last executing test programs:

3.268689331s ago: executing program 3 (id=658):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESETUP(r0, 0x2270, &(0x7f0000000540)={'\x00', 0x7ff, 0x9, 0x1000, 0xd, 0x59c})
openat$cuse(0xffffff9c, &(0x7f0000000080), 0x2, 0x0)
close(0x3)
r1 = accept4$llc(0xffffffffffffffff, &(0x7f0000000040), &(0x7f0000000080)=0x10, 0x80000)
ioctl$FS_IOC_FSSETXATTR(r1, 0x401c5820, &(0x7f00000000c0)={0xb4bd, 0x80000001, 0x7, 0x1ccc, 0x305})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000140)={0x2, &(0x7f0000000100)=[{0x100, 0x4, 0x4, 0x80000000}, {0x9, 0x56, 0xfb, 0x101}]})

3.181069577s ago: executing program 3 (id=659):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
r1 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
fcntl$dupfd(r1, 0x0, r1)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x11, 0x2, 0x1})
ppoll(&(0x7f0000000240)=[{r0, 0x8000}, {r1, 0x4000}, {r1, 0x428}], 0x3, &(0x7f0000000280)={0x0, 0x3938700}, &(0x7f00000003c0)={[0xffffffff, 0x5a7a]}, 0x8) (fail_nth: 4)
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000080)=0x2)
ppoll(&(0x7f00000001c0)=[{r0, 0x204}], 0x1, 0x0, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r2, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x67)
setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f00000005c0)='ip6_vti0\x00', 0x10)
sendto$inet(r2, 0x0, 0x0, 0x20000844, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt(r3, 0x84, 0x11, &(0x7f00000002c0)="1a00000002000000", 0x8)

2.961118702s ago: executing program 3 (id=662):
fsopen(&(0x7f0000000100)='udf\x00', 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x3, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x300}}, &(0x7f0000000000)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$sndpcmp(0x0, 0x0, 0x202000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r2)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r4, @ANYBLOB="1f003300d00000000802110000010802110000005050505050500000", @ANYRES8=r2], 0x3c}, 0x1, 0x0, 0x0, 0x4010}, 0x10)

2.850562161s ago: executing program 3 (id=663):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb7, &(0x7f0000000140)=""/183, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000000000000000000000000000000000071314ac04dd827517835b0043119077b37a5e80b16b6f2a80e74172c"], 0x34)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x2)
r3 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x0)
r4 = memfd_create(&(0x7f0000000ac0)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\xccEi\xfb\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee<\x8bw\xdd^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\x89>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3\x00\x00\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x4)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000f40)=@filter={'filter\x00', 0x4, 0x4, 0x3cc, 0xffffffff, 0x0, 0x0, 0xe4, 0xfeffffff, 0xffffffff, 0x390, 0x390, 0x390, 0xffffffff, 0x7fffffe, 0x0, {[{{@uncond, 0x2f2, 0xa4, 0xe4}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x4}}}, {{@ipv6={@private2, @empty, [], [], 'sit0\x00', 'batadv_slave_1\x00'}, 0x0, 0xec, 0x12c, 0x0, {}, [@common=@dst={{0x48}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x2, 0x57, {0x2000000}}}}, {{@ipv6={@empty, @mcast1, [], [], 'ip6tnl0\x00', 'dvmrp0\x00'}, 0x0, 0xd0, 0xf4, 0x0, {}, [@common=@unspec=@realm={{0x2c}, {0x1, 0xdd8}}]}, @REJECT={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x428)
r6 = syz_open_dev$vbi(&(0x7f0000000340), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r6, 0xc0045627, &(0x7f00000002c0)=0x7)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r6, 0xc0845657, &(0x7f0000000200)={0x0, @bt={0x8a5, 0x93, 0x0, 0x1, 0xd59f80, 0x19ef, 0x7, 0x19ef, 0x3, 0x6, 0x27ff, 0x2800, 0x2, 0xbb6, 0x2, 0x8, {0x8, 0xffffffff}, 0xd0, 0x9}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newqdisc={0xcc, 0x24, 0x200, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x8, 0xfff2}, {0x6, 0x9}, {0x7, 0x5}}, [@TCA_STAB={0x80, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x4, 0xb, 0x4d, 0xfffc, 0x0, 0xfffeffff, 0x2, 0xa}}, {0x18, 0x2, [0x7fff, 0xf7b9, 0xf9, 0x5, 0x1ff, 0x7, 0x8, 0x5, 0xb, 0x5]}}, {{0x1c, 0x1, {0x4, 0xf, 0x8, 0x5, 0x1, 0x6, 0x7ff, 0x1}}, {0x6, 0x2, [0x40]}}, {{0x1c, 0x1, {0x9, 0x1, 0x4, 0x1, 0x1, 0x8, 0x7ff, 0x2}}, {0x8, 0x2, [0xedc, 0x2]}}]}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0xf6a9}, @qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x1, 0x0, 0x5}}}}]}, 0xcc}, 0x1, 0x0, 0x0, 0x804}, 0x4000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)

2.550426091s ago: executing program 1 (id=664):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_emit_ethernet(0x8e, &(0x7f0000000f80)=ANY=[@ANYBLOB="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", @ANYRES32=0x41424344, @ANYRES32=0x41424344, @ANYBLOB="6002000090780000080a00000080000000001312d082e275205e556149a021cc13c33d890303002209da64345379e89f05160000000a000000100000000680000001000078900402220200"], 0x0)

2.459771277s ago: executing program 1 (id=665):
sendmsg$DEVLINK_CMD_SB_PORT_POOL_SET(0xffffffffffffffff, 0x0, 0x40000)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000280)=ANY=[@ANYBLOB="0180c2008000bbbbbbbbbbbb86dd6001044800203aff200100000000000000000000000000013ca54b6ba7a5aa85bc8c94fe8000000000000000000000000000aa8800907800000000fe8800"/86], 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x800)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f5, 0x0, 0xa3, 0x0, 0x10}, 0x9c)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001080)=@newtaction={0x121c, 0x30, 0x800, 0x70bd2a, 0x0, {}, [{0x1208, 0x1, [@m_ct={0x44, 0x0, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xfffffff9, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_pedit={0x11c0, 0x7, 0x0, 0x0, {{0xa}, {0x10b0, 0x2, 0x0, 0x1, [@TCA_PEDIT_KEYS_EX={0x74, 0x5, 0x0, 0x1, [{0x4c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x9a16cc2321b75c6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}]}]}, @TCA_PEDIT_KEYS_EX={0x17c, 0x5, 0x0, 0x1, [{0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x4c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}, {0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x2c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}, {0x4c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}]}, {0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}]}, {0x1c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}]}]}, @TCA_PEDIT_KEYS_EX={0x84, 0x5, 0x0, 0x1, [{0x24, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x3}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0x14, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x4}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x1}]}, {0x3c, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x5}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_CMD={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6}, @TCA_PEDIT_KEY_EX_HTYPE={0x6, 0x1, 0x2}, @TCA_PEDIT_KEY_EX_CMD={0x6, 0x2, 0x1}]}, {0xc, 0x6, 0x0, 0x1, [@TCA_PEDIT_KEY_EX_HTYPE={0x6}]}]}, @TCA_PEDIT_PARMS_EX={0xe38, 0x4, {{{0x4, 0x0, 0x4, 0xc, 0x7f}, 0x3, 0x5, [{0x4, 0x1, 0x1, 0x4, 0x7ff, 0x80000001}]}, [{0x2, 0x9, 0x3, 0x8, 0xb, 0xfffffff8}, {0x2, 0x4, 0x3, 0x7, 0x5, 0x6}, {0x3, 0x1, 0x9, 0x5, 0x7, 0xb}, {0x5, 0x2, 0xe0, 0x1, 0x3ff, 0x648e}, {0xa, 0x8, 0x10000, 0x8, 0xfffff1ee, 0x9}, {0x0, 0x1, 0x7, 0x3, 0x7, 0x4}, {0x40, 0x7cbb, 0x0, 0x8, 0x7, 0x5f}, {0x9, 0x4, 0xf, 0xfffffff9, 0x8001, 0x4}, {0x6, 0x4, 0xb5b5, 0xb68e, 0x3, 0x7}, {0x5, 0x669d4c1c, 0x3ff, 0xfffffed7, 0x3, 0x3}, {0x6, 0x4c, 0x9, 0x10001, 0x1, 0x1ff}, {0x2, 0xffffd0f9, 0x6, 0x8, 0xfff80000, 0xfffffbff}, {0x5, 0x2, 0x3, 0x5, 0x5, 0xfff}, {0x6, 0x829, 0x0, 0x6, 0xffffff0f, 0x9}, {0x3522, 0x2, 0xb5c4, 0x6, 0x8, 0x67c4}, {0x101, 0x9, 0x10, 0x2, 0xffffffff}, {0x3a544f97, 0x9, 0xe, 0x9, 0x0, 0x8}, {0x401, 0x9, 0xffffc601, 0x9, 0x4, 0x9}, {0x400, 0xff, 0x3, 0x0, 0x7, 0x6}, {0x2d5d, 0x3, 0x6, 0xc, 0x3, 0xff}, {0x80, 0x7ff, 0x3, 0x80000001, 0x10, 0x5}, {0x2, 0x5, 0x7f, 0x4000, 0xe, 0x2}, {0x3, 0x8, 0x10001, 0x2, 0x43045c21, 0xa}, {0x6, 0xc, 0x400, 0x7384, 0x5, 0x7fff}, {0x8000, 0x2, 0x3, 0x10, 0x2, 0x12}, {0x668, 0x15, 0x5, 0x8001, 0x1, 0x7}, {0x7, 0x7, 0x0, 0x200, 0x6, 0x5}, {0x6, 0x4, 0x1ff, 0x8, 0x3ff, 0x3}, {0x9, 0xcb, 0x10, 0x8, 0x1, 0x1}, {0x7, 0xa, 0x10000, 0x800, 0x81, 0x1}, {0x5c65, 0x8, 0xfffffffc, 0x8, 0x4, 0x6}, {0x9, 0x3, 0xa, 0x7, 0x6, 0xfffffffd}, {0x3, 0x0, 0x3, 0x1, 0x7f, 0xd}, {0x6, 0x2, 0x7fff, 0x9, 0x9, 0x80000001}, {0x5, 0x1000, 0x1, 0x4, 0xff, 0x4}, {0x6aa1, 0x0, 0x8, 0x3, 0x5, 0x20}, {0x9, 0x1000, 0x3, 0x1, 0x9, 0x7f}, {0x3, 0xfff, 0x6, 0xee, 0x10, 0x3}, {0xe37, 0x5, 0xfff, 0x1, 0xaf7, 0x5}, {0x2935, 0x80000000, 0xa8b, 0x14, 0x1, 0x9}, {0x6, 0x0, 0x7ff, 0x7, 0x5}, {0x98, 0x1, 0x10000, 0x4, 0x1}, {0x0, 0x2fa2, 0xffff41d4, 0xfd, 0x9f, 0x9}, {0x4, 0x0, 0x5, 0x9, 0x7, 0x69}, {0x0, 0x0, 0x1, 0xe3, 0x3, 0x4}, {0xb, 0x2, 0xfffffffa, 0x10000, 0x3, 0x10000}, {0x6, 0x1, 0x2, 0x200, 0x5, 0x5292}, {0xdc, 0x993, 0xfffffffe, 0x7, 0x1, 0x6}, {0x7, 0x8, 0xfffffffd, 0x1000, 0x1, 0x5}, {0xfffffffa, 0x0, 0x200, 0x60000000, 0x3b, 0x81}, {0x80000000, 0x3, 0x5, 0x0, 0x10, 0x16}, {0x1, 0xc6, 0x8000, 0x6e7, 0x3, 0xe}, {0xd883, 0xa15d, 0x10000, 0xb, 0x7, 0x7}, {0xa, 0xfffffffe, 0x5, 0x6, 0x3, 0x5}, {0x1928, 0xd8ed, 0x100, 0x1, 0x80000000, 0x480}, {0x7f, 0x3a, 0x3, 0x400, 0x1, 0xe3cc}, {0x5, 0x0, 0xa1, 0x9, 0x2, 0x81}, {0xc2be, 0x4, 0x7, 0x7f, 0x13, 0xffffffff}, {0x5, 0xffffffff, 0x5, 0x6ed, 0xdbdc, 0x40}, {0x7b0, 0x3, 0x6, 0x308d, 0x101, 0x9}, {0x7, 0x5c, 0xe, 0x7ff, 0x57bc, 0x10000}, {0x2, 0x8000, 0x39, 0x2, 0x8, 0x1}, {0x1000, 0x7, 0x7fff, 0x4, 0xfffffffb, 0x4}, {0xd45, 0x81, 0x4, 0x80, 0x9, 0x400}, {0x3, 0xdd, 0x614f3ff3, 0xeb, 0x2, 0x5}, {0x2, 0x7, 0x5, 0xa5, 0x7, 0x80}, {0xffff, 0x3, 0x9, 0x80, 0x2000000, 0xb}, {0x7ff, 0x5, 0x0, 0x6, 0x4, 0x7fff}, {0x2, 0x9, 0x7b94, 0xe, 0x9, 0x7}, {0x34, 0x8, 0xa69, 0x5, 0x4, 0x7}, {0x0, 0x2, 0x2, 0x4, 0x2, 0xc896}, {0x9, 0x1000, 0x80000001, 0x1, 0x185, 0x9}, {0x0, 0xb, 0x7c, 0x6, 0x2, 0x2}, {0xc, 0xfea, 0x12e90ac6, 0x3, 0x80000000, 0x10001}, {0x1, 0xfffffff2, 0x3, 0x8, 0x2, 0xffffffff}, {0x7, 0xffffffff, 0x4, 0xcd5, 0x81d5, 0x800}, {0x2, 0x3, 0x5, 0x0, 0x106, 0x9}, {0x5, 0xc, 0x2, 0x101, 0x2, 0x7}, {0x3, 0x0, 0x800, 0x0, 0x5, 0x6}, {0x52bdacca, 0x184a79ea, 0x400, 0x0, 0x5, 0x4}, {0x6, 0x5, 0x3, 0x100, 0x3, 0xe}, {0x10, 0x5, 0x1, 0xffff, 0xa6, 0x1}, {0x7, 0x3, 0x7, 0x4e6, 0x0, 0x3}, {0x9, 0x5, 0x7f, 0x4, 0x6, 0xa26}, {0x1, 0x8, 0x9, 0x3, 0x4, 0x1}, {0xfffffffc, 0x9, 0x0, 0xbdbf, 0xfffff42a, 0x4}, {0x6, 0x7fffffff, 0x400, 0x10000, 0x6, 0x2}, {0xfffffffd, 0x5, 0x3aa, 0x7, 0x0, 0x8d6}, {0x4, 0xb, 0x10001, 0x8, 0x32aa, 0x9}, {0x6, 0x1, 0x4, 0x1, 0x5, 0x5e}, {0xd5, 0xdc2d, 0x9, 0x9, 0x119, 0x9}, {0xfff, 0x0, 0x0, 0x8, 0xffffffff, 0x7}, {0x2, 0x2, 0x4, 0x6, 0xffff0bfa, 0xffffff80}, {0x7f, 0x4, 0x9, 0x10001, 0x6, 0x200}, {0x8, 0x101, 0x5, 0x0, 0xa0d2, 0xb70a}, {0x3, 0xb, 0x7, 0x0, 0xec, 0xcf11}, {0x8000, 0x8, 0x81, 0x8, 0x5334, 0x2fd8}, {0xffffffff, 0x80000000, 0x6, 0x7, 0x6, 0x92f}, {0x10000, 0x5, 0x4, 0x4, 0x6, 0x9}, {0xffffffff, 0x3, 0x6, 0x8, 0x9, 0x7}, {0xfac, 0x80000000, 0xd0, 0xaf7, 0x18c4, 0x123a}, {0x9, 0x1, 0x1000, 0x2, 0xff, 0xffff8000}, {0x5, 0x1000, 0x1, 0x7, 0x9, 0x405}, {0x7, 0x0, 0x2, 0x21c, 0x81, 0x3}, {0xb2ad, 0x9, 0x80000001, 0x3, 0x10000, 0x537a}, {0x7, 0x8a6, 0x2, 0xfffffff9, 0x6, 0x5}, {0x1, 0x0, 0x7f, 0x57, 0x7, 0x472}, {0xf, 0x542, 0x9, 0x2, 0x8, 0x7}, {0x1, 0xfffffffd, 0x1, 0x5, 0x7f, 0x3}, {0xc9b7, 0x7, 0x2, 0x8b, 0x6, 0x5}, {0x0, 0x8, 0x75, 0x2, 0x6, 0x240}, {0x0, 0x52, 0x6, 0x4, 0x8, 0x7}, {0x9, 0xffffffff, 0x101, 0x7fffffff, 0x2, 0x8}, {0xfffffff9, 0x1, 0x6e, 0xffffff88, 0xfffffff6, 0x7}, {0x2, 0xfff, 0x3, 0x515, 0x6, 0x5}, {0x5d800000, 0x7, 0x9, 0x7, 0x6c4c, 0xfffffff9}, {0x3, 0x7, 0x17, 0x0, 0x3d2, 0x5}, {0x966, 0x5, 0xfffffffb, 0x0, 0x400, 0x80000000}, {0x400, 0xfffffffd, 0xfffffff2, 0x7f, 0x7, 0xa47}, {0x5, 0x4, 0x10, 0x2, 0x1d9a70e3, 0x1}, {0x0, 0x7, 0x6, 0x6, 0x1, 0xc2}, {0x3, 0x1, 0x2, 0x3d, 0x6, 0x6}, {0x5, 0x1, 0xc51e, 0x9, 0xd99, 0x9}, {0x1, 0x9, 0x8, 0x1, 0x9, 0x9}, {0x3, 0x2, 0x7fff, 0x1, 0x5}, {0x2, 0x7, 0x8, 0x7, 0xfffffffd, 0x6}, {0x4, 0x7, 0x6, 0x6, 0x8ea, 0x8}, {0x2, 0x80, 0x9, 0x1, 0x1, 0x9}], [{0x5}, {0x1}, {0x4}, {0x1, 0x1}, {0xc4771e0801fda17, 0x1}, {}, {0x5, 0x1}, {0x2, 0x1}, {0x3}, {0x2, 0x1}, {0x4, 0x1}, {}, {0x3}, {0x5, 0x1}, {0x4}, {0x3, 0x4b39995b22058b3e}, {0x1, 0xcc923dd4eb2442e2}, {0x7924e29ad6509817, 0x1}, {0x3}, {0x3}, {0x3}, {0x756e4e311f10e3e4}, {0x4, 0x1}, {0x3}, {0x5}, {0x4}, {0x3}, {}, {0x3}, {0x1, 0x1}, {0x3}, {0x5}, {0x5, 0x1}, {0x1, 0x1}, {}, {0x0, 0x1}, {0x5}, {0x0, 0x1}, {0x2}, {0x2}, {0x3}, {0x3, 0x1}, {0x3, 0x1}, {0x0, 0x1}, {0x2, 0x1}, {0x3}, {0x3, 0x1}, {0x0, 0x1}, {0x1, 0x1}, {0x4}, {0x2}, {0x1, 0x1}, {0x2}, {0x2}, {0x2, 0x1}, {0x5, 0x1}, {0x2, 0x1}, {0x3}, {}, {}, {}, {0x1}, {0x2, 0x1}, {0x5, 0x1}, {0x3, 0x1}, {}, {0x3}, {0x0, 0x1}, {0x5}, {0xd, 0x1}, {0x1, 0x1}, {0x4}, {0x4, 0x1}, {0x2, 0xbd85f3f27d3ddede}, {0x5, 0x1}, {0x0, 0x1}, {0x3, 0x1}, {0x5}, {}, {0x9, 0x1}, {0x1, 0x1}, {0x3}, {}, {0x5, 0x1}, {0x1}, {0x0, 0x1}, {0x5, 0x1}, {0x0, 0x1}, {0x0, 0x1}, {}, {0x4, 0x1}, {0x1}, {0x5, 0x1}, {0x4, 0x1}, {}, {0x4, 0x1}, {}, {0x3}, {0x3, 0x1}, {0x4, 0x1}, {0x4, 0x1}, {0x1, 0x1}, {0x5}, {0x3, 0x1}, {0x1, 0x1}, {}, {0x0, 0x1}, {0x5, 0x1}, {0x5, 0x1}, {0x1, 0x1}, {0x2}, {0x3, 0x1}, {0x3}, {0x4}, {0x0, 0x1}, {0x5}, {0x2}, {0x2}, {0x5}, {0x0, 0x1}, {0x1, 0x1}, {0x4}, {0x1, 0x1}, {0x4}, {0x1, 0x1}, {0x5}, {0x4, 0x1}]}}]}, {0xe7, 0x6, "fe3f3ee9523420e915c37504f3f28379fc3a2ed85edc57e8374df0fb96c3146472a21c89c3ddaafbb5c3e82da35d7311e2ada8ffdb4133fb585a1a56d6bb017afea9cc66549958d2ef4b1a69a49927c545ef7549fedb0f1260f6b2fc1ed5691a6817c5df8b67a2ddef910bdb570fee5d19a69fd81e7a902427c4c4d317cd06ebfdb3c233b6110396cba3509ac0488499ca2479d4ae662d7dea21608d9ab2245f9d56a1f2bdf5291866b7c71d64898397137838fafe67a5aa2e8878a6f13cb21707410fbacfd7da2a2e82a5e3b0d3496973dd85d2af89401ae7a9b21cd6ac4165ca8e8a"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}]}]}, 0x121c}, 0x1, 0x0, 0x0, 0x804}, 0x40004)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x1, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000001040)='qdisc_reset\x00', r2, 0x0, 0x4}, 0x18)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0xc7)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4c)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$pppl2tp_PPPOL2TP_SO_SENDSEQ(r2, 0x111, 0x3, 0x1, 0x4)
getsockopt$IP_VS_SO_GET_TIMEOUT(r5, 0x0, 0xf, 0x0, &(0x7f0000000640))
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
read$FUSE(r6, &(0x7f0000003440)={0x2020}, 0x2020)
socket$alg(0x26, 0x5, 0x0)

2.310666608s ago: executing program 0 (id=666):
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x0, 0x2)
syz_open_dev$evdev(&(0x7f0000000140), 0x9, 0x410000)
r1 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r1)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x11, 0x2, 0x1})
ppoll(&(0x7f0000000240)=[{r0, 0x8000}, {r1, 0x4000}, {r1, 0x428}], 0x3, &(0x7f0000000280)={0x0, 0x3938700}, &(0x7f00000003c0)={[0xffffffff, 0x5a7a]}, 0x8)
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000080)=0x2)
ppoll(&(0x7f00000001c0)=[{r0, 0x204}], 0x1, 0x0, 0x0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r3, &(0x7f0000000040)={0x2, 0x4e22, @loopback}, 0xfffffffffffffe33)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f00000005c0)='ip6_vti0\x00', 0x10)
write$sndseq(r2, &(0x7f0000000180)=[{0x3, 0x0, 0x4, 0xc, @tick=0x1c, {0xff, 0x4}, {0xc, 0xc}, @note={0xf6, 0x9, 0x63, 0x80, 0x8}}, {0x3, 0x3, 0xf, 0x2, @time={0x568, 0x8000}, {0x95, 0xff}, {0x8, 0x5}, @raw32={[0x10000, 0x0, 0x80000000]}}], 0x38)
sendto$inet(r3, 0x0, 0x0, 0x20000844, &(0x7f0000000080)={0x2, 0x0, @remote}, 0x10)
r4 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt(r4, 0x84, 0x11, &(0x7f00000002c0)="1a00000002000000", 0x8)
socket$nl_generic(0x10, 0x3, 0x10)

2.218719798s ago: executing program 2 (id=667):
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000180)={0x1, &(0x7f0000000000)="883707400d97c191a80e30402429a7a5085a79e0cb8e9bf2dca50e3c5e425e8726f4e0fa4692230792243868218ab03d29c864f10c9394f33ca3ff985fcbac4bc1b6fd7ba8cc501d5f66678253e2c5b301ed7f4b6c0c435be1d9f34e701d87e4dd4268b9aad535a04540b5af5759496b5e05be79d9636f9dfe90d2d1e106ea37fa823a17f1367fda18a4aefd784b8b75433b3fe4349ed5fa3c8ddb769fcac406e5e41d27004d8e52", &(0x7f00000000c0)=@buf="99c4d5151a24601de77805c60ee3ee508b7931b17249eb552a51ee0bc023ac64aa0d36d04bdf8592aab6e67025317c6bfd77b9c2596ab74c5d48ba8d9d63c6fff84f50a3e543341b9277e04af7d57f34124775f720781261e68de66d7c7731f6d7b5b935f07d117846197a9c0a0225b37b45ddcb8caad3f98a741af35a700bf6666946ffad59e3"}, 0x1c)
r0 = socket$pppoe(0x18, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x2b, &(0x7f00000001c0)=0x7, 0x4)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000200)=<r1=>0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x1)
clock_gettime(0x2, &(0x7f0000000280))
wait4(r1, &(0x7f00000002c0), 0x1000000, &(0x7f0000000300))
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000001400)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f00000013c0)={&(0x7f00000003c0)=@deltfilter={0xff8, 0x2d, 0x4, 0x70bd26, 0x25dfdbff, {0x0, 0x0, 0x0, 0x0, {0x2, 0x3}, {0x0, 0xb}, {0x5, 0xf}}, [@TCA_RATE={0x6, 0x5, {0x0, 0x9}}, @filter_kind_options=@f_fw={{0x7}, {0x954, 0x2, [@TCA_FW_ACT={0x548, 0x4, [@m_mpls={0xc4, 0x3, 0x0, 0x0, {{0x9}, {0x38, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c, 0x2, {{0x772a8b1, 0x1, 0xd0217a05d6b8ae30, 0x7fffffff, 0x9}, 0x4}}, @TCA_MPLS_TC={0x5, 0x6, 0x1}, @TCA_MPLS_TC={0x5, 0x6, 0x5}, @TCA_MPLS_TTL={0x5, 0x7, 0x7}]}, {0x63, 0x6, "fc80c5867bb4bfdd2470a0a5026b476090f57a265a3bbc647169129e21cf605ff48b71d0c8c98132ba82e29dca0a59eee842f955deec57ae8ff08acee6191eef9eee54c838d192135c29fd7961fdf580ff59ef5012909f832b74e6e7f4d07b"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_csum={0x14c, 0x1e, 0x0, 0x0, {{0x9}, {0x74, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0xfffffffc, 0xfffffff8, 0x2, 0x7, 0x9}, 0x44}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x4, 0xf, 0xffffffffffffffff, 0x1, 0x1}, 0x39}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x148cf3c0, 0x3970402f, 0x6, 0x5, 0x10001}, 0x3b}}, @TCA_CSUM_PARMS={0x1c, 0x1, {{0x9, 0x4c, 0x10000000, 0xfffffffb, 0x7}, 0x76}}]}, {0xb0, 0x6, "47bab34641aaeb61f105da11f729dafaf5ffb1983f5c65b92b4cb5a211e37f6d9c462d32998ba8f1797cb31770dee8d4d072eb720f735acafa4779f9e582d8cdc9f2dd518bf38c015d7b71f821560e579c496ae15d4993ee2867d7a009998df202182d7ba002b83cbd339ef115465b88e9fec185cc97274d959cc01e0f17df2e9fda2ad0261f822515c25af91669dff1b94a7b4345c35884b4ccacf9400cf762a1e8efcc656f2ba9466d04eb"}, {0xc}, {0xc, 0x8, {0x1, 0x390c6f14de0f1441}}}}, @m_xt={0x110, 0x1f, 0x0, 0x0, {{0x7}, {0x74, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'nat\x00'}, @TCA_IPT_TABLE={0x24, 0x1, 'nat\x00'}, @TCA_IPT_HOOK={0x8}, @TCA_IPT_INDEX={0x8, 0x3, 0x2}, @TCA_IPT_HOOK={0x8, 0x2, 0x7}, @TCA_IPT_INDEX={0x8}, @TCA_IPT_INDEX={0x8, 0x3, 0x4}]}, {0x76, 0x6, "1fe7bda6cb49206318c5654b5072290df48dbae0d8ebfa8c2f19512f6c2e3b903be17e8ed63cba4c0305ee81243503de6a4f9477ee99523c4516655dca27fda3b3a438ab21a6a259caa043e8cd14bf852ff9245cd81b361c1a8f5681748fc6b14d3f43d4eae7f341852686775f253b434a84"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_skbedit={0x15c, 0x13, 0x0, 0x0, {{0xc}, {0x4c, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x2}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x7}, @TCA_SKBEDIT_MARK={0x8, 0x5, 0x4}, @TCA_SKBEDIT_PTYPE={0x6}, @TCA_SKBEDIT_PARMS={0x18, 0x2, {0x4, 0x4, 0x1, 0xffff, 0x3}}, @TCA_SKBEDIT_PRIORITY={0x8, 0x3, {0x9, 0x2}}, @TCA_SKBEDIT_QUEUE_MAPPING={0x6, 0x4, 0x6367}]}, {0xe5, 0x6, "bba0223dc7c7ef3021586e1a9691c73d3593e816d3edf0955d52cb9221e55ab430b8bcd67f36efbd39315e30a677c010e6c1fcdc31a2e093e631775662a538f4cd8d9e2eaad33fe2b62f596f3482b6d069ae66c0a2054ed0a8c380cffd28a6369036131447d65902b5dff180bed91e21c52251c7b900c1e0ef8dc9215de6ef36fc7b093d10cc1369c447c76fc5290e768c4d8006a08f8be2ada4e73c287b7177eda29c6eb925c900f644ced412fe1d88f4cc1161a953cd0ef96179270fe39165a93a9d5668bd435464326b34843eb2d025f56bdbae5ea9b09cdf28753495a28198"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x2}}}}, @m_ife={0xc8, 0x18, 0x0, 0x0, {{0x8}, {0x10, 0x2, 0x0, 0x1, [@TCA_IFE_SMAC={0xa, 0x4, @broadcast}]}, {0x91, 0x6, "34072fb275fe8cc1e2895a6bcdd6c056c04942f00d1b6516016028ab8ca441dd62fd8a4eec55266b28d4fc59c844204396f1442e5691cd37bc163d1757dc8a346a77cb3757a71b7aa9e15e90ab5d238f3fab9d927de9f9f2edfd38b8e2170fc4ea5002225c08a36015b6c2b789715a9a40600b3d06f754ea94485a8aa2da35272be4b226dd090730948484ae3d"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}, @TCA_FW_POLICE={0x408, 0x2, [@TCA_POLICE_RATE={0x404, 0x2, [0x5, 0x513, 0x0, 0x4, 0x8001, 0xa, 0xa4, 0x2, 0x101, 0x9, 0x5, 0x9, 0x3, 0x4884130c, 0x200, 0x3, 0x85, 0x7, 0x6, 0x4, 0x46, 0x10000, 0x8, 0x8001, 0x2, 0xad0, 0x3, 0x5, 0x8, 0x7ff, 0xe7, 0x1, 0x5, 0x3, 0x2286, 0x3000000, 0x7, 0x1, 0x2c99, 0xad4, 0xfffffff9, 0x6, 0xd17, 0x6, 0x0, 0x8, 0xfffffff6, 0x9, 0xe, 0x0, 0x5, 0x8, 0x8, 0x8f8, 0x3, 0x3, 0x4, 0x401, 0x7, 0x10ce, 0xe, 0xfffffff7, 0x2, 0x5, 0x9, 0x1, 0x6, 0x7ff, 0x5, 0x0, 0x1, 0x6, 0x5, 0x40, 0x6, 0x1, 0x9, 0x1, 0x11e2, 0x400, 0x6, 0xe7, 0x2, 0x6, 0x5, 0xffff, 0xffffffff, 0x7fffffff, 0xd, 0x6, 0x1, 0x3, 0x4, 0x7fff, 0x81, 0x7, 0x7fffffff, 0x8, 0x2a9, 0x6, 0x1, 0x8, 0x70f5, 0x8, 0x4, 0x8, 0x8, 0x3, 0x3, 0x8, 0x5, 0x8001, 0x6, 0x200, 0x9, 0x2, 0x3, 0x70, 0x0, 0x2, 0xa, 0x5, 0x80000000, 0xffff78e0, 0x10001, 0xf, 0x4, 0x3, 0x6, 0xfff, 0xffff, 0xe3, 0xb, 0x26cb8000, 0x80, 0xff, 0x3, 0x383, 0x7, 0x6, 0x94, 0x9, 0x3dae, 0x1000, 0xe, 0x8, 0x1, 0x4, 0x6, 0x321999bd, 0x5, 0xf06, 0x0, 0x4, 0x3, 0x400, 0x8, 0x9, 0x0, 0x0, 0xfffffff8, 0xfff, 0x6, 0x10, 0x8, 0x67b, 0x3ff, 0x2ee, 0x941f, 0x6, 0x7, 0x1, 0x8, 0x8, 0x2, 0x4, 0x8001, 0x3, 0x0, 0x1, 0xfffffffa, 0xf, 0xc0000000, 0x200, 0xa, 0x7, 0x1, 0x7, 0xfffffffe, 0x3fb, 0x2, 0x10000, 0x9, 0x3, 0x7, 0xf03, 0x269d95e5, 0x8, 0x9, 0x2782, 0x6, 0xffff, 0x5, 0x1, 0x400, 0x7fffffff, 0x6, 0x50b1, 0x6, 0x6, 0xc26, 0x3, 0x4, 0x6, 0x3, 0x1, 0x9, 0x1, 0x8e3, 0xdf9a, 0x1, 0x9, 0x8, 0x4157, 0xacb, 0x8, 0x28, 0x3, 0x3, 0x3, 0xa5c, 0x2, 0x7ff, 0x9, 0xd3, 0x7, 0xff, 0x3ff, 0x2, 0x3a, 0x7, 0xd93, 0x0, 0x5, 0x5, 0x1, 0xc, 0xfff, 0x4, 0xffff, 0x5, 0x0, 0x2, 0x7, 0x800b, 0x2]}]}]}}, @TCA_RATE={0x6, 0x5, {0x4, 0x8}}, @TCA_RATE={0x6, 0x5, {0x7, 0x6}}, @filter_kind_options=@f_matchall={{0xd}, {0x650, 0x2, [@TCA_MATCHALL_FLAGS={0x8, 0x3, 0x7}, @TCA_MATCHALL_ACT={0x278, 0x2, [@m_ctinfo={0x118, 0x1c, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_CTINFO_PARMS_CPMARK_MASK={0x8, 0x7, 0x6}]}, {0xe4, 0x6, "8f7dcf95d9c3937e7c98d0f827690d40955864713c58d8687062241bb740804b7216d9bc382480db473e859a67508dbd120f37a01e6d2e5c656178b4af2213ad3705d00119640cd952473fb1280bc0aae479266b62dd2104c7aa5c0a229f9f8d32f4ab44724ec7d9c8d8d930ac4ebf615c1cdd1c4d3e60c1e068ec83b1a7e08f5e36cc743da22e2aacdfdb6de6aaec0e88b6a1be99d8da826b0ea9ebe147416fd829a8856f5045d435dce90ace6a9e6ebbf6257191e8d5a7ba439170569cec614b4d5eeedcad70edf2d3650dcf04a6fbbe35a25d3c82d535dfaa914ccaa69ddd"}, {0xc}, {0xc, 0x8, {0x1}}}}, @m_gact={0x15c, 0x17, 0x0, 0x0, {{0x9}, {0xa0, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x5, 0x7f, 0x7, 0xd, 0x101}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x2201}}, @TCA_GACT_PROB={0xc, 0x3, {0x2, 0x11a9, 0x20000003}}, @TCA_GACT_PARMS={0x18, 0x2, {0x2, 0x9, 0x10000000, 0x80000001}}, @TCA_GACT_PARMS={0x18, 0x2, {0xf, 0x10, 0x0, 0x7f, 0x8b4}}, @TCA_GACT_PARMS={0x18, 0x2, {0xffffffff, 0x80, 0x6, 0x6, 0x1}}, @TCA_GACT_PROB={0xc, 0x3, {0x0, 0x685, 0x4}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x5a8, 0x6}}, @TCA_GACT_PROB={0xc, 0x3, {0x1, 0x2240, 0x5}}]}, {0x93, 0x6, "8290ea6a336135f00439797ee69d2393a2a2697e09d839e2459670f3080a201ee88458243973de566919480c151692778d260d9277b96bf8deeeee5180177786b552794ae6d1d9ebdd8ef71baf0e663aa4cf8a89337a00accc6accf56c2c2ebbc188d9aa686550cfc4ba08e9cfdd9c879c9f11ea361bcb80d9b3299352e5a53bc2b8e9aec07d18c4b6afcbd844c078"}, {0xc}, {0xc, 0x8, {0x2}}}}]}, @TCA_MATCHALL_FLAGS={0x8, 0x3, 0x5}, @TCA_MATCHALL_ACT={0x284, 0x2, [@m_tunnel_key={0x144, 0xa, 0x0, 0x0, {{0xf}, {0x44, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_NO_CSUM={0x5, 0xa, 0x1}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6, 0x9, 0x4e24}, @TCA_TUNNEL_KEY_PARMS={0x1c, 0x2, {{0x7f, 0x8, 0x10000000, 0x7fffffff, 0x7ff}, 0x2}}]}, {0xd3, 0x6, "f0e629aa0a67bc45ded63412c01af63a852fa3854da078f713f24e912729df6e9d8b0c76848eeb4b72211e72d8381596c1b4470112f7928acb80aeea7e2226815a8c389f90e97b7683acb8c95dfafb645e54c1e04fbd3207d44c0171ae4317272b6ec2973488a0c9ee9c7b31eef9f7f007b4bcc7ca7f8bd26e8c85c6569dd6419ab96126215ea9f5b762420c7870ef78ffdf61a0140b6adb8969e4dc3333f70a2910e47a4c866a21697498d799c868e6374f659f0e9b9ac1c91b87bd50d08a826b0e8ff315347309a19f6265a73790"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x2}}}}, @m_mpls={0x13c, 0x3, 0x0, 0x0, {{0x9}, {0x48, 0x2, 0x0, 0x1, [@TCA_MPLS_TTL={0x5, 0x7, 0x10}, @TCA_MPLS_PARMS={0x1c, 0x2, {{0x7f, 0x0, 0xffffffffffffffff, 0x6, 0x2}, 0x3}}, @TCA_MPLS_BOS={0x5}, @TCA_MPLS_LABEL={0x8, 0x5, 0x1ec34}, @TCA_MPLS_LABEL={0x8, 0x5, 0xea983}, @TCA_MPLS_TTL={0x5, 0x7, 0x35}]}, {0xc9, 0x6, "b4e959de51f059a426aa21226d9045b7cfad4a1b185614a90da8a765efcef5a30e47e1f61288c105d0ac2877c21e29b07dd52fc4e39a87edcc3ff2719c446aac560c4139269c12438e459984c6cfe319cd4a2922f2bd0986820db593e8c0ea79f8f2f340d5838205367ecde94e391ad96738d5acf517c8356c4fb450fbf1303e0d60e80648df7b7a4e26cfdc8a339a3dfc1c41db355154587fb44994bc57e02b8f01b94c949c9637298e9cbf902eab4bf2f6f68093878909788c3444ef000b96b38ce0bff0"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x3}}}}]}, @TCA_MATCHALL_ACT={0x140, 0x2, [@m_sample={0x13c, 0x6, 0x0, 0x0, {{0xb}, {0x3c, 0x2, 0x0, 0x1, [@TCA_SAMPLE_RATE={0x8, 0x3, 0x6}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x1000}, @TCA_SAMPLE_RATE={0x8, 0x3, 0x2}, @TCA_SAMPLE_PARMS={0x18, 0x2, {0x0, 0x5, 0x5, 0x2, 0x8}}]}, {0xd6, 0x6, "4e57c8406651a5488f52504ac63b56cff0054afb143e490e739e83f1d25cc0af35917b4d55ebf3118f393a757c05a59b9d7db144777dc6af6109485bd3550f83089a41fbc6e1ca64575ad4aedd3f2d50da52d05318cbc390b2c458ad821dd9059b18158982866344aae92bf2481c30cb0bbc80392b9c7a16b0235487f9191e2b9ebd9f60276a002233e9efb1b01c7abcdc8a4be44ee6855e6dce7c1de286b37c6eddb1602d7eab6da933e30790ab56d1f2c57c69d5fef54c398c702eabf1f8a19eb55585770d458e782acc7f71a0cb2efe23"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0xff8}, 0x1, 0x0, 0x0, 0x4008000}, 0x4040004)
socket$key(0xf, 0x3, 0x2)
ioctl$sock_SIOCGPGRP(r2, 0x8904, &(0x7f0000001440)=<r3=>0x0)
sched_setscheduler(r3, 0x0, &(0x7f0000001480)=0xc)
r4 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_FLAG_CMD(r4, 0x8982, &(0x7f00000014c0)={0x7, 'ipvlan1\x00', {0x5}, 0x2})
r5 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x2000000, 0x2010, 0xffffffffffffffff, 0x0)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(0xffffffffffffffff, 0x9, 0x0, 0x0)
syz_io_uring_submit(r5, 0x0, &(0x7f0000001500)=@IORING_OP_TEE={0x21, 0x24, 0x0, @fd=r0, 0x0, 0x0, 0xfffffffe, 0x4, 0x0, {0x0, r6, r0}})
waitid(0x2, r3, &(0x7f0000001540), 0x2, 0x0)
syz_io_uring_setup(0x58df, &(0x7f00000015c0)={0x0, 0xa282, 0x8, 0x2, 0x2dd, 0x0, r2}, &(0x7f0000001640), &(0x7f0000001680))
mremap(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000ffb000/0x1000)=nil)
io_setup(0x71d6, &(0x7f00000016c0))
r7 = openat$sw_sync_info(0xffffff9c, &(0x7f0000001700), 0xd8200, 0x0)
ioctl$CDROM_GET_CAPABILITY(r7, 0x5331)
r8 = socket$packet(0x11, 0x3, 0x300)
socket$inet_udp(0x2, 0x2, 0x0)
r9 = socket$inet6_sctp(0xa, 0x0, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r9, 0x84, 0x19, &(0x7f0000001740)={0x0, 0x8856}, 0x8)
r10 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CAP_X86_NOTIFY_VMEXIT(r10, 0x4068aea3, &(0x7f0000001780)={0xdb, 0x0, 0x204})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001e00)={0x11, 0x14, &(0x7f0000001800)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r7}}, {}, [@map_val={0x18, 0x4, 0x2, 0x0, r8, 0x0, 0x0, 0x0, 0x10}, @alu={0x7, 0x1, 0xd, 0x1, 0x8, 0x1}, @cb_func={0x18, 0x6, 0x4, 0x0, 0x8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000018c0)='GPL\x00', 0x5, 0x88, &(0x7f0000001900)=""/136, 0x0, 0x21, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001cc0)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000001d00)={0x1, 0x4, 0x7f, 0xffffff7d}, 0x10, 0x0, 0x0, 0x6, &(0x7f0000001d40)=[r7, r7], &(0x7f0000001d80)=[{0x1, 0x4, 0x7}, {0x4, 0x5, 0xe, 0x1}, {0x0, 0x4, 0xe, 0x5}, {0x1, 0x3, 0x4, 0x6}, {0x2, 0x1, 0x0, 0xc}, {0x0, 0x1, 0x5}], 0x10, 0x18, @void, @value}, 0x94)

2.090773703s ago: executing program 0 (id=668):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000100)={&(0x7f0000000180)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r0, 0xc02064b6, &(0x7f00000001c0)={r1, <r2=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
splice(r3, 0x0, r5, 0x0, 0x88000cc, 0x0)
fcntl$setpipe(r4, 0x407, 0x100004)
write$eventfd(r4, &(0x7f0000000240), 0xffffff14)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r0, 0xc02064b9, &(0x7f00000002c0)={&(0x7f0000000300)=[0x0, 0x0, <r6=>0x0], &(0x7f0000000040), 0x4000000000000045, r2, 0xcccccccc})
ioctl$DRM_IOCTL_MODE_ATOMIC(r0, 0xc03864bc, &(0x7f0000000380)={0x0, 0x1, &(0x7f00000000c0)=[r2], &(0x7f0000000040), &(0x7f0000000040)=[r6], &(0x7f0000000200)})

2.021103045s ago: executing program 2 (id=669):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000180)={@multicast1, @loopback}, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
fstat(r1, &(0x7f0000000000))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01180000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

2.020636582s ago: executing program 2 (id=670):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb7, &(0x7f0000000140)=""/183, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)=ANY=[], 0x34)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x2)
r3 = syz_open_dev$loop(0x0, 0x75f, 0x0)
r4 = memfd_create(&(0x7f0000000ac0)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\xccEi\xfb\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee<\x8bw\xdd^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\x89>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3\x00\x00\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x4)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x74, 0x30, 0x9, 0x0, 0x0, {}, [{0x60, 0x1, [@m_mpls={0x5c, 0x1, 0x0, 0x0, {{0x14}, {0x30, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c}, @TCA_MPLS_LABEL={0x8}, @TCA_MPLS_TTL={0x5}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000f40)=@filter={'filter\x00', 0x4, 0x4, 0x3cc, 0xffffffff, 0x0, 0x0, 0xe4, 0xfeffffff, 0xffffffff, 0x390, 0x390, 0x390, 0xffffffff, 0x7fffffe, 0x0, {[{{@uncond, 0x2f2, 0xa4, 0xe4}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x4}}}, {{@ipv6={@private2, @empty, [], [], 'sit0\x00', 'batadv_slave_1\x00'}, 0x0, 0xec, 0x12c, 0x0, {}, [@common=@dst={{0x48}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x2, 0x57, {0x2000000}}}}, {{@ipv6={@empty, @mcast1, [], [], 'ip6tnl0\x00', 'dvmrp0\x00'}, 0x0, 0xd0, 0xf4, 0x0, {}, [@common=@unspec=@realm={{0x2c}, {0x1, 0xdd8}}]}, @REJECT={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x428)
r7 = syz_open_dev$vbi(&(0x7f0000000340), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r7, 0xc0045627, &(0x7f00000002c0)=0x7)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r7, 0xc0845657, &(0x7f0000000200)={0x0, @bt={0x8a5, 0x93, 0x0, 0x1, 0xd59f80, 0x19ef, 0x7, 0x19ef, 0x3, 0x6, 0x27ff, 0x2800, 0x2, 0xbb6, 0x2, 0x8, {0x8, 0xffffffff}, 0xd0, 0x9}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newqdisc={0xf8, 0x24, 0x200, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x8, 0xfff2}, {0x6, 0x9}, {0x7, 0x5}}, [@TCA_STAB={0xac, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x4, 0xb, 0x4d, 0xfffc, 0x0, 0xfffeffff, 0x2, 0xa}}, {0x18, 0x2, [0x7fff, 0xf7b9, 0xf9, 0x5, 0x1ff, 0x7, 0x8, 0x5, 0xb, 0x5]}}, {{0x1c, 0x1, {0x8, 0x0, 0x8000, 0x80000001, 0x1, 0xbed, 0x3, 0x6}}, {0x10, 0x2, [0x9, 0x0, 0x7, 0x8, 0x2, 0x9]}}, {{0x1c, 0x1, {0x4, 0xf, 0x8, 0x5, 0x1, 0x6, 0x7ff, 0x1}}, {0x6, 0x2, [0x40]}}, {{0x1c, 0x1, {0x9, 0x1, 0x4, 0x1, 0x1, 0x8, 0x7ff, 0x2}}, {0x8, 0x2, [0xedc, 0x2]}}]}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0xf6a9}, @qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x1, 0x0, 0x5}}}}]}, 0xf8}, 0x1, 0x0, 0x0, 0x804}, 0x4000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)

1.950976052s ago: executing program 3 (id=671):
fsopen(&(0x7f0000000100)='udf\x00', 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x3, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x300}}, &(0x7f0000000000)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$sndpcmp(0x0, 0x0, 0x202000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r2)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r4, @ANYBLOB="1f003300d00000000802110000010802110000005050505050500000", @ANYRES8=r2], 0x3c}, 0x1, 0x0, 0x0, 0x4010}, 0x10)

1.820697148s ago: executing program 3 (id=672):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002700)=ANY=[], 0x48)
r1 = accept4$netrom(r0, &(0x7f0000000180)={{0x3, @bcast}, [@netrom, @rose, @null, @bcast, @netrom, @bcast, @default]}, &(0x7f0000000200)=0x48, 0x800)
recvmmsg(r1, &(0x7f00000025c0)=[{{&(0x7f00000004c0)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f00000003c0)=[{&(0x7f0000000540)=""/91, 0x5b}, {&(0x7f0000000680)=""/230, 0xe6}, {&(0x7f0000000300)=""/8, 0x8}, {&(0x7f0000000900)=""/185, 0xb9}, {&(0x7f00000009c0)=""/107, 0x6b}], 0x5, &(0x7f0000000a80)=""/77, 0x4d}, 0x81}, {{&(0x7f0000000b00)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, 0x80, &(0x7f0000000600)=[{&(0x7f0000000b80)=""/249, 0xf9}, {&(0x7f0000000c80)=""/228, 0xe4}], 0x2, &(0x7f0000000d80)=""/126, 0x7e}, 0x8000}, {{0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000780)}, {&(0x7f00000013c0)=""/12, 0xc}, {&(0x7f0000000e00)=""/94, 0x5e}, {&(0x7f0000000e80)=""/175, 0xaf}, {&(0x7f0000000f40)=""/4, 0x4}, {&(0x7f0000000f80)=""/155, 0x9b}, {&(0x7f0000001040)=""/212, 0xd4}, {&(0x7f0000000780)=""/42, 0x2a}, {&(0x7f0000001180)=""/149, 0x95}], 0x9, &(0x7f00000012c0)}, 0x5}, {{&(0x7f0000001300)=@in6={0xa, 0x0, 0x0, @ipv4={""/10, ""/2, @remote}}, 0x80, &(0x7f0000001700)=[{&(0x7f0000002700)=""/127, 0x7f}, {&(0x7f0000001400)=""/66, 0x42}, {&(0x7f0000001480)=""/114, 0x72}, {&(0x7f0000001500)=""/87, 0x57}, {&(0x7f0000001580)=""/218, 0xda}, {&(0x7f0000001680)=""/103, 0x67}], 0x6}, 0x6}, {{&(0x7f0000001740)=@hci, 0x80, &(0x7f0000001a40)=[{&(0x7f00000017c0)=""/219, 0xdb}, {&(0x7f00000018c0)=""/149, 0x95}, {&(0x7f0000001980)=""/165, 0xa5}], 0x3, &(0x7f0000001a80)=""/87, 0x57}, 0x6}, {{0x0, 0x0, &(0x7f0000001dc0)=[{&(0x7f0000001b00)=""/214, 0xd6}, {&(0x7f0000002780)=""/153, 0x99}, {&(0x7f0000001cc0)=""/253, 0xfd}, {0x0}], 0x4, &(0x7f0000001e00)=""/227, 0xe3}, 0x4}, {{&(0x7f0000001f00)=@in6={0xa, 0x0, 0x0, @remote}, 0x80, &(0x7f00000024c0)=[{&(0x7f0000001f80)=""/99, 0x63}, {&(0x7f0000002000)=""/127, 0x7f}, {&(0x7f0000002080)=""/120, 0x78}, {&(0x7f0000002100)=""/231, 0xe7}, {&(0x7f0000002200)=""/175, 0xaf}, {&(0x7f00000022c0)=""/94, 0x5e}, {&(0x7f0000002340)=""/127, 0x7f}, {&(0x7f00000023c0)=""/206, 0xce}], 0x8, &(0x7f0000002500)=""/138, 0x8a}, 0x8}], 0x7, 0x40000022, &(0x7f00000026c0))
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x10, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r2}, 0x18)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000140)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000001380)=[{0x6, 0x0, 0x0, 0x6}]})
r5 = syz_open_dev$tty20(0xc, 0x4, 0x1)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r6)
syz_emit_ethernet(0x7e, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb86dd6015690900482f00fc020000000000000000000000000000ff020000000000000000000000000001242088a8000000000006000000002800000086dd88a888be08000000100000000100000000000000080e22eb00000000200000000200000000000000000000000800655800000000"], 0x0)
sendmsg$NFC_CMD_START_POLL(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010023010000340200000600000008000100", @ANYRES32, @ANYBLOB="08000300"], 0x24}}, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000)=<r8=>0x0)
timer_settime(r8, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
ioctl$TIOCL_PASTESEL(r5, 0x541c, &(0x7f0000000040))
syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[], 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f00000005c0)=[{0x0}], 0x1, 0x0, 0x0, 0x11000000}, 0x2)
r9 = syz_open_dev$sg(&(0x7f00000002c0), 0x0, 0x0)
ioctl$SG_IO(r9, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffffffffffc, 0x6, 0x1, @buffer={0x300, 0x49, &(0x7f0000000440)=""/73}, &(0x7f0000000380)="259374c96ee3", 0x0, 0xffffffff, 0x30, 0x0, 0x0})
syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0)
r10 = openat$binfmt(0xffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_misc(r10, &(0x7f0000001380), 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x4)
pipe2$9p(&(0x7f0000001140)={0xffffffffffffffff, <r11=>0xffffffffffffffff}, 0x80800)
write$P9_ROPEN(r11, &(0x7f00000012c0)={0x18, 0x71, 0x2, {{0x2, 0x0, 0x3}, 0xd}}, 0x18)
close_range(r4, 0xffffffffffffffff, 0x0)

1.520733798s ago: executing program 1 (id=673):
socket(0x2a, 0x2, 0x0)
r0 = syz_io_uring_setup(0x1372, &(0x7f00000000c0)={0x0, 0x49fa, 0x4, 0x5, 0x85}, &(0x7f0000000380), &(0x7f0000000280))
io_uring_register$IORING_REGISTER_FILES(r0, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x39)
getpid()
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), r1)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
fsopen(0x0, 0x0)
ioctl$NS_GET_PARENT(0xffffffffffffffff, 0xb702, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x4820}, 0x11)
prlimit64(0x0, 0xb, &(0x7f0000000340)={0x9, 0x5}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff})
sched_setaffinity(r3, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xc, 0x3, 0x7ffc1ffb}]})
modify_ldt$write2(0x11, &(0x7f0000000040), 0x10)
modify_ldt$read(0x0, &(0x7f00000016c0)=""/4115, 0xc4)
socket$inet_mptcp(0x2, 0x1, 0x106)

1.220766792s ago: executing program 0 (id=674):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5}, 0x20008000)
socket(0x848000000015, 0x805, 0x7b)
r1 = socket(0x1e, 0x1, 0x0)
sendto$packet(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000a80)={0x11, 0x88a8, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x0)
connect$tipc(r1, &(0x7f0000000000)=@name={0x1e, 0x2, 0x0, {{0x1, 0x1}}}, 0x10)
write$binfmt_misc(r1, &(0x7f0000000080), 0x2000011a)
syz_open_dev$tty1(0xc, 0x4, 0x1)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
pselect6(0x40, &(0x7f0000000100), 0x0, &(0x7f0000000240)={0x1f}, &(0x7f0000000280)={0x0, 0x3938700}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r2 = userfaultfd(0x801)
ioctl$UFFDIO_CONTINUE(r2, 0xc020aa07, &(0x7f0000000040)={{&(0x7f0000ffd000/0x1000)=nil, 0x1000}, 0x1})
r3 = openat$full(0xffffff9c, &(0x7f0000000340), 0x200, 0x0)
ioctl$F2FS_IOC_GET_COMPRESS_BLOCKS(r3, 0x8008f511, &(0x7f0000000380))
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x24, r5, 0x201, 0x400000, 0x0, {{}, {}, {0x8, 0x11, 0x4}}}, 0x24}}, 0x0)

1.059894984s ago: executing program 2 (id=675):
r0 = accept4(0xffffffffffffffff, &(0x7f0000000280)=@caif=@util, &(0x7f0000000180)=0x80, 0x80800)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000004c0)={<r1=>0x0, 0x1c, &(0x7f0000000480)=[@in6={0xa, 0x4e21, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}, 0x1}]}, &(0x7f00000005c0)=0xc)
setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000600)={r1, @in={{0x2, 0x4e20, @initdev={0xac, 0x1e, 0x1, 0x0}}}, 0x5, 0xd61}, 0x88)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000040)={0x200002, 0x200003, 0x8001, 0x4, 0x7})
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000001c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@verity_on}]})
open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
rename(&(0x7f0000000080)='./control\x00', &(0x7f0000000200)='./control\x00')
chdir(&(0x7f0000000140)='./bus\x00')

1.059076375s ago: executing program 2 (id=676):
unshare(0x62040200)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
ioperm(0x7e, 0xb, 0x3)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000040))
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
readv(r1, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_FEATURES(0xffffffffffffffff, 0x80189439, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x2, @sliced={0x6, [0xdcc1, 0x2, 0x100, 0x2, 0x9, 0x1, 0x0, 0x0, 0x2, 0x2209, 0x7f, 0xfe1b, 0xb, 0x8, 0x2, 0xfff, 0x6931, 0x7, 0x6, 0x4, 0xfff6, 0xfff, 0x177, 0x5, 0x3ff, 0x4, 0x6, 0x7, 0x6, 0x100, 0x800, 0x2, 0x3, 0x3e50, 0x1c, 0x7fff, 0x5, 0x5, 0x9, 0x100, 0xd1c3, 0x101, 0x7, 0x7, 0xde, 0x1, 0xfc00], 0x9}})
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'sit0\x00', <r3=>0x0})
ioctl$sock_inet6_SIOCSIFDSTADDR(r2, 0x8918, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @local}, 0x78, r3})
io_setup(0x3ff, &(0x7f0000000500)=<r4=>0x0)
syz_io_uring_setup(0x24fd, &(0x7f00000004c0)={0x0, 0x0, 0x10000, 0x2, 0x1ea}, 0x0, &(0x7f0000000280))
io_submit(r4, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
syz_io_uring_setup(0x497, &(0x7f0000000380)={0x0, 0x707b, 0x0, 0x1, 0x28b}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_pressure(r6, &(0x7f0000000100)='cpu.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r7, &(0x7f0000000080)={'some', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)

1.040222652s ago: executing program 0 (id=677):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000180), r0)
sendmsg$NFC_CMD_DEV_DOWN(r0, &(0x7f0000002600)={0x0, 0x0, &(0x7f00000025c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="01002abd7000fbdb4c6e0300000008000100e8"], 0x1c}, 0x1, 0x0, 0x0, 0x2400c044}, 0x40000)
r2 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x20001, 0x0)
ioctl$EXT4_IOC_ALLOC_DA_BLKS(r2, 0x3309)
munlock(&(0x7f0000ffb000/0x3000)=nil, 0x3000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd74)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, 0x0, 0x0, 0x4)
r5 = socket(0x10, 0x80002, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010e7010000000000000000000000000a20000000000a03000000000000000000070000000c00044000000000000000021c000000090a010400000000000000000700000008000a4000000003"], 0x64}, 0x1, 0x0, 0x0, 0x4004001}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c00000010000d0425bd7000fcdbff2500000000", @ANYRES32=0x0, @ANYBLOB="1000000000c600001c0012800b00010062726964676500000c0002800800130011000000"], 0x3c}, 0x1, 0x0, 0x0, 0x10}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg$alg(r5, &(0x7f00000000c0), 0x492492492492627, 0x0)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'veth1_to_bridge\x00', <r7=>0x0})
socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r8, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r10=>0x0})
sendmsg$nl_route(r9, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="18010000540000012abd7000fedbdf250700000078ce1fb15b9f1a873589c5321d6db9adcdcd43a2e79155f9a7d0030000005f85b739a3fb3696ff05af41dbce777638ebb68736a78464cbb3e6e52211c99afe761e3b57eb5cdc0738", @ANYRES32=r10, @ANYBLOB="20000100", @ANYRES32=r10, @ANYBLOB="00000400fe88000000000000000000000000010186dd000020000100", @ANYRES32=r10, @ANYBLOB="01010000ac14143900000000000000000000000086dd000020000100", @ANYRES32=r7, @ANYBLOB="0101000000000000000000000000000000000000c5b3000020000100", @ANYRES32=r10, @ANYBLOB="000001002001000000000000000000000000000086dd000020000100", @ANYRES32=r7, @ANYBLOB="01030000fc0000000000000000000000000000000000000020000100", @ANYRES32=r7, @ANYBLOB="0002010000000000000000000000ffffffffffff0800000020000100", @ANYRES32=0x0, @ANYBLOB="02030100ac1e010100000000000000000000000086dd000020000100", @ANYRES32=0x0, @ANYBLOB="01010200ac1414bb0000000000000000000000008edd0000"], 0x118}, 0x1, 0x0, 0x0, 0x40001}, 0x40)
sendmsg$nl_route(r8, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="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"], 0x2c}}, 0x0)
ioctl$sock_inet6_SIOCADDRT(r6, 0x890b, &(0x7f0000000540)={@rand_addr=' \x01\x00', @local, @private1, 0x0, 0x0, 0x0, 0x0, 0x40000000, 0x4400046, r7})
socket$nl_generic(0x10, 0x3, 0x10)
creat(&(0x7f0000000040)='./file0\x00', 0x81)

813.47952ms ago: executing program 2 (id=678):
r0 = syz_open_pts(0xffffffffffffffff, 0x1)
ioctl$TIOCPKT(r0, 0x5420, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, &(0x7f0000000040)})
openat$hpet(0xffffff9c, &(0x7f0000000080), 0x10000, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x5)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r3 = syz_open_dev$video(&(0x7f0000000040), 0xa7, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x204, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x12, r4, 0x0)
ioctl$VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000180)={0x1, @win={{0x8, 0xef90, 0x1000000, 0x7}, 0x0, 0xbfee, &(0x7f0000000400)={{0x0, 0x10000, 0x200, 0x7}, &(0x7f00000003c0)={{0x6, 0xb55, 0x7, 0x2}, &(0x7f0000000280)={{0x80000001, 0x9, 0x9, 0xfffffffa}}}}, 0x7, &(0x7f0000000440)="d9", 0x6}})

690.012308ms ago: executing program 0 (id=679):
mkdir(&(0x7f00000000c0)='./file1\x00', 0x154)
mount(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000140)='./file1\x00')
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='net_prio.prioidx\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r0, 0xffffffff80000800, 0x0, &(0x7f0000000280)={0x8, 0x3, 0x1000000, 0x2, 0x9, 0xfffffffffffffffb, 0x0, 0x0, 0x982f})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_emit_ethernet(0x92, &(0x7f00000004c0)={@local, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x4, 0x84, 0x0, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x1c, 0x2, 0x0, 0x0, 0x0, {[@timestamp={0x8, 0xa, 0x6, 0xffffffff}, @sack={0x5, 0x22, [0x7, 0x1, 0x190f3d3, 0x8, 0x8, 0x80, 0xfffffffd, 0xffff64a4]}, @exp_fastopen={0xfe, 0xf, 0xf989, "9fca59893b5031248415bc"}, @timestamp={0x8, 0xa, 0x200, 0x9}, @sack={0x5, 0x6, [0x2]}, @exp_fastopen={0xfe, 0x9, 0xf989, "43ecdca921"}, @generic={0x2, 0x5, "a6e77f"}]}}}}}}}, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, &(0x7f0000000040)='vegas\x00', 0x6)
syz_open_dev$video(0x0, 0xbdff, 0x2242)
connect$inet6(r1, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
write$binfmt_script(r1, &(0x7f0000000200), 0xfffffd9d)
write$cgroup_type(r0, &(0x7f0000000080), 0x9)
stat(&(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0})
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000100)=@nullb, r2, &(0x7f0000000340)='./file1\x00')

559.098466ms ago: executing program 1 (id=680):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000140)={0x8b28, 0x3}, 0x18, 0x0)
landlock_restrict_self(r1, 0x0)
bind$unix(r0, &(0x7f0000000dc0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = openat$vicodec0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYRES32=r2], 0x0)
r3 = syz_open_dev$sndctrl(&(0x7f0000000000), 0xdc3, 0x0)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r3, 0xc0045520, &(0x7f0000000040)=0x1)

558.76831ms ago: executing program 0 (id=681):
syz_io_uring_setup(0x8011d7, &(0x7f0000000640)={0x0, 0xec27, 0x161, 0x1, 0x386}, 0x0, &(0x7f00000004c0))
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1e000000f8ffffff030000007f00000001000000", @ANYRES32=0x1, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0300000005000000030000000800"/28], 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000140)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x3f8, 0x0, 0x32}, 0x9c)
unlink(&(0x7f0000000000)='./file0\x00')
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x0)
r5 = socket(0x2a, 0x2, 0x5)
sendto(r5, 0x0, 0x0, 0x0, &(0x7f0000000040)=@qipcrtr, 0x80)
read$qrtrtun(r4, 0x0, 0x0)
dup2(r4, r5)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0xfee4, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)

88.719431ms ago: executing program 1 (id=682):
r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x48380, 0x0)
r1 = syz_open_dev$cec(&(0x7f00000000c0), 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r1, 0xc05c6104, &(0x7f0000000100)={"fe080800", 0x5, 0x6, 0x2, 0x1, 0x200, "33777877c734c4f928875ab8db00", '\x00', "020100", "ec41ffff", ["a51c00a60100", "00010033fffffffffffff1ec", "0900000000000000ff1900", "000500"]})
dup3(r1, r0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40186f40, &(0x7f0000000440)=0x1f)

0s ago: executing program 1 (id=683):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xb7, &(0x7f0000000140)=""/183, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)=ANY=[], 0x34)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
msync(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x1)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x2)
r3 = syz_open_dev$loop(0x0, 0x75f, 0x0)
r4 = memfd_create(&(0x7f0000000ac0)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\xccEi\xfb\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee<\x8bw\xdd^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\x89>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3\x00\x00\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x4)
ioctl$LOOP_CHANGE_FD(r3, 0x4c00, r4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newtaction={0x74, 0x30, 0x9, 0x0, 0x0, {}, [{0x60, 0x1, [@m_mpls={0x5c, 0x1, 0x0, 0x0, {{0x14}, {0x30, 0x2, 0x0, 0x1, [@TCA_MPLS_PARMS={0x1c}, @TCA_MPLS_LABEL={0x8}, @TCA_MPLS_TTL={0x5}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x74}}, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000f40)=@filter={'filter\x00', 0x4, 0x4, 0x3cc, 0xffffffff, 0x0, 0x0, 0xe4, 0xfeffffff, 0xffffffff, 0x390, 0x390, 0x390, 0xffffffff, 0x7fffffe, 0x0, {[{{@uncond, 0x2f2, 0xa4, 0xe4}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x0, 0x4}}}, {{@ipv6={@private2, @empty, [], [], 'sit0\x00', 'batadv_slave_1\x00'}, 0x0, 0xec, 0x12c, 0x0, {}, [@common=@dst={{0x48}}]}, @common=@unspec=@RATEEST={0x40, 'RATEEST\x00', 0x0, {'syz1\x00', 0x2, 0x57, {0x2000000}}}}, {{@ipv6={@empty, @mcast1, [], [], 'ip6tnl0\x00', 'dvmrp0\x00'}, 0x0, 0xd0, 0xf4, 0x0, {}, [@common=@unspec=@realm={{0x2c}, {0x1, 0xdd8}}]}, @REJECT={0x24}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x428)
r7 = syz_open_dev$vbi(&(0x7f0000000340), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r7, 0xc0045627, &(0x7f00000002c0)=0x7)
ioctl$VIDIOC_SUBDEV_S_DV_TIMINGS(r7, 0xc0845657, &(0x7f0000000200)={0x0, @bt={0x8a5, 0x93, 0x0, 0x1, 0xd59f80, 0x19ef, 0x7, 0x19ef, 0x3, 0x6, 0x27ff, 0x2800, 0x2, 0xbb6, 0x2, 0x8, {0x8, 0xffffffff}, 0xd0, 0x9}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newqdisc={0xf8, 0x24, 0x200, 0x70bd27, 0x25dfdbfd, {0x0, 0x0, 0x0, 0x0, {0x8, 0xfff2}, {0x6, 0x9}, {0x7, 0x5}}, [@TCA_STAB={0xac, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x4, 0xb, 0x4d, 0xfffc, 0x0, 0xfffeffff, 0x2, 0xa}}, {0x18, 0x2, [0x7fff, 0xf7b9, 0xf9, 0x5, 0x1ff, 0x7, 0x8, 0x5, 0xb, 0x5]}}, {{0x1c, 0x1, {0x8, 0x0, 0x8000, 0x80000001, 0x1, 0xbed, 0x3, 0x6}}, {0x10, 0x2, [0x9, 0x0, 0x7, 0x8, 0x2, 0x9]}}, {{0x1c, 0x1, {0x4, 0xf, 0x8, 0x5, 0x1, 0x6, 0x7ff, 0x1}}, {0x6, 0x2, [0x40]}}, {{0x1c, 0x1, {0x9, 0x1, 0x4, 0x1, 0x1, 0x8, 0x7ff, 0x2}}, {0x8, 0x2, [0xedc, 0x2]}}]}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0xf6a9}, @qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x1, 0x0, 0x5}}}}]}, 0xf8}, 0x1, 0x0, 0x0, 0x804}, 0x4000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:55350' (ED25519) to the list of known hosts.
[   42.070785][ T5932] cgroup: Unknown subsys name 'net'
[   42.210804][ T5932] cgroup: Unknown subsys name 'cpuset'
[   42.214679][ T5932] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   43.041268][ T5932] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   46.399977][ T5964] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   46.402923][ T5964] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   46.406279][ T5968] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   46.410132][ T5968] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   46.413774][ T5968] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   46.417123][ T5968] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   46.417535][ T5966] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   46.418664][ T5967] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   46.419383][ T5967] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   46.419620][ T5967] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   46.420047][ T5967] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   46.420377][ T5967] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   46.421254][ T5968] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   46.423169][ T5957] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   46.427819][ T5967] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   46.431017][ T5957] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   46.432950][ T5967] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   46.435779][ T5957] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   46.436287][ T5972] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   46.436610][ T5972] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   46.641881][ T5961] chnl_net:caif_netlink_parms(): no params data found
[   46.653251][ T5958] chnl_net:caif_netlink_parms(): no params data found
[   46.782268][ T5961] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.784798][ T5961] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.787196][ T5961] bridge_slave_0: entered allmulticast mode
[   46.789880][ T5961] bridge_slave_0: entered promiscuous mode
[   46.800411][ T5961] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.802620][ T5961] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.804870][ T5961] bridge_slave_1: entered allmulticast mode
[   46.807422][ T5961] bridge_slave_1: entered promiscuous mode
[   46.914600][ T5961] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   46.940318][ T5958] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.942541][ T5958] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.944724][ T5958] bridge_slave_0: entered allmulticast mode
[   46.947209][ T5958] bridge_slave_0: entered promiscuous mode
[   46.951366][ T5961] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   46.954174][ T5969] chnl_net:caif_netlink_parms(): no params data found
[   46.979209][ T5958] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.981413][ T5958] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.983607][ T5958] bridge_slave_1: entered allmulticast mode
[   46.986139][ T5958] bridge_slave_1: entered promiscuous mode
[   47.041859][ T5958] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.052406][ T5961] team0: Port device team_slave_0 added
[   47.073460][ T5958] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.076393][ T5955] chnl_net:caif_netlink_parms(): no params data found
[   47.101981][ T5961] team0: Port device team_slave_1 added
[   47.196597][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.199079][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.206879][ T5961] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.211484][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.213631][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.221943][ T5961] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.227287][ T5958] team0: Port device team_slave_0 added
[   47.275208][ T5958] team0: Port device team_slave_1 added
[   47.292601][ T5969] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.294808][ T5969] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.296998][ T5969] bridge_slave_0: entered allmulticast mode
[   47.300032][ T5969] bridge_slave_0: entered promiscuous mode
[   47.302591][ T5955] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.304849][ T5955] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.307180][ T5955] bridge_slave_0: entered allmulticast mode
[   47.310244][ T5955] bridge_slave_0: entered promiscuous mode
[   47.352887][ T5969] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.355146][ T5969] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.357455][ T5969] bridge_slave_1: entered allmulticast mode
[   47.360556][ T5969] bridge_slave_1: entered promiscuous mode
[   47.377493][ T5955] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.380395][ T5955] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.382964][ T5955] bridge_slave_1: entered allmulticast mode
[   47.385509][ T5955] bridge_slave_1: entered promiscuous mode
[   47.408757][ T5961] hsr_slave_0: entered promiscuous mode
[   47.410933][ T5961] hsr_slave_1: entered promiscuous mode
[   47.442566][ T5958] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.444847][ T5958] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.453547][ T5958] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.460350][ T5958] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.462514][ T5958] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.470259][ T5958] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.475351][ T5969] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.480950][ T5969] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.500740][ T5955] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   47.533981][ T5955] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   47.584391][ T5969] team0: Port device team_slave_0 added
[   47.588247][ T5969] team0: Port device team_slave_1 added
[   47.592320][ T5955] team0: Port device team_slave_0 added
[   47.636276][ T5955] team0: Port device team_slave_1 added
[   47.703747][ T5958] hsr_slave_0: entered promiscuous mode
[   47.705944][ T5958] hsr_slave_1: entered promiscuous mode
[   47.707933][ T5958] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.710505][ T5958] Cannot create hsr debugfs directory
[   47.722645][ T5969] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.724843][ T5969] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.733619][ T5969] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.741101][ T5969] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.743216][ T5969] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.750975][ T5969] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.754771][ T5955] batman_adv: batadv0: Adding interface: batadv_slave_0
[   47.756914][ T5955] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.765703][ T5955] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   47.769875][ T5955] batman_adv: batadv0: Adding interface: batadv_slave_1
[   47.771987][ T5955] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   47.779859][ T5955] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   47.913941][ T5955] hsr_slave_0: entered promiscuous mode
[   47.916144][ T5955] hsr_slave_1: entered promiscuous mode
[   47.918490][ T5955] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.920818][ T5955] Cannot create hsr debugfs directory
[   47.952107][ T5969] hsr_slave_0: entered promiscuous mode
[   47.954330][ T5969] hsr_slave_1: entered promiscuous mode
[   47.956369][ T5969] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   47.958782][ T5969] Cannot create hsr debugfs directory
[   48.138134][ T5961] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   48.149318][ T5961] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   48.156841][ T5961] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   48.175492][ T5961] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   48.206075][ T5958] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   48.210564][ T5958] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   48.215849][ T5958] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   48.222798][ T5958] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   48.266174][ T5955] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   48.274452][ T5955] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   48.281107][ T5955] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   48.285624][ T5955] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   48.311649][ T5961] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.343036][ T5969] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   48.347893][ T5969] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   48.352071][ T5969] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   48.355844][ T5969] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   48.362175][ T5961] 8021q: adding VLAN 0 to HW filter on device team0
[   48.379827][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.382054][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.397443][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.399744][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.410277][ T5958] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.443417][ T5958] 8021q: adding VLAN 0 to HW filter on device team0
[   48.449129][ T5955] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.459237][ T5305] Bluetooth: hci1: command tx timeout
[   48.459241][ T5957] Bluetooth: hci3: command tx timeout
[   48.459446][   T66] Bluetooth: hci0: command tx timeout
[   48.459452][ T5957] Bluetooth: hci2: command tx timeout
[   48.460451][   T83] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.460520][   T83] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.479869][   T83] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.482057][   T83] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.495325][ T5955] 8021q: adding VLAN 0 to HW filter on device team0
[   48.505159][ T1135] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.507348][ T1135] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.521106][ T5969] 8021q: adding VLAN 0 to HW filter on device bond0
[   48.524603][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.526829][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.547788][ T5958] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   48.562440][ T5969] 8021q: adding VLAN 0 to HW filter on device team0
[   48.582024][   T64] bridge0: port 1(bridge_slave_0) entered blocking state
[   48.584323][   T64] bridge0: port 1(bridge_slave_0) entered forwarding state
[   48.587711][   T64] bridge0: port 2(bridge_slave_1) entered blocking state
[   48.589957][   T64] bridge0: port 2(bridge_slave_1) entered forwarding state
[   48.600392][ T5961] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.653441][ T5961] veth0_vlan: entered promiscuous mode
[   48.662359][ T5958] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.666122][ T5961] veth1_vlan: entered promiscuous mode
[   48.696097][ T5961] veth0_macvtap: entered promiscuous mode
[   48.709736][ T5961] veth1_macvtap: entered promiscuous mode
[   48.714861][ T5958] veth0_vlan: entered promiscuous mode
[   48.729452][ T5955] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.732052][ T5958] veth1_vlan: entered promiscuous mode
[   48.736535][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.747148][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.751542][ T5961] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.754186][ T5961] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.756938][ T5961] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.759703][ T5961] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.771465][ T5969] 8021q: adding VLAN 0 to HW filter on device batadv0
[   48.785331][ T5958] veth0_macvtap: entered promiscuous mode
[   48.799780][ T5958] veth1_macvtap: entered promiscuous mode
[   48.843382][ T5955] veth0_vlan: entered promiscuous mode
[   48.847783][ T5969] veth0_vlan: entered promiscuous mode
[   48.852043][ T5958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   48.855422][ T5958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.859848][ T5958] batman_adv: batadv0: Interface activated: batadv_slave_0
[   48.862668][ T1207] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.863705][ T5958] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   48.865163][ T1207] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.868793][ T5958] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   48.869460][ T5958] batman_adv: batadv0: Interface activated: batadv_slave_1
[   48.876611][ T5955] veth1_vlan: entered promiscuous mode
[   48.885104][ T5969] veth1_vlan: entered promiscuous mode
[   48.894859][ T5958] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   48.897572][ T5958] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   48.900707][ T5958] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   48.903461][ T5958] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   48.916402][ T1207] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.919096][ T1207] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.954644][ T5955] veth0_macvtap: entered promiscuous mode
[   48.968023][ T5961] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   48.969189][ T5955] veth1_macvtap: entered promiscuous mode
[   48.976578][ T5969] veth0_macvtap: entered promiscuous mode
[   48.983687][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   48.983849][ T5969] veth1_macvtap: entered promiscuous mode
[   48.986501][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   48.995910][   T83] percpu: allocation failed, size=8 align=8 atomic=1, atomic alloc failed, no space left
[   49.017315][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.021450][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.024840][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.028772][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.032747][ T5955] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.036821][ T5969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.040648][ T5969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.043832][ T5969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.047333][ T5969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.051992][ T5969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   49.055346][ T5969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.059903][ T5969] batman_adv: batadv0: Interface activated: batadv_slave_0
[   49.070154][ T5969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.073748][ T5969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.077063][ T5969] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.080586][ T5969] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.084322][ T5969] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.086688][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.088423][ T6023] syzkaller1: entered promiscuous mode
[   49.090020][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.091357][ T6023] syzkaller1: entered allmulticast mode
[   49.100257][ T5969] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.102920][ T5969] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.105564][ T5969] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.108334][ T5969] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.112874][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.117064][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.121302][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.125479][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.129683][ T5955] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   49.133825][ T5955] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   49.139834][ T5955] batman_adv: batadv0: Interface activated: batadv_slave_1
[   49.150137][ T5955] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   49.152772][ T5955] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   49.155429][ T5955] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   49.158170][ T5955] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   49.240871][ T1207] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.243456][ T1207] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.275714][ T1207] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.282756][ T1207] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.295206][   T64] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.298829][   T64] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.303778][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   49.309044][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   49.333751][ T6030] random: crng reseeded on system resumption
[   49.378417][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.547779][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   49.673403][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.676817][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   49.679846][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[   49.854999][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   50.060143][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   50.068439][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[   50.233395][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[   50.367432][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   50.453057][ T6045] netlink: 68 bytes leftover after parsing attributes in process `syz.2.5'.
[   50.456299][ T6045] netlink: 68 bytes leftover after parsing attributes in process `syz.2.5'.
[   50.540938][   T66] Bluetooth: hci0: command tx timeout
[   50.542675][   T66] Bluetooth: hci1: command tx timeout
[   50.544667][   T66] Bluetooth: hci2: command tx timeout
[   50.546391][   T66] Bluetooth: hci3: command tx timeout
[   50.574032][ T6049] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   50.646527][ T6020] libceph: connect (1)[c::]:6789 error -101
[   50.649142][ T6020] libceph: mon0 (1)[c::]:6789 connect error
[   50.703238][ T6049] ceph: No mds server is up or the cluster is laggy
[   51.527932][ T6065] Zero length message leads to an empty skb
[   51.611780][ T6069] syzkaller1: entered promiscuous mode
[   51.614477][ T6069] syzkaller1: entered allmulticast mode
[   51.787960][ T6073] netlink: 256 bytes leftover after parsing attributes in process `syz.3.13'.
[   51.799748][ T6075] random: crng reseeded on system resumption
[   52.248162][ T5993] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   52.348225][ T2298] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   52.420351][ T5993] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   52.423866][ T5993] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   52.426923][ T5993] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   52.431120][ T5993] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   52.434304][ T5993] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   52.440291][ T5993] usb 6-1: config 0 descriptor??
[   52.542976][ T2298] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   52.546485][ T2298] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   52.551761][ T2298] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   52.555840][ T2298] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   52.560077][ T2298] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   52.565204][ T2298] usb 5-1: config 0 descriptor??
[   52.618164][ T5305] Bluetooth: hci3: command tx timeout
[   52.618406][   T66] Bluetooth: hci2: command tx timeout
[   52.620536][ T5957] Bluetooth: hci0: command tx timeout
[   52.620699][ T5967] Bluetooth: hci1: command tx timeout
[   52.843572][ T6116] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17'.
[   52.847445][ T6116] random: crng reseeded on system resumption
[   53.031815][ T5993] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[   53.053788][ T5993] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[   53.294873][ T6125] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17'.
[   53.359316][ T6009] usb 6-1: USB disconnect, device number 2
[   53.361204][ T2298] usbhid 5-1:0.0: can't add hid device: -71
[   53.363879][ T2298] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[   53.439480][ T2298] usb 5-1: USB disconnect, device number 2
[   54.164300][ T6142] veth1_macvtap: left promiscuous mode
[   54.698492][ T5957] Bluetooth: hci2: command tx timeout
[   54.699437][   T66] Bluetooth: hci3: command tx timeout
[   54.700290][ T5957] Bluetooth: hci1: command tx timeout
[   54.703673][ T5957] Bluetooth: hci0: command tx timeout
[   54.986861][ T6153] netlink: 16 bytes leftover after parsing attributes in process `syz.3.26'.
[   55.042860][ T6158] syzkaller1: entered promiscuous mode
[   55.044623][ T6158] syzkaller1: entered allmulticast mode
[   55.228642][ T6163] random: crng reseeded on system resumption
[   55.243761][ T6156] tipc: Started in network mode
[   55.245943][ T6156] tipc: Node identity 4, cluster identity 4711
[   55.249323][ T6156] tipc: Node number set to 4
[   56.120718][ T6175] netlink: 4 bytes leftover after parsing attributes in process `syz.3.33'.
[   56.369138][ T6190] FAULT_INJECTION: forcing a failure.
[   56.369138][ T6190] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   56.373269][ T6190] CPU: 0 UID: 0 PID: 6190 Comm: syz.3.36 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) 
[   56.373283][ T6190] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   56.373290][ T6190] Call Trace:
[   56.373293][ T6190]  <TASK>
[   56.373297][ T6190]  dump_stack_lvl+0x16c/0x1f0
[   56.373317][ T6190]  should_fail_ex+0x512/0x640
[   56.373331][ T6190]  _copy_from_user+0x2e/0xd0
[   56.373345][ T6190]  do_sys_poll+0x1d5/0xe00
[   56.373356][ T6190]  ? __lock_acquire+0xaa4/0x1ba0
[   56.373371][ T6190]  ? __kernel_text_address+0xd/0x40
[   56.373382][ T6190]  ? __pfx_do_sys_poll+0x10/0x10
[   56.373402][ T6190]  ? find_held_lock+0x2b/0x80
[   56.373434][ T6190]  ? rcu_is_watching+0x12/0xc0
[   56.373444][ T6190]  ? _raw_spin_unlock_irq+0x23/0x50
[   56.373457][ T6190]  ? lockdep_hardirqs_on+0x7c/0x110
[   56.373471][ T6190]  ? _raw_spin_unlock_irq+0x2e/0x50
[   56.373483][ T6190]  ? set_compat_user_sigmask+0x213/0x2a0
[   56.373495][ T6190]  ? __pfx_set_compat_user_sigmask+0x10/0x10
[   56.373509][ T6190]  __ia32_compat_sys_ppoll_time32+0x248/0x2c0
[   56.373521][ T6190]  ? __pfx___ia32_compat_sys_ppoll_time32+0x10/0x10
[   56.373532][ T6190]  ? ksys_write+0x1b9/0x240
[   56.373542][ T6190]  ? __pfx_ksys_write+0x10/0x10
[   56.373553][ T6190]  ? rcu_is_watching+0x12/0xc0
[   56.373567][ T6190]  __do_fast_syscall_32+0x73/0x120
[   56.373589][ T6190]  do_fast_syscall_32+0x32/0x80
[   56.373609][ T6190]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   56.373626][ T6190] RIP: 0023:0xf7fe2579
[   56.373638][ T6190] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   56.373651][ T6190] RSP: 002b:00000000f50e555c EFLAGS: 00000296 ORIG_RAX: 0000000000000135
[   56.373665][ T6190] RAX: ffffffffffffffda RBX: 0000000080000240 RCX: 0000000000000003
[   56.373673][ T6190] RDX: 0000000080000280 RSI: 00000000800003c0 RDI: 0000000000000008
[   56.373681][ T6190] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   56.373689][ T6190] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   56.373697][ T6190] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   56.373709][ T6190]  </TASK>
[   56.590396][ T6193] tipc: Started in network mode
[   56.592000][ T6193] tipc: Node identity 4, cluster identity 4711
[   56.594107][ T6193] tipc: Node number set to 4
[   56.786403][ T6204] kAFS: No cell specified
[   56.873221][ T6205] input: syz1 as /devices/virtual/input/input6
[   56.880174][ T5993] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   57.028215][   T29] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   57.078331][ T5993] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f
[   57.081181][ T5993] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   57.085918][ T5993] usb 5-1: Product: syz
[   57.090787][ T5993] usb 5-1: Manufacturer: syz
[   57.093443][ T5993] usb 5-1: SerialNumber: syz
[   57.100710][ T5993] usb 5-1: config 0 descriptor??
[   57.167307][ T6210] syz.1.41 uses obsolete (PF_INET,SOCK_PACKET)
[   57.167355][ T6208] Illegal XDP return value 4294967274 on prog  (id 14) dev N/A, expect packet loss!
[   57.208172][   T29] usb 8-1: device descriptor read/64, error -71
[   57.694269][ T6217] warning: `syz.2.43' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   57.725731][ T6217] =======================================================
[   57.725731][ T6217] WARNING: The mand mount option has been deprecated and
[   57.725731][ T6217]          and is ignored by this kernel. Remove the mand
[   57.725731][ T6217]          option from the mount to silence this warning.
[   57.725731][ T6217] =======================================================
[   57.766372][   T29] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   58.048932][   T29] usb 8-1: device descriptor read/64, error -71
[   58.168778][   T29] usb usb8-port1: attempt power cycle
[   58.432051][ T6233] netlink: 'syz.2.47': attribute type 4 has an invalid length.
[   58.508154][   T29] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[   58.528951][   T29] usb 8-1: device descriptor read/8, error -71
[   58.768201][   T29] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[   58.788887][   T29] usb 8-1: device descriptor read/8, error -71
[   58.908375][   T29] usb usb8-port1: unable to enumerate USB device
[   59.028360][ T6245] netlink: 68 bytes leftover after parsing attributes in process `syz.2.50'.
[   59.031086][ T6245] netlink: 68 bytes leftover after parsing attributes in process `syz.2.50'.
[   59.136579][ T6248] block nbd1: not configured, cannot reconfigure
[   59.628958][   T29] usb 5-1: USB disconnect, device number 3
[   59.793736][ T6257] sit0: entered promiscuous mode
[   59.800097][ T6257] netlink: 'syz.2.53': attribute type 1 has an invalid length.
[   59.802998][ T6257] netlink: 1 bytes leftover after parsing attributes in process `syz.2.53'.
[   59.810717][ T6257] netlink: 8 bytes leftover after parsing attributes in process `syz.2.53'.
[   60.215060][ T6268] tipc: Started in network mode
[   60.235041][ T6268] tipc: Node identity 4, cluster identity 4711
[   60.262827][ T6268] tipc: Node number set to 4
[   60.647122][ T6275] syzkaller1: entered promiscuous mode
[   60.650679][ T6275] syzkaller1: entered allmulticast mode
[   60.778953][ T6277] random: crng reseeded on system resumption
[   61.349422][ T6285] hub 9-0:1.0: USB hub found
[   61.351129][ T6285] hub 9-0:1.0: 1 port detected
[   61.421178][ T6297] hub 6-0:1.0: USB hub found
[   61.423612][ T6297] hub 6-0:1.0: 1 port detected
[   61.525843][ T6298] block device autoloading is deprecated and will be removed.
[   61.541541][ T6300] syzkaller1: entered promiscuous mode
[   61.543301][ T6300] syzkaller1: entered allmulticast mode
[   61.671282][ T6305] random: crng reseeded on system resumption
[   63.231438][ T6328] netlink: 68 bytes leftover after parsing attributes in process `syz.0.74'.
[   63.234639][ T6328] netlink: 68 bytes leftover after parsing attributes in process `syz.0.74'.
[   63.623759][ T6341] hub 6-0:1.0: USB hub found
[   63.625694][ T6341] hub 6-0:1.0: 1 port detected
[   63.649436][ T6340] mmap: syz.2.76 (6340) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   63.743130][ T6345] netlink: 56 bytes leftover after parsing attributes in process `syz.2.77'.
[   63.950986][ T6349] netlink: 'syz.0.79': attribute type 1 has an invalid length.
[   63.953383][ T6349] netlink: 224 bytes leftover after parsing attributes in process `syz.0.79'.
[   64.188263][   T29] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   64.343229][ T6359] 9pnet_fd: Insufficient options for proto=fd
[   64.355163][   T29] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   64.359424][   T29] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[   64.362500][   T29] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.370127][   T29] usb 7-1: config 0 descriptor??
[   64.519962][ T6361] netlink: 4 bytes leftover after parsing attributes in process `syz.1.82'.
[   64.579085][   T29] usbhid 7-1:0.0: can't add hid device: -71
[   64.581038][   T29] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[   64.587289][   T29] usb 7-1: USB disconnect, device number 2
[   65.025617][ T6376] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[   65.032685][ T6376] netlink: 16 bytes leftover after parsing attributes in process `syz.1.88'.
[   65.113772][ T6379] netlink: 68 bytes leftover after parsing attributes in process `syz.3.87'.
[   65.117538][ T6379] netlink: 68 bytes leftover after parsing attributes in process `syz.3.87'.
[   65.385569][ T6381] overlayfs: missing 'lowerdir'
[   65.969040][ T2298] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   66.017720][ T6402] netlink: 3136 bytes leftover after parsing attributes in process `syz.1.97'.
[   66.135470][ T2298] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   66.155526][ T2298] usb 7-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[   66.162830][ T2298] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   66.176554][ T2298] usb 7-1: config 0 descriptor??
[   66.274373][ T6405] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   66.277418][ T6405] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   66.388879][ T2298] usbhid 7-1:0.0: can't add hid device: -71
[   66.390818][ T2298] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[   66.400222][ T2298] usb 7-1: USB disconnect, device number 3
[   66.852639][ T6419] netlink: 68 bytes leftover after parsing attributes in process `syz.0.102'.
[   66.895396][    T9] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   67.048204][    T9] usb 7-1: Using ep0 maxpacket: 32
[   67.053931][    T9] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   67.058558][    T9] usb 7-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[   67.061643][    T9] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   67.067451][    T9] usb 7-1: config 0 descriptor??
[   67.072858][    T9] ldusb 7-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[   67.081809][    T9] ldusb 7-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[   67.386014][ T6428] netlink: 'syz.3.105': attribute type 23 has an invalid length.
[   67.458391][ T6428] xt_recent: hitcount (4294967293) is larger than allowed maximum (65535)
[   67.533559][    T9] usb 7-1: USB disconnect, device number 4
[   67.551536][    T9] ldusb 7-1:0.0: LD USB Device #0 now disconnected
[   68.246264][ T6452] __nla_validate_parse: 1 callbacks suppressed
[   68.246332][ T6452] netlink: 68 bytes leftover after parsing attributes in process `syz.2.111'.
[   68.251201][ T6452] netlink: 68 bytes leftover after parsing attributes in process `syz.2.111'.
[   69.578211][   T66] Bluetooth: hci3: command 0x0405 tx timeout
[   69.799219][ T6486] netlink: 68 bytes leftover after parsing attributes in process `syz.2.120'.
[   69.801989][ T6486] netlink: 68 bytes leftover after parsing attributes in process `syz.2.120'.
[   70.862216][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[   70.864173][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[   71.277856][ T6525] netlink: 68 bytes leftover after parsing attributes in process `syz.1.129'.
[   71.281004][ T6525] netlink: 68 bytes leftover after parsing attributes in process `syz.1.129'.
[   71.311051][ T6523] Invalid source name
[   71.629138][ T6543] loop8: detected capacity change from 0 to 1
[   71.633737][ T6543] Dev loop8: unable to read RDB block 1
[   71.635805][ T6543]  loop8: unable to read partition table
[   71.637692][ T6543] loop8: partition table beyond EOD, truncated
[   71.640579][ T6543] loop_reread_partitions: partition scan of loop8 (þ被xü^>Ñà– ) failed (rc=-5)
[   71.815918][ T6547] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   72.312829][ T6557] evm: overlay not supported
[   72.615647][ T6559] overlayfs: missing 'workdir'
[   73.036423][ T6577] xt_connbytes: Forcing CT accounting to be enabled
[   73.163614][   T40] audit: type=1804 audit(1745484314.369:2): pid=6580 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.145" name="/newroot/45/file0/file0" dev="9p" ino=37093502 res=1 errno=0
[   73.306712][ T6584] netlink: 68 bytes leftover after parsing attributes in process `syz.3.148'.
[   73.309619][ T6584] netlink: 68 bytes leftover after parsing attributes in process `syz.3.148'.
[   73.902370][ T6589] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   73.906025][ T6589] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   73.945862][ T6592] fuse: Unknown parameter 'groupú_id'
[   73.954069][ T6595] overlayfs: missing 'workdir'
[   74.078375][ T6599] block nbd0: server does not support multiple connections per device.
[   74.081946][ T6599] block nbd0: shutting down sockets
[   74.100481][ T6597] netlink: 'syz.1.153': attribute type 16 has an invalid length.
[   74.102921][ T6597] netlink: 64138 bytes leftover after parsing attributes in process `syz.1.153'.
[   74.148800][    T9] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   74.650863][    T9] usb 7-1: device descriptor read/64, error -71
[   74.898293][    T9] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   75.028227][    T9] usb 7-1: device descriptor read/64, error -71
[   75.140990][    T9] usb usb7-port1: attempt power cycle
[   75.408245][  T833] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   75.498675][    T9] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   75.518854][    T9] usb 7-1: device descriptor read/8, error -71
[   75.566904][ T6675] netlink: 68 bytes leftover after parsing attributes in process `syz.3.163'.
[   75.567088][  T833] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[   75.569943][ T6675] netlink: 68 bytes leftover after parsing attributes in process `syz.3.163'.
[   75.573139][  T833] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[   75.579073][  T833] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[   75.581956][  T833] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.586822][ T6668] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[   75.591954][  T833] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[   75.639975][ T6677] overlayfs: missing 'workdir'
[   75.758146][    T9] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[   75.788860][    T9] usb 7-1: device descriptor read/8, error -71
[   75.795298][ T6009] usb 5-1: USB disconnect, device number 4
[   75.898618][    T9] usb usb7-port1: unable to enumerate USB device
[   77.861772][ T6727] syzkaller1: entered promiscuous mode
[   77.863820][ T6727] syzkaller1: entered allmulticast mode
[   77.984086][ T6729] random: crng reseeded on system resumption
[   78.447392][ T6738] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[   78.449728][ T6738] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[   78.453796][ T6738] vhci_hcd vhci_hcd.0: Device attached
[   78.457842][ T6739] vhci_hcd: connection closed
[   78.459078][   T12] vhci_hcd: stop threads
[   78.462292][   T12] vhci_hcd: release socket
[   78.463938][   T12] vhci_hcd: disconnect device
[   79.089893][ T6749] FAULT_INJECTION: forcing a failure.
[   79.089893][ T6749] name failslab, interval 1, probability 0, space 0, times 1
[   79.097168][ T6749] CPU: 3 UID: 0 PID: 6749 Comm: syz.2.186 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) 
[   79.097190][ T6749] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   79.097200][ T6749] Call Trace:
[   79.097205][ T6749]  <TASK>
[   79.097211][ T6749]  dump_stack_lvl+0x16c/0x1f0
[   79.097237][ T6749]  should_fail_ex+0x512/0x640
[   79.097255][ T6749]  ? kmem_cache_alloc_lru_noprof+0x5f/0x3b0
[   79.097276][ T6749]  should_failslab+0xc2/0x120
[   79.097297][ T6749]  kmem_cache_alloc_lru_noprof+0x72/0x3b0
[   79.097316][ T6749]  ? __d_alloc+0x31/0xaa0
[   79.097335][ T6749]  __d_alloc+0x31/0xaa0
[   79.097351][ T6749]  ? trace_kmem_cache_alloc+0x28/0xc0
[   79.097375][ T6749]  d_alloc_pseudo+0x1c/0xc0
[   79.097395][ T6749]  alloc_file_pseudo+0xcf/0x230
[   79.097417][ T6749]  ? __pfx_alloc_file_pseudo+0x10/0x10
[   79.097445][ T6749]  sock_alloc_file+0x50/0x210
[   79.097469][ T6749]  do_accept+0x240/0x530
[   79.097485][ T6749]  ? do_raw_spin_lock+0x12c/0x2b0
[   79.097501][ T6749]  ? __pfx_do_accept+0x10/0x10
[   79.097532][ T6749]  __sys_accept4+0x100/0x1b0
[   79.097549][ T6749]  ? __pfx___sys_accept4+0x10/0x10
[   79.097566][ T6749]  ? __pfx_ksys_write+0x10/0x10
[   79.097580][ T6749]  ? rcu_is_watching+0x12/0xc0
[   79.097600][ T6749]  __ia32_sys_accept4+0x94/0x100
[   79.097617][ T6749]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   79.097645][ T6749]  __do_fast_syscall_32+0x73/0x120
[   79.097669][ T6749]  do_fast_syscall_32+0x32/0x80
[   79.097692][ T6749]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   79.097710][ T6749] RIP: 0023:0xf70be579
[   79.097721][ T6749] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   79.097735][ T6749] RSP: 002b:00000000f50ae55c EFLAGS: 00000296 ORIG_RAX: 000000000000016c
[   79.097749][ T6749] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000000000
[   79.097758][ T6749] RDX: 0000000000000000 RSI: 0000000000080000 RDI: 0000000000000000
[   79.097767][ T6749] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   79.097775][ T6749] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   79.097784][ T6749] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   79.097804][ T6749]  </TASK>
[   80.001678][ T6767] netlink: 4 bytes leftover after parsing attributes in process `syz.1.192'.
[   80.114372][ T6780] netlink: 24 bytes leftover after parsing attributes in process `syz.3.195'.
[   80.118410][ T6780] netlink: 8 bytes leftover after parsing attributes in process `syz.3.195'.
[   80.257942][ T6782] netlink: 8 bytes leftover after parsing attributes in process `syz.1.194'.
[   80.329020][ T6009] usb 7-1: new high-speed USB device number 9 using dummy_hcd
[   80.458508][ T6009] usb 7-1: device descriptor read/64, error -71
[   80.708836][ T6009] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[   80.848180][ T6009] usb 7-1: device descriptor read/64, error -71
[   80.958529][ T6009] usb usb7-port1: attempt power cycle
[   81.100477][   T74] cfg80211: failed to load regulatory.db
[   81.308327][ T6009] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[   81.371454][ T6009] usb 7-1: device descriptor read/8, error -71
[   81.552424][ T6786] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   81.633364][ T6799] "syz.3.200" (6799) uses obsolete ecb(arc4) skcipher
[   81.638390][ T6009] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[   81.658601][ T6009] usb 7-1: device descriptor read/8, error -71
[   81.769690][ T6009] usb usb7-port1: unable to enumerate USB device
[   82.156881][ T6834] syzkaller1: entered promiscuous mode
[   82.159021][ T6834] syzkaller1: entered allmulticast mode
[   82.283500][ T6838] random: crng reseeded on system resumption
[   83.137980][ T6858] syz.3.212: attempt to access beyond end of device
[   83.137980][ T6858] loop3: rw=0, sector=2, nr_sectors = 1 limit=0
[   83.142438][ T6858] hfs: can't find a HFS filesystem on dev loop3
[   83.529650][ T6902] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   83.535971][ T6902] xt_TPROXY: Can be used only with -p tcp or -p udp
[   84.011544][    C2] hpet: Lost 1 RTC interrupts
[   84.145635][ T6934] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   84.205449][ T6934] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   84.301468][ T6934] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   84.706219][ T6943] netlink: 24 bytes leftover after parsing attributes in process `syz.1.238'.
[   84.987268][ T6949] ubi31: attaching mtd0
[   84.991918][ T6949] ubi31: scanning is finished
[   84.993594][ T6949] ubi31: empty MTD device detected
[   85.103365][ T6949] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[   85.106422][ T6949] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[   85.109523][ T6949] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[   85.112298][ T6949] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[   85.115322][ T6949] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[   85.118145][ T6949] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[   85.121346][ T6949] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 3158588878
[   85.125308][ T6949] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[   85.131560][ T6963] ubi31: background thread "ubi_bgt31d" started, PID 6963
[   85.197701][   T40] audit: type=1326 audit(1745484326.399:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6969 comm="syz.3.243" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x0
[   85.942401][ T7002] netlink: 'syz.1.246': attribute type 10 has an invalid length.
[   86.060336][ T7008] netlink: 68 bytes leftover after parsing attributes in process `syz.0.245'.
[   86.064401][ T7008] netlink: 68 bytes leftover after parsing attributes in process `syz.0.245'.
[   87.882157][ T7037] syzkaller1: entered promiscuous mode
[   87.886166][ T7037] syzkaller1: entered allmulticast mode
[   88.015336][ T7040] random: crng reseeded on system resumption
[   88.432937][   T40] audit: type=1326 audit(1745484329.639:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.255" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[   88.441471][   T40] audit: type=1326 audit(1745484329.639:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.255" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[   88.449353][   T40] audit: type=1326 audit(1745484329.639:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.255" exe="/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf708e579 code=0x7ffc0000
[   88.457750][   T40] audit: type=1326 audit(1745484329.639:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.255" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[   88.466543][   T40] audit: type=1326 audit(1745484329.639:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.255" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[   88.474806][   T40] audit: type=1326 audit(1745484329.639:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.255" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf708e579 code=0x7ffc0000
[   88.482899][   T40] audit: type=1326 audit(1745484329.639:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.255" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[   88.491119][   T40] audit: type=1326 audit(1745484329.639:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7046 comm="syz.0.255" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[   90.327113][ T7095] netlink: 4 bytes leftover after parsing attributes in process `syz.0.264'.
[   91.130233][ T7110] netlink: 68 bytes leftover after parsing attributes in process `syz.1.266'.
[   91.132960][ T7110] netlink: 68 bytes leftover after parsing attributes in process `syz.1.266'.
[   91.274943][ T7116] netlink: 68 bytes leftover after parsing attributes in process `syz.0.268'.
[   91.277783][ T7116] netlink: 68 bytes leftover after parsing attributes in process `syz.0.268'.
[   92.561974][ T7136] syzkaller1: entered promiscuous mode
[   92.563861][ T7136] syzkaller1: entered allmulticast mode
[   92.572212][ T7136] Invalid ELF header magic: != ELF
[   92.632086][ T7139] random: crng reseeded on system resumption
[   92.708913][ T7138] process 'syz.3.275' launched './file1' with NULL argv: empty string added
[   93.619144][ T7150] netlink: 40 bytes leftover after parsing attributes in process `syz.3.278'.
[   93.645596][ T7150] wireguard0: entered promiscuous mode
[   93.647441][ T7150] wireguard0: entered allmulticast mode
[   93.738261][ T2298] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[   93.899653][ T2298] usb 5-1: Using ep0 maxpacket: 8
[   93.904050][ T2298] usb 5-1: config index 0 descriptor too short (expected 5924, got 36)
[   93.907361][ T2298] usb 5-1: config 250 has an invalid interface number: 228 but max is -1
[   93.925934][ T2298] usb 5-1: config 250 has 1 interface, different from the descriptor's value: 0
[   93.935099][ T2298] usb 5-1: config 250 has no interface number 0
[   93.937160][ T2298] usb 5-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[   93.948198][ T2298] usb 5-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[   93.951708][ T2298] usb 5-1: config 250 interface 228 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[   93.961860][ T2298] usb 5-1: config 250 interface 228 has no altsetting 0
[   94.086130][ T2298] usb 5-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[   94.091746][ T2298] usb 5-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[   94.094924][ T2298] usb 5-1: Product: syz
[   94.101789][ T2298] usb 5-1: SerialNumber: syz
[   94.110245][ T2298] hub 5-1:250.228: bad descriptor, ignoring hub
[   94.112691][ T2298] hub 5-1:250.228: probe with driver hub failed with error -5
[   95.053182][ T7185] netlink: 8 bytes leftover after parsing attributes in process `syz.1.290'.
[   95.173095][ T7192] netfs: Couldn't get user pages (rc=-14)
[   95.339121][ T7197] netlink: 8 bytes leftover after parsing attributes in process `syz.3.292'.
[   95.849686][ T1114] sr 2:0:0:0: [sr0] tag#31 FAILED Result: hostbyte=DID_OK driverbyte=DRIVER_OK cmd_age=0s
[   95.852905][ T1114] sr 2:0:0:0: [sr0] tag#31 Sense Key : Illegal Request [current] 
[   95.855678][ T1114] sr 2:0:0:0: [sr0] tag#31 Add. Sense: Invalid command operation code
[   95.859084][ T1114] sr 2:0:0:0: [sr0] tag#31 CDB: Write(10) 2a 00 00 00 00 00 00 00 02 00
[   95.862354][ T1114] critical target error, dev sr0, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 0
[   95.866649][ T1114] Buffer I/O error on dev sr0, logical block 0, lost async page write
[   96.278366][ T2298] usb 5-1: USB disconnect, device number 5
[   96.769202][ T7261] netlink: zone id is out of range
[   96.770900][ T7261] netlink: zone id is out of range
[   96.772548][ T7261] netlink: zone id is out of range
[   96.909658][   T40] kauditd_printk_skb: 64 callbacks suppressed
[   96.909670][   T40] audit: type=1326 audit(1745484338.119:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7262 comm="syz.0.303" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x0
[   97.099452][ T7284] FAULT_INJECTION: forcing a failure.
[   97.099452][ T7284] name failslab, interval 1, probability 0, space 0, times 0
[   97.103841][ T7284] CPU: 2 UID: 0 PID: 7284 Comm: syz.1.308 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) 
[   97.103863][ T7284] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   97.103872][ T7284] Call Trace:
[   97.103878][ T7284]  <TASK>
[   97.103885][ T7284]  dump_stack_lvl+0x16c/0x1f0
[   97.103928][ T7284]  should_fail_ex+0x512/0x640
[   97.103946][ T7284]  ? kmem_cache_alloc_node_noprof+0x5e/0x3b0
[   97.103968][ T7284]  should_failslab+0xc2/0x120
[   97.103990][ T7284]  kmem_cache_alloc_node_noprof+0x71/0x3b0
[   97.104010][ T7284]  ? __alloc_skb+0x2b2/0x380
[   97.104035][ T7284]  __alloc_skb+0x2b2/0x380
[   97.104054][ T7284]  ? __pfx___alloc_skb+0x10/0x10
[   97.104075][ T7284]  ? find_held_lock+0x2b/0x80
[   97.104093][ T7284]  ? ipv6_dev_get_saddr+0x35f/0xd50
[   97.104116][ T7284]  sock_omalloc+0xf5/0x1e0
[   97.104139][ T7284]  msg_zerocopy_realloc+0x1ef/0x8b0
[   97.104166][ T7284]  __ip6_append_data+0x3c4e/0x4710
[   97.104204][ T7284]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   97.104233][ T7284]  ? ip6_mtu+0x1a3/0x4a0
[   97.104255][ T7284]  ? __pfx___ip6_append_data+0x10/0x10
[   97.104279][ T7284]  ? ip6_setup_cork+0xd01/0x15d0
[   97.104304][ T7284]  ip6_make_skb+0x2c8/0x3f0
[   97.104331][ T7284]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   97.104355][ T7284]  ? __pfx_ip6_make_skb+0x10/0x10
[   97.104379][ T7284]  ? ip6_dst_lookup_flow+0x164/0x1d0
[   97.104416][ T7284]  ? udpv6_sendmsg+0x24fe/0x3070
[   97.104432][ T7284]  udpv6_sendmsg+0x24fe/0x3070
[   97.104451][ T7284]  ? __pfx_ip_generic_getfrag+0x10/0x10
[   97.104480][ T7284]  ? __pfx_udpv6_sendmsg+0x10/0x10
[   97.104505][ T7284]  ? __lock_acquire+0xaa4/0x1ba0
[   97.104536][ T7284]  ? reacquire_held_locks+0xcd/0x1f0
[   97.104567][ T7284]  ? rcu_is_watching+0x12/0xc0
[   97.104583][ T7284]  ? __local_bh_enable_ip+0xa4/0x120
[   97.104603][ T7284]  ? lockdep_hardirqs_on+0x7c/0x110
[   97.104625][ T7284]  ? inet_autobind+0x145/0x1a0
[   97.104646][ T7284]  ? __local_bh_enable_ip+0xa4/0x120
[   97.104666][ T7284]  ? inet_autobind+0x14a/0x1a0
[   97.104687][ T7284]  ? __pfx_udpv6_sendmsg+0x10/0x10
[   97.104706][ T7284]  ? inet6_sendmsg+0x105/0x140
[   97.104722][ T7284]  inet6_sendmsg+0x105/0x140
[   97.104742][ T7284]  ____sys_sendmsg+0x705/0xc70
[   97.104760][ T7284]  ? __pfx_____sys_sendmsg+0x10/0x10
[   97.104774][ T7284]  ? get_compat_msghdr+0x11a/0x170
[   97.104797][ T7284]  ? __pfx__kstrtoull+0x10/0x10
[   97.104826][ T7284]  ___sys_sendmsg+0x134/0x1d0
[   97.104849][ T7284]  ? __pfx____sys_sendmsg+0x10/0x10
[   97.104879][ T7284]  ? find_held_lock+0x2b/0x80
[   97.104909][ T7284]  __sys_sendmmsg+0x2f9/0x420
[   97.104933][ T7284]  ? __pfx___sys_sendmmsg+0x10/0x10
[   97.104962][ T7284]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   97.104993][ T7284]  ? fput+0x70/0xf0
[   97.105013][ T7284]  ? ksys_write+0x1b9/0x240
[   97.105028][ T7284]  ? __pfx_ksys_write+0x10/0x10
[   97.105048][ T7284]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[   97.105069][ T7284]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   97.105092][ T7284]  __do_fast_syscall_32+0x73/0x120
[   97.105117][ T7284]  do_fast_syscall_32+0x32/0x80
[   97.105140][ T7284]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   97.105159][ T7284] RIP: 0023:0xf704e579
[   97.105171][ T7284] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   97.105186][ T7284] RSP: 002b:00000000f503e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[   97.105207][ T7284] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000080001140
[   97.105217][ T7284] RDX: 0000000000000001 RSI: 0000000004004000 RDI: 0000000000000000
[   97.105227][ T7284] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   97.105235][ T7284] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   97.105244][ T7284] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   97.105265][ T7284]  </TASK>
[   97.110780][ T7275] netlink: 'syz.2.302': attribute type 1 has an invalid length.
[   97.340772][   T12] Bluetooth: hci4: Frame reassembly failed (-84)
[   97.971627][   T40] audit: type=1326 audit(1745484339.179:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7295 comm="syz.1.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[   97.986126][   T40] audit: type=1326 audit(1745484339.179:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7295 comm="syz.1.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[   97.993337][   T40] audit: type=1326 audit(1745484339.179:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7295 comm="syz.1.312" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf704e579 code=0x7ffc0000
[   98.000107][   T40] audit: type=1326 audit(1745484339.189:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7295 comm="syz.1.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[   98.006874][   T40] audit: type=1326 audit(1745484339.189:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7295 comm="syz.1.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[   98.013957][   T40] audit: type=1326 audit(1745484339.189:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7295 comm="syz.1.312" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf704e579 code=0x7ffc0000
[   98.020875][   T40] audit: type=1326 audit(1745484339.189:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7295 comm="syz.1.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[   98.029652][   T40] audit: type=1326 audit(1745484339.189:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7295 comm="syz.1.312" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[   98.039654][   T40] audit: type=1326 audit(1745484339.189:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7295 comm="syz.1.312" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf704e579 code=0x7ffc0000
[   98.431485][ T7310] netlink: 68 bytes leftover after parsing attributes in process `syz.2.316'.
[   98.434999][ T7310] netlink: 68 bytes leftover after parsing attributes in process `syz.2.316'.
[   99.271026][ T5305] Bluetooth: hci0: command tx timeout
[   99.348256][ T5305] Bluetooth: hci4: command 0x1003 tx timeout
[   99.352592][   T66] Bluetooth: hci4: Opcode 0x1003 failed: -110
[   99.929684][ T7357] netlink: 56 bytes leftover after parsing attributes in process `syz.0.326'.
[  100.563835][ T7369] vivid-000: =================  START STATUS  =================
[  100.563865][ T7369] vivid-000: Generate PTS: true
[  100.563888][ T7369] vivid-000: Generate SCR: true
[  100.563899][ T7369] tpg source WxH: 640x360 (Y'CbCr)
[  100.563907][ T7369] tpg field: 1
[  100.563911][ T7369] tpg crop: (0,0)/640x360
[  100.563918][ T7369] tpg compose: (0,0)/640x360
[  100.563925][ T7369] tpg colorspace: 8
[  100.563929][ T7369] tpg transfer function: 0/0
[  100.563934][ T7369] tpg Y'CbCr encoding: 0/0
[  100.563939][ T7369] tpg quantization: 0/0
[  100.563944][ T7369] tpg RGB range: 0/2
[  100.563949][ T7369] vivid-000: ==================  END STATUS  ==================
[  102.118293][  T833] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  102.165098][ T7399] netlink: 36 bytes leftover after parsing attributes in process `syz.3.337'.
[  102.280503][  T833] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[  102.284886][  T833] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[  102.289018][  T833] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  102.292738][  T833] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  102.299208][ T7397] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  102.305229][  T833] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  102.337781][ T7410] syzkaller1: entered promiscuous mode
[  102.341276][ T7410] syzkaller1: entered allmulticast mode
[  102.477841][ T7412] random: crng reseeded on system resumption
[  102.509345][   T57] usb 5-1: USB disconnect, device number 6
[  103.175175][   T66] Bluetooth: hci3: link tx timeout
[  103.177025][   T66] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  103.181089][ T5305] Bluetooth: hci3: link tx timeout
[  103.182755][ T5305] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  103.192243][ T5305] Bluetooth: hci3: link tx timeout
[  103.198238][ T5305] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  103.208167][ T5305] Bluetooth: hci3: link tx timeout
[  103.209922][ T5305] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  103.220854][ T5305] Bluetooth: hci3: link tx timeout
[  103.223057][ T5305] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  103.227324][ T5305] Bluetooth: hci3: link tx timeout
[  103.229620][ T5305] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  103.235835][ T5305] Bluetooth: hci3: link tx timeout
[  103.238120][ T5305] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  103.241652][ T5305] Bluetooth: hci3: link tx timeout
[  103.243799][ T5305] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  103.246889][ T5305] Bluetooth: hci3: link tx timeout
[  103.248856][ T5305] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  103.251880][ T5305] Bluetooth: hci3: link tx timeout
[  103.253510][ T5305] Bluetooth: hci3: killing stalled connection 11:aa:aa:aa:aa:aa
[  103.553764][ T7431] netlink: 32 bytes leftover after parsing attributes in process `syz.0.344'.
[  103.855287][ T7437] syz.3.346: vmalloc error: size 2003292160, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  103.862753][ T7437] CPU: 3 UID: 0 PID: 7437 Comm: syz.3.346 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) 
[  103.862769][ T7437] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  103.862801][ T7437] Call Trace:
[  103.862807][ T7437]  <TASK>
[  103.862814][ T7437]  dump_stack_lvl+0x16c/0x1f0
[  103.862835][ T7437]  warn_alloc+0x248/0x3a0
[  103.862850][ T7437]  ? __pfx_warn_alloc+0x10/0x10
[  103.862863][ T7437]  ? stack_depot_save_flags+0x3e6/0xa50
[  103.862877][ T7437]  ? __vb2_queue_alloc+0x23e/0x1280
[  103.862892][ T7437]  ? kasan_save_stack+0x42/0x60
[  103.862904][ T7437]  ? kasan_save_stack+0x33/0x60
[  103.862915][ T7437]  ? kasan_save_track+0x14/0x30
[  103.862926][ T7437]  ? __kasan_kmalloc+0xaa/0xb0
[  103.862936][ T7437]  ? vb2_vmalloc_alloc+0xf9/0x3f0
[  103.862949][ T7437]  ? vb2_core_create_bufs+0x559/0xab0
[  103.862960][ T7437]  ? vb2_create_bufs+0x5e8/0x840
[  103.862970][ T7437]  ? vb2_ioctl_create_bufs+0x244/0x3e0
[  103.862983][ T7437]  __vmalloc_node_range_noprof+0x10ea/0x1540
[  103.862999][ T7437]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  103.863015][ T7437]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  103.863030][ T7437]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  103.863044][ T7437]  vmalloc_user_noprof+0x6b/0x90
[  103.863054][ T7437]  ? vb2_vmalloc_alloc+0x135/0x3f0
[  103.863067][ T7437]  vb2_vmalloc_alloc+0x135/0x3f0
[  103.863081][ T7437]  ? __pfx_vb2_vmalloc_alloc+0x10/0x10
[  103.863109][ T7437]  __vb2_queue_alloc+0x8c6/0x1280
[  103.863133][ T7437]  vb2_core_create_bufs+0x559/0xab0
[  103.863150][ T7437]  ? __pfx_vb2_core_create_bufs+0x10/0x10
[  103.863165][ T7437]  ? __might_fault+0xe3/0x190
[  103.863181][ T7437]  vb2_create_bufs+0x5e8/0x840
[  103.863195][ T7437]  ? __pfx_vb2_create_bufs+0x10/0x10
[  103.863207][ T7437]  ? v4l_sanitize_colorspace+0x213/0x400
[  103.863221][ T7437]  vb2_ioctl_create_bufs+0x244/0x3e0
[  103.863234][ T7437]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  103.863251][ T7437]  vidioc_create_bufs+0x7d/0xf0
[  103.863264][ T7437]  v4l_create_bufs+0x156/0x270
[  103.863279][ T7437]  __video_do_ioctl+0xb3d/0xfc0
[  103.863298][ T7437]  ? __pfx___video_do_ioctl+0x10/0x10
[  103.863314][ T7437]  ? trace_kmalloc+0x2b/0xd0
[  103.863327][ T7437]  ? __kmalloc_noprof+0x242/0x510
[  103.863339][ T7437]  ? __sanitizer_cov_trace_const_cmp2+0x1/0x20
[  103.863355][ T7437]  video_usercopy+0x47c/0x1440
[  103.863366][ T7437]  ? __pfx___video_do_ioctl+0x10/0x10
[  103.863383][ T7437]  ? __pfx_video_usercopy+0x10/0x10
[  103.863398][ T7437]  ? hook_file_ioctl_common+0x145/0x410
[  103.863413][ T7437]  v4l2_ioctl+0x1ba/0x250
[  103.863430][ T7437]  v4l2_compat_ioctl32+0x214/0x2c0
[  103.863446][ T7437]  ? __pfx_v4l2_compat_ioctl32+0x10/0x10
[  103.863462][ T7437]  __ia32_compat_sys_ioctl+0x24c/0x360
[  103.863480][ T7437]  __do_fast_syscall_32+0x73/0x120
[  103.863496][ T7437]  do_fast_syscall_32+0x32/0x80
[  103.863511][ T7437]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  103.863525][ T7437] RIP: 0023:0xf7fe2579
[  103.863534][ T7437] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  103.863544][ T7437] RSP: 002b:00000000f510655c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  103.863554][ T7437] RAX: ffffffffffffffda RBX: 000000000000000a RCX: 00000000c0f8565c
[  103.863561][ T7437] RDX: 00000000800001c0 RSI: 0000000000000000 RDI: 0000000000000000
[  103.863567][ T7437] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  103.863572][ T7437] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  103.863578][ T7437] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  103.863590][ T7437]  </TASK>
[  103.863594][ T7437] Mem-Info:
[  103.980941][ T7437] active_anon:6510 inactive_anon:100 isolated_anon:0
[  103.980941][ T7437]  active_file:4690 inactive_file:44211 isolated_file:0
[  103.980941][ T7437]  unevictable:1768 dirty:566 writeback:0
[  103.980941][ T7437]  slab_reclaimable:9704 slab_unreclaimable:55693
[  103.980941][ T7437]  mapped:24570 shmem:2437 pagetables:911
[  103.980941][ T7437]  sec_pagetables:301 bounce:0
[  103.980941][ T7437]  kernel_misc_reclaimable:0
[  103.980941][ T7437]  free:51827 free_pcp:1310 free_cma:0
[  103.989256][ T5305] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  103.998023][ T5305] Bluetooth: hci0: Injecting HCI hardware error event
[  103.998030][ T7437] Node 0 active_anon:2156kB inactive_anon:0kB active_file:0kB inactive_file:12104kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:5408kB dirty:0kB writeback:0kB shmem:3960kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:8940kB pagetables:684kB sec_pagetables:1108kB all_unreclaimable? yes Balloon:0kB
[  104.001705][ T5305] Bluetooth: hci0: hardware error 0x00
[  104.010310][ T7437] Node 1 active_anon:23884kB inactive_anon:400kB active_file:18760kB inactive_file:164740kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:92872kB dirty:2264kB writeback:0kB shmem:5788kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:3324kB pagetables:2960kB sec_pagetables:96kB all_unreclaimable? no Balloon:0kB
[  104.023495][ T7437] Node 0 DMA free:3512kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:232kB local_pcp:0kB free_cma:0kB
[  104.032222][ T7437] lowmem_reserve[]: 0 290 290 290 290
[  104.034072][ T7437] Node 0 DMA32 free:29900kB boost:12288kB min:25624kB low:28956kB high:32288kB reserved_highatomic:4096KB active_anon:2156kB inactive_anon:0kB active_file:0kB inactive_file:12104kB unevictable:3536kB writepending:0kB present:1032196kB managed:297552kB mlocked:0kB bounce:0kB free_pcp:1560kB local_pcp:32kB free_cma:0kB
[  104.043446][ T7437] lowmem_reserve[]: 0 0 0 0 0
[  104.045101][ T7437] Node 1 DMA32 free:174932kB boost:0kB min:47148kB low:58932kB high:70716kB reserved_highatomic:0KB active_anon:23884kB inactive_anon:400kB active_file:18760kB inactive_file:164740kB unevictable:3536kB writepending:2264kB present:1048432kB managed:948284kB mlocked:0kB bounce:0kB free_pcp:3048kB local_pcp:724kB free_cma:0kB
[  104.054666][ T7437] lowmem_reserve[]: 0 0 0 0 0
[  104.056362][ T7437] Node 0 DMA: 74*4kB (UE) 38*8kB (U) 30*16kB (UE) 14*32kB (UE) 9*64kB (UE) 1*128kB (E) 1*256kB (E) 0*512kB 1*1024kB (E) 0*2048kB 0*4096kB = 3512kB
[  104.061600][ T7437] Node 0 DMA32: 515*4kB (UMH) 200*8kB (UMH) 94*16kB (UMH) 231*32kB (UMEH) 73*64kB (UM) 27*128kB (UMH) 8*256kB (UM) 6*512kB (UM) 4*1024kB (UMH) 0*2048kB 0*4096kB = 29900kB
[  104.067108][ T7437] Node 1 DMA32: 750*4kB (UME) 1100*8kB (UME) 738*16kB (UME) 620*32kB (UME) 374*64kB (UME) 108*128kB (UME) 57*256kB (UME) 30*512kB (UME) 16*1024kB (UME) 9*2048kB (UME) 7*4096kB (M) = 174648kB
[  104.089785][ T7437] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  104.093006][ T7437] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  104.101873][ T7437] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  104.105719][ T7437] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  104.110000][ T7437] 51339 total pagecache pages
[  104.111988][ T7437] 0 pages in swap cache
[  104.113537][ T7437] Free swap  = 124996kB
[  104.115034][ T7437] Total swap = 124996kB
[  104.121430][ T7437] 524155 pages RAM
[  104.122699][ T7437] 0 pages HighMem/MovableOnly
[  104.124269][ T7437] 208856 pages reserved
[  104.125995][ T7437] 0 pages cma reserved
[  104.285510][ T7446] syzkaller1: entered promiscuous mode
[  104.287826][ T7446] syzkaller1: entered allmulticast mode
[  104.402445][ T7448] random: crng reseeded on system resumption
[  104.518697][ T7450] syzkaller1: entered promiscuous mode
[  104.520482][ T7450] syzkaller1: entered allmulticast mode
[  104.873813][ T7457] netlink: 40 bytes leftover after parsing attributes in process `syz.0.351'.
[  104.921201][ T7459] overlayfs: upper fs does not support file handles, falling back to index=off.
[  105.260660][ T5957] Bluetooth: hci3: command 0x0405 tx timeout
[  105.946286][ T7478] netlink: 40 bytes leftover after parsing attributes in process `syz.0.357'.
[  106.060221][ T5305] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  106.522966][   T40] kauditd_printk_skb: 8 callbacks suppressed
[  106.522981][   T40] audit: type=1326 audit(1745484347.729:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.1.363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  106.554270][   T40] audit: type=1326 audit(1745484347.729:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.1.363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  106.570207][ T7508] futex_wake_op: syz.1.364 tries to shift op by 144; fix this program
[  106.578135][   T40] audit: type=1326 audit(1745484347.729:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.1.363" exe="/syz-executor" sig=0 arch=40000003 syscall=242 compat=1 ip=0xf704e579 code=0x7ffc0000
[  106.586674][   T40] audit: type=1326 audit(1745484347.729:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.1.363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  106.595299][   T40] audit: type=1326 audit(1745484347.729:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.1.363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  106.602210][   T40] audit: type=1326 audit(1745484347.729:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.1.363" exe="/syz-executor" sig=0 arch=40000003 syscall=371 compat=1 ip=0xf704e579 code=0x7ffc0000
[  106.608941][   T40] audit: type=1326 audit(1745484347.729:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.1.363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  106.615564][   T40] audit: type=1326 audit(1745484347.729:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7504 comm="syz.1.363" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  106.652597][ T7514] netlink: 36 bytes leftover after parsing attributes in process `syz.1.366'.
[  106.655524][ T7514] netlink: 16 bytes leftover after parsing attributes in process `syz.1.366'.
[  106.658419][ T7514] netlink: 36 bytes leftover after parsing attributes in process `syz.1.366'.
[  106.661290][ T7514] netlink: 36 bytes leftover after parsing attributes in process `syz.1.366'.
[  106.904650][ T7523] FAULT_INJECTION: forcing a failure.
[  106.904650][ T7523] name failslab, interval 1, probability 0, space 0, times 0
[  106.911284][ T7523] CPU: 1 UID: 0 PID: 7523 Comm: syz.0.368 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) 
[  106.911299][ T7523] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  106.911305][ T7523] Call Trace:
[  106.911309][ T7523]  <TASK>
[  106.911313][ T7523]  dump_stack_lvl+0x16c/0x1f0
[  106.911332][ T7523]  should_fail_ex+0x512/0x640
[  106.911345][ T7523]  ? fs_reclaim_acquire+0xae/0x150
[  106.911362][ T7523]  ? bio_kmalloc+0x41/0x70
[  106.911374][ T7523]  should_failslab+0xc2/0x120
[  106.911388][ T7523]  __kmalloc_noprof+0xd2/0x510
[  106.911399][ T7523]  ? __pfx___debug_object_init+0x10/0x10
[  106.911419][ T7523]  ? __pfx_blk_mq_alloc_request+0x10/0x10
[  106.911438][ T7523]  bio_kmalloc+0x41/0x70
[  106.911450][ T7523]  blk_rq_map_kern+0x39a/0x710
[  106.911462][ T7523]  scsi_execute_cmd+0xc14/0xf40
[  106.911474][ T7523]  ? scsi_block_when_processing_errors+0x2d0/0x440
[  106.911491][ T7523]  ? __pfx_scsi_execute_cmd+0x10/0x10
[  106.911505][ T7523]  sr_do_ioctl+0x219/0x840
[  106.911525][ T7523]  ? __pfx_sr_do_ioctl+0x10/0x10
[  106.911548][ T7523]  sr_get_mcn+0x128/0x200
[  106.911556][ T7523]  ? __pfx_sr_get_mcn+0x10/0x10
[  106.911571][ T7523]  cdrom_ioctl+0x894/0x3190
[  106.911588][ T7523]  ? __pfx_cdrom_ioctl+0x10/0x10
[  106.911603][ T7523]  ? rpm_resume+0x80c/0x1310
[  106.911618][ T7523]  ? rcu_is_watching+0x12/0xc0
[  106.911628][ T7523]  ? rpm_resume+0x80c/0x1310
[  106.911642][ T7523]  ? trace_rpm_return_int+0x196/0x220
[  106.911656][ T7523]  ? rpm_resume+0x811/0x1310
[  106.911670][ T7523]  ? __mutex_lock+0x1ca/0xb90
[  106.911687][ T7523]  ? __pfx_rpm_resume+0x10/0x10
[  106.911701][ T7523]  ? do_raw_spin_lock+0x12c/0x2b0
[  106.911713][ T7523]  ? mark_held_locks+0x49/0x80
[  106.911726][ T7523]  ? _raw_spin_unlock_irqrestore+0x52/0x80
[  106.911740][ T7523]  ? lockdep_hardirqs_on+0x7c/0x110
[  106.911754][ T7523]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  106.911767][ T7523]  ? __pm_runtime_resume+0xc3/0x170
[  106.911783][ T7523]  sr_block_ioctl+0x1b0/0x250
[  106.911799][ T7523]  ? __pfx_sr_block_ioctl+0x10/0x10
[  106.911814][ T7523]  blkdev_compat_ptr_ioctl+0x9c/0xe0
[  106.911831][ T7523]  ? __pfx_blkdev_compat_ptr_ioctl+0x10/0x10
[  106.911846][ T7523]  compat_blkdev_ioctl+0x2eb/0x7a0
[  106.911857][ T7523]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  106.911866][ T7523]  ? __fput_deferred+0x300/0x370
[  106.911881][ T7523]  ? __pfx_compat_blkdev_ioctl+0x10/0x10
[  106.911891][ T7523]  __ia32_compat_sys_ioctl+0x24c/0x360
[  106.911908][ T7523]  __do_fast_syscall_32+0x73/0x120
[  106.911924][ T7523]  do_fast_syscall_32+0x32/0x80
[  106.911939][ T7523]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  106.911951][ T7523] RIP: 0023:0xf708e579
[  106.911959][ T7523] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  106.911969][ T7523] RSP: 002b:00000000f507e55c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[  106.911979][ T7523] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000000005311
[  106.911985][ T7523] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  106.911990][ T7523] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  106.911996][ T7523] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  106.912001][ T7523] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  106.912014][ T7523]  </TASK>
[  107.029110][    C1] vkms_vblank_simulate: vblank timer overrun
[  107.221011][   T40] audit: type=1326 audit(1745484348.429:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7526 comm="syz.0.369" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  107.228384][   T40] audit: type=1326 audit(1745484348.429:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7526 comm="syz.0.369" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf708e579 code=0x7ffc0000
[  107.305480][ T7503] : entered promiscuous mode
[  107.526963][ T7530] pim6reg: entered allmulticast mode
[  107.535020][ T7530] pim6reg: left allmulticast mode
[  107.973657][ T7552] netlink: 8 bytes leftover after parsing attributes in process `syz.2.379'.
[  108.280012][ T7571] batman_adv: batadv0: Adding interface: dummy0
[  108.282854][ T7571] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.306483][ T7571] batman_adv: batadv0: Interface activated: dummy0
[  108.331291][ T7571] batadv0: mtu less than device minimum
[  108.333647][ T7571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  108.338635][ T7571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  108.343463][ T7571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  108.348412][ T7571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  108.352628][ T7571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  108.356643][ T7571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  108.361714][ T7571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  108.366669][ T7571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  108.370896][ T7571] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  108.401921][ T7575] /dev/nullb0: Can't open blockdev
[  108.466919][ T7580] xt_SECMARK: invalid mode: 0
[  108.670438][ T7582] netlink: 'syz.1.389': attribute type 2 has an invalid length.
[  108.728571][    C2] vcan0: j1939_tp_rxtimer: 0xffff888021deac00: rx timeout, send abort
[  108.815253][ T7592] Bluetooth: MGMT ver 1.23
[  108.933083][ T7595] Invalid logical block size (3840)
[  109.127577][ T7602] netlink: 4 bytes leftover after parsing attributes in process `syz.2.395'.
[  109.229108][    C2] vcan0: j1939_tp_rxtimer: 0xffff888021f79c00: rx timeout, send abort
[  109.232825][    C2] vcan0: j1939_tp_rxtimer: 0xffff888021deac00: abort rx timeout. Force session deactivation
[  109.647845][ T7633] netlink: 4 bytes leftover after parsing attributes in process `syz.0.404'.
[  109.732097][    C2] vcan0: j1939_tp_rxtimer: 0xffff888021f79c00: abort rx timeout. Force session deactivation
[  109.923715][ T7638] netlink: 68 bytes leftover after parsing attributes in process `syz.1.402'.
[  109.927227][ T7638] netlink: 68 bytes leftover after parsing attributes in process `syz.1.402'.
[  111.305505][ T7672] netlink: 'syz.0.413': attribute type 2 has an invalid length.
[  111.578047][ T7676] tipc: Started in network mode
[  111.580143][ T7676] tipc: Node identity 4, cluster identity 4711
[  111.584987][ T7676] tipc: Node number set to 4
[  111.998247][ T7677] netlink: 4 bytes leftover after parsing attributes in process `syz.1.415'.
[  112.066912][   T74] libceph: connect (1)[c::]:6789 error -101
[  112.070052][   T74] libceph: mon0 (1)[c::]:6789 connect error
[  112.095418][ T7698] ceph: No mds server is up or the cluster is laggy
[  112.575713][   T40] kauditd_printk_skb: 1630 callbacks suppressed
[  112.575760][   T40] audit: type=1326 audit(1745484353.779:1734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.3.423" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  112.588182][   T40] audit: type=1326 audit(1745484353.779:1735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.3.423" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  112.599449][   T40] audit: type=1326 audit(1745484353.779:1736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.3.423" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  112.608640][   T40] audit: type=1326 audit(1745484353.779:1737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.3.423" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  112.610038][ T7720] lo: entered promiscuous mode
[  112.617647][   T40] audit: type=1326 audit(1745484353.779:1738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.3.423" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  112.617686][   T40] audit: type=1326 audit(1745484353.779:1739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.3.423" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  112.617721][   T40] audit: type=1326 audit(1745484353.779:1740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.3.423" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  112.617758][   T40] audit: type=1326 audit(1745484353.779:1741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.3.423" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  112.617793][   T40] audit: type=1326 audit(1745484353.779:1742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.3.423" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  112.617827][   T40] audit: type=1326 audit(1745484353.779:1743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7699 comm="syz.3.423" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x7ffc0000
[  112.714172][ T7720] tunl0: entered promiscuous mode
[  112.718004][ T7720] gre0: entered promiscuous mode
[  112.722778][ T7720] gretap0: entered promiscuous mode
[  113.127012][ T7742] netlink: 56 bytes leftover after parsing attributes in process `syz.0.433'.
[  113.158209][ T6020] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  113.309604][ T6020] usb 7-1: Using ep0 maxpacket: 16
[  113.330857][ T6020] usb 7-1: New USB device found, idVendor=1604, idProduct=8007, bcdDevice=af.a6
[  113.341365][ T6020] usb 7-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3
[  113.344111][ T6020] usb 7-1: Product: syz
[  113.345429][ T6020] usb 7-1: Manufacturer: syz
[  113.347633][ T6020] usb 7-1: SerialNumber: syz
[  113.358290][ T6020] usb 7-1: config 0 descriptor??
[  113.568953][ T7736] fuse: Bad value for 'user_id'
[  113.571097][ T7736] fuse: Bad value for 'user_id'
[  113.670186][    T9] usb 7-1: USB disconnect, device number 13
[  113.878491][ T7750] lo: entered promiscuous mode
[  113.880862][ T7750] tunl0: entered promiscuous mode
[  113.883949][ T7750] gre0: entered promiscuous mode
[  113.886100][ T7750] gretap0: entered promiscuous mode
[  113.889623][ T7750] erspan0: entered promiscuous mode
[  113.891627][ T7750] ip_vti0: entered promiscuous mode
[  113.893926][ T7750] ip6_vti0: entered promiscuous mode
[  113.896482][ T7750] sit0: entered promiscuous mode
[  113.899524][ T7750] ip6tnl0: entered promiscuous mode
[  113.901552][ T7750] ip6gre0: entered promiscuous mode
[  113.903652][ T7750] ip6gretap0: entered promiscuous mode
[  113.905912][ T7750] bridge0: entered promiscuous mode
[  113.908789][ T7750] vcan0: entered promiscuous mode
[  113.911973][ T7750] bond0: entered promiscuous mode
[  113.913570][ T7750] bond_slave_0: entered promiscuous mode
[  113.915440][ T7750] bond_slave_1: entered promiscuous mode
[  113.918454][ T7750] team0: entered promiscuous mode
[  113.921065][ T7750] team_slave_0: entered promiscuous mode
[  113.923797][ T7750] team_slave_1: entered promiscuous mode
[  113.926119][ T7750] nlmon0: entered promiscuous mode
[  113.939460][ T7750] caif0: entered promiscuous mode
[  113.941540][ T7750] net_ratelimit: 11 callbacks suppressed
[  113.941549][ T7750] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  113.952222][ T7747] netlink: 6 bytes leftover after parsing attributes in process `syz.0.435'.
[  113.955825][ T7747] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  114.197166][ T7745] Process accounting resumed
[  116.535588][ T7785] netlink: 52 bytes leftover after parsing attributes in process `syz.0.444'.
[  116.550126][ T7785] bridge0: port 2(bridge_slave_1) entered disabled state
[  116.553702][ T7785] bridge0: port 1(bridge_slave_0) entered disabled state
[  116.668718][ T7787] input: syz1 as /devices/virtual/input/input7
[  117.101877][   T74] libceph: connect (1)[c::]:6789 error -101
[  117.104382][   T74] libceph: mon0 (1)[c::]:6789 connect error
[  117.362255][   T74] libceph: connect (1)[c::]:6789 error -101
[  117.371165][   T74] libceph: mon0 (1)[c::]:6789 connect error
[  117.485879][ T7803] syzkaller1: entered promiscuous mode
[  117.487562][ T7803] syzkaller1: entered allmulticast mode
[  117.663128][ T7809] random: crng reseeded on system resumption
[  117.706194][ T7793] ceph: No mds server is up or the cluster is laggy
[  118.206555][ T7822] overlayfs: upper fs does not support file handles, falling back to index=off.
[  118.691648][   T40] kauditd_printk_skb: 26 callbacks suppressed
[  118.691658][   T40] audit: type=1326 audit(1745484359.899:1770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7824 comm="syz.2.456" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  118.701560][   T40] audit: type=1326 audit(1745484359.899:1771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7824 comm="syz.2.456" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  118.711251][   T40] audit: type=1326 audit(1745484359.909:1772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7824 comm="syz.2.456" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf70be579 code=0x7ffc0000
[  118.717889][   T40] audit: type=1326 audit(1745484359.919:1773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7824 comm="syz.2.456" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  118.724989][   T40] audit: type=1326 audit(1745484359.919:1774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7824 comm="syz.2.456" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  118.731891][   T40] audit: type=1326 audit(1745484359.919:1775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7824 comm="syz.2.456" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf70be579 code=0x7ffc0000
[  118.738959][   T40] audit: type=1326 audit(1745484359.919:1776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7824 comm="syz.2.456" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  118.745610][   T40] audit: type=1326 audit(1745484359.919:1777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7824 comm="syz.2.456" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  118.752394][   T40] audit: type=1326 audit(1745484359.919:1778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7824 comm="syz.2.456" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf70be579 code=0x7ffc0000
[  118.759278][   T40] audit: type=1326 audit(1745484359.919:1779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7824 comm="syz.2.456" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70be579 code=0x7ffc0000
[  120.162419][ T7875] No such timeout policy "syz1"
[  121.237911][ T7905] UHID_CREATE from different security context by process 388 (syz.2.482), this is not allowed.
[  121.727644][ T7934] netlink: 68 bytes leftover after parsing attributes in process `syz.2.485'.
[  121.738980][ T7934] netlink: 68 bytes leftover after parsing attributes in process `syz.2.485'.
[  121.840110][ T7938] netlink: 24 bytes leftover after parsing attributes in process `syz.0.490'.
[  122.290742][ T7960] qrtr: Invalid version 0
[  122.443101][ T7970] netlink: 4 bytes leftover after parsing attributes in process `syz.0.492'.
[  122.446728][ T7970] netlink: 4 bytes leftover after parsing attributes in process `syz.0.492'.
[  123.838318][ T8026] netlink: 68 bytes leftover after parsing attributes in process `syz.1.502'.
[  123.841921][ T8026] netlink: 68 bytes leftover after parsing attributes in process `syz.1.502'.
[  123.935620][ T8025] netlink: 'syz.0.503': attribute type 1 has an invalid length.
[  124.155722][ T8038] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  124.167853][ T8038] kvm: pic: level sensitive irq not supported
[  124.168360][ T8038] kvm: pic: non byte read
[  124.211990][ T8053] netlink: 28 bytes leftover after parsing attributes in process `syz.2.512'.
[  124.215127][ T8053] netlink: 60 bytes leftover after parsing attributes in process `syz.2.512'.
[  124.448408][    T9] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  124.588309][    T9] usb 5-1: device descriptor read/64, error -71
[  124.647098][ T8062] netlink: 4 bytes leftover after parsing attributes in process `syz.2.514'.
[  124.713948][ T8062] hid-generic 0003:0627:0001.0001: pid 8062 passed too large report
[  124.765671][ T8061] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  124.773887][ T8061] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  124.779730][ T8061] bond0 (unregistering): Released all slaves
[  124.838142][    T9] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  124.942731][ T8068] fuse: Unknown parameter 'rootmod'
[  125.026637][    T9] usb 5-1: device descriptor read/64, error -71
[  125.141391][    T9] usb usb5-port1: attempt power cycle
[  125.488187][    T9] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  125.509704][    T9] usb 5-1: device descriptor read/8, error -71
[  125.798212][    T9] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  125.821845][ T8093] bridge_slave_0: left allmulticast mode
[  125.824133][ T8093] bridge_slave_0: left promiscuous mode
[  125.826531][ T8093] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.839538][ T8093] bridge_slave_1: left allmulticast mode
[  125.841778][ T8093] bridge_slave_1: left promiscuous mode
[  125.844391][ T8093] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.858554][ T8093] bond0: (slave bond_slave_0): Releasing backup interface
[  125.881405][ T8093] bond0: (slave bond_slave_1): Releasing backup interface
[  125.904709][ T8093] team0: Port device team_slave_0 removed
[  125.920279][ T8093] team0: Port device team_slave_1 removed
[  125.926822][ T8093] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  125.931016][ T8093] batman_adv: batadv0: Removing interface: batadv_slave_0
[  125.931079][    T9] usb 5-1: device descriptor read/8, error -71
[  125.944641][ T8093] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  125.948015][ T8093] batman_adv: batadv0: Removing interface: batadv_slave_1
[  126.048335][    T9] usb usb5-port1: unable to enumerate USB device
[  126.162937][ T8099] syzkaller1: entered promiscuous mode
[  126.165050][ T8099] syzkaller1: entered allmulticast mode
[  126.288545][ T8105] random: crng reseeded on system resumption
[  126.316704][ T8107] overlay: ./file0 is not a directory
[  126.928145][   T63] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  127.006276][ T8125] new mount options do not match the existing superblock, will be ignored
[  127.078552][   T63] usb 8-1: Using ep0 maxpacket: 8
[  127.085252][   T63] usb 8-1: config index 0 descriptor too short (expected 5924, got 36)
[  127.087905][   T63] usb 8-1: config 250 has an invalid interface number: 228 but max is -1
[  127.099507][   T63] usb 8-1: config 250 has 1 interface, different from the descriptor's value: 0
[  127.102689][   T63] usb 8-1: config 250 has no interface number 0
[  127.104781][   T63] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  127.122306][   T63] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  127.125766][   T63] usb 8-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  127.135090][   T63] usb 8-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  127.138814][   T63] usb 8-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  127.143221][   T63] usb 8-1: config 250 interface 228 has no altsetting 0
[  127.150017][   T63] usb 8-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  127.153163][   T63] usb 8-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  127.155976][   T63] usb 8-1: Product: syz
[  127.157321][   T63] usb 8-1: SerialNumber: syz
[  127.163226][   T63] hub 8-1:250.228: bad descriptor, ignoring hub
[  127.165270][   T63] hub 8-1:250.228: probe with driver hub failed with error -5
[  127.250362][ T8130] netlink: 'syz.0.536': attribute type 1 has an invalid length.
[  127.252952][ T8130] netlink: 'syz.0.536': attribute type 2 has an invalid length.
[  127.255573][ T8130] netlink: 'syz.0.536': attribute type 3 has an invalid length.
[  127.258484][ T8130] __nla_validate_parse: 3 callbacks suppressed
[  127.258492][ T8130] netlink: 228 bytes leftover after parsing attributes in process `syz.0.536'.
[  127.270910][ T8132] netlink: 12 bytes leftover after parsing attributes in process `syz.0.536'.
[  127.270973][ T8130] netlink: 12 bytes leftover after parsing attributes in process `syz.0.536'.
[  127.366483][ T8136] syzkaller1: entered promiscuous mode
[  127.369640][ T8136] syzkaller1: entered allmulticast mode
[  127.371304][   T63] usblp 8-1:250.228: usblp0: USB Bidirectional printer dev 6 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  127.492763][ T8138] random: crng reseeded on system resumption
[  127.678314][   T57] usb 8-1: USB disconnect, device number 6
[  127.682048][   T57] usblp0: removed
[  128.163996][ T8149] syzkaller1: entered promiscuous mode
[  128.166138][ T8149] syzkaller1: entered allmulticast mode
[  128.432147][ T8154] random: crng reseeded on system resumption
[  128.867199][ T8163] netlink: 12 bytes leftover after parsing attributes in process `syz.1.546'.
[  129.372317][ T8184] batman_adv: batadv0: Interface deactivated: dummy0
[  129.374442][ T8184] batman_adv: batadv0: Removing interface: dummy0
[  129.401191][ T8184] bridge_slave_0: left allmulticast mode
[  129.403371][ T8184] bridge_slave_0: left promiscuous mode
[  129.405218][ T8184] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.411130][ T8187] overlay: ./file0 is not a directory
[  129.413640][ T8184] bridge_slave_1: left allmulticast mode
[  129.415412][ T8184] bridge_slave_1: left promiscuous mode
[  129.424064][ T8184] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.438413][ T8184] bond0: (slave bond_slave_0): Releasing backup interface
[  129.444754][ T8184] bond0: (slave bond_slave_1): Releasing backup interface
[  129.483842][ T8184] team0: Port device team_slave_0 removed
[  129.515228][ T8184] team0: Port device team_slave_1 removed
[  129.519684][ T8184] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  129.525455][ T8184] batman_adv: batadv0: Removing interface: batadv_slave_0
[  129.581312][ T8184] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  129.583781][ T8184] batman_adv: batadv0: Removing interface: batadv_slave_1
[  130.032198][ T5305] Bluetooth: hci3: ACL packet for unknown connection handle 201
[  130.332371][ T8206] qrtr: Invalid version 0
[  130.698237][ T6009] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  130.742751][   T40] kauditd_printk_skb: 29 callbacks suppressed
[  130.742761][   T40] audit: type=1326 audit(1745484371.949:1809): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8214 comm="syz.3.565" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x0
[  131.238466][ T6009] usb 6-1: Using ep0 maxpacket: 16
[  131.245006][ T6009] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.250013][ T6009] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.254205][ T6009] usb 6-1: New USB device found, idVendor=0458, idProduct=5016, bcdDevice= 0.00
[  131.258176][ T6009] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.270339][ T6009] usb 6-1: config 0 descriptor??
[  131.870010][ T8278] netlink: 56 bytes leftover after parsing attributes in process `syz.3.574'.
[  132.238809][ T8281] syz.0.576: attempt to access beyond end of device
[  132.238809][ T8281] nbd0: rw=0, sector=6, nr_sectors = 2 limit=0
[  132.244297][ T8281] ADFS-fs (nbd0): error: unable to read block 3, try 0
[  132.318872][ T1414] ieee802154 phy0 wpan0: encryption failed: -22
[  132.321825][ T1414] ieee802154 phy1 wpan1: encryption failed: -22
[  133.207028][ T8293] netlink: 4 bytes leftover after parsing attributes in process `syz.2.579'.
[  133.825200][ T6009] usbhid 6-1:0.0: can't add hid device: -71
[  133.827595][ T6009] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  133.831239][ T6009] usb 6-1: USB disconnect, device number 3
[  134.712378][ T8308] netlink: 20 bytes leftover after parsing attributes in process `syz.1.584'.
[  134.870234][   T63] usb 7-1: new high-speed USB device number 14 using dummy_hcd
[  135.039830][   T63] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  135.043043][   T63] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  135.047438][   T63] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  135.068833][   T63] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.072465][   T63] usb 7-1: config 0 descriptor??
[  135.076065][   T63] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[  135.128128][  T833] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  135.280861][  T833] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  135.284117][  T833] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  135.287312][  T833] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  135.290186][  T833] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  135.293529][  T833] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  135.298159][  T833] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  135.300982][  T833] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  135.303477][  T833] usb 5-1: Product: syz
[  135.304792][  T833] usb 5-1: Manufacturer: syz
[  135.309735][  T833] cdc_wdm 5-1:1.0: skipping garbage
[  135.311375][  T833] cdc_wdm 5-1:1.0: skipping garbage
[  135.314776][  T833] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  135.316632][  T833] cdc_wdm 5-1:1.0: Unknown control protocol
[  135.452067][ T8316] nft_compat: unsupported protocol 0
[  136.205164][ T8338] capability: warning: `syz.1.593' uses deprecated v2 capabilities in a way that may be insecure
[  136.349582][ T8343] netlink: 20 bytes leftover after parsing attributes in process `syz.1.595'.
[  136.445187][ T8343] netlink: 'syz.1.595': attribute type 10 has an invalid length.
[  136.450102][ T8343] bond0: (slave wlan1): Opening slave failed
[  136.583126][ T8354] netlink: 104 bytes leftover after parsing attributes in process `syz.1.596'.
[  137.654248][  T833] usb 7-1: USB disconnect, device number 14
[  137.863691][   T24] usb 5-1: USB disconnect, device number 11
[  137.897502][ T8386] overlayfs: upper fs does not support file handles, falling back to index=off.
[  138.097501][   T40] audit: type=1326 audit(1745484379.299:1810): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.1.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  138.117436][   T40] audit: type=1326 audit(1745484379.299:1811): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.1.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  138.118943][ T8393] overlayfs: upper fs does not support file handles, falling back to index=off.
[  138.125405][   T40] audit: type=1326 audit(1745484379.309:1812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.1.606" exe="/syz-executor" sig=0 arch=40000003 syscall=125 compat=1 ip=0xf704e579 code=0x7ffc0000
[  138.136445][   T40] audit: type=1326 audit(1745484379.309:1813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.1.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  138.148248][   T40] audit: type=1326 audit(1745484379.309:1814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.1.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  138.156125][   T40] audit: type=1326 audit(1745484379.309:1815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.1.606" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf704e579 code=0x7ffc0000
[  138.176714][   T40] audit: type=1326 audit(1745484379.309:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.1.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  138.185181][   T40] audit: type=1326 audit(1745484379.309:1817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.1.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  138.194423][   T40] audit: type=1326 audit(1745484379.319:1818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.1.606" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf704e579 code=0x7ffc0000
[  138.203924][   T40] audit: type=1326 audit(1745484379.319:1819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8383 comm="syz.1.606" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  138.395619][ T8382] netlink: 'syz.2.604': attribute type 7 has an invalid length.
[  138.418151][   T63] usb 8-1: new low-speed USB device number 7 using dummy_hcd
[  138.419109][ T8382] netlink: 12 bytes leftover after parsing attributes in process `syz.2.604'.
[  138.423236][ T8382] ksmbd: Unknown IPC event: 0, ignore.
[  138.581122][   T63] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[  138.588296][   T63] usb 8-1: config 0 has no interface number 0
[  138.590986][   T63] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  138.595308][   T63] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  138.596345][ T8399] netlink: 12 bytes leftover after parsing attributes in process `syz.2.611'.
[  138.599435][   T63] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  138.606337][   T63] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.610671][   T63] usb 8-1: config 0 descriptor??
[  138.613117][ T8397] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  138.620392][   T63] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  138.823261][   T74] usb 8-1: USB disconnect, device number 7
[  138.825661][    C1] iowarrior 8-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[  139.144341][ T8418] overlayfs: upper fs does not support file handles, falling back to index=off.
[  139.318221][   T74] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  139.382316][ T8425] overlayfs: upper fs does not support file handles, falling back to index=off.
[  139.478171][   T74] usb 8-1: Using ep0 maxpacket: 16
[  139.482226][   T74] usb 8-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  139.502213][   T74] usb 8-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  139.505547][   T74] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  139.511777][   T74] usb 8-1: Product: syz
[  139.513109][   T74] usb 8-1: Manufacturer: ౦
[  139.514630][   T74] usb 8-1: SerialNumber: syz
[  139.743138][   T74] cdc_ncm 8-1:1.0: bind() failure
[  139.759941][   T74] cdc_ncm 8-1:1.1: CDC Union missing and no IAD found
[  139.762075][   T74] cdc_ncm 8-1:1.1: bind() failure
[  139.785869][   T74] usb 8-1: USB disconnect, device number 8
[  140.088130][   T57] usb 7-1: new full-speed USB device number 15 using dummy_hcd
[  140.250493][   T57] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  140.253609][   T57] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2
[  140.257435][   T57] usb 7-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  140.260453][   T57] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  140.264448][   T57] usb 7-1: config 0 descriptor??
[  140.267867][   T57] dvb-usb: found a 'Artec T1 USB2.0' in warm state.
[  140.271331][   T57] dvb-usb: bulk message failed: -22 (3/0)
[  140.276565][   T57] dvb-usb: will use the device's hardware PID filter (table count: 16).
[  140.279946][   T57] dvbdev: DVB: registering new adapter (Artec T1 USB2.0)
[  140.282641][   T57] usb 7-1: media controller created
[  140.285808][   T57] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  140.293555][   T57] dvb-usb: bulk message failed: -22 (6/0)
[  140.295580][   T57] dvb-usb: no frontend was attached by 'Artec T1 USB2.0'
[  140.299282][   T57] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb7/7-1/input/input8
[  140.306460][   T57] dvb-usb: schedule remote query interval to 150 msecs.
[  140.308819][   T57] dvb-usb: Artec T1 USB2.0 successfully initialized and connected.
[  140.479489][   T57] dvb-usb: bulk message failed: -22 (1/0)
[  140.481383][   T57] dvb-usb: error while querying for an remote control event.
[  140.639440][   T57] dvb-usb: bulk message failed: -22 (1/0)
[  140.641283][   T57] dvb-usb: error while querying for an remote control event.
[  140.799036][   T57] dvb-usb: bulk message failed: -22 (1/0)
[  140.800883][   T57] dvb-usb: error while querying for an remote control event.
[  140.958364][   T57] dvb-usb: bulk message failed: -22 (1/0)
[  140.960198][   T57] dvb-usb: error while querying for an remote control event.
[  141.119724][   T57] dvb-usb: bulk message failed: -22 (1/0)
[  141.121564][   T57] dvb-usb: error while querying for an remote control event.
[  141.240049][   T57] usb 7-1: USB disconnect, device number 15
[  141.255892][   T57] dvb-usb: Artec T1 USB2.0 successfully deinitialized and disconnected.
[  163.612067][ T5305] Bluetooth: hci3: unexpected event for opcode 0x0c5a
[  163.631919][ T8438] syz.2.625: attempt to access beyond end of device
[  163.631919][ T8438] nbd2: rw=0, sector=1, nr_sectors = 1 limit=0
[  163.639320][ T8438] qnx4: unable to read the superblock
[  163.647164][ T8440] input: syz1 as /devices/virtual/input/input9
[  163.689171][ T8438] netlink: 12 bytes leftover after parsing attributes in process `syz.2.625'.
[  163.746721][   T63] libceph: connect (1)[c::]:6789 error -101
[  163.749234][   T63] libceph: mon0 (1)[c::]:6789 connect error
[  163.752369][   T63] libceph: connect (1)[c::]:6789 error -101
[  163.754279][   T63] libceph: mon0 (1)[c::]:6789 connect error
[  163.823742][ T8448] ceph: No mds server is up or the cluster is laggy
[  164.082503][ T8462] hsr0: entered promiscuous mode
[  164.085899][ T8462] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[  164.088928][ T8462] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[  164.094412][ T8462] netlink: 4 bytes leftover after parsing attributes in process `syz.3.630'.
[  164.101129][ T8462] hsr_slave_0: left promiscuous mode
[  164.104335][ T8462] hsr_slave_1: left promiscuous mode
[  164.117629][ T8462] hsr0 (unregistering): left promiscuous mode
[  164.202685][ T8459] netlink: 8 bytes leftover after parsing attributes in process `syz.0.627'.
[  164.660594][ T8469] lo: entered allmulticast mode
[  164.676452][ T8469] lo: left allmulticast mode
[  164.730371][ T5305] Bluetooth: hci3: unexpected event for opcode 0x0c5a
[  164.745796][ T8472] syz.2.633: attempt to access beyond end of device
[  164.745796][ T8472] nbd2: rw=0, sector=1, nr_sectors = 1 limit=0
[  164.749871][ T8472] qnx4: unable to read the superblock
[  164.750333][ T8474] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci3/hci3:200/input10
[  164.808731][ T8472] netlink: 12 bytes leftover after parsing attributes in process `syz.2.633'.
[  165.022162][ T8490] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  165.024565][ T8490] overlayfs: failed to set xattr on upper
[  165.026361][ T8490] overlayfs: ...falling back to redirect_dir=nofollow.
[  165.029462][ T8490] overlayfs: ...falling back to index=off.
[  165.031524][ T8490] overlayfs: ...falling back to uuid=null.
[  165.040203][ T8490] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[  165.927239][ T8509] FAULT_INJECTION: forcing a failure.
[  165.927239][ T8509] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  165.932276][ T8509] CPU: 2 UID: 0 PID: 8509 Comm: syz.1.641 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) 
[  165.932291][ T8509] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  165.932298][ T8509] Call Trace:
[  165.932301][ T8509]  <TASK>
[  165.932306][ T8509]  dump_stack_lvl+0x16c/0x1f0
[  165.932325][ T8509]  should_fail_ex+0x512/0x640
[  165.932339][ T8509]  _copy_from_user+0x2e/0xd0
[  165.932353][ T8509]  copy_from_sockptr_offset.constprop.0+0x136/0x170
[  165.932367][ T8509]  ? __pfx_copy_from_sockptr_offset.constprop.0+0x10/0x10
[  165.932382][ T8509]  ? __local_bh_enable_ip+0xa4/0x120
[  165.932397][ T8509]  rfcomm_sock_setsockopt+0x59b/0x6e0
[  165.932410][ T8509]  ? __pfx_rfcomm_sock_setsockopt+0x10/0x10
[  165.932422][ T8509]  ? find_held_lock+0x2b/0x80
[  165.932436][ T8509]  ? __pfx_rfcomm_sock_setsockopt+0x10/0x10
[  165.932449][ T8509]  do_sock_setsockopt+0x221/0x470
[  165.932465][ T8509]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  165.932489][ T8509]  __sys_setsockopt+0x120/0x1a0
[  165.932504][ T8509]  __ia32_sys_setsockopt+0xbc/0x160
[  165.932516][ T8509]  ? lockdep_hardirqs_on+0x7c/0x110
[  165.932530][ T8509]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  165.932546][ T8509]  __do_fast_syscall_32+0x73/0x120
[  165.932562][ T8509]  do_fast_syscall_32+0x32/0x80
[  165.932576][ T8509]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  165.932589][ T8509] RIP: 0023:0xf704e579
[  165.932597][ T8509] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  165.932607][ T8509] RSP: 002b:00000000f501d55c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  165.932617][ T8509] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000000112
[  165.932623][ T8509] RDX: 0000000000000004 RSI: 0000000080000180 RDI: 0000000000000002
[  165.932629][ T8509] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  165.932634][ T8509] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  165.932640][ T8509] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  165.932652][ T8509]  </TASK>
[  166.001425][    C2] hpet_rtc_timer_reinit: 4 callbacks suppressed
[  166.001435][    C2] hpet: Lost 3 RTC interrupts
[  166.209516][ T8519] pim6reg1: entered promiscuous mode
[  166.211221][ T8519] pim6reg1: entered allmulticast mode
[  166.871370][ T8550] overlayfs: upper fs does not support file handles, falling back to index=off.
[  166.882158][ T8552] kernel profiling enabled (shift: 9)
[  166.932886][ T8556] netlink: 16 bytes leftover after parsing attributes in process `syz.2.648'.
[  167.196238][ T8563] syzkaller1: entered promiscuous mode
[  167.198035][ T8563] syzkaller1: entered allmulticast mode
[  167.312224][ T8565] random: crng reseeded on system resumption
[  167.803136][ T8572] FAULT_INJECTION: forcing a failure.
[  167.803136][ T8572] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.807230][ T8572] CPU: 1 UID: 0 PID: 8572 Comm: syz.3.659 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) 
[  167.807244][ T8572] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  167.807251][ T8572] Call Trace:
[  167.807255][ T8572]  <TASK>
[  167.807259][ T8572]  dump_stack_lvl+0x16c/0x1f0
[  167.807277][ T8572]  should_fail_ex+0x512/0x640
[  167.807292][ T8572]  _copy_to_user+0x32/0xd0
[  167.807307][ T8572]  put_old_timespec32+0xb4/0x120
[  167.807321][ T8572]  ? __pfx_put_old_timespec32+0x10/0x10
[  167.807333][ T8572]  ? lockdep_hardirqs_on+0x7c/0x110
[  167.807347][ T8572]  ? read_tsc+0x9/0x20
[  167.807361][ T8572]  ? ktime_get_ts64+0x256/0x400
[  167.807373][ T8572]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  167.807389][ T8572]  poll_select_finish+0x5c0/0x6b0
[  167.807406][ T8572]  ? __pfx_poll_select_finish+0x10/0x10
[  167.807422][ T8572]  ? lockdep_hardirqs_on+0x7c/0x110
[  167.807435][ T8572]  ? _raw_spin_unlock_irq+0x2e/0x50
[  167.807454][ T8572]  __ia32_compat_sys_ppoll_time32+0x25a/0x2c0
[  167.807466][ T8572]  ? __pfx___ia32_compat_sys_ppoll_time32+0x10/0x10
[  167.807477][ T8572]  ? ksys_write+0x1b9/0x240
[  167.807487][ T8572]  ? __pfx_ksys_write+0x10/0x10
[  167.807499][ T8572]  ? rcu_is_watching+0x12/0xc0
[  167.807512][ T8572]  __do_fast_syscall_32+0x73/0x120
[  167.807528][ T8572]  do_fast_syscall_32+0x32/0x80
[  167.807542][ T8572]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  167.807556][ T8572] RIP: 0023:0xf7fe2579
[  167.807564][ T8572] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  167.807574][ T8572] RSP: 002b:00000000f50e555c EFLAGS: 00000296 ORIG_RAX: 0000000000000135
[  167.807584][ T8572] RAX: ffffffffffffffda RBX: 0000000080000240 RCX: 0000000000000003
[  167.807590][ T8572] RDX: 0000000080000280 RSI: 00000000800003c0 RDI: 0000000000000008
[  167.807596][ T8572] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  167.807601][ T8572] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  167.807607][ T8572] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  167.807620][ T8572]  </TASK>
[  167.872742][    C1] vkms_vblank_simulate: vblank timer overrun
[  168.873584][ T8602] netlink: 'syz.2.669': attribute type 4 has an invalid length.
[  169.045330][   T40] audit: type=1326 audit(1745484410.249:1824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8609 comm="syz.3.672" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe2579 code=0x0
[  169.116555][ T8611] netlink: 68 bytes leftover after parsing attributes in process `syz.2.670'.
[  169.119572][ T8611] netlink: 68 bytes leftover after parsing attributes in process `syz.2.670'.
[  169.537908][   T40] audit: type=1326 audit(1745484410.739:1825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8613 comm="syz.1.673" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  169.545215][   T40] audit: type=1326 audit(1745484410.739:1826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8613 comm="syz.1.673" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  169.552766][   T40] audit: type=1326 audit(1745484410.749:1827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8613 comm="syz.1.673" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf704e579 code=0x7ffc0000
[  169.559729][   T40] audit: type=1326 audit(1745484410.749:1828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8613 comm="syz.1.673" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  169.566305][   T40] audit: type=1326 audit(1745484410.749:1829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8613 comm="syz.1.673" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  169.573416][   T40] audit: type=1326 audit(1745484410.749:1830): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8613 comm="syz.1.673" exe="/syz-executor" sig=0 arch=40000003 syscall=123 compat=1 ip=0xf704e579 code=0x7ffc0000
[  169.580169][   T40] audit: type=1326 audit(1745484410.749:1831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8613 comm="syz.1.673" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  169.587344][   T40] audit: type=1326 audit(1745484410.749:1832): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8613 comm="syz.1.673" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704e579 code=0x7ffc0000
[  169.812957][ T8621] overlayfs: upper fs does not support file handles, falling back to index=off.
[  169.871365][ T8625] random: crng reseeded on system resumption
[  169.939452][ T8627] netlink: 12 bytes leftover after parsing attributes in process `syz.0.677'.
[  169.942595][ T8627] netlink: 'syz.0.677': attribute type 19 has an invalid length.
[  169.965981][ T8627] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  169.969033][ T8627] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  169.971962][ T8627] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  169.974706][ T8627] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  169.990607][ T8627] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  169.993478][ T8627] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  169.996209][ T8627] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  169.998928][ T8627] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  170.219277][ T5957] Bluetooth: hci1: command 0x0406 tx timeout
[  170.221924][ T5967] Bluetooth: hci2: command 0x0406 tx timeout
[  170.954377][   T45] BUG: sleeping function called from invalid context at mm/util.c:743
[  170.958395][   T45] in_atomic(): 1, irqs_disabled(): 0, non_block: 0, pid: 45, name: kcompactd1
[  170.962820][   T45] preempt_count: 1, expected: 0
[  170.964364][   T45] RCU nest depth: 0, expected: 0
[  170.966077][   T45] 1 lock held by kcompactd1/45:
[  170.967756][   T45]  #0: ffff88804273da48 (&mapping->i_private_lock){+.+.}-{3:3}, at: __buffer_migrate_folio+0x25b/0x690
[  170.972677][   T45] Preemption disabled at:
[  170.973049][   T45] [<0000000000000000>] 0x0
[  170.977561][   T45] CPU: 2 UID: 0 PID: 45 Comm: kcompactd1 Not tainted 6.15.0-rc3-syzkaller-00032-ga79be02bba5c #0 PREEMPT(full) 
[  170.977590][   T45] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  170.977597][   T45] Call Trace:
[  170.977601][   T45]  <TASK>
[  170.977606][   T45]  dump_stack_lvl+0x16c/0x1f0
[  170.977624][   T45]  __might_resched+0x3c0/0x5e0
[  170.977636][   T45]  ? folio_flags+0x5b/0x100
[  170.977653][   T45]  ? __pfx___might_resched+0x10/0x10
[  170.977674][   T45]  folio_mc_copy+0xfb/0x190
[  170.977697][   T45]  __migrate_folio.constprop.0+0xa1/0x3d0
[  170.977717][   T45]  __buffer_migrate_folio+0x5cd/0x690
[  170.977734][   T45]  ? __pfx_buffer_migrate_folio_norefs+0x10/0x10
[  170.977749][   T45]  move_to_new_folio+0x1d9/0x700
[  170.977764][   T45]  migrate_pages_batch+0x201d/0x31a0
[  170.977781][   T45]  ? __pfx_compaction_free+0x10/0x10
[  170.977795][   T45]  ? __pfx_migrate_pages_batch+0x10/0x10
[  170.977815][   T45]  migrate_pages_sync+0x12d/0x8a0
[  170.977830][   T45]  ? __pfx_compaction_alloc+0x10/0x10
[  170.977841][   T45]  ? __pfx_compaction_free+0x10/0x10
[  170.977853][   T45]  ? __pfx_migrate_pages_sync+0x10/0x10
[  170.977870][   T45]  ? find_held_lock+0x2b/0x80
[  170.977881][   T45]  ? isolate_movable_page+0x124/0x750
[  170.977897][   T45]  migrate_pages+0x1b28/0x2350
[  170.977913][   T45]  ? __pfx_compaction_alloc+0x10/0x10
[  170.977922][   T45]  ? __pfx_compaction_free+0x10/0x10
[  170.977935][   T45]  ? __pfx_migrate_pages+0x10/0x10
[  170.977952][   T45]  ? __pfx_isolate_migratepages_block+0x10/0x10
[  170.977964][   T45]  ? __pfx___might_resched+0x10/0x10
[  170.977978][   T45]  compact_zone+0x1f6c/0x45f0
[  170.977993][   T45]  ? __lock_acquire+0xaa4/0x1ba0
[  170.978013][   T45]  ? __pfx_compact_zone+0x10/0x10
[  170.978029][   T45]  compact_node+0x1a4/0x2d0
[  170.978040][   T45]  ? __pfx_compact_node+0x10/0x10
[  170.978061][   T45]  ? __pfx___might_resched+0x10/0x10
[  170.978084][   T45]  ? __pfx_extfrag_for_order+0x10/0x10
[  170.978098][   T45]  ? rcu_is_watching+0x12/0xc0
[  170.978111][   T45]  kcompactd+0x762/0xea0
[  170.978124][   T45]  ? __pfx_kcompactd+0x10/0x10
[  170.978134][   T45]  ? find_held_lock+0x2b/0x80
[  170.978145][   T45]  ? __pfx_autoremove_wake_function+0x10/0x10
[  170.978180][   T45]  ? lockdep_hardirqs_on+0x7c/0x110
[  170.978199][   T45]  ? __kthread_parkme+0x19e/0x250
[  170.978220][   T45]  ? __pfx_kcompactd+0x10/0x10
[  170.978232][   T45]  kthread+0x3c2/0x780
[  170.978248][   T45]  ? __pfx_kthread+0x10/0x10
[  170.978261][   T45]  ? __pfx_kthread+0x10/0x10
[  170.978275][   T45]  ? __pfx_kthread+0x10/0x10
[  170.978296][   T45]  ? __pfx_kthread+0x10/0x10
[  170.978316][   T45]  ? rcu_is_watching+0x12/0xc0
[  170.978328][   T45]  ? __pfx_kthread+0x10/0x10
[  170.978343][   T45]  ret_from_fork+0x45/0x80
[  170.978353][   T45]  ? __pfx_kthread+0x10/0x10
[  170.978371][   T45]  ret_from_fork_asm+0x1a/0x30
[  170.978405][   T45]  </TASK>
[  171.068413][    C2] hpet_rtc_timer_reinit: 3 callbacks suppressed
[  171.068422][    C2] hpet: Lost 5 RTC interrupts
[  171.183932][ T8649] netlink: 68 bytes leftover after parsing attributes in process `syz.1.683'.
[  171.186814][ T8649] netlink: 68 bytes leftover after parsing attributes in process `syz.1.683'.

VM DIAGNOSIS:
08:46:52  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000080000 RBX=0000000000000001 RCX=ffffc9000c402000 RDX=0000000000080000
RSI=ffffffff81f14489 RDI=0000000000000001 RBP=0000000000000001 RSP=ffffc900064c76c0
R8 =0000000000000001 R9 =0000000000000000 R10=0000000000000001 R11=0000000000000000
R12=0000000000000060 R13=ffffc900064c79d8 R14=0000000000000000 R15=ffffffff81f135a0
RIP=ffffffff81baaa4a RFL=00000216 [----AP-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff8880977bf000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f7153820 CR3=000000004e6a6000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000005000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=000000000056d5ed RBX=0000000000000001 RCX=ffffffff8b6f13e9 RDX=0000000000000000
RSI=ffffffff8dbe98f0 RDI=ffffffff8bf44f80 RBP=ffffed1003b55488 RSP=ffffc9000046fdf8
R8 =0000000000000001 R9 =ffffed10056665bd R10=ffff88802b332deb R11=0000000000000000
R12=0000000000000001 R13=ffff88801daaa440 R14=ffffffff90866910 R15=0000000000000000
RIP=ffffffff8b6efc7f RFL=00000282 [--S----] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880978bf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c41a636 CR3=0000000073ea4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff854afbc5 RDI=ffffffff9ae0cb80 RBP=ffffffff9ae0cb40 RSP=ffffc9000070ee90
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000020 R14=ffffffff9ae0cb40 R15=ffffffff854afb60
RIP=ffffffff854afbef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff8880979bf000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c35e7db CR3=0000000068318000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2323232323232323 2323232323232323
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffffffff
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000054 RBX=0000000000000001 RCX=0000000000000001 RDX=0000000000000001
RSI=ffff8880229baf58 RDI=ffff8880229ba440 RBP=ffffc900005e8d68 RSP=ffffc900005e8cd0
R8 =0000000000080000 R9 =0000000000000001 R10=0000000000000000 R11=ffffffff9ab5af08
R12=ffff8880229baf58 R13=0000000000000002 R14=ffff8880229ba440 R15=ffff8880229ba440
RIP=ffffffff81977c9d RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff888097abf000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=000000000c2da40c CR3=0000000068318000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000052
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000