][ T6142] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   54.738866][ T6142] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   54.754108][ T6142] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   55.523588][ T6183] syz.3.34: attempt to access beyond end of device
[   55.523588][ T6183] nbd3: rw=4096, sector=0, nr_sectors = 1 limit=0
[   55.527830][ T6183] XFS (nbd3): SB validate failed with error -5.
[   55.594620][ T6189] vxcan1: tx address claim with dlc 1
[   55.681507][ T5955] Bluetooth: hci1: command 0x0406 tx timeout
[   56.141370][ T5299] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[   57.019609][ T6213] netlink: 12 bytes leftover after parsing attributes in process `syz.0.42'.
[   59.389896][ T6256] input: syz0 as /devices/virtual/input/input5
[   59.608773][ T6256] syz_tun: entered allmulticast mode
[   59.628583][ T6256] syz_tun: left allmulticast mode
[   59.997770][ T6268] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   60.000641][ T6268] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[   60.003486][ T6268] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   60.041887][ T6267] syz.0.55 uses obsolete (PF_INET,SOCK_PACKET)
[   60.053588][ T6267] 9pnet_fd: Insufficient options for proto=fd
[   62.591342][ T6303] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input6
[   64.211060][ T6329] netlink: 4 bytes leftover after parsing attributes in process `syz.1.71'.
[   64.895543][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[   65.262196][ T6346] overlayfs: missing 'lowerdir'
[   65.566061][ T6364] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3738224872 (478492783616 ns) > initial count (91121186304 ns). Using initial count to start timer.
[   65.595635][ T6364] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[   65.671104][ T6375] xt_TCPMSS: Only works on TCP SYN packets
[   65.677699][ T6374] netlink: 4 bytes leftover after parsing attributes in process `syz.2.76'.
[   65.897859][ T5843] hid (null): unknown global tag 0xe
[   65.899608][ T5843] hid (null): unknown global tag 0xe
[   65.903231][ T5843] hid (null): unknown global tag 0xc
[   65.906066][ T5843] hid (null): unknown global tag 0xd
[   65.912429][ T5843] hid-generic 0000:0004:00A9.0002: unknown main item tag 0x0
[   65.915305][ T5843] hid-generic 0000:0004:00A9.0002: unknown global tag 0xe
[   65.917414][ T5843] hid-generic 0000:0004:00A9.0002: item 0 2 1 14 parsing failed
[   65.920005][ T5843] hid-generic 0000:0004:00A9.0002: probe with driver hid-generic failed with error -22
[   66.664619][ T6394] netlink: 44 bytes leftover after parsing attributes in process `syz.0.82'.
[   66.667834][ T6394] netlink: 59 bytes leftover after parsing attributes in process `syz.0.82'.
[   70.775098][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[   70.777313][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[   73.009025][ T6439] syz.1.88[6439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.009099][ T6439] syz.1.88[6439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.012691][ T6439] syz.1.88[6439] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   73.023380][ T6439] random: crng reseeded on system resumption
[   75.453140][ T6490] ip6gretap0: entered promiscuous mode
[   77.505371][ T6524] netlink: 8 bytes leftover after parsing attributes in process `syz.0.108'.
[   78.277299][ T6529] netlink: 'syz.1.110': attribute type 39 has an invalid length.
[   78.741393][  T836] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   78.923845][  T836] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   78.944134][  T836] usb 8-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   78.956704][  T836] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   78.968387][  T836] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   78.983270][ T6531] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[   78.991839][  T836] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[   79.175878][ T6549] netlink: 12 bytes leftover after parsing attributes in process `syz.1.114'.
[   79.270710][  T143] usb 8-1: USB disconnect, device number 2
[   80.099385][ T6092] hid (null): unknown global tag 0xe
[   80.100996][ T6092] hid (null): unknown global tag 0xe
[   80.103004][ T6092] hid (null): unknown global tag 0xc
[   80.104550][ T6092] hid (null): unknown global tag 0xd
[   80.106879][ T6092] hid-generic 0000:0004:00A9.0003: unknown main item tag 0x0
[   80.109015][ T6092] hid-generic 0000:0004:00A9.0003: unknown global tag 0xe
[   80.110994][ T6092] hid-generic 0000:0004:00A9.0003: item 0 2 1 14 parsing failed
[   80.113761][ T6092] hid-generic 0000:0004:00A9.0003: probe with driver hid-generic failed with error -22
[   81.031381][   T63] cfg80211: failed to load regulatory.db
[   81.943654][ T6589] netlink: 4 bytes leftover after parsing attributes in process `syz.0.124'.
[   81.947749][ T6589] netlink: 12 bytes leftover after parsing attributes in process `syz.0.124'.
[   82.123870][ T6592] netlink: 40 bytes leftover after parsing attributes in process `syz.2.125'.
[   82.136207][ T6592] netlink: 40 bytes leftover after parsing attributes in process `syz.2.125'.
[   82.461482][ T6598] netdevsim netdevsim2: Direct firmware load for .
[   82.461482][ T6598]  failed with error -2
[   82.480811][ T6598] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[   82.480811][ T6598] 
[   82.811583][ T6612] can0: slcan on pts0.
[   83.095656][ T6612] can0 (unregistered): slcan off pts0.
[   83.264566][ T6631] tipc: Started in network mode
[   83.266292][ T6631] tipc: Node identity ffffffff, cluster identity 4711
[   83.268283][ T6631] tipc: Node number set to 4294967295
[   83.537364][ T6640] netlink: 'syz.3.132': attribute type 1 has an invalid length.
[   83.556297][ T6640] 8021q: adding VLAN 0 to HW filter on device bond1
[   83.599680][ T6636] bond1: (slave gretap1): making interface the new active one
[   83.603717][ T6636] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   84.855855][ T6658] netlink: 40 bytes leftover after parsing attributes in process `syz.3.135'.
[   84.861174][ T6658] netlink: 40 bytes leftover after parsing attributes in process `syz.3.135'.
[   84.947995][ T6661] syz.3.136[6661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.948043][ T6661] syz.3.136[6661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.951702][ T6661] syz.3.136[6661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   84.960503][ T6661] random: crng reseeded on system resumption
[   85.499474][ T6675] netdevsim netdevsim0: Direct firmware load for .
[   85.499474][ T6675]  failed with error -2
[   85.502497][ T6675] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[   85.502497][ T6675] 
[   86.522243][ T6693] netlink: 'syz.1.142': attribute type 1 has an invalid length.
[   86.540559][ T6693] 8021q: adding VLAN 0 to HW filter on device bond1
[   86.558108][ T6693] bond1: (slave gretap1): making interface the new active one
[   86.562095][ T6693] bond1: (slave gretap1): Enslaving as an active interface with an up link
[   86.776577][ T6701] netlink: 4 bytes leftover after parsing attributes in process `syz.1.143'.
[   86.780216][ T6701] netlink: 12 bytes leftover after parsing attributes in process `syz.1.143'.
[   87.204014][ T6710] syz.2.146[6710] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.204088][ T6710] syz.2.146[6710] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.208335][ T6710] syz.2.146[6710] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   87.219066][ T6710] random: crng reseeded on system resumption
[   88.060521][ T6725] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.174380][ T6725] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.232506][ T6725] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.302466][ T6725] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.417282][ T6725] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.430562][ T6725] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.445037][ T6725] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.468750][ T6725] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.923926][ T6738] netdevsim netdevsim3: Direct firmware load for .
[   88.923926][ T6738]  failed with error -2
[   88.927113][ T6738] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[   88.927113][ T6738] 
[   90.487438][ T6753] syz.2.157 (6753) used greatest stack depth: 21168 bytes left
[   90.641194][ T6775] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.788043][ T6775] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.886756][ T6775] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   90.953755][ T6775] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   91.042605][ T6775] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.049870][ T6775] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.057489][ T6775] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.064414][ T6775] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   92.586371][ T6810] netlink: 12 bytes leftover after parsing attributes in process `syz.0.167'.
[   94.585659][ T6848] netlink: 4 bytes leftover after parsing attributes in process `syz.2.177'.
[   94.589135][ T6848] netlink: 12 bytes leftover after parsing attributes in process `syz.2.177'.
[   96.558287][ T6881] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.639278][ T6881] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.788725][ T6881] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.884242][ T6881] bond0: (slave netdevsim0): Releasing backup interface
[   96.889313][ T6881] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.023131][ T6881] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.035275][ T6881] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.042821][ T6881] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.056425][ T6881] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   98.791992][ T6923] ptrace attach of "/syz-executor exec"[5952] was attempted by "/syz-executor exec"[6923]
[   98.900547][ T6922] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   98.905382][ T6922] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   99.060667][ T6927] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(4)
[   99.063244][ T6927] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   99.067449][ T6927] vhci_hcd vhci_hcd.0: Device attached
[   99.272844][  T836] vhci_hcd: vhci_device speed not set
[   99.333216][  T836] usb 43-1: new full-speed USB device number 2 using vhci_hcd
[  100.559460][ T6928] vhci_hcd: connection reset by peer
[  100.563995][ T1143] vhci_hcd: stop threads
[  100.567371][ T1143] vhci_hcd: release socket
[  100.572707][ T1143] vhci_hcd: disconnect device
[  102.454862][ T6994] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(4)
[  102.456766][ T6994] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  102.459935][ T6994] vhci_hcd vhci_hcd.0: Device attached
[  102.651743][    T9] vhci_hcd: vhci_device speed not set
[  102.711334][    T9] usb 37-1: new full-speed USB device number 2 using vhci_hcd
[  103.628719][ T7010] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.704522][ T7010] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.834495][ T7010] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.895727][ T7010] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.026737][ T7016] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input7
[  104.211435][ T6995] vhci_hcd: connection reset by peer
[  104.225818][  T217] vhci_hcd: stop threads
[  104.227907][  T217] vhci_hcd: release socket
[  104.232304][  T217] vhci_hcd: disconnect device
[  104.277573][ T7010] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  104.290106][ T7010] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  104.302182][ T7010] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  104.313799][ T7010] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  104.461403][  T836] vhci_hcd: vhci_device speed not set
[  104.752716][ T7035] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.795373][ T7035] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.845564][ T7035] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.958462][ T7035] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.739340][ T7045] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  105.741985][ T7045] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  105.744651][ T7045] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  106.097485][ T7052] xt_TCPMSS: Only works on TCP SYN packets
[  106.483984][ T7056] netlink: 'syz.1.222': attribute type 12 has an invalid length.
[  106.983321][ T7068] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[  106.985292][ T7068] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  106.987583][ T7068] vhci_hcd vhci_hcd.0: Device attached
[  107.369020][ T7074] netlink: 4 bytes leftover after parsing attributes in process `syz.3.228'.
[  107.401607][  T836] vhci_hcd: vhci_device speed not set
[  107.513679][  T836] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[  107.628691][ T7081] netlink: 'syz.0.229': attribute type 39 has an invalid length.
[  107.801175][   T39] audit: type=1800 audit(1737315598.435:3): pid=7082 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.230" name="bus" dev="overlay" ino=347 res=0 errno=0
[  107.815694][    T9] vhci_hcd: vhci_device speed not set
[  108.080870][ T7035] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.086379][ T7035] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.090857][ T7035] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.097225][ T7035] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.189850][ T7069] vhci_hcd: connection reset by peer
[  108.192553][   T57] vhci_hcd: stop threads
[  108.194170][   T57] vhci_hcd: release socket
[  108.196176][   T57] vhci_hcd: disconnect device
[  109.666395][ T7112] netlink: 'syz.3.235': attribute type 12 has an invalid length.
[  110.297501][ T7125] netlink: 'syz.1.237': attribute type 12 has an invalid length.
[  110.569243][ T7128] netlink: 'syz.2.247': attribute type 12 has an invalid length.
[  111.118156][ T7143] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  111.120791][ T7143] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  111.123934][ T7143] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  111.361353][ T7146] netlink: 'syz.3.251': attribute type 12 has an invalid length.
[  112.565497][ T7165] netlink: 'syz.1.254': attribute type 12 has an invalid length.
[  112.681409][  T836] vhci_hcd: vhci_device speed not set
[  113.677236][ T7194] netlink: 'syz.3.250': attribute type 12 has an invalid length.
[  115.450732][ T7224] xt_TCPMSS: Only works on TCP SYN packets
[  116.405644][ T7241] netlink: 'syz.0.259': attribute type 12 has an invalid length.
[  116.829968][ T7245] netlink: 4 bytes leftover after parsing attributes in process `syz.1.265'.
[  117.074025][ T7255] netlink: 'syz.3.266': attribute type 10 has an invalid length.
[  117.077850][ T7255] netlink: 'syz.3.266': attribute type 10 has an invalid length.
[  122.533228][ T7356] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  122.536039][ T7356] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  122.539146][ T7356] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  123.034555][ T7368] xt_TCPMSS: Only works on TCP SYN packets
[  125.439139][   T63] IPVS: starting estimator thread 0...
[  125.531425][ T7411] IPVS: using max 36 ests per chain, 86400 per kthread
[  127.195057][ T7469] Bluetooth: MGMT ver 1.23
[  127.667727][ T6092] IPVS: starting estimator thread 0...
[  127.751552][ T7481] IPVS: using max 37 ests per chain, 88800 per kthread
[  128.614819][ T7504] 9pnet_fd: Insufficient options for proto=fd
[  128.617766][ T7504] netlink: 'syz.1.316': attribute type 1 has an invalid length.
[  128.636285][ T7504] 8021q: adding VLAN 0 to HW filter on device bond2
[  128.763815][ T7504] 8021q: adding VLAN 0 to HW filter on device bond2
[  128.767450][ T7504] bond2: (slave vcan1): The slave device specified does not support setting the MAC address
[  128.779022][ T7504] bond2: (slave vcan1): Error -95 calling set_mac_address
[  129.240622][ T7514] xt_TCPMSS: Only works on TCP SYN packets
[  129.695873][ T7527] netlink: 'syz.2.318': attribute type 12 has an invalid length.
[  130.547991][ T7543] netlink: 'syz.1.331': attribute type 12 has an invalid length.
[  131.709364][ T7559] overlayfs: missing 'lowerdir'
[  132.089176][   T39] audit: type=1326 audit(1737315622.725:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7563 comm="syz.3.329" exe="/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf7f78579 code=0x0
[  132.213025][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  132.214895][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  133.185802][ T5299] Bluetooth: hci3: link tx timeout
[  133.187413][ T5299] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  133.190670][ T5947] Bluetooth: hci3: link tx timeout
[  133.192376][ T5947] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  133.195021][ T5947] Bluetooth: hci3: link tx timeout
[  133.196609][ T5947] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  133.998649][ T6092] IPVS: starting estimator thread 0...
[  134.091456][ T7612] IPVS: using max 36 ests per chain, 86400 per kthread
[  135.251714][ T5947] Bluetooth: hci3: command 0x0406 tx timeout
[  140.220050][ T7720] netlink: 284 bytes leftover after parsing attributes in process `syz.0.363'.
[  140.444544][ T7717] netlink: zone id is out of range
[  140.492533][ T7717] bridge0: port 2(bridge_slave_1) entered disabled state
[  140.496159][ T7717] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.047239][  T836] IPVS: starting estimator thread 0...
[  141.131373][ T7735] IPVS: using max 36 ests per chain, 86400 per kthread
[  141.262307][ T7752] overlayfs: missing 'lowerdir'
[  142.558232][   T63] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  143.729893][ T7823] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  143.732647][ T7823] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  143.735434][ T7823] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  145.006145][ T7853] netlink: 'syz.2.378': attribute type 12 has an invalid length.
[  153.429093][ T7875] netlink: 8 bytes leftover after parsing attributes in process `syz.0.381'.
[  153.811798][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  154.645950][ T7907] ubi0: attaching mtd0
[  154.648426][ T7907] ubi0: scanning is finished
[  154.650327][ T7907] ubi0: empty MTD device detected
[  154.731253][ T7907] ubi0: attached mtd0 (name "mtdram test device", size 0 MiB)
[  154.737926][ T7907] ubi0: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[  154.740837][ T7907] ubi0: min./max. I/O unit sizes: 1/64, sub-page size 1
[  154.743933][ T7907] ubi0: VID header offset: 64 (aligned 64), data offset: 128
[  154.747219][ T7907] ubi0: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[  154.749315][ T7907] ubi0: user volume: 0, internal volumes: 1, max. volumes count: 23
[  154.753472][ T7907] ubi0: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1981016677
[  154.756254][ T7907] ubi0: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[  154.759104][ T7910] ubi0: background thread "ubi_bgt0d" started, PID 7910
[  156.375738][ T7936] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  156.378566][ T7936] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  156.381972][ T7936] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  162.031587][   T64] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  162.201347][   T64] usb 8-1: Using ep0 maxpacket: 8
[  162.213485][   T64] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[  162.215859][   T64] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  162.218613][   T64] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  162.231332][   T64] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  162.234153][   T64] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  162.237809][   T64] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  162.240500][   T64] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.479702][   T64] usb 8-1: GET_CAPABILITIES returned 0
[  162.481540][   T64] usbtmc 8-1:16.0: can't read capabilities
[  162.792024][ T7957] usbtmc 8-1:16.0: usb_control_msg returned -71
[  162.793119][ T5843] usb 8-1: USB disconnect, device number 3
[  162.794306][ T7967] usbtmc 8-1:16.0: send_request_dev_dep_msg_in returned -19
[  165.563729][ T8029] syz.2.412: attempt to access beyond end of device
[  165.563729][ T8029] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  165.585202][ T8029] XFS (nbd2): SB validate failed with error -5.
[  165.867153][ T8040] ntfs3(nullb0): Primary boot signature is not NTFS.
[  165.870505][ T8040] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  166.541469][ T6092] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  166.713172][ T6092] usb 7-1: not running at top speed; connect to a high speed hub
[  166.730342][ T6092] usb 7-1: config 1 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 911, setting to 64
[  166.733593][ T6092] usb 7-1: config 1 interface 0 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  166.752132][ T6092] usb 7-1: config 1 interface 0 has no altsetting 0
[  166.767393][ T6092] usb 7-1: New USB device found, idVendor=056a, idProduct=010f, bcdDevice= 0.40
[  166.770004][ T6092] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.781374][ T6092] usb 7-1: Product: syz
[  166.782603][ T6092] usb 7-1: Manufacturer: syz
[  166.785296][ T6092] usb 7-1: SerialNumber: syz
[  166.803176][ T8049] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  169.066357][ T6092] usbhid 7-1:1.0: can't add hid device: -71
[  169.068129][ T6092] usbhid 7-1:1.0: probe with driver usbhid failed with error -71
[  169.077324][ T6092] usb 7-1: USB disconnect, device number 2
[  169.298443][ T8123] syz.0.426: attempt to access beyond end of device
[  169.298443][ T8123] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  169.307013][ T8123] XFS (nbd0): SB validate failed with error -5.
[  169.569659][ T8132] process 'syz.3.428' launched '/dev/fd/7' with NULL argv: empty string added
[  170.131407][ T5955] Bluetooth: hci2: command 0x0406 tx timeout
[  170.429460][ T8142] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  170.436618][ T8142] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  170.445825][ T8142] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  171.731446][ T5947] Bluetooth: hci3: command 0x0406 tx timeout
[  172.502408][ T8178] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  172.504660][ T8178] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  172.507213][ T8178] vhci_hcd vhci_hcd.0: Device attached
[  172.793134][  T836] vhci_hcd: vhci_device speed not set
[  172.861513][  T836] usb 41-1: new full-speed USB device number 2 using vhci_hcd
[  173.721882][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  173.742638][ T8193] bond0: entered promiscuous mode
[  173.744089][ T8193] bond_slave_0: entered promiscuous mode
[  173.745702][ T8193] bond_slave_1: entered promiscuous mode
[  173.805967][ T8180] vhci_hcd: connection reset by peer
[  173.809960][ T1173] vhci_hcd: stop threads
[  173.811215][ T1173] vhci_hcd: release socket
[  173.814998][ T1173] vhci_hcd: disconnect device
[  173.884058][ T8190] syz.1.439: attempt to access beyond end of device
[  173.884058][ T8190] nbd1: rw=4096, sector=0, nr_sectors = 1 limit=0
[  173.887965][ T8190] XFS (nbd1): SB validate failed with error -5.
[  177.964814][  T836] vhci_hcd: vhci_device speed not set
[  191.341740][ T8275] netlink: 4 bytes leftover after parsing attributes in process `syz.3.455'.
[  191.344515][ T8275] netlink: 4 bytes leftover after parsing attributes in process `syz.3.455'.
[  191.347438][ T8275] netlink: 4 bytes leftover after parsing attributes in process `syz.3.455'.
[  192.299701][ T8281] netlink: 100 bytes leftover after parsing attributes in process `syz.1.456'.
[  192.303439][ T8266] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  192.310912][ T8281] =======================================================
[  192.310912][ T8281] WARNING: The mand mount option has been deprecated and
[  192.310912][ T8281]          and is ignored by this kernel. Remove the mand
[  192.310912][ T8281]          option from the mount to silence this warning.
[  192.310912][ T8281] =======================================================
[  192.347448][ T8281] syzkaller0: entered promiscuous mode
[  192.349069][ T8281] syzkaller0: entered allmulticast mode
[  193.662509][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  193.669312][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  195.785252][ T8353] bridge0: port 3(syz_tun) entered blocking state
[  195.787729][ T8353] bridge0: port 3(syz_tun) entered disabled state
[  195.790015][ T8353] syz_tun: entered allmulticast mode
[  195.793421][ T8353] syz_tun: entered promiscuous mode
[  195.798689][ T8353] bridge0: port 3(syz_tun) entered blocking state
[  195.801584][ T8353] bridge0: port 3(syz_tun) entered forwarding state
[  195.968907][   T39] audit: type=1326 audit(1737315686.605:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8352 comm="syz.3.471" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x0
[  197.212014][ T8378] ptrace attach of "/syz-executor exec"[5954] was attempted by "/syz-executor exec"[8378]
[  197.638065][ T8388] netlink: 4 bytes leftover after parsing attributes in process `syz.0.480'.
[  198.765072][ T8411] syz.3.483: attempt to access beyond end of device
[  198.765072][ T8411] nbd3: rw=4096, sector=0, nr_sectors = 1 limit=0
[  198.768932][ T8411] XFS (nbd3): SB validate failed with error -5.
[  199.159107][ T8418] netlink: 'syz.2.487': attribute type 12 has an invalid length.
[  199.490306][ T8427] netlink: 20 bytes leftover after parsing attributes in process `syz.0.490'.
[  199.495075][ T8427] geneve0: entered allmulticast mode
[  203.929562][ T8495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  204.232897][ T8508] netlink: 'syz.1.508': attribute type 12 has an invalid length.
[  206.669563][ T8545] IPVS: sync thread started: state = MASTER, mcast_ifn = geneve0, syncid = 0, id = 0
[  207.221386][ T8557] netlink: 'syz.2.520': attribute type 12 has an invalid length.
[  208.143188][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  210.609820][ T8629] netlink: 'syz.0.535': attribute type 12 has an invalid length.
[  219.257276][ T8647] ntfs3(nullb0): Primary boot signature is not NTFS.
[  219.259504][ T8647] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  219.265518][ T8649] netlink: 100 bytes leftover after parsing attributes in process `syz.3.539'.
[  219.289718][ T8649] syzkaller0: entered promiscuous mode
[  219.292008][ T8649] syzkaller0: entered allmulticast mode
[  221.798681][ T8685] netlink: 4 bytes leftover after parsing attributes in process `syz.3.544'.
[  222.065531][ T8694] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.068592][ T8694] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.133407][ T8694] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  222.161863][ T8694] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  222.210395][ T8694] netdevsim netdevsim2 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  222.215098][ T8694] netdevsim netdevsim2 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  222.217631][ T8694] netdevsim netdevsim2 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  222.220037][ T8694] netdevsim netdevsim2 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  223.933116][ T8707] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  225.342961][ T8748] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  226.071387][ T8771] netlink: 'syz.2.561': attribute type 12 has an invalid length.
[  226.190072][ T8774] netlink: 20 bytes leftover after parsing attributes in process `syz.3.565'.
[  226.193473][ T8774] geneve0: entered allmulticast mode
[  227.541616][ T8793] netlink: 'syz.0.574': attribute type 12 has an invalid length.
[  227.923620][ T8776] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  229.414193][ T8820] ptrace attach of "/syz-executor exec"[5952] was attempted by "/syz-executor exec"[8820]
[  229.710035][ T8829] netlink: 20 bytes leftover after parsing attributes in process `syz.1.577'.
[  229.782023][ T8829] geneve0: entered allmulticast mode
[  230.071524][ T8838] ptrace attach of "/syz-executor exec"[5949] was attempted by "/syz-executor exec"[8838]
[  231.908561][ T8879] batman_adv: batadv0: Adding interface: dummy0
[  231.910473][ T8879] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  231.918240][ T8879] batman_adv: batadv0: Interface activated: dummy0
[  231.942142][ T8879] batadv0: mtu less than device minimum
[  231.945680][ T8879] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  231.951108][ T8879] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  231.956299][ T8879] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  231.961779][ T8879] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  231.966883][ T8879] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  231.975018][ T8879] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  231.983392][ T8879] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  231.992255][ T8879] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  231.999998][ T8879] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  232.434610][ T8885] trusted_key: encrypted_key: insufficient parameters specified
[  232.451567][ T8883] netlink: 4 bytes leftover after parsing attributes in process `syz.0.584'.
[  232.454966][ T8883] netlink: 4 bytes leftover after parsing attributes in process `syz.0.584'.
[  233.161353][   T64] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  233.381329][   T64] usb 5-1: Using ep0 maxpacket: 8
[  233.384083][   T64] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[  233.386561][   T64] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  233.389376][   T64] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  233.396579][   T64] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  233.403857][   T64] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  233.412469][   T64] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  233.417299][   T64] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.633561][   T64] usb 5-1: GET_CAPABILITIES returned 0
[  233.635251][   T64] usbtmc 5-1:16.0: can't read capabilities
[  234.012433][ T5843] usb 5-1: USB disconnect, device number 2
[  234.030712][ T8893] usbtmc 5-1:16.0: usb_control_msg returned -71
[  237.741442][ T8968] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  237.743413][ T8968] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  237.745757][ T8968] vhci_hcd vhci_hcd.0: Device attached
[  238.071594][    T9] vhci_hcd: vhci_device speed not set
[  238.141486][    T9] usb 37-1: new full-speed USB device number 3 using vhci_hcd
[  239.538346][ T8991] netlink: 'syz.2.611': attribute type 12 has an invalid length.
[  239.972745][ T8996] syz.2.613: attempt to access beyond end of device
[  239.972745][ T8996] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  239.977689][ T8996] XFS (nbd2): SB validate failed with error -5.
[  240.048680][ T8970] vhci_hcd: connection reset by peer
[  240.050483][   T12] vhci_hcd: stop threads
[  240.060775][   T12] vhci_hcd: release socket
[  240.065186][   T12] vhci_hcd: disconnect device
[  241.608927][ T9029] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  241.905380][ T9035] warning: `syz.1.619' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  242.777268][ T9057] netlink: 'syz.2.623': attribute type 12 has an invalid length.
[  243.241422][    T9] vhci_hcd: vhci_device speed not set
[  243.836640][ T9073] netlink: 'syz.0.635': attribute type 12 has an invalid length.
[  245.085751][ T9089] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  246.846547][ T9123] netlink: 'syz.3.641': attribute type 12 has an invalid length.
[  247.528901][ T9137] loop7: detected capacity change from 0 to 16384
[  247.730115][ T9141] kAFS: No cell specified
[  249.157662][ T9154] bridge0: port 3(syz_tun) entered disabled state
[  249.168168][ T9154] bridge0: port 2(bridge_slave_1) entered disabled state
[  249.170996][ T9154] bridge0: port 1(bridge_slave_0) entered disabled state
[  249.269493][ T9154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  249.283483][ T9154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  249.440141][ T9154] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  249.444177][ T9154] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  249.446630][ T9154] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  249.449108][ T9154] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  250.483411][ T9177] netlink: 'syz.1.654': attribute type 12 has an invalid length.
[  251.152545][ T9193] netlink: 28 bytes leftover after parsing attributes in process `syz.0.660'.
[  252.730872][ T9222] bridge0: port 2(bridge_slave_1) entered blocking state
[  252.733893][ T9222] bridge0: port 2(bridge_slave_1) entered forwarding state
[  252.736835][ T9222] bridge0: port 1(bridge_slave_0) entered blocking state
[  252.738837][ T9222] bridge0: port 1(bridge_slave_0) entered forwarding state
[  252.758726][ T9222] net_ratelimit: 10 callbacks suppressed
[  252.758732][ T9222] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  252.926468][ T9235] 9pnet_fd: Insufficient options for proto=fd
[  253.541072][ T9247] batman_adv: batadv0: Adding interface: dummy0
[  253.543062][ T9247] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  253.550265][ T9247] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[  255.031380][  T836] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  255.093476][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  255.095805][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  255.191428][  T836] usb 8-1: Using ep0 maxpacket: 16
[  255.200619][  T836] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 103, changing to 10
[  255.209082][  T836] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 34304, setting to 1024
[  255.212661][  T836] usb 8-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  255.215302][  T836] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  255.219122][  T836] usb 8-1: config 0 descriptor??
[  255.226422][ T9269] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  255.676397][  T836] input: HID 05ac:8241 as /devices/platform/dummy_hcd.3/usb8/8-1/8-1:0.0/0003:05AC:8241.0004/input/input8
[  255.771783][  T836] appleir 0003:05AC:8241.0004: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.3-1/input0
[  257.516997][ T1020] usb 8-1: USB disconnect, device number 4
[  257.888226][ T9317] netlink: 197276 bytes leftover after parsing attributes in process `syz.2.693'.
[  258.401443][   T25] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  258.551761][   T25] usb 7-1: too many configurations: 9, using maximum allowed: 8
[  258.554703][   T25] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  258.557236][   T25] usb 7-1: config 0 interface 0 has no altsetting 0
[  258.559844][   T25] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  258.564749][   T25] usb 7-1: config 0 interface 0 has no altsetting 0
[  258.567364][   T25] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  258.569989][   T25] usb 7-1: config 0 interface 0 has no altsetting 0
[  258.573432][   T25] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  258.575951][   T25] usb 7-1: config 0 interface 0 has no altsetting 0
[  258.578537][   T25] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  258.581194][   T25] usb 7-1: config 0 interface 0 has no altsetting 0
[  258.584120][   T25] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  258.586660][   T25] usb 7-1: config 0 interface 0 has no altsetting 0
[  258.589268][   T25] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  258.592102][   T25] usb 7-1: config 0 interface 0 has no altsetting 0
[  258.594695][   T25] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 9
[  258.597239][   T25] usb 7-1: config 0 interface 0 has no altsetting 0
[  258.602381][   T25] usb 7-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  258.604993][   T25] usb 7-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  258.607360][   T25] usb 7-1: Product: syz
[  258.608603][   T25] usb 7-1: Manufacturer: syz
[  258.609937][   T25] usb 7-1: SerialNumber: syz
[  258.621956][   T25] usb 7-1: config 0 descriptor??
[  258.628791][   T25] yurex 7-1:0.0: USB YUREX device now attached to Yurex #0
[  258.836922][ T1020] usb 7-1: USB disconnect, device number 3
[  258.842740][ T1020] yurex 7-1:0.0: USB YUREX #0 now disconnected
[  260.241585][ T9349] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  260.890340][ T9349] syz.2.698 (9349) used greatest stack depth: 20864 bytes left
[  261.781666][ T9374] netlink: 'syz.0.704': attribute type 12 has an invalid length.
[  261.785206][ T9375] binder: 9372:9375 ioctl c0306201 0 returned -14
[  262.108880][ T9378] netlink: 4 bytes leftover after parsing attributes in process `syz.2.707'.
[  262.883625][ T9376] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  264.381741][ T9405] program syz.3.713 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  264.602485][ T9404] netlink: 'syz.1.712': attribute type 12 has an invalid length.
[  265.337888][ T9430] netlink: 'syz.0.718': attribute type 12 has an invalid length.
[  267.370734][ T9458] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  267.476268][ T9465] netlink: 'syz.2.724': attribute type 12 has an invalid length.
[  271.091393][ T5299] Bluetooth: hci3: command 0x0406 tx timeout
[  271.836174][ T9529] syz.2.742: attempt to access beyond end of device
[  271.836174][ T9529] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  271.841079][ T9529] XFS (nbd2): SB validate failed with error -5.
[  271.842359][ T9539] binder: 9531:9539 ioctl c0306201 0 returned -14
[  273.313351][ T9567] block device autoloading is deprecated and will be removed.
[  273.702152][ T9574] afs: Unknown parameter 'dy'
[  273.855173][ T9576] syz.0.753: attempt to access beyond end of device
[  273.855173][ T9576] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  273.858876][ T9576] XFS (nbd0): SB validate failed with error -5.
[  274.924946][ T9599] netlink: 'syz.3.758': attribute type 12 has an invalid length.
[  275.024941][ T9604] binder: 9600:9604 ioctl c0306201 0 returned -14
[  276.085104][ T9619] netlink: 'syz.2.761': attribute type 1 has an invalid length.
[  276.144010][ T9619] bond1: entered promiscuous mode
[  276.146289][ T9619] 8021q: adding VLAN 0 to HW filter on device bond1
[  276.154354][ T9614] netlink: 197276 bytes leftover after parsing attributes in process `syz.1.760'.
[  276.177161][ T9623] syz.3.763: attempt to access beyond end of device
[  276.177161][ T9623] nbd3: rw=4096, sector=0, nr_sectors = 1 limit=0
[  276.182084][ T9623] XFS (nbd3): SB validate failed with error -5.
[  276.210006][ T9619] netlink: 'syz.2.761': attribute type 2 has an invalid length.
[  276.213768][ T9625] 8021q: adding VLAN 0 to HW filter on device bond2
[  276.228860][ T9625] bond1: (slave bond2): making interface the new active one
[  276.232598][ T9625] bond2: entered promiscuous mode
[  276.239303][ T9625] bond1: (slave bond2): Enslaving as an active interface with an up link
[  276.411344][   T64] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  276.561829][   T64] usb 6-1: too many configurations: 9, using maximum allowed: 8
[  276.573997][   T64] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  276.581435][   T64] usb 6-1: config 0 interface 0 has no altsetting 0
[  276.584316][   T64] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  276.589123][   T64] usb 6-1: config 0 interface 0 has no altsetting 0
[  276.592967][   T64] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  276.597686][   T64] usb 6-1: config 0 interface 0 has no altsetting 0
[  276.602051][   T64] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  276.606798][   T64] usb 6-1: config 0 interface 0 has no altsetting 0
[  276.610638][   T64] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  276.613428][   T64] usb 6-1: config 0 interface 0 has no altsetting 0
[  276.616167][   T64] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  276.620958][   T64] usb 6-1: config 0 interface 0 has no altsetting 0
[  276.624812][   T64] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  276.629481][   T64] usb 6-1: config 0 interface 0 has no altsetting 0
[  276.633260][   T64] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 9
[  276.637984][   T64] usb 6-1: config 0 interface 0 has no altsetting 0
[  276.642571][   T64] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  276.646285][   T64] usb 6-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  276.648807][   T64] usb 6-1: Product: syz
[  276.650072][   T64] usb 6-1: Manufacturer: syz
[  276.651517][   T64] usb 6-1: SerialNumber: syz
[  276.655421][   T64] usb 6-1: config 0 descriptor??
[  276.664510][   T64] yurex 6-1:0.0: USB YUREX device now attached to Yurex #0
[  276.875488][   T25] usb 6-1: USB disconnect, device number 2
[  276.882421][   T25] yurex 6-1:0.0: USB YUREX #0 now disconnected
[  277.360656][ T9646] netlink: 'syz.3.768': attribute type 12 has an invalid length.
[  278.325134][ T9661] syz.2.773: attempt to access beyond end of device
[  278.325134][ T9661] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  278.329132][ T9661] XFS (nbd2): SB validate failed with error -5.
[  279.054894][ T9682] kAFS: unable to lookup cell '.,'
[  279.118526][ T9684] netlink: 197276 bytes leftover after parsing attributes in process `syz.3.778'.
[  279.437210][ T9686] netlink: 'syz.0.779': attribute type 12 has an invalid length.
[  279.472878][    T9] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  279.621915][    T9] usb 8-1: too many configurations: 9, using maximum allowed: 8
[  279.624844][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  279.627780][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  279.630664][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  279.641233][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  279.646275][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  279.648847][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  279.654226][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  279.656905][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  279.659350][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  279.662369][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  279.664968][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  279.667679][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  279.670231][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  279.673101][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  279.675671][    T9] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 9
[  279.678310][    T9] usb 8-1: config 0 interface 0 has no altsetting 0
[  279.681934][    T9] usb 8-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  279.684504][    T9] usb 8-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  279.686837][    T9] usb 8-1: Product: syz
[  279.688040][    T9] usb 8-1: Manufacturer: syz
[  279.689475][    T9] usb 8-1: SerialNumber: syz
[  279.696492][    T9] usb 8-1: config 0 descriptor??
[  279.705233][    T9] yurex 8-1:0.0: USB YUREX device now attached to Yurex #0
[  279.754557][ T9689] netlink: 'syz.0.788': attribute type 12 has an invalid length.
[  279.929046][    T9] usb 8-1: USB disconnect, device number 5
[  279.932961][    T9] yurex 8-1:0.0: USB YUREX #0 now disconnected
[  280.621534][ T9711] random: crng reseeded on system resumption
[  280.914425][   T64] libceph: connect (1)[c::]:6789 error -101
[  280.920083][   T64] libceph: mon0 (1)[c::]:6789 connect error
[  281.187184][   T64] libceph: connect (1)[c::]:6789 error -101
[  281.189852][   T64] libceph: mon0 (1)[c::]:6789 connect error
[  281.300078][ T9715] ceph: No mds server is up or the cluster is laggy
[  281.625710][ T9734] netlink: 'syz.3.791': attribute type 12 has an invalid length.
[  282.459590][ T9746] netlink: 197276 bytes leftover after parsing attributes in process `syz.0.793'.
[  282.641248][ T9752] netlink: 'syz.3.801': attribute type 12 has an invalid length.
[  282.961406][   T25] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  283.111888][   T25] usb 5-1: too many configurations: 9, using maximum allowed: 8
[  283.114898][   T25] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  283.117426][   T25] usb 5-1: config 0 interface 0 has no altsetting 0
[  283.120066][   T25] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  283.122687][   T25] usb 5-1: config 0 interface 0 has no altsetting 0
[  283.125693][   T25] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  283.128389][   T25] usb 5-1: config 0 interface 0 has no altsetting 0
[  283.131380][   T25] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  283.134027][   T25] usb 5-1: config 0 interface 0 has no altsetting 0
[  283.136939][   T25] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  283.139600][   T25] usb 5-1: config 0 interface 0 has no altsetting 0
[  283.142324][   T25] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  283.145282][   T25] usb 5-1: config 0 interface 0 has no altsetting 0
[  283.149221][   T25] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  283.152543][   T25] usb 5-1: config 0 interface 0 has no altsetting 0
[  283.155364][   T25] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 9
[  283.158184][   T25] usb 5-1: config 0 interface 0 has no altsetting 0
[  283.162749][   T25] usb 5-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  283.165711][   T25] usb 5-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  283.168238][   T25] usb 5-1: Product: syz
[  283.169522][   T25] usb 5-1: Manufacturer: syz
[  283.170958][   T25] usb 5-1: SerialNumber: syz
[  283.174935][   T25] usb 5-1: config 0 descriptor??
[  283.179668][   T25] yurex 5-1:0.0: USB YUREX device now attached to Yurex #0
[  283.334442][   T25] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  283.353345][ T9757] bond0: entered promiscuous mode
[  283.354903][ T9757] bond_slave_0: entered promiscuous mode
[  283.356773][ T9757] bond_slave_1: entered promiscuous mode
[  283.388647][   T25] usb 5-1: USB disconnect, device number 3
[  283.394716][   T25] yurex 5-1:0.0: USB YUREX #0 now disconnected
[  283.512750][ T9772] batadv0: entered promiscuous mode
[  283.515058][ T9772] hsr1: Slave A (bond0) is not up; please bring it up to get a fully working HSR network
[  283.517920][ T9772] hsr1: Slave B (batadv0) is not up; please bring it up to get a fully working HSR network
[  283.523076][ T9772] 8021q: adding VLAN 0 to HW filter on device hsr1
[  283.741442][ T5843] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  283.911377][ T5843] usb 6-1: Using ep0 maxpacket: 16
[  283.926300][ T5843] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 103, changing to 10
[  283.930719][ T5843] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 34304, setting to 1024
[  283.935650][ T5843] usb 6-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  283.939192][ T5843] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  283.943082][ T5843] usb 6-1: config 0 descriptor??
[  283.945118][ T9770] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  284.407290][ T5843] input: HID 05ac:8241 as /devices/platform/dummy_hcd.1/usb6/6-1/6-1:0.0/0003:05AC:8241.0005/input/input10
[  284.467292][ T5843] appleir 0003:05AC:8241.0005: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.1-1/input0
[  284.921762][ T9803] input: syz0 as /devices/virtual/input/input11
[  286.214022][    T9] usb 6-1: USB disconnect, device number 3
[  290.246625][ T9827] kAFS: No cell specified
[  290.567174][ T9838] ptrace attach of "/syz-executor exec"[5945] was attempted by "/syz-executor exec"[9838]
[  290.809234][ T9843] kAFS: No cell specified
[  290.810129][ T9844] netlink: 'syz.1.809': attribute type 12 has an invalid length.
[  291.581951][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  291.604793][ T9857] bond0: entered promiscuous mode
[  291.606371][ T9857] bond_slave_0: entered promiscuous mode
[  291.608256][ T9857] bond_slave_1: entered promiscuous mode
[  291.943279][ T9882] block device autoloading is deprecated and will be removed.
[  292.034173][ T9884] lo speed is unknown, defaulting to 1000
[  292.114181][ T9884] lo speed is unknown, defaulting to 1000
[  292.116696][ T9884] lo speed is unknown, defaulting to 1000
[  292.121699][ T9885] lo speed is unknown, defaulting to 1000
[  292.123527][ T9885] lo speed is unknown, defaulting to 1000
[  292.126271][ T9885] lo speed is unknown, defaulting to 1000
[  292.148098][ T9885] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  292.164880][ T9885] lo speed is unknown, defaulting to 1000
[  292.169168][ T9885] lo speed is unknown, defaulting to 1000
[  292.173674][ T9885] lo speed is unknown, defaulting to 1000
[  292.178114][ T9885] lo speed is unknown, defaulting to 1000
[  292.216232][ T9885] »»»»»»: renamed from lo
[  292.266917][ T9884] infiniband s
z1: set down
[  292.268820][ T9884] infiniband s
z1: added »»»»»»
[  292.277496][ T9891] 8021q: adding VLAN 0 to HW filter on device bond0
[  292.299571][ T9884] RDS/IB: s
z1: added
[  292.371439][ T5947] Bluetooth: hci2: command 0x0406 tx timeout
[  292.690202][ T9891] bond0: (slave rose0): Enslaving as an active interface with an up link
[  292.702282][ T9884] smc: adding ib device s
z1 with port count 1
[  292.705455][   T64] »»»»»» speed is unknown, defaulting to 1000
[  292.719697][   T64] »»»»»» speed is unknown, defaulting to 1000
[  292.722426][ T9884] smc:    ib device s
z1 port 1 has pnetid 
[  292.727259][ T9884] »»»»»» speed is unknown, defaulting to 1000
[  292.776239][ T9884] »»»»»» speed is unknown, defaulting to 1000
[  292.818259][ T9884] »»»»»» speed is unknown, defaulting to 1000
[  292.862380][ T9884] »»»»»» speed is unknown, defaulting to 1000
[  292.983708][ T9919] »»»»»» speed is unknown, defaulting to 1000
[  293.040474][ T9919] »»»»»» speed is unknown, defaulting to 1000
[  301.996439][ T9960] netlink: 'syz.1.822': attribute type 12 has an invalid length.
[  303.107815][ T9989] siw: device registration error -23
[  303.347431][ T9990] netlink: 168 bytes leftover after parsing attributes in process `syz.3.830'.
[  303.364573][ T9990] loop9: detected capacity change from 0 to 6
[  303.369276][ T9990] Dev loop9: unable to read RDB block 6
[  303.371246][ T9990]  loop9: unable to read partition table
[  303.373314][ T9990] loop9: partition table beyond EOD, truncated
[  303.375170][ T9990] loop_reread_partitions: partition scan of loop9 (þ被xüŸÑø éÚ¬§½dƤ´à–ƒÝ¡¯¨�â·û
[  303.375170][ T9990] 
) failed (rc=-5)
[  303.646671][ T9994] netlink: 'syz.1.832': attribute type 10 has an invalid length.
[  303.649196][ T9994] netlink: 2 bytes leftover after parsing attributes in process `syz.1.832'.
[  303.652039][ T9994] team0: entered promiscuous mode
[  303.654137][ T9994] team_slave_0: entered promiscuous mode
[  303.656281][ T9994] team_slave_1: entered promiscuous mode
[  303.658330][ T9994] bridge0: port 3(team0) entered blocking state
[  303.660315][ T9994] bridge0: port 3(team0) entered disabled state
[  303.663924][ T9994] team0: entered allmulticast mode
[  303.665772][ T9994] team_slave_0: entered allmulticast mode
[  303.667407][ T9994] team_slave_1: entered allmulticast mode
[  303.674749][ T9994] bridge0: port 3(team0) entered blocking state
[  303.677307][ T9994] bridge0: port 3(team0) entered forwarding state
[  304.670964][T10022] input: syz0 as /devices/virtual/input/input13
[  304.693663][   T39] audit: type=1326 audit(1737317847.336:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.1.838" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  304.706639][   T39] audit: type=1326 audit(1737317847.336:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.1.838" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  304.720317][T10025] netlink: 'syz.2.836': attribute type 12 has an invalid length.
[  304.737220][   T39] audit: type=1326 audit(1737317847.336:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.1.838" exe="/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  304.755817][   T39] audit: type=1326 audit(1737317847.336:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.1.838" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  304.768965][   T39] audit: type=1326 audit(1737317847.336:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.1.838" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  304.778449][   T39] audit: type=1326 audit(1737317847.336:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.1.838" exe="/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  304.784884][   T39] audit: type=1326 audit(1737317847.336:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.1.838" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  304.791476][   T39] audit: type=1326 audit(1737317847.336:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.1.838" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  304.798404][   T39] audit: type=1326 audit(1737317847.336:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.1.838" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  304.808389][   T39] audit: type=1326 audit(1737317847.336:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10021 comm="syz.1.838" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  305.677128][T10045] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  307.745976][T10078] syz.1.853: attempt to access beyond end of device
[  307.745976][T10078] nbd1: rw=4096, sector=0, nr_sectors = 1 limit=0
[  307.749707][T10078] XFS (nbd1): SB validate failed with error -5.
[  308.121006][T10091] dvmrp0: entered allmulticast mode
[  308.294258][T10092] block device autoloading is deprecated and will be removed.
[  309.102416][T10123] netlink: 180 bytes leftover after parsing attributes in process `syz.0.861'.
[  309.105132][T10123] netlink: 24 bytes leftover after parsing attributes in process `syz.0.861'.
[  309.107589][T10123] netlink: 16 bytes leftover after parsing attributes in process `syz.0.861'.
[  309.110202][T10123] netlink: 24 bytes leftover after parsing attributes in process `syz.0.861'.
[  309.944474][T10132] netlink: 'syz.1.865': attribute type 12 has an invalid length.
[  311.248616][T10154] netlink: 'syz.1.878': attribute type 12 has an invalid length.
[  313.698458][ T9160] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  313.700817][ T9160] hid-generic 0000:0003:0000.0006: unknown main item tag 0x0
[  313.708203][ T9160] hid-generic 0000:0003:0000.0006: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  314.545481][T10210] netlink: 'syz.0.885': attribute type 33 has an invalid length.
[  314.547599][T10210] netlink: 152 bytes leftover after parsing attributes in process `syz.0.885'.
[  314.550489][T10210] tipc: Resetting bearer <eth:team0>
[  314.554357][ T1143] tipc: Resetting bearer <eth:team0>
[  315.956667][T10243] syz.2.894: attempt to access beyond end of device
[  315.956667][T10243] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  315.960198][T10243] XFS (nbd2): SB validate failed with error -5.
[  316.372177][T10258] devpts: called with bogus options
[  316.443285][T10260] syz.1.896: attempt to access beyond end of device
[  316.443285][T10260] nbd1: rw=4096, sector=0, nr_sectors = 1 limit=0
[  316.447038][T10260] XFS (nbd1): SB validate failed with error -5.
[  316.543804][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  316.545710][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  317.399461][T10293] syz.0.903: attempt to access beyond end of device
[  317.399461][T10293] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  317.404806][T10293] XFS (nbd0): SB validate failed with error -5.
[  318.214542][T10308] syz.2.906: attempt to access beyond end of device
[  318.214542][T10308] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  318.219288][T10308] XFS (nbd2): SB validate failed with error -5.
[  318.546745][T10320] netlink: 'syz.1.908': attribute type 7 has an invalid length.
[  318.838745][T10333] overlayfs: missing 'lowerdir'
[  319.715020][T10338] syz.1.912: attempt to access beyond end of device
[  319.715020][T10338] nbd1: rw=4096, sector=0, nr_sectors = 1 limit=0
[  319.718785][T10338] XFS (nbd1): SB validate failed with error -5.
[  320.526796][T10372] syz.0.916: attempt to access beyond end of device
[  320.526796][T10372] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  320.530588][T10372] XFS (nbd0): SB validate failed with error -5.
[  321.580347][T10397] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  321.584982][T10397] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  321.590865][T10397] netlink: 4 bytes leftover after parsing attributes in process `syz.2.922'.
[  322.077511][T10409] »»»»»» speed is unknown, defaulting to 1000
[  322.083420][T10407] syz.0.925: attempt to access beyond end of device
[  322.083420][T10407] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  322.087099][T10407] XFS (nbd0): SB validate failed with error -5.
[  322.313548][T10409] »»»»»» speed is unknown, defaulting to 1000
[  322.365445][T10426] syz.1.927: attempt to access beyond end of device
[  322.365445][T10426] nbd1: rw=4096, sector=0, nr_sectors = 1 limit=0
[  322.370346][T10426] XFS (nbd1): SB validate failed with error -5.
[  323.749551][T10469] [U] 
[  325.584250][T10510] binder: 10508:10510 ioctl ae01 0 returned -22
[  326.698247][T10523] bond0: entered promiscuous mode
[  326.699832][T10523] bond_slave_0: entered promiscuous mode
[  326.701826][T10523] bond_slave_1: entered promiscuous mode
[  326.794208][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  326.948121][T10528] loop7: detected capacity change from 0 to 16384
[  327.193932][T10533] syz.0.945: attempt to access beyond end of device
[  327.193932][T10533] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  327.197854][T10533] XFS (nbd0): SB validate failed with error -5.
[  327.208888][T10536] syz.2.946: attempt to access beyond end of device
[  327.208888][T10536] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  327.213390][T10536] XFS (nbd2): SB validate failed with error -5.
[  329.182314][T10576] syz.0.955: attempt to access beyond end of device
[  329.182314][T10576] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  329.186332][T10576] XFS (nbd0): SB validate failed with error -5.
[  329.997313][T10598] syz.2.959: attempt to access beyond end of device
[  329.997313][T10598] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  330.001081][T10598] XFS (nbd2): SB validate failed with error -5.
[  330.483006][T10626] netlink: 'syz.0.963': attribute type 10 has an invalid length.
[  330.485399][T10626] tipc: Resetting bearer <eth:team0>
[  330.488884][T10620] XFS (sr0): Invalid superblock magic number
[  330.503230][T10626] team0: Cannot enslave team device to itself
[  330.508374][T10627] netlink: 'syz.1.962': attribute type 12 has an invalid length.
[  330.935734][T10635] syz.0.966: attempt to access beyond end of device
[  330.935734][T10635] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  330.939555][T10635] XFS (nbd0): SB validate failed with error -5.
[  331.294474][T10649] syz.2.968: attempt to access beyond end of device
[  331.294474][T10649] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  331.298390][T10649] XFS (nbd2): SB validate failed with error -5.
[  331.346324][T10664] loop7: detected capacity change from 0 to 16384
[  332.573411][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  332.968021][T10706] [U] 
[  333.295989][T10712] ISOFS: Unable to identify CD-ROM format.
[  333.320504][T10712] Process accounting resumed
[  333.722490][T10715] »»»»»» speed is unknown, defaulting to 1000
[  333.764934][T10715] »»»»»» speed is unknown, defaulting to 1000
[  333.766296][T10716] ptrace attach of "/syz-executor exec"[5952] was attempted by "/syz-executor exec"[10716]
[  334.148884][T10721] netlink: 'syz.3.978': attribute type 12 has an invalid length.
[  334.397351][T10725] syz.0.980: attempt to access beyond end of device
[  334.397351][T10725] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  334.402234][T10725] XFS (nbd0): SB validate failed with error -5.
[  339.548937][ T5947] Bluetooth: hci1: unexpected event for opcode 0x6503
[  339.765899][   T64] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  339.902360][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  340.042926][   T64] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  340.046168][   T64] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  340.049028][   T64] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  340.051737][   T64] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.055652][T10754] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  340.059320][   T64] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  340.325078][T10801] netlink: 'syz.1.991': attribute type 12 has an invalid length.
[  340.604824][ T5843] usb 5-1: USB disconnect, device number 4
[  341.039682][T10808] syz.2.994: attempt to access beyond end of device
[  341.039682][T10808] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  341.043411][T10808] XFS (nbd2): SB validate failed with error -5.
[  341.126846][T10823] loop7: detected capacity change from 0 to 16384
[  341.177461][ T5947] Bluetooth: hci4: sending frame failed (-49)
[  341.180734][ T5299] Bluetooth: hci4: Entering manufacturer mode failed (-49)
[  341.891453][ T5299] Bluetooth: hci1: command 0x0406 tx timeout
[  343.575637][ T5299] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  343.578198][ T5299] Bluetooth: hci1: Injecting HCI hardware error event
[  343.580880][ T5299] Bluetooth: hci1: hardware error 0x00
[  345.651510][ T5299] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  346.869093][T10860] block device autoloading is deprecated and will be removed.
[  347.623518][T10872] syz.1.1004: attempt to access beyond end of device
[  347.623518][T10872] nbd1: rw=4096, sector=0, nr_sectors = 1 limit=0
[  347.627337][T10872] XFS (nbd1): SB validate failed with error -5.
[  347.918233][T10886] netlink: 'syz.1.1005': attribute type 12 has an invalid length.
[  349.761744][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  349.874904][T10926] loop7: detected capacity change from 0 to 16384
[  349.968939][T10933] syz.3.1014: attempt to access beyond end of device
[  349.968939][T10933] nbd3: rw=4096, sector=0, nr_sectors = 1 limit=0
[  349.975016][T10933] XFS (nbd3): SB validate failed with error -5.
[  349.994501][T10933] syz_tun (unregistering): left allmulticast mode
[  349.996443][T10933] syz_tun (unregistering): left promiscuous mode
[  349.998199][T10933] bridge0: port 3(syz_tun) entered disabled state
[  350.263801][T10951] syz.0.1015: attempt to access beyond end of device
[  350.263801][T10951] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  350.267667][T10951] XFS (nbd0): SB validate failed with error -5.
[  350.521740][T10965] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  350.524939][T10965] UDF-fs: Scanning with blocksize 2048 failed
[  350.527775][T10965] UDF-fs: warning (device sr0): udf_load_vrs: No VRS found
[  350.529923][T10965] UDF-fs: Scanning with blocksize 4096 failed
[  357.511812][T11009] syz.1.1026: attempt to access beyond end of device
[  357.511812][T11009] nbd1: rw=4096, sector=0, nr_sectors = 1 limit=0
[  357.516057][T11009] XFS (nbd1): SB validate failed with error -5.
[  357.539419][T11014] syz.0.1028: attempt to access beyond end of device
[  357.539419][T11014] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  357.543549][T11014] XFS (nbd0): SB validate failed with error -5.
[  358.233803][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  359.887363][T11071] syz.0.1038: attempt to access beyond end of device
[  359.887363][T11071] nbd0: rw=4096, sector=0, nr_sectors = 1 limit=0
[  359.893434][T11071] XFS (nbd0): SB validate failed with error -5.
[  361.182230][T11104] netlink: 'syz.0.1043': attribute type 12 has an invalid length.
[  362.382033][T11139] netlink: 'syz.3.1049': attribute type 1 has an invalid length.
[  362.394662][T11139] bond2: entered promiscuous mode
[  362.396489][T11139] 8021q: adding VLAN 0 to HW filter on device bond2
[  362.439727][T11139] 8021q: adding VLAN 0 to HW filter on device bond3
[  362.444556][T11139] bond2: (slave bond3): making interface the new active one
[  362.446639][T11139] bond3: entered promiscuous mode
[  362.448669][T11139] bond2: (slave bond3): Enslaving as an active interface with an up link
[  362.505402][T11139] netlink: 'syz.3.1049': attribute type 2 has an invalid length.
[  363.251436][ T5947] Bluetooth: hci3: command 0x0406 tx timeout
[  363.752832][T11163] netlink: 'syz.1.1055': attribute type 12 has an invalid length.
[  365.016137][T11189] netlink: 'syz.0.1062': attribute type 1 has an invalid length.
[  365.032791][T11189] bond1: entered promiscuous mode
[  365.034721][T11189] 8021q: adding VLAN 0 to HW filter on device bond1
[  365.093020][T11189] 8021q: adding VLAN 0 to HW filter on device bond2
[  365.098381][T11189] bond1: (slave bond2): making interface the new active one
[  365.100580][T11189] bond2: entered promiscuous mode
[  365.144057][T11189] bond1: (slave bond2): Enslaving as an active interface with an up link
[  365.195223][T11189] netlink: 'syz.0.1062': attribute type 2 has an invalid length.
[  367.147496][T11219] netlink: 'syz.2.1068': attribute type 10 has an invalid length.
[  367.149855][T11219] netlink: 2 bytes leftover after parsing attributes in process `syz.2.1068'.
[  367.152620][T11219] team0: entered promiscuous mode
[  367.154134][T11219] team_slave_0: entered promiscuous mode
[  367.155843][T11219] team_slave_1: entered promiscuous mode
[  367.157875][T11219] 8021q: adding VLAN 0 to HW filter on device team0
[  367.160053][T11219] bridge0: port 3(team0) entered blocking state
[  367.162473][T11219] bridge0: port 3(team0) entered disabled state
[  367.164653][T11219] team0: entered allmulticast mode
[  367.166148][T11219] team_slave_0: entered allmulticast mode
[  367.167849][T11219] team_slave_1: entered allmulticast mode
[  367.380552][T11222] netlink: 'syz.1.1069': attribute type 12 has an invalid length.
[  367.418052][T11229] input: syz0 as /devices/virtual/input/input14
[  369.870407][T11274] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  370.878990][T11284] netlink: 'syz.3.1086': attribute type 12 has an invalid length.
[  371.573920][T11302] netlink: 'syz.0.1097': attribute type 12 has an invalid length.
[  373.137971][T11328] kAFS: No cell specified
[  373.197933][T11329] input: syz0 as /devices/virtual/input/input16
[  374.333045][T11351] netlink: 'syz.2.1107': attribute type 12 has an invalid length.
[  375.230538][T11370] netlink: 'syz.3.1102': attribute type 12 has an invalid length.
[  376.473928][T11395] »»»»»» speed is unknown, defaulting to 1000
[  376.566208][T11395] »»»»»» speed is unknown, defaulting to 1000
[  377.972514][ T1415] ieee802154 phy0 wpan0: encryption failed: -22
[  377.974371][ T1415] ieee802154 phy1 wpan1: encryption failed: -22
[  378.391751][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  379.364301][ T6387] libceph: connect (1)[c::]:6789 error -101
[  379.366178][ T6387] libceph: mon0 (1)[c::]:6789 connect error
[  379.594844][T11481] nvme_fabrics: missing parameter 'transport=%s'
[  379.597726][T11481] nvme_fabrics: missing parameter 'nqn=%s'
[  379.622409][ T6387] libceph: connect (1)[c::]:6789 error -101
[  379.631972][ T6387] libceph: mon0 (1)[c::]:6789 connect error
[  379.905334][T11473] ceph: No mds server is up or the cluster is laggy
[  388.769860][T11518] netlink: 116 bytes leftover after parsing attributes in process `syz.1.1127'.
[  389.065202][T11530] netlink: 'syz.0.1126': attribute type 10 has an invalid length.
[  389.068296][T11530] bond0: (slave wlan1): Opening slave failed
[  389.871682][T11541] syz.2.1133: attempt to access beyond end of device
[  389.871682][T11541] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  389.876749][T11541] XFS (nbd2): SB validate failed with error -5.
[  391.360970][ T9160] libceph: connect (1)[c::]:6789 error -101
[  391.362946][ T9160] libceph: mon0 (1)[c::]:6789 connect error
[  391.400905][T11586] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1138'.
[  391.411935][ T5843] e1000: eth0 NIC Link is Up 1000 Mbps Full Duplex, Flow Control: None
[  391.416784][T11586] ata1.00: invalid command format 189
[  391.631701][ T9160] libceph: connect (1)[c::]:6789 error -101
[  391.634087][ T9160] libceph: mon0 (1)[c::]:6789 connect error
[  391.641781][T11597] netlink: 'syz.3.1140': attribute type 4 has an invalid length.
[  391.646794][T11597] netlink: 'syz.3.1140': attribute type 4 has an invalid length.
[  391.749314][T11579] ceph: No mds server is up or the cluster is laggy
[  391.917459][T11607] syz.2.1142: attempt to access beyond end of device
[  391.917459][T11607] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[  391.921538][T11607] XFS (nbd2): SB validate failed with error -5.
[  409.093527][T11672] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1151'.
[  409.750016][T11680] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  409.752703][T11680] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  409.758364][T11680] vhci_hcd vhci_hcd.0: Device attached
[  409.931396][ T9160] vhci_hcd: vhci_device speed not set
[  410.001371][ T9160] usb 39-1: new full-speed USB device number 3 using vhci_hcd
[  410.440876][T11689] lo speed is unknown, defaulting to 1000
[  410.449555][T11689] lo speed is unknown, defaulting to 1000
[  410.451551][T11689] lo speed is unknown, defaulting to 1000
[  410.486100][T11689] infiniband syz0: set active
[  410.487534][ T1020] lo speed is unknown, defaulting to 1000
[  410.489200][T11689] infiniband syz0: added lo
[  410.500074][T11689] RDS/IB: syz0: added
[  410.501505][T11689] smc: adding ib device syz0 with port count 1
[  410.503549][T11689] smc:    ib device syz0 port 1 has pnetid 
[  410.505258][ T5843] lo speed is unknown, defaulting to 1000
[  410.507278][T11689] lo speed is unknown, defaulting to 1000
[  410.557203][T11689] lo speed is unknown, defaulting to 1000
[  410.593009][T11689] lo speed is unknown, defaulting to 1000
[  410.635008][T11689] lo speed is unknown, defaulting to 1000
[  410.792262][T11699] trusted_key: encrypted_key: insufficient parameters specified
[  411.756076][T11681] vhci_hcd: connection reset by peer
[  411.761550][   T12] vhci_hcd: stop threads
[  411.763119][   T12] vhci_hcd: release socket
[  411.764548][   T12] vhci_hcd: disconnect device
[  411.890175][   T39] kauditd_printk_skb: 32 callbacks suppressed
[  411.890190][   T39] audit: type=1326 audit(1737318467.522:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.1.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  411.900678][   T39] audit: type=1326 audit(1737318467.522:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.1.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  411.910485][   T39] audit: type=1326 audit(1737318467.522:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.1.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  411.917690][   T39] audit: type=1326 audit(1737318467.532:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.1.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  411.924299][   T39] audit: type=1326 audit(1737318467.532:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.1.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  411.930381][   T39] audit: type=1326 audit(1737318467.532:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.1.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  411.936738][   T39] audit: type=1326 audit(1737318467.532:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.1.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  411.942987][   T39] audit: type=1326 audit(1737318467.532:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.1.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  411.949247][   T39] audit: type=1326 audit(1737318467.532:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.1.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=227 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  411.955628][   T39] audit: type=1326 audit(1737318467.532:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11712 comm="syz.1.1162" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f31579 code=0x7ffc0000
[  412.735335][T11725] syz.3.1163: attempt to access beyond end of device
[  412.735335][T11725] nbd3: rw=0, sector=2, nr_sectors = 2 limit=0
[  412.741176][T11725] syz.3.1163: attempt to access beyond end of device
[  412.741176][T11725] nbd3: rw=0, sector=16, nr_sectors = 2 limit=0
[  412.801734][T11725] net veth1_virt_wifi ÿÿÿÿÿÿ: renamed from virt_wifi0
[  413.107420][ T6387] libceph: connect (1)[c::]:6789 error -101
[  413.109577][ T6387] libceph: mon0 (1)[c::]:6789 connect error
[  413.371591][ T6387] libceph: connect (1)[c::]:6789 error -101
[  413.373962][ T6387] libceph: mon0 (1)[c::]:6789 connect error
[  413.718089][T11734] ceph: No mds server is up or the cluster is laggy
[  414.236520][T11752] overlayfs: failed to resolve './file0': -2
[  414.258629][T11755] fuse: blksize only supported for fuseblk
[  414.365043][T11761] netlink: 1264 bytes leftover after parsing attributes in process `syz.2.1171'.
[  415.091461][ T9160] vhci_hcd: vhci_device speed not set
[  415.687857][T11784] netlink: 'syz.1.1175': attribute type 10 has an invalid length.
[  415.691084][T11784] bond0: (slave wlan1): Opening slave failed
[  416.684323][   T25] libceph: connect (1)[c::]:6789 error -101
[  416.686129][   T25] libceph: mon0 (1)[c::]:6789 connect error
[  416.816745][T11793] infiniband syz0: set active
[  416.818736][T11793] bridge_slave_0: left allmulticast mode
[  416.820871][T11793] bridge_slave_0: left promiscuous mode
[  416.822931][T11793] bridge0: port 1(bridge_slave_0) entered disabled state
[  416.882168][T11793] bridge_slave_1: left allmulticast mode
[  416.883909][T11793] bridge_slave_1: left promiscuous mode
[  416.886187][T11793] bridge0: port 2(bridge_slave_1) entered disabled state
[  416.941809][   T63] libceph: connect (1)[c::]:6789 error -101
[  416.943914][   T63] libceph: mon0 (1)[c::]:6789 connect error
[  416.948510][T11793] bond0: (slave bond_slave_0): Releasing backup interface
[  416.967646][T11793] bond_slave_0: left promiscuous mode
[  416.975985][T11793] bond0: (slave bond_slave_1): Releasing backup interface
[  416.981615][T11793] bond_slave_1: left promiscuous mode
[  416.989812][T11793] team0: Port device team_slave_0 removed
[  416.996421][T11793] team0: Port device team_slave_1 removed
[  416.998344][T11793] batman_adv: batadv0: Removing interface: batadv_slave_0
[  417.001082][T11793] batman_adv: batadv0: Removing interface: batadv_slave_1
[  417.004484][T11793] bond1: (slave gretap1): Releasing active interface
[  417.008516][T11793] bond2: (slave bond3): Releasing backup interface
[  417.010438][T11793] bond3: left promiscuous mode
[  417.020522][ T5843] lo speed is unknown, defaulting to 1000
[  417.043965][T11797] ceph: No mds server is up or the cluster is laggy
[  417.243926][T11810] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1182'.
[  417.293006][T11810] ata1.00: invalid command format 189
[  417.471334][T11815] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[  417.630656][T11818] »»»»»» speed is unknown, defaulting to 1000
[  417.809498][T11818] »»»»»» speed is unknown, defaulting to 1000
[  417.811715][T11818] lo speed is unknown, defaulting to 1000
[  419.100438][   T39] kauditd_printk_skb: 125 callbacks suppressed
[  419.100449][   T39] audit: type=1326 audit(1737318474.732:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11838 comm="syz.3.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[  419.114395][   T39] audit: type=1326 audit(1737318474.752:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11838 comm="syz.3.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f78579 code=0x7ffc0000
[  419.121948][   T39] audit: type=1326 audit(1737318474.752:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11838 comm="syz.3.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f785a7 code=0x7ffc0000
[  419.128475][   T39] audit: type=1326 audit(1737318474.752:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11838 comm="syz.3.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=297 compat=1 ip=0xf7f78579 code=0x7ffc0000
[  419.136445][   T39] audit: type=1326 audit(1737318474.752:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11838 comm="syz.3.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[  419.143277][   T39] audit: type=1326 audit(1737318474.752:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11838 comm="syz.3.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=226 compat=1 ip=0xf7f78579 code=0x7ffc0000
[  419.149532][   T39] audit: type=1326 audit(1737318474.752:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11838 comm="syz.3.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[  419.156656][   T39] audit: type=1326 audit(1737318474.752:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11838 comm="syz.3.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[  419.163712][   T39] audit: type=1326 audit(1737318474.752:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11838 comm="syz.3.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=227 compat=1 ip=0xf7f78579 code=0x7ffc0000
[  419.210851][   T39] audit: type=1326 audit(1737318474.752:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11838 comm="syz.3.1190" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f78579 code=0x7ffc0000
[  420.274640][T11859] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(6)
[  420.276568][T11859] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  420.284752][T11859] vhci_hcd vhci_hcd.0: Device attached
[  420.444115][T11845] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  420.461432][ T9160] vhci_hcd: vhci_device speed not set
[  420.521372][ T9160] usb 37-1: new full-speed USB device number 4 using vhci_hcd
[  421.193847][T11868] loop9: detected capacity change from 0 to 8
[  421.196015][T11868]  loop9: [CUMANA/ADFS] p1 [ADFS] p1
[  421.197603][T11868] loop9: partition table partially beyond EOD, truncated
[  421.201666][T11868] loop9: p1 size 81768186 extends beyond EOD, truncated
[  421.701362][ T1020] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  421.759972][T11860] vhci_hcd: connection reset by peer
[  421.765302][   T84] vhci_hcd: stop threads
[  421.766870][   T84] vhci_hcd: release socket
[  421.768793][   T84] vhci_hcd: disconnect device
[  421.903001][ T1020] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0
[  421.908514][ T1020] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  421.912226][ T1020] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  421.915405][ T1020] usb 6-1: Product: syz
[  421.917086][ T1020] usb 6-1: Manufacturer: syz
[  421.918961][ T1020] usb 6-1: SerialNumber: syz
[  421.925116][T11873] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  422.334081][ T1020] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -22
[  422.348060][ T1020] usb 6-1: USB disconnect, device number 4
[  423.151326][ T1020] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  423.303193][ T1020] usb 6-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0
[  423.309283][ T1020] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  423.312094][ T1020] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  423.314893][ T1020] usb 6-1: Product: syz
[  423.316295][ T1020] usb 6-1: Manufacturer: syz
[  423.317832][ T1020] usb 6-1: SerialNumber: syz
[  423.322821][T11873] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  424.633702][T11923] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(6)
[  424.633734][T11923] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  424.634364][T11923] vhci_hcd vhci_hcd.0: Device attached
[  424.811378][   T25] vhci_hcd: vhci_device speed not set
[  424.871392][   T25] usb 41-1: new full-speed USB device number 3 using vhci_hcd
[  425.477702][T11929] »»»»»» speed is unknown, defaulting to 1000
[  425.547157][T11929] »»»»»» speed is unknown, defaulting to 1000
[  425.550485][T11929] lo speed is unknown, defaulting to 1000
[  425.651466][ T9160] vhci_hcd: vhci_device speed not set
[  426.104922][T11938] syz.3.1211: attempt to access beyond end of device
[  426.104922][T11938] nbd3: rw=4096, sector=0, nr_sectors = 1 limit=0
[  426.108657][T11938] XFS (nbd3): SB validate failed with error -5.
[  426.214171][ T1020] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -22
[  426.227312][ T1020] usb 6-1: USB disconnect, device number 5
[  426.398170][T11953] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1213'.
[  426.806160][T11924] vhci_hcd: connection reset by peer
[  426.809339][   T11] vhci_hcd: stop threads
[  426.810635][   T11] vhci_hcd: release socket
[  426.813225][   T11] vhci_hcd: disconnect device
[  427.740544][T11971] rdma_rxe: rxe_newlink: failed to add bond0
[  428.045686][T11976] 9pnet_virtio: no channels available for device c:::
[  428.211534][T11981] trusted_key: syz.2.1219 sent an empty control message without MSG_MORE.
[  428.411872][T11985] 
[  428.412894][T11985] ======================================================
[  428.415651][T11985] WARNING: possible circular locking dependency detected
[  428.418383][T11985] 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0 Not tainted
[  428.422535][T11985] ------------------------------------------------------
[  428.425267][T11985] syz.1.1221/11985 is trying to acquire lock:
[  428.427665][T11985] ffff888043d6e8c8 (&q->limits_lock){+.+.}-{4:4}, at: loop_reconfigure_limits+0x407/0x8c0
[  428.431540][T11985] 
[  428.431540][T11985] but task is already holding lock:
[  428.434389][T11985] ffff888043d6e278 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: lo_ioctl+0x8e8/0x18a0
[  428.438163][T11985] 
[  428.438163][T11985] which lock already depends on the new lock.
[  428.438163][T11985] 
[  428.442194][T11985] 
[  428.442194][T11985] the existing dependency chain (in reverse order) is:
[  428.445671][T11985] 
[  428.445671][T11985] -> #5 (&q->q_usage_counter(io)#24){++++}-{0:0}:
[  428.449038][T11985]        blk_mq_submit_bio+0x1fb6/0x24c0
[  428.451233][T11985]        __submit_bio+0x384/0x540
[  428.453346][T11985]        submit_bio_noacct_nocheck+0x698/0xd70
[  428.455736][T11985]        submit_bio_noacct+0x93a/0x1e20
[  428.457895][T11985]        mpage_readahead+0x41d/0x590
[  428.459952][T11985]        read_pages+0x1a8/0xdc0
[  428.461849][T11985]        page_cache_ra_unbounded+0x3dc/0x750
[  428.464150][T11985]        page_cache_ra_order+0x8f2/0xc80
[  428.466305][T11985]        page_cache_sync_ra+0x4b4/0x9c0
[  428.468462][T11985]        filemap_get_pages+0xd7b/0x1be0
[  428.470576][T11985]        filemap_splice_read+0x5cc/0xd00
[  428.472741][T11985]        do_splice_read+0x282/0x370
[  428.474759][T11985]        splice_direct_to_actor+0x2a4/0xa40
[  428.477053][T11985]        do_splice_direct+0x178/0x250
[  428.479120][T11985]        do_sendfile+0xaed/0xe30
[  428.481025][T11985]        __ia32_compat_sys_sendfile+0x1e7/0x230
[  428.483482][T11985]        __do_fast_syscall_32+0x73/0x120
[  428.485648][T11985]        do_fast_syscall_32+0x32/0x80
[  428.487722][T11985]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  428.490341][T11985] 
[  428.490341][T11985] -> #4 (mapping.invalidate_lock#2){.+.+}-{4:4}:
[  428.493635][T11985]        down_read+0x9a/0x330
[  428.495489][T11985]        filemap_fault+0x2e0/0x2820
[  428.497520][T11985]        __do_fault+0x10a/0x490
[  428.499429][T11985]        do_pte_missing+0xebd/0x3e00
[  428.501472][T11985]        __handle_mm_fault+0x103c/0x2a40
[  428.503656][T11985]        handle_mm_fault+0x3fa/0xaa0
[  428.505681][T11985]        do_user_addr_fault+0x7a3/0x13f0
[  428.507858][T11985]        exc_page_fault+0x5c/0xc0
[  428.509840][T11985]        asm_exc_page_fault+0x26/0x30
[  428.511927][T11985]        _copy_from_user+0x95/0xd0
[  428.513886][T11985]        snd_rawmidi_kernel_write1+0x35e/0x860
[  428.516261][T11985]        snd_rawmidi_write+0x267/0xbe0
[  428.518385][T11985]        vfs_write+0x24c/0x1150
[  428.520293][T11985]        ksys_write+0x207/0x250
[  428.522190][T11985]        __do_fast_syscall_32+0x73/0x120
[  428.524349][T11985]        do_fast_syscall_32+0x32/0x80
[  428.526400][T11985]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  428.529050][T11985] 
[  428.529050][T11985] -> #3 (&mm->mmap_lock){++++}-{4:4}:
[  428.532037][T11985]        __might_fault+0x11b/0x190
[  428.534030][T11985]        _copy_from_user+0x29/0xd0
[  428.536024][T11985]        compat_blk_trace_setup+0xc9/0x200
[  428.538318][T11985]        blk_trace_ioctl+0x24a/0x290
[  428.540384][T11985]        compat_blkdev_ioctl+0x13c/0x750
[  428.542592][T11985]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  428.544830][T11985]        __do_fast_syscall_32+0x73/0x120
[  428.547008][T11985]        do_fast_syscall_32+0x32/0x80
[  428.549078][T11985]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  428.551717][T11985] 
[  428.551717][T11985] -> #2 (&q->debugfs_mutex){+.+.}-{4:4}:
[  428.554752][T11985]        __mutex_lock+0x19b/0xa60
[  428.556746][T11985]        blk_mq_init_sched+0x42b/0x640
[  428.558902][T11985]        elevator_init_mq+0x2cd/0x420
[  428.561021][T11985]        add_disk_fwnode+0x113/0x1300
[  428.563161][T11985]        sd_probe+0xa66/0xfa0
[  428.565019][T11985]        really_probe+0x23e/0xa90
[  428.567045][T11985]        __driver_probe_device+0x1de/0x440
[  428.569364][T11985]        driver_probe_device+0x4c/0x1b0
[  428.571581][T11985]        __device_attach_driver+0x1df/0x310
[  428.573926][T11985]        bus_for_each_drv+0x157/0x1e0
[  428.576039][T11985]        __device_attach_async_helper+0x1d3/0x290
[  428.578555][T11985]        async_run_entry_fn+0x9c/0x530
[  428.580702][T11985]        process_one_work+0x958/0x1b30
[  428.582858][T11985]        worker_thread+0x6c8/0xf00
[  428.584920][T11985]        kthread+0x2c1/0x3a0
[  428.586781][T11985]        ret_from_fork+0x45/0x80
[  428.588768][T11985]        ret_from_fork_asm+0x1a/0x30
[  428.590877][T11985] 
[  428.590877][T11985] -> #1 (&q->q_usage_counter(queue)#51){++++}-{0:0}:
[  428.594357][T11985]        blk_queue_enter+0x50f/0x640
[  428.596483][T11985]        blk_mq_alloc_request+0x59b/0x950
[  428.598780][T11985]        scsi_execute_cmd+0x20a/0xf30
[  428.600999][T11985]        read_capacity_16+0x21a/0xe20
[  428.603093][T11985]        sd_revalidate_disk.isra.0+0x1a06/0xa8d0
[  428.604935][T11985]        sd_probe+0x8ee/0xfa0
[  428.606267][T11985]        really_probe+0x23e/0xa90
[  428.607720][T11985]        __driver_probe_device+0x1de/0x440
[  428.609361][T11985]        driver_probe_device+0x4c/0x1b0
[  428.610945][T11985]        __device_attach_driver+0x1df/0x310
[  428.612641][T11985]        bus_for_each_drv+0x157/0x1e0
[  428.614161][T11985]        __device_attach_async_helper+0x1d3/0x290
[  428.615990][T11985]        async_run_entry_fn+0x9c/0x530
[  428.617538][T11985]        process_one_work+0x958/0x1b30
[  428.619114][T11985]        worker_thread+0x6c8/0xf00
[  428.620594][T11985]        kthread+0x2c1/0x3a0
[  428.621933][T11985]        ret_from_fork+0x45/0x80
[  428.623357][T11985]        ret_from_fork_asm+0x1a/0x30
[  428.624866][T11985] 
[  428.624866][T11985] -> #0 (&q->limits_lock){+.+.}-{4:4}:
[  428.627072][T11985]        __lock_acquire+0x249e/0x3c40
[  428.628583][T11985]        lock_acquire.part.0+0x11b/0x380
[  428.630157][T11985]        __mutex_lock+0x19b/0xa60
[  428.631597][T11985]        loop_reconfigure_limits+0x407/0x8c0
[  428.633289][T11985]        lo_ioctl+0x8f4/0x18a0
[  428.634666][T11985]        lo_compat_ioctl+0xb9/0x170
[  428.636141][T11985]        compat_blkdev_ioctl+0x2f7/0x750
[  428.637766][T11985]        __do_compat_sys_ioctl+0x1cb/0x2c0
[  428.639415][T11985]        __do_fast_syscall_32+0x73/0x120
[  428.640997][T11985]        do_fast_syscall_32+0x32/0x80
[  428.642530][T11985]        entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  428.644455][T11985] 
[  428.644455][T11985] other info that might help us debug this:
[  428.644455][T11985] 
[  428.647316][T11985] Chain exists of:
[  428.647316][T11985]   &q->limits_lock --> mapping.invalidate_lock#2 --> &q->q_usage_counter(io)#24
[  428.647316][T11985] 
[  428.651485][T11985]  Possible unsafe locking scenario:
[  428.651485][T11985] 
[  428.653625][T11985]        CPU0                    CPU1
[  428.655132][T11985]        ----                    ----
[  428.656651][T11985]   lock(&q->q_usage_counter(io)#24);
[  428.658179][T11985]                                lock(mapping.invalidate_lock#2);
[  428.660369][T11985]                                lock(&q->q_usage_counter(io)#24);
[  428.662576][T11985]   lock(&q->limits_lock);
[  428.663857][T11985] 
[  428.663857][T11985]  *** DEADLOCK ***
[  428.663857][T11985] 
[  428.666091][T11985] 3 locks held by syz.1.1221/11985:
[  428.667578][T11985]  #0: ffff888023c94b60 (&lo->lo_mutex){+.+.}-{4:4}, at: lo_ioctl+0x764/0x18a0
[  428.670070][T11985]  #1: ffff888043d6e278 (&q->q_usage_counter(io)#24){++++}-{0:0}, at: lo_ioctl+0x8e8/0x18a0
[  428.672887][T11985]  #2: ffff888043d6e2b0 (&q->q_usage_counter(queue)#8){+.+.}-{0:0}, at: lo_ioctl+0x8e8/0x18a0
[  428.675729][T11985] 
[  428.675729][T11985] stack backtrace:
[  428.677377][T11985] CPU: 0 UID: 0 PID: 11985 Comm: syz.1.1221 Not tainted 6.13.0-rc7-syzkaller-00209-g9528d418de4d #0
[  428.680342][T11985] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  428.683330][T11985] Call Trace:
[  428.684275][T11985]  <TASK>
[  428.685117][T11985]  dump_stack_lvl+0x116/0x1f0
[  428.686457][T11985]  print_circular_bug+0x41c/0x610
[  428.687955][T11985]  check_noncircular+0x31a/0x400
[  428.689367][T11985]  ? __pfx_check_noncircular+0x10/0x10
[  428.690916][T11985]  ? save_trace+0x42/0xa10
[  428.692191][T11985]  ? add_lock_to_list+0x17d/0x390
[  428.693622][T11985]  __lock_acquire+0x249e/0x3c40
[  428.695005][T11985]  ? __pfx___lock_acquire+0x10/0x10
[  428.696478][T11985]  lock_acquire.part.0+0x11b/0x380
[  428.697932][T11985]  ? loop_reconfigure_limits+0x407/0x8c0
[  428.699523][T11985]  ? __pfx_lock_acquire.part.0+0x10/0x10
[  428.701125][T11985]  ? rcu_is_watching+0x12/0xc0
[  428.702504][T11985]  ? trace_lock_acquire+0x14e/0x1f0
[  428.703968][T11985]  ? loop_reconfigure_limits+0x407/0x8c0
[  428.705561][T11985]  ? lock_acquire+0x2f/0xb0
[  428.706852][T11985]  ? loop_reconfigure_limits+0x407/0x8c0
[  428.708449][T11985]  __mutex_lock+0x19b/0xa60
[  428.709751][T11985]  ? loop_reconfigure_limits+0x407/0x8c0
[  428.711341][T11985]  ? __pfx_mark_lock+0x10/0x10
[  428.712710][T11985]  ? loop_reconfigure_limits+0x407/0x8c0
[  428.714285][T11985]  ? find_held_lock+0x2d/0x110
[  428.715640][T11985]  ? __pfx___mutex_lock+0x10/0x10
[  428.717093][T11985]  ? shmem_statfs+0x1bb/0x3f0
[  428.718423][T11985]  ? vfs_statfs.part.0.isra.0+0x208/0x270
[  428.720034][T11985]  ? loop_reconfigure_limits+0x407/0x8c0
[  428.721642][T11985]  loop_reconfigure_limits+0x407/0x8c0
[  428.723210][T11985]  ? hlock_class+0x4e/0x130
[  428.724541][T11985]  ? mark_lock+0xb5/0xc60
[  428.725796][T11985]  ? __pfx___lock_acquire+0x10/0x10
[  428.727310][T11985]  ? __pfx_mark_lock+0x10/0x10
[  428.728678][T11985]  ? lock_acquire.part.0+0x11b/0x380
[  428.730190][T11985]  ? __pfx_loop_reconfigure_limits+0x10/0x10
[  428.731943][T11985]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  428.733627][T11985]  ? lockdep_hardirqs_on+0x7c/0x110
[  428.735134][T11985]  ? lo_ioctl+0x8e8/0x18a0
[  428.736424][T11985]  lo_ioctl+0x8f4/0x18a0
[  428.737691][T11985]  ? __pfx_lo_ioctl+0x10/0x10
[  428.739059][T11985]  ? find_held_lock+0x2d/0x110
[  428.740440][T11985]  ? tomoyo_path_number_perm+0x298/0x5b0
[  428.742065][T11985]  ? __pfx_lock_release+0x10/0x10
[  428.743517][T11985]  ? tomoyo_path_number_perm+0x46d/0x5b0
[  428.745130][T11985]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  428.746839][T11985]  ? blkdev_common_ioctl+0x1d9/0x2220
[  428.748412][T11985]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  428.750138][T11985]  ? __pfx_blkdev_common_ioctl+0x10/0x10
[  428.751754][T11985]  ? do_vfs_ioctl+0x513/0x1950
[  428.753129][T11985]  ? __pfx_do_vfs_ioctl+0x10/0x10
[  428.754574][T11985]  lo_compat_ioctl+0xb9/0x170
[  428.755930][T11985]  ? __pfx_lo_compat_ioctl+0x10/0x10
[  428.757451][T11985]  compat_blkdev_ioctl+0x2f7/0x750
[  428.758930][T11985]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  428.760540][T11985]  ? __fget_files+0x206/0x3a0
[  428.761905][T11985]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  428.763538][T11985]  __do_compat_sys_ioctl+0x1cb/0x2c0
[  428.765057][T11985]  __do_fast_syscall_32+0x73/0x120
[  428.766540][T11985]  do_fast_syscall_32+0x32/0x80
[  428.767966][T11985]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  428.769782][T11985] RIP: 0023:0xf7f31579
[  428.770985][T11985] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  428.776463][T11985] RSP: 002b:00000000f508655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  428.778874][T11985] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000004c09
[  428.781126][T11985] RDX: 0000000000000001 RSI: 0000000000000000 RDI: 0000000000000000
[  428.783401][T11985] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  428.785669][T11985] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  428.787966][T11985] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  428.790213][T11985]  </TASK>
[  428.791255][    C0] vkms_vblank_simulate: vblank timer overrun
[  428.797059][T11985] Invalid logical block size (1)
[  429.961364][   T25] vhci_hcd: vhci_device speed not set

VM DIAGNOSIS:
19:45:19  Registers:
info registers vcpu 0

CPU#0
RAX=000000000000007a RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff85145395 RDI=ffffffff9a66e200 RBP=ffffffff9a66e1c0 RSP=ffffc900031c6dc0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=722d302e33312e36
R12=0000000000000000 R13=000000000000007a R14=ffffffff85145330 R15=0000000000000000
RIP=ffffffff851453bf RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000002003a000 CR3=0000000069f1a000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000000002 RBX=0000000000000000 RCX=ffffffff81d381d7 RDX=ffff888024f08000
RSI=0000000000000000 RDI=0000000000000007 RBP=ffffea0001b6aa80 RSP=ffffc900254df510
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000000000 R11=000000000000e14f
R12=0000000000000000 R13=0000000000000000 R14=ffff888012510e90 R15=ffff888012510ec0
RIP=ffffffff81994d80 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b500000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7f655c0 CR3=000000006e970000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000600
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000007 RBX=0000000000000000 RCX=ffffffff8b1b6ab0 RDX=0000000000000000
RSI=ffffffff8b4c5240 RDI=ffff888022fd157c RBP=ffffc90025997638 RSP=ffffc900259974a0
R8 =0000000000000001 R9 =ffffed10094b6270 R10=ffff88804a5b1383 R11=ffffc90000548d68
R12=ffff888022fd0000 R13=ffff888022fd0548 R14=ffffe8ffac41f1c0 R15=ffff88802b63ed00
RIP=ffffffff8b1b536a RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00005638c5bef000 CR3=000000002526e000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000008
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000c400000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000004d6614 RBX=0000000000000003 RCX=ffffffff8b1a8899 RDX=ffffed10056e6fee
RSI=ffffffff8bb19b00 RDI=ffffffff81702c79 RBP=ffffed10039df488 RSP=ffffc9000049fe08
R8 =0000000000000000 R9 =ffffed10056e6fed R10=ffff88802b737f6b R11=0000000000000001
R12=0000000000000003 R13=ffff88801cefa440 R14=ffffffff901d29d0 R15=0000000000000000
RIP=ffffffff8b1a9c7f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2d9cf5 CR3=0000000050090000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000