last executing test programs:

14.159317799s ago: executing program 1 (id=319):
pipe(0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x20004050)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x53, 0x0, 0x2, 0x0)
r2 = getpid()
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(r2, 0x1e, &(0x7f0000000100)=0x5)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
readv(0xffffffffffffffff, &(0x7f0000001500)=[{&(0x7f0000000000)=""/107, 0x6b}], 0x1)
r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
read$char_usb(r4, &(0x7f0000001840)=""/4090, 0xffa)
add_key(0x0, 0x0, &(0x7f0000000080), 0x0, 0xfffffffffffffffb)
read$char_usb(r4, &(0x7f0000000240)=""/34, 0x43)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket(0xf, 0x80000, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r5, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0xd000, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200004c0], 0x0, 0x0, 0x0}, 0x280)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=ANY=[@ANYBLOB="be0e63941381f0542deaf01448cbfca1c0cc595abdc257380be4638b87514ff9fb7d2bac5d183699859ec50d66ce7b53f55b5e44d5de0bf7d7a03fd8b653fc8de8cc4cc49f295431cbdefa5495b8553830042f8b4b6793ccfe5e4e8d7d20879ecabbffba2342088a7e447fc679f838a72395f402c4d105e0f83ee33291c43628572840f95ba29441ba27cd247468dac9822b645cd4e22e301d32ae185f", @ANYRES32=r1, @ANYBLOB="000000000000007bbf6a55d5756e369bfa5147f69ee1c837c89f8ca43675ce8112f7bd3b8f703011a8d301409a2a3ad6418d2afdbec5b6432edac2b9bdee5de7a6f17451a17bdfc5bdbfcebe902222ac7cde0d4bc0be141f43a2b42b39b5020000000000"], 0x3}, 0x1, 0x0, 0x0, 0x2000c840}, 0x4)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x4ffe2, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40088a01, 0x0)
r6 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r6, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)
ioctl$SNDCTL_DSP_SYNC(r6, 0x5001, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r6, 0x40045010, &(0x7f0000000300)=0x3)

13.339725555s ago: executing program 1 (id=328):
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x7, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cast6-avx\x00'}, 0x58)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000009c0)=@bridge_dellink={0x44, 0x13, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r2}, [@IFLA_AF_SPEC={0x24, 0x1a, 0x0, 0x1, [@AF_INET={0x20, 0x5, 0x0, 0x1, {0x1c, 0x4, 0x0, 0x1, [{0x8, 0x2}, {0x8, 0x1}, {0x8, 0x3}]}}]}]}, 0x44}}, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000c18000)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
accept4(r0, 0x0, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r4}, 0x10)
r5 = syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r6, &(0x7f0000003580)={0x2, 0x0, @dev}, 0x10)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r6, &(0x7f0000000140)={0x2, 0x4e21, @empty}, 0x10)
ioctl$FS_IOC_GETFLAGS(r6, 0x80046601, &(0x7f0000000240))
r7 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$SMC_PNETID_ADD(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x2c, r5, 0x1, 0x0, 0x0, {}, [@SMC_PNETID_NAME={0x9, 0x1, 'syz0\x00'}, @SMC_PNETID_IBNAME={0x9, 0x3, 'syz1\x00'}]}, 0x2c}}, 0x0)

13.290992808s ago: executing program 1 (id=329):
syz_emit_ethernet(0x3e, &(0x7f0000002040)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x8, 0x2b, 0x0, @private2, @local, {[], {0x0, 0x0, 0x8}}}}}}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_open_dev$radio(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_DQEVENT(r4, 0x80785659, 0x0)
r5 = syz_open_dev$vbi(&(0x7f0000000280), 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r5, 0xc008561c, &(0x7f0000000080)={0xf0f041})
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000180)={'wpan1\x00', <r6=>0x0})
r7 = getpid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)={0x24, r3, 0x1, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}, @NL802154_ATTR_PID={0x8, 0x1c, r7}]}, 0x24}}, 0x0)

12.432642037s ago: executing program 1 (id=341):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_usb_connect(0x6, 0x2d, &(0x7f0000000040)=ANY=[], 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000300)={0xc, &(0x7f00000007c0)={0x40, 0x31, 0xa2, {0xa2, 0x11, "8ea3cb30109b2709cb42f28056a2019537328f234f89e03250b8f1dbbf9c751f151e61bd0ee8b76f8388a8ba3f51d04afb1008e4a83acfded030104b40d483367c02cc6b206f20d130ee4e81d29da48e35807a178f5ce2f715c04b9ecff3edd94d6f3f159ecfc1146883bf936023737e33d1edb8b09b0aca5923c7272bc3a7b4341506481ec52e0742a7016aa189991166c1fdb5991187070749f894c7db2343"}}, &(0x7f0000000280)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x418}}}, &(0x7f0000000ec0)={0x24, 0x0, &(0x7f0000000d00)={0x0, 0xa, 0x1, 0x4}, &(0x7f0000000d40)={0x0, 0x8, 0x1, 0x2}, &(0x7f0000000d80)={0x20, 0x81, 0x1, 'E'}, 0x0, &(0x7f0000000e00)={0x20, 0x83, 0x1, 'w'}, &(0x7f0000000e40)={0x20, 0x84, 0x2, "d962"}, &(0x7f0000000e80)={0x20, 0x85, 0x3, "f11fa5"}})
syz_usb_control_io$cdc_ecm(r0, &(0x7f0000000080)={0xc, &(0x7f0000000200)={0x0, 0x21, 0xb3, {0xb3, 0xc, "9398ff1c67de41cc0da413c31340c52ea5df6049afeda124530829c54ce6f80d4e52ceacab9b12b692630c6c46025f1cd0e094a399d4c0f29921984e906031209c9d5b093b7f68b800946b931a5bc562ab489f4d2b28487d842f8869b6921d1d04b991e61ef99c4b99c9d6b8d8b325df138fd5ecbac59f1566ac8e54b6dc4966a1fdf1758f95c9550c1d4d23be82ba1eff5c3e5732d8d2d920dfbddd6095f6ddf7938df2836fc1094b91f24b44567c5faf"}}, &(0x7f0000000000)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000400)={0x10, &(0x7f00000002c0)={0x20, 0xf, 0xec, "4f10a97770da5cafe4e5c8df382c9d080e9e34bcd2002c26bb1068659553d0bbf6333f5d3b92da4a0f8b8336a336523bb7f110041e248663c087283b97b677650b081ebe9bb8907540b167bfc09d220253e7c96d4546eb1f396e3bd620918e11ca0eaf65a705a5ef85b23bcb26f5264de0051aa7ea8490f78a41b1e5f1b424dd4524fa0c995ad46a05147ba5bbbf3e0947dc4d2d64d114f12481700d9e55fb136307c794bdbcdc4718725d69f2ede8c8c5a5a77827627ac40424845b92483f826845f398db06fdc9aa17ac9fa5764e6d91ab5afbf0d7ccb6b407fb2a5068e1e1d14fa4a1e9e909ed929130a1"}, &(0x7f00000000c0)={0x0, 0xa, 0x1, 0x8}, &(0x7f0000000140)={0x0, 0x8, 0x1, 0x6}})
syz_usb_control_io$printer(r0, &(0x7f0000000500)={0xc, &(0x7f0000000440)={0x0, 0x24, 0x48, {0x48, 0x10, "022e929b121a624dd49072f3e0bf692ab2c299033f2615416aa95927881247c586dca03888c5176eb970d89134b22614c28b07e47b2fb991ea90b4b3180fc102b299329ebdbe"}}, &(0x7f00000004c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x860}}}, &(0x7f0000000780)={0x1c, &(0x7f0000000540)={0x0, 0x1d, 0x19, "d6421833d8b5ef66304424b4514e6dd12fb7b3ba7f0f4f3047"}, &(0x7f0000000580)={0x0, 0xa, 0x1, 0x7}, &(0x7f00000005c0)={0x0, 0x8, 0x1, 0xf9}, &(0x7f0000000600)={0x20, 0x0, 0xe5, {0xe3, "1a1b00e84363ce27b19ce0db6a944313e0fec8943421de1b2ab843671144ab5e009b209c23b5d9e6f51718735424c37430566730f0a294a75c5248da9631afc6ef63ccb0fa3006a86f0a2e066436703f85b748738f44ac2d448d1aeff1cd11328671c2199a5728f310fb66512da5fbbf66d46651f12e47721a9fe76fbe6ceb5b5ed0518b8cc87dcb9e1fff20082aa8e3b85af1de96b1627988290e01f13517f9ef624a6637881e0925bd196992bcf78620ba4a6223d58b2f86c42fb425eb6cbd6f7c7f4475180c2710135b10a379196ec313fee5438c47313a25876fc48eb4751377a6"}}, &(0x7f0000000700)={0x20, 0x1, 0x1, 0x4}, &(0x7f0000000740)={0x20, 0x0, 0x1, 0x5}})
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)={0x14, 0x24, 0x9, 0x0, 0x0, {0x6}}, 0x14}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

4.21566034s ago: executing program 3 (id=400):
r0 = syz_open_dev$sg(&(0x7f0000000040), 0x0, 0x0)
socket$l2tp6(0xa, 0x2, 0x73)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000100)=0x400000bcc)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
epoll_create1(0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
r2 = gettid()
r3 = syz_open_dev$sndpcmc(&(0x7f0000000a00), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r3, 0xc25c4110, &(0x7f0000000600)={0x400, [[0x1], [0x4, 0x9], [0x3]], '\x00', [{0x0, 0x8001}, {0x0, 0x3ff, 0x0, 0x1}, {0x0, 0xe}, {}, {}, {0x0, 0x9bf8}, {}, {0x0, 0x20}, {}, {}, {0x3}], '\x00', 0x400})
timer_create(0x0, &(0x7f0000000140)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r4 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bind$bt_sco(r4, &(0x7f0000000040)={0x1f, @fixed}, 0x8)
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
read$FUSE(0xffffffffffffffff, &(0x7f0000001300)={0x2020, 0x0, 0x0, <r8=>0x0}, 0x2020)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x2004002, &(0x7f0000000200)=ANY=[@ANYBLOB="696e6f646533322c75737271756f74615f696e6f64655f686172646c699969743d322d6539746b332d2c736d61636b66737472616e736d7574653d262b2c666f776e65723d", @ANYRESDEC=r8, @ANYBLOB=',appraise,\x00'])
sendmsg$nl_route_sched(r5, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000b00)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xfff1}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_RATE={0x6, 0x5, {0x0, 0x2}}]}, 0x38}}, 0x0)
listen(r4, 0x0)
accept4(r4, 0x0, 0x0, 0x0)
ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f00000001c0)=ANY=[@ANYBLOB='\x00\x00\x00\x00\b\x00\x00\x00Z\x00\n'])

2.882385202s ago: executing program 3 (id=406):
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @sdr={0x20323159, 0x8000001}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
utimes(&(0x7f0000000080)='./file0\x00', &(0x7f0000000240))
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
writev(r2, &(0x7f00000003c0)=[{&(0x7f0000000180)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)
r3 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r3, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r3, 0x8)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000a80)=ANY=[], 0x24}}, 0x0)
sendto$inet(r4, &(0x7f00000002c0)="cc", 0x1, 0x0, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000280)={0x0, 0x2}, 0x8)
writev(r2, &(0x7f0000000040)=[{&(0x7f0000000400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200000000000006040000000000f93132", 0x39}], 0x1)
pipe(&(0x7f0000000300)={<r5=>0xffffffffffffffff})
close(r5)
setsockopt$MRT6_PIM(r5, 0x29, 0xcf, &(0x7f0000000000)=0x4, 0x4)
setsockopt$netlink_NETLINK_RX_RING(r2, 0x10e, 0x6, &(0x7f0000000340)={0x1190c49f, 0x23, 0x8}, 0x10)
bind$inet(r1, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
r6 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
write(r6, &(0x7f0000000040)="14000000140005b7ffccca38b9000000010860eb", 0x14)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="540000000206010800000000000000000700ffff05000100070000000900020073797a30000000000c000780080008400000001010000300686173683a69702c6d616300050005000a0000000500040000000000d1fc089f3a760d14cb8c4eac45e6df66c1d3d15b2620cfaa4ae653ff33ef2300a99f68299948a729c741168adeabfee89b0313f8db301097972b213317c8659aabb8710eb7bb7dc4b842f3643e35e6f18a441003286b8a920806ea9f9f55b3413fc2075055403aaf0c9f34c8aa8194c7f4c634670b1f3728"], 0x54}}, 0x0)
recvmmsg(r1, &(0x7f00000005c0), 0x40000000000026c, 0x0, 0x0)
socket$kcm(0x10, 0x2, 0x10)
syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102)

2.500786149s ago: executing program 3 (id=407):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x22}]}, @NFT_MSG_NEWSETELEM={0x34, 0xc, 0xa, 0x101, 0xf5, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x8, 0x3, 0x0, 0x1, [{0x4}]}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x10}}, 0xb8}}, 0x0)

2.500614376s ago: executing program 3 (id=408):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x8013}, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000200)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
r5 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000004c0)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x38, 0x3, r2, 0x0, 0x0, 0x0, 0x1, 0x1, {0x3, r5}})
io_uring_enter(r2, 0x8aa, 0x0, 0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)=ANY=[], 0x3c}}, 0x0)
socket$kcm(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, 0x0, 0x0)
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)

1.644718689s ago: executing program 2 (id=415):
r0 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x800, 0x40)
setsockopt$MRT6_PIM(r0, 0x29, 0xcf, &(0x7f0000000040)=0x3, 0x4)
syz_genetlink_get_family_id$mptcp(&(0x7f0000000080), r0)
r1 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$inet(r1, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x4e22, @private=0xa010101}, 0x10, 0x0, 0x0, &(0x7f0000000140)}, 0x801)

1.579701848s ago: executing program 2 (id=416):
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) (async)
r0 = socket$inet(0x2, 0x1, 0x0)
r1 = openat$cdrom(0xffffff9c, &(0x7f0000000880), 0x80040, 0x0)
ioctl$CDROM_LAST_WRITTEN(r1, 0x5395, &(0x7f0000000080)) (async)
getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x83, &(0x7f0000000040)={'filter\x00', 0x0, 0x0, 0x90, [], 0x0, 0x0, 0x1000000000000}, &(0x7f00000000c0)=0x108)

1.509860501s ago: executing program 3 (id=419):
syz_emit_ethernet(0x3e, &(0x7f0000002040)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x23}, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x8, 0x2b, 0x0, @private2, @local, {[], {0x0, 0x0, 0x8}}}}}}, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003780)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
ioctl$AUTOFS_IOC_CATATONIC(r1, 0x9362, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
read$msr(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_open_dev$radio(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_DQEVENT(r3, 0x80785659, 0x0)
r4 = syz_open_dev$vbi(&(0x7f0000000280), 0x0, 0x2)
ioctl$VIDIOC_S_CTRL(r4, 0xc008561c, &(0x7f0000000080)={0xf0f041})
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000180)={'wpan1\x00'})
getpid()

1.508834035s ago: executing program 2 (id=421):
socketpair$tipc(0x1e, 0x1, 0x0, 0x0)
setsockopt$TIPC_CONN_TIMEOUT(0xffffffffffffffff, 0x10f, 0x8a, 0x0, 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_MD5SIG(r0, 0x6, 0xe, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x2)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
read$msr(0xffffffffffffffff, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x103382)
r3 = memfd_create(&(0x7f0000000880)='C\x13\xfc2\x95WD\xaa\xba^\x90\xfd\x8d\xc2\xb1[\x81\xda\xda\xd6\x8c\xc99\xec\x0e*||\xe4\xb3\xc4\xb6\v\xaa\x15\x86,\xac\x8d\x89cu\x10\xdc\x93\x9b\xb4\x93\xafE*:\xe4\xdd\xa5\xa75\xb8\x1e;7\xb7.V\xdcrw[\r\x98\x93j\x9c\xf6\xf8\x99\xefF_\xcd\xdf!b\xc5\xec\ntb\xff\b\xaaF?!\x9f\a\x1a\x03\f\xe94\x1deU\x06zS\xc9\xb4\xa7@\xa1\\B\xc2@\r_b\x9a\xeb\b\xa4(V\xd6/N\xc5\xc6f\xb1\x95Z\xe5w^\xd8\xe7J\x80\xf7\xae\xafuv\x84\x9eG\xd1\xe7\x9b\xf0_9\xc2\x9b\xfd\xc3\xf3\xe4\x95P\xf1m\xcf\xc2\xe1\xe6\xa6\x8c\x11\xfb\xb8S\x8b\x92\\\asW-Ee\x02\x00\x00\x00\xd0;Q\xc1~\x89\xec\xc8\x9b\x88\a\xf2\x93\x82(\x8b\x00\xd8\xb4T\x80\x95\x93i|\xc0\x00\x04\x00\x00\x00\x00\x00\x00v\xef\xee+\xab\x9c\x00^R\xb2n?i=\xbe\x16\x8a\xbf\xe3\xcdB\xed\xe14\xe8\xd0\xb7\xff\xfeQ\x1c\x85n8\x1b\xc1\b\x00\x00\x00\x00\x00\x00\x00\x17\x94\xdfW<GE\xf1\xe9\xf1q\x8c\xf0\xae\x98\x8c\xe0\xc1g}\xaeW\xaa\xa1\x90\x8c\n$\xa6\xbb\x10\xaf\xc7~\x11\x03<v\xe9\xc7K\xf6]\x11)u\xd3\x15\x01}\xe25$\xb0\x86v\x80\r\x9c\xb8\xe6\xd3(\xa0G2s\xa9&\xb3QU~u\x13\x05kKp\xa6&\x8eu\x1d\xb2\xa9!\xc9\xfa\xd0dG5\xcbf<}r\xab\x9c\xd9f6iN\xaa>\x92z\xbe\xb2R)\xf1K\xd7\xaf\x99\xf6d\xe8\xec\xb7\xbd+T3\xa6\xa9\xfaY-1qs\x82\xefn*\x96\xc9\x1e\xf4\xd1\x02Dt\xc0\x19\xf7\x89\x96.D [F\xeeYW\x95\x13\xc7;\xb5\x13^\x13\xcb\xf0C\x9c\xabf\x1daCS2\x02\xb0\xef\xc7\x8c\x9e\xed\a\n<V\xaa\xbfZ1\xa82\x85\x99\x0e$U\xb4X\xc7\xfa\f\b\x8f\xc4\xbeIt\xe4\xc51\xba\xb9H\xe8\x96\x94\xd7\xdc\x81\x111\t\xafl\x97\xd8T\xd40\x90ON\xaaFY\xb4\xb3\xf4\xf8JT\xc5:\xc5\aGc\xb5\x12\x90\x7f\x00\x91\xce@\xe5\xd3A\xcc\xd5|\x9f\x8e5\x042\x9a\xc1\xa1\a\xb7\xf5\xbc,\xd1\xd3k8\xc5\xefo\xb8\x8f]\x14\x1d', 0x0)
pwritev(r3, &(0x7f0000000600)=[{&(0x7f0000000380)="b9", 0x1}], 0x1, 0x800000, 0x0)
ioctl$LOOP_CHANGE_FD(r2, 0x4c00, r3)
ioctl$LOOP_SET_STATUS(r2, 0x4c02, &(0x7f0000000200)={0x0, {}, 0xa000000, {}, 0x0, 0x0, 0x0, 0x9, "4b8b3ea46929dfed0b2f34380d308f95a023d009852471dd5a94a9fe9549918ae7fd1f0ece5b861375b108403362cfe0f4fccffb1b6a2115354d4df15d017a3f", "2363f18d9acc6c25af21ca2af6d2e80e4caadd6d126cfb80c92dc817d44dcdec", [0x1, 0x7]})
ioctl$LOOP_CLR_FD(r2, 0x4c01)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
socket$nl_generic(0x10, 0x3, 0x10)

1.411590972s ago: executing program 2 (id=422):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000480), r3)
sendmsg$IEEE802154_LLSEC_GETPARAMS(r3, &(0x7f00000005c0)={0x0, 0x6000, &(0x7f0000000580)={&(0x7f0000000500)={0x20, r4, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x20}}, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = dup2(0xffffffffffffffff, r5)
sendmsg$NFT_MSG_GETSETELEM(r6, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000540)=ANY=[], 0x24}}, 0x400a0c5)
recvmsg$unix(r6, &(0x7f00000025c0)={0x0, 0x0, &(0x7f0000001680)=[{&(0x7f0000001540)=""/183, 0xb7}], 0x1}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000880)={0x6, 0x6, &(0x7f0000000600)=@raw=[@ringbuf_query, @jmp={0x5, 0x0, 0xa, 0xa, 0x3, 0x10, 0x1}, @ldst={0x3, 0x0, 0x1, 0x4, 0x8, 0xffffffffffffff70, 0xfffffffffffffff0}], &(0x7f0000000400)='syzkaller\x00', 0xfffffff7, 0xe2, &(0x7f00000006c0)=""/226, 0x0, 0x40, '\x00', 0x0, 0x25, r6, 0x8, &(0x7f00000007c0)={0x8, 0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, &(0x7f0000000800)=[{0x3, 0x4, 0x7, 0xb}, {0x2, 0x4, 0xc, 0x5}, {0x0, 0x5, 0x10, 0x3}, {0xf, 0x1, 0x9, 0x2}, {0x2, 0x5, 0x4, 0x1}, {0x3, 0x3, 0x7, 0x9}, {0x0, 0x5, 0xe, 0x7}, {0x5, 0x4, 0x1, 0x2}], 0x10, 0x1, @void, @value}, 0x94)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_GET_SEC_DEVKEY(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0}}, 0x0)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000280)={@local})
r7 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f000905", @ANYRES16], 0x0)
syz_usb_control_io$hid(r7, 0x0, 0x0)
syz_usb_control_io$hid(r7, &(0x7f0000000040)={0x14, 0x0, 0x0, &(0x7f00000002c0)=ANY=[], 0x0}, 0x0)
r8 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCSFLAG(r8, 0x4004480f, &(0x7f0000000000)=0x3)
ioctl$HIDIOCGUSAGE(r8, 0xc018480b, 0x0)
read$hiddev(r8, &(0x7f0000000080)=""/102, 0x66)
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r1, 0x7a5, &(0x7f0000000080)={{@host, 0x8ff6}, 0x0, 0x2, 0xff})
ioctl$IOCTL_VMCI_QUEUEPAIR_SETPF(r1, 0x7a9, 0x0)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, &(0x7f0000000000)={{&(0x7f0000ffc000/0x4000)=nil, 0x4000}, 0x2})
sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000009c0)=@newtaction={0x48, 0x30, 0x1, 0x0, 0x0, {}, [{0x34, 0x1, [@m_mpls={0x30, 0x1, 0x0, 0x0, {{0x9}, {0x4}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x48}}, 0x0)

1.359672692s ago: executing program 0 (id=424):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x6, 0x149903)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index=0x9, 0x7, 0x0, 0xffffffff, 0x0, 0x1}) (async)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000040)=@IORING_OP_FALLOCATE={0x11, 0x0, 0x0, @fd_index=0x9, 0x7, 0x0, 0xffffffff, 0x0, 0x1})
socket$nl_route(0x10, 0x3, 0x0) (async)
socket$nl_route(0x10, 0x3, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x4000, 0x0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
r4 = socket$inet6(0xa, 0x1, 0x84)
add_key(&(0x7f0000000300)='rxrpc\x00', 0x0, &(0x7f0000000440)="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", 0x152, 0xfffffffffffffffb) (async)
add_key(&(0x7f0000000300)='rxrpc\x00', 0x0, &(0x7f0000000440)="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", 0x152, 0xfffffffffffffffb)
bind$inet6(r4, &(0x7f0000ed3fe4)={0xa, 0x4e21, 0x0, @loopback}, 0x1c) (async)
bind$inet6(r4, &(0x7f0000ed3fe4)={0xa, 0x4e21, 0x0, @loopback}, 0x1c)
symlink(&(0x7f00000001c0)='./file0\x00', &(0x7f0000000240)='./file0\x00')
shutdown(r4, 0x0) (async)
shutdown(r4, 0x0)
setsockopt$sock_linger(r4, 0x1, 0xd, 0x0, 0x0)
sendto$inet6(r4, &(0x7f0000000100)="bc", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e20, 0x3, @loopback}, 0x1c) (async)
sendto$inet6(r4, &(0x7f0000000100)="bc", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x4e20, 0x3, @loopback}, 0x1c)
sendto$inet6(r4, &(0x7f0000000140)='b', 0x1, 0x48045, 0x0, 0x0) (async)
sendto$inet6(r4, &(0x7f0000000140)='b', 0x1, 0x48045, 0x0, 0x0)
close(r4)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r5, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4) (async)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r5, 0x10e, 0x4, &(0x7f0000000640)=0x1800, 0x4)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r5)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00'}) (async)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_TRIGGER_SCAN(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x4004841}, 0x80)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000005c0)=ANY=[@ANYRES32=r3, @ANYRES8=0x0], 0x5c}, 0x1, 0x620b, 0x0, 0x20044040}, 0x24000044)
socket$alg(0x26, 0x5, 0x0) (async)
socket$alg(0x26, 0x5, 0x0)

1.359484935s ago: executing program 0 (id=425):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000001880)={'wg1\x00', <r2=>0x0})
r3 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r3, 0x402, 0x8000003d)
fcntl$setsig(r3, 0xa, 0x21)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000002c0), 0x40000, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0x800000080010000)
openat(r3, &(0x7f0000004400)='./bus\x00', 0x463142, 0x0)
r4 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000fc0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000b80)={0x0, 0x0, &(0x7f0000000b40)={&(0x7f0000000280)={0x40, r4, 0xa29, 0x0, 0x0, {}, [@WGDEVICE_A_IFINDEX={0x6, 0x1, r2}, @WGDEVICE_A_PRIVATE_KEY={0x24}]}, 0x40}}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="010000000000000000000100000024000300a05ca84f6c9c8e3853e2fd7a70ae0fb20fa152600cb00845174f08076f8d784308000100", @ANYRES32=r2, @ANYBLOB="7bb2b6db7eff0000006c36e847059f87c2cba4dcd51668c7494bc3085c220c00003293c559b5a1f7886e69c30663292af1cfa46b33cdd882e747286c8dceeb77f8124b2095c9e5b2367eecc3"], 0x40}}, 0x0)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r5, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$bt_BT_SECURITY(r5, 0x112, 0x4, &(0x7f0000003000)={0x2}, 0x2)
sendmsg$inet(r5, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x400c8c0)
sendmsg$FOU_CMD_ADD(0xffffffffffffffff, 0x0, 0x40080)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r7 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r7, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r8 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0xa00810, &(0x7f0000000000)=ANY=[@ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX])
ioctl$VHOST_SET_MEM_TABLE(r8, 0x4008af03, &(0x7f0000000080))
socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_VRING_ADDR(r8, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x3000})

630.3042ms ago: executing program 3 (id=426):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340), 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000001380)=ANY=[@ANYRESHEX=r0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00 \x00\x00\x00\x00\x00\x00', @ANYRES32=r3, @ANYRES64=r0, @ANYRES64=r1], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r4}, 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x2a020480)
mq_open(&(0x7f0000000080)='!selin\xc8\xa1\x02\xbf\xd9l\xd7\xcd\xc0uxsecin\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x6e93ebbbcc088cf2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000001800)=@mangle={'mangle\x00', 0x64, 0x6, 0x55c, 0xc8, 0xc8, 0x2e4, 0x2e4, 0x2e4, 0x494, 0x494, 0x494, 0x494, 0x494, 0x6, 0x0, {[{{@ipv6={@mcast1, @private1, [], [], 'veth1\x00', 'wg1\x00'}, 0x0, 0xa4, 0xc8, 0x0, {0x0, 0x3a010000}}, @HL={0x24}}, {{@uncond, 0x0, 0xa4, 0xc8}, @HL={0x24, 'HL\x00', 0x0, {0x1, 0x7c}}}, {{@ipv6={@ipv4={'\x00', '\xff\xff', @private}, @ipv4={'\x00', '\xff\xff', @multicast2}, [], [], 'vxcan1\x00', 'ip6tnl0\x00'}, 0x0, 0x130, 0x154, 0x0, {}, [@common=@srh1={{0x8c}, {0x0, 0x0, 0x0, 0x0, 0x0, @dev, @rand_addr=' \x01\x00', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}}]}, @unspec=@CHECKSUM={0x24, 'CHECKSUM\x00', 0x0, {0x0}}}, {{@uncond, 0x0, 0xa4, 0xc8}, @common=@inet=@SYNPROXY={0x24}}, {{@uncond, 0x0, 0xa4, 0xe8}, @DNPT={0x44, 'DNPT\x00', 0x0, {@ipv4=@multicast1, @ipv6=@remote}}}], {{'\x00', 0x0, 0xa4, 0xc8}, {0x24}}}}, 0x5b8)

280.745977ms ago: executing program 0 (id=427):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000002b80)=@delchain={0x558, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x4}, {0xffe0}}, [@filter_kind_options=@f_u32={{0x8}, {0x52c, 0x2, [@TCA_U32_LINK={0x8, 0x3, 0x3f5}, @TCA_U32_FLAGS={0x8, 0xb, 0x5}, @TCA_U32_INDEV={0x14, 0x8, 'veth1_to_bridge\x00'}, @TCA_U32_ACT={0x504, 0x7, [@m_mpls={0xa0, 0x16, 0x0, 0x0, {{0x9}, {0x3c, 0x2, 0x0, 0x1, [@TCA_MPLS_PROTO={0x6, 0x4, 0x6005}, @TCA_MPLS_LABEL={0x8, 0x5, 0x38993}, @TCA_MPLS_TC={0x5, 0x6, 0x4}, @TCA_MPLS_LABEL={0x8, 0x5, 0xbc27b}, @TCA_MPLS_TC={0x5, 0x6, 0x2}, @TCA_MPLS_TTL={0x5, 0x7, 0x1}, @TCA_MPLS_LABEL={0x8, 0x5, 0xf80e6}]}, {0x39, 0x6, "612d3699db034f8f08430151bfb3f0819c1d44301a821ce1a7e2fcd26a93322f414a08eb783ba01be15256ed15fc2fa03568c8552b"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x0, 0x3}}}}, @m_mirred={0x158, 0x1e, 0x0, 0x0, {{0xb}, {0x64, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{0x8, 0x7, 0x20000000, 0xffff, 0x6}, 0x1}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3, 0x7, 0x8, 0x8, 0x401}, 0x2}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x3a61, 0x5a68ce02, 0x0, 0x2eca, 0x5}, 0x3}}]}, {0xcb, 0x6, "71558f82c797ed40aa96cae0561caac80e37421fbe6b5847795e9152419bd6e36082801f37e53ccbea50d8b4e7d6d4cd06cec76ec462499bdf122811144a51b56146738d4d25cbd285f2e729dbbe3c6137f7cd123b784cfddefd732ecc306f6cd0dc9c82fffc866125185fd50c16a59b8228811ffa42a3fc06ae6c491841f2d3b022b410d20071f23972ad211e8d088570180a0b72ec30b207b439e9499530f5ed3add294c6979c4716758179993cb396d1a9e8371981dc62a436962aa697442d2123e008f091e"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_bpf={0x7c, 0xb, 0x0, 0x0, {{0x8}, {0x14, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x5}, @TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x6}]}, {0x41, 0x6, "41aded84741ae0ad62644bf1bcd133afd532ca829ac6bda1bb5ef9fa93873a30f5d3e7c176e9df8b4cd9294006f3b071f6f02d14812ffa5cddbb03a131"}, {0xc}, {0xc, 0x8, {0x3, 0x3}}}}, @m_xt={0x1b0, 0x14, 0x0, 0x0, {{0x7}, {0x164, 0x2, 0x0, 0x1, [@TCA_IPT_HOOK={0x8}, @TCA_IPT_HOOK={0x8, 0x2, 0x7}, @TCA_IPT_TARG={0x105, 0x6, {0x401, 'security\x00', 0x3, 0xd, "c38ac0b61224148af89aa0a45deb3c7370c237da189657f3b7b60297d56ff8aaf700c07cc694fe8f20d7ff7dc637e838795605a9b72975870d43f136a190723b74fbf08c8c8786571b86df6b2cf12fecc78d4d26f2e1a4032edec989ee449c4b6e36a34c628ac82e2d35880a3133aeaee4b7648ad7f42a23f07ab0926173509de124ed37f11fca32eaa07872fcfe9b08c3171af6e7b9ab5feabd50c39c861694dcd9af18c85c154ba620ae3edcf51ba068ed157cef36a9f9867ceb8f53b65877104a930f18bc61ce502ba2b3a081535d70d275d9e77576dc5ef397"}}, @TCA_IPT_TABLE={0x24, 0x1, 'raw\x00'}, @TCA_IPT_TABLE={0x24, 0x1, 'mangle\x00'}]}, {0x25, 0x6, "7cc4d4d8913023393152cf1483893cb72022204afc5a3c78451fb35e595b70d04e"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x2}}}}, @m_ct={0x90, 0x1f, 0x0, 0x0, {{0x7}, {0x68, 0x2, 0x0, 0x1, [@TCA_CT_ACTION={0x6, 0x3, 0x7}, @TCA_CT_NAT_IPV4_MIN={0x8, 0x9, @initdev={0xac, 0x1e, 0x0, 0x0}}, @TCA_CT_ACTION={0x6, 0x3, 0x21}, @TCA_CT_LABELS_MASK={0x14, 0x8, "0600be9e48e760ba6779831df0129d79"}, @TCA_CT_NAT_IPV4_MAX={0x8, 0xa, @local}, @TCA_CT_LABELS_MASK={0x14, 0x8, "e7011bcc7a6b8ee870edb3e1d4364f94"}, @TCA_CT_ACTION={0x6, 0x3, 0x34}, @TCA_CT_LABELS={0x14, 0x7, "d84f053b22a32e873e2676b45f4a0ad9"}]}, {0x4}, {0xc}, {0xc}}}, @m_ctinfo={0x4c, 0x12, 0x0, 0x0, {{0xb}, {0x4}, {0x1d, 0x6, "871e4a3093c0e8019f3e85d16b62fbd06858927c4759e03eb6"}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}}]}, 0x558}, 0x1, 0x0, 0x0, 0x1}, 0x20000810)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x113c, &(0x7f0000003700)={0x77359400})

280.326998ms ago: executing program 1 (id=409):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48) (async)
socket$inet_icmp_raw(0x2, 0x3, 0x1) (async)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0xffff, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x6}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, &(0x7f00000002c0)=[{0x2, 0x1, 0xf, 0x3}, {0x0, 0x2, 0x1, 0x7}, {0x2, 0x3, 0x9, 0x1}, {0x5, 0x3, 0xf, 0x6}, {0x1, 0x3, 0xc}, {0x1, 0x5, 0x4, 0x4}, {0x4, 0x1, 0xe, 0x7}, {0x4, 0x1, 0xf, 0xb}, {0x4, 0x1, 0x9, 0x6}], 0x10, 0x37, @void, @value}, 0x94) (async)
prlimit64(0xffffffffffffffff, 0xe, &(0x7f0000000140)={0x6620, 0xe1}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6) (async)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4) (async)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) (async)
r1 = socket$netlink(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ANNOUNCE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000005c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000080000000800040000000000040001"], 0x20}}, 0x0) (async)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2) (async)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0) (async)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
sched_setaffinity(r0, 0x8, &(0x7f00000000c0)=0x9) (async)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r5, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4) (async)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
creat(&(0x7f0000002080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

110.816064ms ago: executing program 0 (id=428):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
sendmmsg$inet6(r0, &(0x7f0000001280)=[{{&(0x7f0000000000)={0xa, 0x4e24, 0x8, @dev={0xfe, 0x80, '\x00', 0x2b}, 0x2}, 0x1c, 0x0, 0x0, &(0x7f0000001100)}}], 0x1, 0xff00)

110.242444ms ago: executing program 0 (id=429):
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x200058c0}, 0x40000)
rseq(0x0, 0x0, 0x1, 0x0)
gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x1d, 0x0, @thr={&(0x7f0000000240)="7927635e213038d19afa4b043e44a5405d5a3abbf13b09ff6fc225bc912d0da19b0bd4d68ef82173fee11dc1fff3ead2881a9440298d9111edb756778698454db6e59e219f2394b88ebd9ca3b30e74110bbaf2f41656d9eabf110933aa1e27cebc3c14b0060ba485ae5eac411a1e1328688b64e0fed36afb06f95029604c2ee04b40acaf71322681203f25ad", &(0x7f0000002040)="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"}}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000080)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r0, &(0x7f000047b000)={0xa, 0x4e23, 0x0, @empty}, 0x1c)
listen(r0, 0x400000001ffffffd)
r1 = socket$inet6(0xa, 0x6, 0x0)
r2 = fsopen(0x0, 0x0)
setrlimit(0x7, &(0x7f0000000640)={0x5, 0x42a})
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(0xffffffffffffffff)
socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0xffffffffffffffa6, &(0x7f00000001c0)=[{&(0x7f0000000100)="1c00000021006bcd210000006e04000081000000000000017aa60864", 0x1c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
ioctl$BTRFS_IOC_DEV_INFO(0xffffffffffffffff, 0xd000941e, &(0x7f0000000640)={<r3=>0x0, "fbe9582492a537dacfadd7379a161712"})
ioctl$BTRFS_IOC_GET_DEV_STATS(r2, 0xc4089434, &(0x7f0000000100)={r3, 0x7fffffffffffffff, 0x0, [0x930, 0x0, 0x67, 0x5, 0x8000000000000001], [0x7, 0x6, 0x5241696f, 0x6, 0x7, 0x35, 0x0, 0x9, 0x2, 0x2, 0x8, 0x0, 0x24b, 0x3, 0x4, 0xa36, 0x100000001, 0x6, 0x3ff, 0x17, 0x9, 0x5a5c8e3, 0x4, 0x7ff, 0x7, 0x1, 0x7ff, 0x7, 0x7f, 0x4, 0xfffffffffffffffc, 0x9, 0xffffffffffffffba, 0xffffffff, 0x10e, 0x8e, 0x7, 0x4, 0x2, 0x3, 0x7fffffff, 0x7, 0xe322, 0x9, 0x5bf423, 0x7, 0x2, 0x8000000000000000, 0x101, 0x0, 0x4, 0x8, 0x3, 0x5, 0xffffffff, 0x7, 0x6, 0x3, 0xfffffffffffffff7, 0x9, 0x9, 0x4, 0xffffffff, 0x3, 0x1, 0xffffffffffffff01, 0x6, 0x1, 0x7fffffff, 0x4, 0x10000, 0xffff, 0x100000001, 0x1ff, 0x9, 0x80000000, 0x70d, 0x4, 0x20, 0x0, 0x0, 0x89, 0x0, 0x3, 0x8000, 0xf4b, 0x80, 0x77915fdf, 0x0, 0x0, 0x1, 0x0, 0x0, 0x5, 0x3, 0x8, 0x81, 0x0, 0xfff, 0x3, 0xff, 0x1, 0x4, 0x810, 0x9, 0x1, 0x81, 0xa9f, 0x0, 0xffffffff, 0x5, 0x9, 0x20a, 0xffffffffffffffff, 0x1, 0x0, 0x5, 0x1000, 0x0, 0xea2, 0x7]})
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000580)=@bpf_lsm={0x3, 0x3, &(0x7f00000000c0)=@framed={{0x55, 0xa, 0x0, 0x0, 0x0, 0x79, 0x10, 0xb8}}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000001980)=ANY=[@ANYBLOB="1800000000000000000000181100000000000000", @ANYRES32=r4, @ANYBLOB="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"/264], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000740)={{r4}, &(0x7f00000006c0), 0x0}, 0x1c)
pipe(&(0x7f0000000080))
close(0xffffffffffffffff)
socket$phonet(0x23, 0x2, 0x1)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
accept4(r0, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x0, 0x0)
syz_open_dev$evdev(&(0x7f0000000000), 0x9, 0x4800)

717.773µs ago: executing program 0 (id=430):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x1000000, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000280)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
io_setup(0x1fe, &(0x7f0000000200)=<r1=>0x0)
write$cgroup_int(r0, &(0x7f0000000080)=0xfffffffffffffffc, 0x12)
io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f0000000440)={0x18, 0x7000000, 0x4, 0x1, 0x0, r0, &(0x7f0000000180)='\x00', 0x1, 0x2}]) (fail_nth: 24)

477.676µs ago: executing program 2 (id=431):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendto$inet6(r0, &(0x7f0000000080)="b3019c28", 0x4, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x700, @local, 0x9}, 0x1c)

300.062µs ago: executing program 2 (id=432):
r0 = openat$ttynull(0xffffff9c, &(0x7f0000000140), 0x88802, 0x0)
ioctl$KDSETMODE(r0, 0x4b3a, 0x1)
r1 = syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x14001)
r2 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001580), 0x0, 0x0)
pread64(r2, &(0x7f0000000000)=""/41, 0x29, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x3a)
setsockopt$sock_int(r3, 0x1, 0xf, &(0x7f0000000300)=0x401, 0x4)
sendmmsg$inet6(r3, &(0x7f0000000bc0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r4 = gettid()
r5 = getpid()
rt_tgsigqueueinfo(r5, r4, 0x11, &(0x7f0000000000)={0x0, 0x0, 0x4})
r6 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffe]}, 0x8)
read(r6, &(0x7f0000000740)=""/384, 0x200008c0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x10, 0x4, 0x4, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000100)={r7, 0x58, &(0x7f0000000080)={0x0, <r8=>0x0}}, 0x10)
r9 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000140)={r8}, 0xc)
bpf$BPF_GET_PROG_INFO(0x4, &(0x7f0000000880)={r9, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
ioctl$I2C_PEC(r1, 0x708, 0x18)
syz_emit_vhci(&(0x7f0000000300)=ANY=[@ANYBLOB="0413e5ff"], 0x4)
syz_open_dev$video4linux(0x0, 0x81, 0x2)
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f00000000c0)={0x0, 0x0, 0x5, &(0x7f0000000080)={0x0, "90f541a5e64f61909103f1fbbc2bd3c9f144d76e44c7b2986eb5e52829e7cb8393"}})
r10 = openat$hpet(0xffffff9c, &(0x7f0000000100), 0x200000, 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r10, 0x5000940a, &(0x7f00000002c0)={{r1}, "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"})
ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r10, 0xc0305602, &(0x7f0000000180)={0x0, 0x4, 0x201c})
r11 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r11, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4000000010004b0400000000000000007a000000", @ANYRES32=0x0, @ANYBLOB="0002000000000000006272696467650000100002800a0014000180c200"/40], 0xfffffe7c}}, 0x0)

0s ago: executing program 1 (id=433):
r0 = openat$ipvs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/sys/net/ipv4/vs/secure_tcp\x00', 0x2, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000200))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r2 = socket(0x40000000015, 0x5, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000000640)=[{{&(0x7f0000000540)={0x2, 0x0, @private=0xa010101}, 0x10, 0x0}}], 0x1, 0x4000000)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$video(&(0x7f0000000280), 0x0, 0x400)
ioctl$VIDIOC_S_FMT(r3, 0xc0cc5605, &(0x7f0000000100)={0x9, @pix_mp={0x0, 0x0, 0x0, 0x0, 0x0, [], 0xb5}})
userfaultfd(0x80800)
io_submit(0x0, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
openat$dsp(0xffffff9c, &(0x7f0000000080), 0x8800, 0x0)
getsockopt$MRT(r0, 0x0, 0xd0, &(0x7f0000000300), &(0x7f0000000340)=0x4)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
r4 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
ftruncate(r4, 0x8208204)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0xe)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f8d5480000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0xa8040, 0x0)
r6 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
ioctl$SNDCTL_SEQ_TESTMIDI(r6, 0x40045108, &(0x7f0000000200))
r7 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000980), 0x0, 0x0)
ioctl$SNDCTL_SEQ_RESET(r7, 0x5100)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '[localhost]:58807' (ED25519) to the list of known hosts.
[   33.076781][ T5304] cgroup: Unknown subsys name 'net'
[   33.209260][ T5304] cgroup: Unknown subsys name 'cpuset'
[   33.212137][ T5304] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   34.057894][ T5304] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   36.051543][ T5353] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   36.054120][ T5353] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   36.056002][ T5353] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   36.058978][ T5357] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   36.061740][ T5356] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   36.062025][ T5357] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   36.065120][ T5356] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   36.067846][ T5357] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   36.070015][ T5356] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   36.071733][ T5357] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   36.074244][ T5356] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   36.074774][ T5359] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   36.075637][ T5359] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   36.075867][ T5359] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   36.076335][ T5357] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   36.076527][ T5357] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   36.079450][ T5350] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   36.082388][ T5358] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   36.082934][ T5350] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   36.083346][ T5356] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   36.085742][ T5358] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   36.102810][ T4780] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   36.105287][ T4780] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   36.107294][ T4780] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   36.211689][ T5346] chnl_net:caif_netlink_parms(): no params data found
[   36.306582][ T5344] chnl_net:caif_netlink_parms(): no params data found
[   36.353546][ T5346] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.355568][ T5346] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.358353][ T5346] bridge_slave_0: entered allmulticast mode
[   36.361216][ T5346] bridge_slave_0: entered promiscuous mode
[   36.380447][ T5345] chnl_net:caif_netlink_parms(): no params data found
[   36.388019][ T5346] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.389921][ T5346] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.391761][ T5346] bridge_slave_1: entered allmulticast mode
[   36.394374][ T5346] bridge_slave_1: entered promiscuous mode
[   36.458389][ T5346] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.493795][ T5354] chnl_net:caif_netlink_parms(): no params data found
[   36.499946][ T5346] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.514221][ T5344] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.516746][ T5344] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.519392][ T5344] bridge_slave_0: entered allmulticast mode
[   36.522013][ T5344] bridge_slave_0: entered promiscuous mode
[   36.570016][ T5344] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.572519][ T5344] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.574995][ T5344] bridge_slave_1: entered allmulticast mode
[   36.577840][ T5344] bridge_slave_1: entered promiscuous mode
[   36.580912][ T5345] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.582634][ T5345] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.584436][ T5345] bridge_slave_0: entered allmulticast mode
[   36.586541][ T5345] bridge_slave_0: entered promiscuous mode
[   36.629231][ T5345] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.631722][ T5345] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.634233][ T5345] bridge_slave_1: entered allmulticast mode
[   36.637147][ T5345] bridge_slave_1: entered promiscuous mode
[   36.660348][ T5346] team0: Port device team_slave_0 added
[   36.712460][ T5346] team0: Port device team_slave_1 added
[   36.715256][ T5344] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.719066][ T5345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.721696][ T5354] bridge0: port 1(bridge_slave_0) entered blocking state
[   36.724075][ T5354] bridge0: port 1(bridge_slave_0) entered disabled state
[   36.726122][ T5354] bridge_slave_0: entered allmulticast mode
[   36.728722][ T5354] bridge_slave_0: entered promiscuous mode
[   36.752359][ T5344] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.765912][ T5345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.768621][ T5354] bridge0: port 2(bridge_slave_1) entered blocking state
[   36.770537][ T5354] bridge0: port 2(bridge_slave_1) entered disabled state
[   36.772438][ T5354] bridge_slave_1: entered allmulticast mode
[   36.774557][ T5354] bridge_slave_1: entered promiscuous mode
[   36.777253][ T5346] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.779074][ T5346] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.786536][ T5346] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.791715][ T5346] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.793728][ T5346] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.801914][ T5346] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.817411][ T5344] team0: Port device team_slave_0 added
[   36.850666][ T5344] team0: Port device team_slave_1 added
[   36.854763][ T5345] team0: Port device team_slave_0 added
[   36.867350][ T5354] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   36.885102][ T5345] team0: Port device team_slave_1 added
[   36.887967][ T5354] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   36.929301][ T5344] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.931121][ T5344] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.937791][ T5344] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.943727][ T5346] hsr_slave_0: entered promiscuous mode
[   36.945763][ T5346] hsr_slave_1: entered promiscuous mode
[   36.964210][ T5344] batman_adv: batadv0: Adding interface: batadv_slave_1
[   36.966060][ T5344] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.972813][ T5344] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   36.978986][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_0
[   36.981472][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   36.990633][ T5345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   36.997179][ T5354] team0: Port device team_slave_0 added
[   37.009953][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.012245][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.020436][ T5345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.051064][ T5354] team0: Port device team_slave_1 added
[   37.083526][ T5344] hsr_slave_0: entered promiscuous mode
[   37.086316][ T5344] hsr_slave_1: entered promiscuous mode
[   37.090755][ T5344] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   37.093521][ T5344] Cannot create hsr debugfs directory
[   37.113771][ T5354] batman_adv: batadv0: Adding interface: batadv_slave_0
[   37.116025][ T5354] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.123592][ T5354] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   37.128490][ T5354] batman_adv: batadv0: Adding interface: batadv_slave_1
[   37.130724][ T5354] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   37.138969][ T5354] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   37.188957][ T5345] hsr_slave_0: entered promiscuous mode
[   37.191217][ T5345] hsr_slave_1: entered promiscuous mode
[   37.193085][ T5345] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   37.195698][ T5345] Cannot create hsr debugfs directory
[   37.251832][ T5354] hsr_slave_0: entered promiscuous mode
[   37.254448][ T5354] hsr_slave_1: entered promiscuous mode
[   37.256924][ T5354] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   37.259978][ T5354] Cannot create hsr debugfs directory
[   37.477382][ T5346] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   37.485775][ T5346] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   37.498134][ T5346] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   37.502510][ T5346] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   37.526634][ T5344] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   37.531026][ T5344] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   37.535326][ T5344] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   37.540071][ T5344] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   37.569002][ T5345] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   37.573494][ T5345] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   37.586521][ T5345] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   37.598131][ T5345] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   37.603324][ T5354] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   37.607530][ T5354] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   37.618483][ T5354] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   37.621973][ T5354] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   37.677437][ T5346] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.709117][ T5346] 8021q: adding VLAN 0 to HW filter on device team0
[   37.714851][ T5344] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.741251][ T5344] 8021q: adding VLAN 0 to HW filter on device team0
[   37.745829][  T770] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.748507][  T770] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.759359][ T1181] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.761765][ T1181] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.770220][ T5354] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.775309][ T1181] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.777835][ T1181] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.789596][ T1181] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.792122][ T1181] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.799082][ T5345] 8021q: adding VLAN 0 to HW filter on device bond0
[   37.812337][ T5354] 8021q: adding VLAN 0 to HW filter on device team0
[   37.824004][ T1098] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.826003][ T1098] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.832496][ T5345] 8021q: adding VLAN 0 to HW filter on device team0
[   37.840956][ T1134] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.843489][ T1134] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.860204][ T1134] bridge0: port 1(bridge_slave_0) entered blocking state
[   37.862673][ T1134] bridge0: port 1(bridge_slave_0) entered forwarding state
[   37.877685][ T1134] bridge0: port 2(bridge_slave_1) entered blocking state
[   37.880133][ T1134] bridge0: port 2(bridge_slave_1) entered forwarding state
[   37.973231][ T5346] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.005050][ T5346] veth0_vlan: entered promiscuous mode
[   38.013124][ T5354] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.021020][ T5346] veth1_vlan: entered promiscuous mode
[   38.038298][ T5344] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.054105][ T5345] 8021q: adding VLAN 0 to HW filter on device batadv0
[   38.080839][ T5354] veth0_vlan: entered promiscuous mode
[   38.089781][ T5346] veth0_macvtap: entered promiscuous mode
[   38.095340][ T5354] veth1_vlan: entered promiscuous mode
[   38.102765][ T5346] veth1_macvtap: entered promiscuous mode
[   38.108623][ T4780] Bluetooth: hci0: command tx timeout
[   38.108628][ T5352] Bluetooth: hci1: command tx timeout
[   38.108737][ T5358] Bluetooth: hci2: command tx timeout
[   38.117005][ T5345] veth0_vlan: entered promiscuous mode
[   38.133090][ T5346] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.135960][ T5344] veth0_vlan: entered promiscuous mode
[   38.141654][ T5345] veth1_vlan: entered promiscuous mode
[   38.148642][ T5354] veth0_macvtap: entered promiscuous mode
[   38.152603][ T5346] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.162281][ T5346] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.164717][ T5346] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.166955][ T5346] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.170066][ T5346] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.174075][ T5344] veth1_vlan: entered promiscuous mode
[   38.176744][ T5354] veth1_macvtap: entered promiscuous mode
[   38.195190][ T5345] veth0_macvtap: entered promiscuous mode
[   38.197971][ T5352] Bluetooth: hci3: command tx timeout
[   38.203529][ T5354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.206498][ T5354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.210939][ T5354] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.223672][ T5345] veth1_macvtap: entered promiscuous mode
[   38.227381][ T5354] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.230119][ T5354] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.233549][ T5354] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.243627][ T5354] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.245963][ T5354] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.248882][ T5354] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.251300][ T5354] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.269040][ T1098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.269742][ T5344] veth0_macvtap: entered promiscuous mode
[   38.271815][ T1098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.275880][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.280707][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.283209][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.285907][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.289520][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.299054][ T5344] veth1_macvtap: entered promiscuous mode
[   38.308546][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.311495][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.314089][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.316814][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.320443][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.323774][ T1134] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.326074][ T1134] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.328595][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.332281][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.335688][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.340297][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.343429][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   38.347284][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.351305][ T5344] batman_adv: batadv0: Interface activated: batadv_slave_0
[   38.355369][ T5345] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.358415][ T5345] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.361266][ T5345] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.364145][ T5345] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.382102][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.385875][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.389605][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.393170][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.396492][ T5344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   38.400133][ T5344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   38.404703][ T5344] batman_adv: batadv0: Interface activated: batadv_slave_1
[   38.413522][ T5346] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   38.418250][ T5344] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   38.420998][ T5344] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   38.423263][ T5344] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   38.425710][ T5344] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   38.430645][  T770] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.433443][  T770] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.468373][  T770] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.470860][  T770] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.490023][  T770] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.492188][  T770] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.509706][ T5409] pimreg: entered allmulticast mode
[   38.519666][   T66] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.521723][   T66] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.529441][   T76] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.529708][ T5409] pimreg: left allmulticast mode
[   38.531524][   T76] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.558030][ T1098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   38.560120][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   38.686278][ T5421] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6'.
[   38.686654][ T5413] Zero length message leads to an empty skb
[   38.696752][ T5420] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   38.710794][ T5423] netlink: 4 bytes leftover after parsing attributes in process `syz.1.2'.
[   38.714789][ T5423] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2'.
[   38.975539][ T5426] tipc: Started in network mode
[   38.977235][ T5426] tipc: Node identity ac1414aa, cluster identity 4711
[   38.980859][ T5426] tipc: Enabled bearer <udp:s>, priority 10
[   39.692718][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.757765][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.760226][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.763036][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.765577][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.769322][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.772251][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.774575][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.777322][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.779870][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   39.827488][   T39] audit: type=1326 audit(1729476900.873:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5437 comm="syz.2.10" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000
[   39.833238][   T39] audit: type=1326 audit(1729476900.883:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5437 comm="syz.2.10" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000
[   39.846708][   T39] audit: type=1326 audit(1729476900.893:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5437 comm="syz.2.10" exe="/syz-executor" sig=0 arch=40000003 syscall=5 compat=1 ip=0xf7f27579 code=0x7ffc0000
[   39.862521][   T39] audit: type=1326 audit(1729476900.893:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5437 comm="syz.2.10" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000
[   39.871976][   T39] audit: type=1326 audit(1729476900.893:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5437 comm="syz.2.10" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7ffc0000
[   39.988018][ T5385] tipc: Node number set to 2886997162
[   40.188381][ T4780] Bluetooth: hci2: command tx timeout
[   40.188666][ T5352] Bluetooth: hci1: command tx timeout
[   40.197247][ T5352] Bluetooth: hci0: command tx timeout
[   40.277441][ T5352] Bluetooth: hci3: command tx timeout
[   40.594384][ T5437] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   40.906445][ T5442] syz.3.8 (5442): drop_caches: 2
[   41.250223][ T5468] Bluetooth: MGMT ver 1.23
[   41.637642][   T39] audit: type=1804 audit(1729476902.683:7): pid=5483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.24" name="/newroot/9/file0/file0" dev="9p" ino=36317145 res=1 errno=0
[   41.645405][   T39] audit: type=1800 audit(1729476902.683:8): pid=5483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.24" name="file0" dev="9p" ino=36317145 res=0 errno=0
[   41.784125][ T5490] netlink: 'syz.2.27': attribute type 1 has an invalid length.
[   41.802201][ T5492] netlink: 112 bytes leftover after parsing attributes in process `syz.1.28'.
[   41.829800][ T5495] netlink: 156 bytes leftover after parsing attributes in process `syz.1.29'.
[   41.918882][ T5487] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   41.922491][ T5487] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   41.967878][ T5487] Bluetooth: hci0: Opcode 0x0406 failed: -4
[   41.988302][ T5487] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   41.990737][ T5487] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   41.998520][ T5487] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   42.002797][ T5487] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   42.004399][ T5487] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   42.006937][ T5487] Bluetooth: hci2: Opcode 0x0406 failed: -4
[   42.010420][ T5487] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   42.012026][ T5487] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   42.015398][ T5487] Bluetooth: hci3: Opcode 0x0406 failed: -4
[   42.638663][ T5503] binder: BINDER_SET_CONTEXT_MGR already set
[   42.640321][ T5503] binder: 5502:5503 ioctl 4018620d 200001c0 returned -16
[   42.721120][ T5506] netlink: 56 bytes leftover after parsing attributes in process `syz.3.32'.
[   42.783671][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x4
[   42.785781][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x2
[   42.789457][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.792859][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.795837][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.802487][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.804494][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.806439][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.820429][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.824177][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.828242][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.838762][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.842524][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.846456][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.853963][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.857865][ T1995] hid-generic 0000:3000000:0000.0002: unknown main item tag 0x0
[   42.900209][ T5515] netlink: 25 bytes leftover after parsing attributes in process `syz.3.32'.
[   43.126816][ T1995] hid-generic 0000:3000000:0000.0002: hidraw1: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[   43.431056][ T5524] netlink: 112 bytes leftover after parsing attributes in process `syz.0.37'.
[   43.764020][ T5531] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[   43.867964][ T4780] Bluetooth: hci0: command 0x0419 tx timeout
[   43.937125][ T5384] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[   44.000444][ T5541] netlink: 216 bytes leftover after parsing attributes in process `syz.1.42'.
[   44.003732][ T5541] netlink: 216 bytes leftover after parsing attributes in process `syz.1.42'.
[   44.007279][ T5541] capability: warning: `syz.1.42' uses deprecated v2 capabilities in a way that may be insecure
[   44.027990][ T4780] Bluetooth: hci3: command 0x0419 tx timeout
[   44.028024][ T5358] Bluetooth: hci2: command 0x0419 tx timeout
[   44.030028][ T5350] Bluetooth: hci1: command 0x0419 tx timeout
[   44.107089][ T5384] usb 8-1: Using ep0 maxpacket: 8
[   44.112253][ T5384] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[   44.116056][ T5384] usb 8-1: config 0 has no interface number 0
[   44.118615][ T5384] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 101, changing to 10
[   44.121646][ T5384] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 59093, setting to 1024
[   44.124604][ T5384] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   44.127244][ T5384] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   44.132433][ T5384] usb 8-1: config 0 descriptor??
[   44.135217][ T5536] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[   44.143237][ T5384] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   44.437450][ T1995] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[   44.605927][    C0] iowarrior 8-1:0.1: iowarrior_callback - usb_submit_urb failed with result -19
[   44.608328][ T5387] usb 8-1: USB disconnect, device number 2
[   44.612284][ T5387] iowarrior 8-1:0.1: I/O-Warror #0 now disconnected
[   44.616349][ T1995] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   44.622347][ T1995] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   44.626247][ T1995] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   44.630106][ T1995] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   44.633260][ T1995] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   44.635466][ T1995] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   44.640809][ T1995] usb 6-1: config 0 descriptor??
[   44.807226][  T830] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[   44.959453][  T830] usb 7-1: config index 0 descriptor too short (expected 23569, got 27)
[   44.961707][  T830] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   44.965382][  T830] usb 7-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[   44.967897][  T830] usb 7-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[   44.969974][  T830] usb 7-1: Manufacturer: syz
[   44.972167][  T830] usb 7-1: config 0 descriptor??
[   45.017178][  T830] rc_core: IR keymap rc-hauppauge not found
[   45.019291][  T830] Registered IR keymap rc-empty
[   45.022352][  T830] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0
[   45.025575][  T830] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/rc/rc0/input5
[   45.058798][ T1995] usbhid 6-1:0.0: can't add hid device: -71
[   45.062155][ T1995] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[   45.067656][ T1995] usb 6-1: USB disconnect, device number 2
[   45.273290][  T830] usb 7-1: USB disconnect, device number 2
[   45.475750][ T5583] netlink: 'syz.0.56': attribute type 10 has an invalid length.
[   45.482724][ T5583] 8021q: adding VLAN 0 to HW filter on device batadv0
[   45.485353][ T5583] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   45.632810][ T5591] vlan2: entered allmulticast mode
[   45.634149][ T5591] vlan1: entered allmulticast mode
[   45.635447][ T5591] veth0_vlan: entered allmulticast mode
[   45.638696][ T5591] vlan1: left allmulticast mode
[   45.639929][ T5591] veth0_vlan: left allmulticast mode
[   45.745238][ T5594] FAULT_INJECTION: forcing a failure.
[   45.745238][ T5594] name fail_usercopy, interval 1, probability 0, space 0, times 1
[   45.748828][ T5594] CPU: 2 UID: 0 PID: 5594 Comm: syz.1.61 Not tainted 6.12.0-rc3-syzkaller-00454-gdb87114dcf13 #0
[   45.751547][ T5594] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   45.754348][ T5594] Call Trace:
[   45.755228][ T5594]  <TASK>
[   45.755962][ T5594]  dump_stack_lvl+0x16c/0x1f0
[   45.757192][ T5594]  should_fail_ex+0x497/0x5b0
[   45.758405][ T5594]  _copy_from_user+0x30/0xf0
[   45.759562][ T5594]  get_compat_msghdr+0xa8/0x170
[   45.760850][ T5594]  ? __pfx_get_compat_msghdr+0x10/0x10
[   45.762281][ T5594]  ? __pfx_lock_release+0x10/0x10
[   45.763620][ T5594]  ? find_held_lock+0x2d/0x110
[   45.764935][ T5594]  ___sys_sendmsg+0x1b0/0x1e0
[   45.766185][ T5594]  ? __up_read+0x1fb/0x760
[   45.767364][ T5594]  ? __pfx____sys_sendmsg+0x10/0x10
[   45.768746][ T5594]  ? handle_mm_fault+0x497/0xaa0
[   45.770070][ T5594]  ? __pfx___might_resched+0x10/0x10
[   45.771466][ T5594]  ? __sys_sendmmsg+0x2bd/0x450
[   45.772761][ T5594]  __sys_sendmmsg+0x2a5/0x450
[   45.774000][ T5594]  ? __pfx___sys_sendmmsg+0x10/0x10
[   45.775329][ T5594]  ? vfs_write+0x14d/0x1140
[   45.776509][ T5594]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[   45.778186][ T5594]  ? fput+0x30/0x390
[   45.779327][ T5594]  ? ksys_write+0x1ad/0x260
[   45.780571][ T5594]  ? __pfx_ksys_write+0x10/0x10
[   45.781887][ T5594]  __ia32_compat_sys_sendmmsg+0x9d/0x100
[   45.783456][ T5594]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[   45.785278][ T5594]  __do_fast_syscall_32+0x73/0x120
[   45.786650][ T5594]  do_fast_syscall_32+0x32/0x80
[   45.787955][ T5594]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   45.789716][ T5594] RIP: 0023:0xf746e579
[   45.790816][ T5594] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   45.795832][ T5594] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000159
[   45.798127][ T5594] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020007fc0
[   45.800248][ T5594] RDX: 00000000fffffdfa RSI: 0000000000000010 RDI: 0000000000000000
[   45.802440][ T5594] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   45.804686][ T5594] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   45.806742][ T5594] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   45.808676][ T5594]  </TASK>
[   45.845322][ T5596] FAULT_INJECTION: forcing a failure.
[   45.845322][ T5596] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[   45.851175][ T5596] CPU: 3 UID: 0 PID: 5596 Comm: syz.1.62 Not tainted 6.12.0-rc3-syzkaller-00454-gdb87114dcf13 #0
[   45.854817][ T5596] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   45.859040][ T5596] Call Trace:
[   45.859072][ T5596]  <TASK>
[   45.859080][ T5596]  dump_stack_lvl+0x16c/0x1f0
[   45.862640][ T5596]  should_fail_ex+0x497/0x5b0
[   45.864308][ T5596]  ? fs_reclaim_acquire+0xae/0x150
[   45.866109][ T5596]  should_fail_alloc_page+0xe7/0x130
[   45.867928][ T5596]  prepare_alloc_pages.constprop.0+0x16f/0x560
[   45.870078][ T5596]  __alloc_pages_noprof+0x190/0x25a0
[   45.871942][ T5596]  ? hlock_class+0x4e/0x130
[   45.873470][ T5596]  ? __lock_acquire+0xbdd/0x3ce0
[   45.875058][ T5596]  ? hlock_class+0x4e/0x130
[   45.876672][ T5596]  ? __lock_acquire+0xbdd/0x3ce0
[   45.878423][ T5596]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   45.880421][ T5596]  ? mark_lock+0xb5/0xc60
[   45.881963][ T5596]  ? __lock_acquire+0xbdd/0x3ce0
[   45.883702][ T5596]  ? __pfx_mark_lock+0x10/0x10
[   45.885403][ T5596]  ? __pfx___lock_acquire+0x10/0x10
[   45.887208][ T5596]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   45.889264][ T5596]  ? policy_nodemask+0xea/0x4e0
[   45.890938][ T5596]  alloc_pages_mpol_noprof+0x2c9/0x610
[   45.892833][ T5596]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[   45.894872][ T5596]  pte_alloc_one+0x20/0x360
[   45.896365][ T5596]  __pte_alloc+0x6e/0x390
[   45.897791][ T5596]  ? __pfx___pte_alloc+0x10/0x10
[   45.899453][ T5596]  ? find_held_lock+0x2d/0x110
[   45.901135][ T5596]  do_pte_missing+0x27ee/0x3e50
[   45.902797][ T5596]  ? __pfx_lock_release+0x10/0x10
[   45.904659][ T5596]  __handle_mm_fault+0x100a/0x2a10
[   45.906466][ T5596]  ? __pfx_mt_find+0x10/0x10
[   45.908056][ T5596]  ? __pfx_lock_acquire.part.0+0x10/0x10
[   45.910034][ T5596]  ? __pfx___handle_mm_fault+0x10/0x10
[   45.911959][ T5596]  ? find_vma+0xc0/0x140
[   45.913496][ T5596]  ? __pfx_find_vma+0x10/0x10
[   45.915162][ T5596]  handle_mm_fault+0x3fa/0xaa0
[   45.916968][ T5596]  do_user_addr_fault+0x7a3/0x13f0
[   45.918790][ T5596]  exc_page_fault+0x5c/0xc0
[   45.920312][ T5599] netlink: 12 bytes leftover after parsing attributes in process `syz.2.63'.
[   45.920386][ T5596]  asm_exc_page_fault+0x26/0x30
[   45.923485][ T5599] netlink: 36 bytes leftover after parsing attributes in process `syz.2.63'.
[   45.925055][ T5596] RIP: 0010:_copy_from_user+0xc1/0xf0
[   45.925079][ T5596] Code: 89 df e8 72 96 03 fd 4d 85 f6 75 9e e8 b8 94 03 fd 0f ae e8 89 ee 4c 89 ef e8 1b f1 64 fd 0f 01 cb 48 89 e9 4c 89 ef 48 89 de <f3> a4 0f 1f 00 48 89 cb 0f 01 ca e9 73 ff ff ff e8 8a 94 03 fd 48
[   45.925094][ T5596] RSP: 0018:ffffc9000704fc38 EFLAGS: 00050246
[   45.936624][ T5596] RAX: 0000000000000001 RBX: 0000000020000100 RCX: 0000000000000018
[   45.937138][ T1413] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   45.938672][ T5596] RDX: fffff52000e09fa1 RSI: 0000000020000100 RDI: ffffc9000704fcf0
[   45.938686][ T5596] RBP: 0000000000000018 R08: 0000000000000001 R09: fffff52000e09fa0
[   45.938692][ T5596] R10: ffffc9000704fd07 R11: 0000000000000000 R12: 0000000020000118
[   45.938698][ T5596] R13: ffffc9000704fcf0 R14: 0000000000000000 R15: ffffffff8c9462e0
[   45.938713][ T5596]  ? _copy_from_user+0xb5/0xf0
[   45.950113][ T5596]  rfcomm_dev_ioctl+0x350/0x1e70
[   45.951422][ T5596]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[   45.952848][ T5596]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   45.954170][ T5596]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   45.955719][ T5596]  rfcomm_sock_compat_ioctl+0xb0/0xd0
[   45.957134][ T5596]  compat_sock_ioctl+0x17b/0x7e0
[   45.958436][ T5596]  ? __pfx_rfcomm_sock_compat_ioctl+0x10/0x10
[   45.959990][ T5596]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   45.961409][ T5596]  ? __fget_files+0x244/0x3f0
[   45.962641][ T5596]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   45.964057][ T5596]  __do_compat_sys_ioctl+0x259/0x2b0
[   45.965440][ T5596]  __do_fast_syscall_32+0x73/0x120
[   45.966766][ T5596]  do_fast_syscall_32+0x32/0x80
[   45.968034][ T5596]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   45.969684][ T5596] RIP: 0023:0xf746e579
[   45.970730][ T5596] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   45.975450][ T5596] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   45.977519][ T5596] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800452d3
[   45.979425][ T5596] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[   45.981472][ T5596] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   45.983514][ T5596] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   45.985570][ T5596] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   45.987627][ T5596]  </TASK>
[   45.988664][ T5352] Bluetooth: hci0: command 0x0419 tx timeout
[   46.087159][ T1413] usb 5-1: Using ep0 maxpacket: 8
[   46.089415][ T1413] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[   46.089438][ T1413] usb 5-1: config 0 has no interface number 0
[   46.089461][ T1413] usb 5-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[   46.089486][ T1413] usb 5-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   46.089506][ T1413] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   46.090914][ T1413] usb 5-1: config 0 descriptor??
[   46.093008][ T1413] iowarrior 5-1:0.1: no interrupt-in endpoint found
[   46.109539][ T5352] Bluetooth: hci3: command 0x0419 tx timeout
[   46.109581][ T5352] Bluetooth: hci1: command 0x0419 tx timeout
[   46.117228][ T5352] Bluetooth: hci2: command 0x0419 tx timeout
[   46.130123][ T5603] trusted_key: syz.1.64 sent an empty control message without MSG_MORE.
[   46.741314][ T5607] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   46.829694][ T5615] netlink: 144 bytes leftover after parsing attributes in process `syz.2.68'.
[   46.832753][ T5615] netlink: 144 bytes leftover after parsing attributes in process `syz.2.68'.
[   47.055394][ T5631] netlink: 4 bytes leftover after parsing attributes in process `syz.1.75'.
[   47.212809][ T5634] netlink: 'syz.1.76': attribute type 10 has an invalid length.
[   47.234034][ T5634] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   47.787983][ T5626] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   47.791215][ T5626] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   47.794161][ T5626] Bluetooth: hci1: Opcode 0x0406 failed: -4
[   47.797683][ T5626] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   47.799788][ T5626] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   47.811014][ T5638] warning: `syz.2.78' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[   47.853248][ T5638] netlink: 8 bytes leftover after parsing attributes in process `syz.2.78'.
[   47.943394][ T5656] Illegal XDP return value 4294967274 on prog  (id 20) dev N/A, expect packet loss!
[   48.038876][ T5659] netlink: 48 bytes leftover after parsing attributes in process `syz.3.83'.
[   48.167307][ T5387] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[   48.330246][ T5387] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   48.333499][ T5387] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   48.337214][ T5387] usb 7-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[   48.339906][ T5387] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   48.344964][ T5387] usb 7-1: config 0 descriptor??
[   48.578599][ T5406] usb 5-1: USB disconnect, device number 2
[   48.649313][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.659545][ T5669] 9pnet_virtio: no channels available for device syz
[   48.659993][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.670658][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.672817][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.675020][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.677153][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.679343][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.681557][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.683641][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.685659][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.688034][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.690021][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.692073][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.694267][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.696397][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.698484][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.700528][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.702727][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.705063][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.707565][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.713290][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.716992][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.719056][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.721192][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.723319][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.728007][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.730228][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.736118][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.738451][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.740485][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.742722][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.744845][ T1995] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[   48.748637][ T1995] hid-generic 0000:0000:0000.0003: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   48.752628][ T5387] cm6533_jd 0003:0D8C:0022.0004: unknown main item tag 0x0
[   48.754592][ T5387] cm6533_jd 0003:0D8C:0022.0004: unknown main item tag 0x0
[   48.762891][ T5387] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0D8C:0022.0004/input/input6
[   48.790138][ T5387] cm6533_jd 0003:0D8C:0022.0004: input,hiddev0,hidraw2: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.2-1/input0
[   48.958961][ T5654] (unnamed net_device) (uninitialized): ARP target 1.0.0.0 is already present
[   48.961522][ T5654] (unnamed net_device) (uninitialized): option arp_ip_target: invalid value (1)
[   48.966315][   T35] usb 7-1: USB disconnect, device number 3
[   49.067865][ T5352] Bluetooth: hci0: command 0x0419 tx timeout
[   49.878283][ T5352] Bluetooth: hci2: command 0x0419 tx timeout
[   49.878319][ T4780] Bluetooth: hci3: command 0x0419 tx timeout
[   49.878441][ T4780] Bluetooth: hci1: command 0x0419 tx timeout
[   50.229045][ T5690] netlink: 'syz.3.92': attribute type 10 has an invalid length.
[   50.238977][ T5690] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   50.263986][ T5692] process 'syz.0.90' launched './file2' with NULL argv: empty string added
[   50.998804][ T5706] netlink: 'syz.1.96': attribute type 10 has an invalid length.
[   51.014077][ T5706] team0: Device veth0_macvtap failed to register rx_handler
[   51.147763][ T4780] Bluetooth: hci0: command 0x0419 tx timeout
[   51.319653][ T5708] mmap: syz.2.97 (5708) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[   51.357541][ T5715] netlink: 112 bytes leftover after parsing attributes in process `syz.0.98'.
[   51.416626][ T5721] netlink: 8 bytes leftover after parsing attributes in process `syz.0.100'.
[   51.424117][ T5721] macsec0: entered promiscuous mode
[   51.441833][ T5723] netlink: 16 bytes leftover after parsing attributes in process `syz.3.102'.
[   51.914658][ T5738] netlink: 'syz.1.107': attribute type 10 has an invalid length.
[   51.947210][ T4780] Bluetooth: hci2: command 0x0419 tx timeout
[   51.947562][ T5352] Bluetooth: hci1: command 0x0419 tx timeout
[   51.949481][ T4780] Bluetooth: hci3: command 0x0419 tx timeout
[   52.470345][ T5756] netlink: 4 bytes leftover after parsing attributes in process `syz.2.112'.
[   52.502082][ T5761] netlink: 'syz.3.115': attribute type 10 has an invalid length.
[   52.506906][ T5761] 8021q: adding VLAN 0 to HW filter on device batadv0
[   52.510529][ T5761] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   52.513180][ T5762] netlink: 112 bytes leftover after parsing attributes in process `syz.2.114'.
[   52.857743][ T5775] 9pnet_fd: Insufficient options for proto=fd
[   52.860081][   T39] audit: type=1326 audit(1729476913.903:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5771 comm="syz.3.120" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000
[   52.867481][   T39] audit: type=1326 audit(1729476913.903:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5771 comm="syz.3.120" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000
[   52.873024][   T39] audit: type=1326 audit(1729476913.903:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5771 comm="syz.3.120" exe="/syz-executor" sig=0 arch=40000003 syscall=312 compat=1 ip=0xf7fe0579 code=0x7ffc0000
[   52.878836][   T39] audit: type=1326 audit(1729476913.903:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5771 comm="syz.3.120" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000
[   52.884246][   T39] audit: type=1326 audit(1729476913.903:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5771 comm="syz.3.120" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000
[   52.889729][   T39] audit: type=1326 audit(1729476913.913:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5771 comm="syz.3.120" exe="/syz-executor" sig=0 arch=40000003 syscall=21 compat=1 ip=0xf7fe0579 code=0x7ffc0000
[   52.895115][   T39] audit: type=1326 audit(1729476913.913:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5771 comm="syz.3.120" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000
[   52.901036][   T39] audit: type=1326 audit(1729476913.913:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5771 comm="syz.3.120" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7ffc0000
[   53.097257][ T5387] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[   53.227307][ T5350] Bluetooth: hci0: command 0x0419 tx timeout
[   53.249315][ T5387] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   53.252494][ T5387] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   53.255427][ T5387] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   53.258398][ T5387] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   53.262795][ T5387] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   53.265294][ T5387] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   53.269624][ T5387] usb 7-1: config 0 descriptor??
[   53.419536][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.421612][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.424162][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.426887][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.429740][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.432397][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.434406][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.436453][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.438956][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.440947][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.443184][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.446772][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.453454][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.455456][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.458720][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.460665][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.462591][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.465086][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.467839][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.470410][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.472962][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.475486][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.478229][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.480318][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.482130][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.484039][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.485882][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.489072][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.491015][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.492958][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.495372][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.497645][ T5406] hid-generic 0000:0000:0000.0005: unknown main item tag 0x0
[   53.501497][ T5406] hid-generic 0000:0000:0000.0005: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   53.566314][ T5785] netlink: 4 bytes leftover after parsing attributes in process `syz.3.124'.
[   53.614057][ T5787] netlink: 112 bytes leftover after parsing attributes in process `syz.3.125'.
[   53.679820][ T5387] usbhid 7-1:0.0: can't add hid device: -71
[   53.681447][ T5387] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[   53.689131][ T5387] usb 7-1: USB disconnect, device number 4
[   54.029046][ T5350] Bluetooth: hci1: command 0x0419 tx timeout
[   54.029133][ T5352] Bluetooth: hci3: command 0x0419 tx timeout
[   54.032803][ T4780] Bluetooth: hci2: command 0x0419 tx timeout
[   54.033947][ T5806] netlink: 112 bytes leftover after parsing attributes in process `syz.3.134'.
[   54.457141][ T5406] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[   54.608753][ T5406] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   54.612645][ T5406] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   54.616022][ T5406] usb 7-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[   54.619262][ T5406] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   54.623462][ T5406] usb 7-1: config 0 descriptor??
[   54.750481][   T39] audit: type=1326 audit(1729476915.803:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5814 comm="syz.3.137" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x0
[   54.938789][ T5818] netlink: 140 bytes leftover after parsing attributes in process `syz.1.138'.
[   54.942935][ T5821] netlink: 4 bytes leftover after parsing attributes in process `syz.0.139'.
[   55.181225][ T5406] cm6533_jd 0003:0D8C:0022.0006: unknown main item tag 0x0
[   55.183187][ T5406] cm6533_jd 0003:0D8C:0022.0006: unknown main item tag 0x0
[   55.185726][ T5406] input: HID 0d8c:0022 as /devices/platform/dummy_hcd.2/usb7/7-1/7-1:0.0/0003:0D8C:0022.0006/input/input7
[   55.195896][ T5406] cm6533_jd 0003:0D8C:0022.0006: input,hiddev0,hidraw1: USB HID v0.00 Device [HID 0d8c:0022] on usb-dummy_hcd.2-1/input0
[   55.496910][    C1] vkms_vblank_simulate: vblank timer overrun
[   55.927707][ T5406] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[   55.982597][ T5846] netlink: 'syz.1.145': attribute type 10 has an invalid length.
[   56.078567][ T5406] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   56.082496][ T5406] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   56.086164][ T5406] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   56.090083][ T5406] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   56.094745][ T5406] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   56.098794][ T5406] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   56.103202][ T5406] usb 8-1: config 0 descriptor??
[   56.107257][ T4780] Bluetooth: hci1: command 0x0419 tx timeout
[   56.107610][ T5352] Bluetooth: hci3: command 0x0419 tx timeout
[   56.337691][  T830] usb 7-1: reset high-speed USB device number 5 using dummy_hcd
[   56.347365][ T5387] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[   56.540589][ T5387] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[   56.542947][ T5387] usb 5-1: config 1 has an invalid descriptor of length 48, skipping remainder of the config
[   56.545586][ T5387] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[   56.557192][ T5387] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 48, changing to 9
[   56.560026][ T5387] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24624, setting to 1024
[   56.574641][ T5387] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[   56.587202][ T5387] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[   56.604854][ T5387] usb 5-1: Product: syz
[   56.605968][ T5387] usb 5-1: Manufacturer: syz
[   56.636792][ T5387] cdc_wdm 5-1:1.0: skipping garbage
[   56.666966][ T5387] cdc_wdm 5-1:1.0: skipping garbage
[   56.696429][ T5387] cdc_wdm 5-1:1.0: cdc-wdm1: USB WDM device
[   56.708021][ T5387] cdc_wdm 5-1:1.0: Unknown control protocol
[   56.987878][ T5855] mkiss: ax0: crc mode is auto.
[   57.274682][ T5872] ref_tracker: memory allocation failure, unreliable refcount tracker.
[   57.362772][ T5384] usb 5-1: USB disconnect, device number 3
[   57.418467][   T39] audit: type=1800 audit(1729476918.473:18): pid=5878 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.159" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[   57.445308][ T5352] Bluetooth: hci0: unexpected event for opcode 0x0803
[   57.510893][ T5880] netlink: 8 bytes leftover after parsing attributes in process `syz.2.160'.
[   57.540757][ T5882] vlan2: entered allmulticast mode
[   57.542275][ T5882] vlan1: entered allmulticast mode
[   57.543710][ T5882] veth0_vlan: entered allmulticast mode
[   57.546835][ T5882] vlan1: left allmulticast mode
[   57.548637][ T5882] veth0_vlan: left allmulticast mode
[   58.197488][ T5352] Bluetooth: hci3: command 0x0419 tx timeout
[   58.199133][ T5352] Bluetooth: hci1: command 0x0419 tx timeout
[   58.234002][ T5902] FAULT_INJECTION: forcing a failure.
[   58.234002][ T5902] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   58.237747][ T5902] CPU: 3 UID: 0 PID: 5902 Comm: syz.2.168 Not tainted 6.12.0-rc3-syzkaller-00454-gdb87114dcf13 #0
[   58.240205][ T5902] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   58.242715][ T5902] Call Trace:
[   58.243503][ T5902]  <TASK>
[   58.244203][ T5902]  dump_stack_lvl+0x16c/0x1f0
[   58.245359][ T5902]  should_fail_ex+0x497/0x5b0
[   58.246484][ T5902]  _copy_from_iter+0x29b/0x13e0
[   58.247630][ T5902]  ? __pfx__copy_from_iter+0x10/0x10
[   58.248889][ T5902]  ? __virt_addr_valid+0x1a4/0x590
[   58.250045][ T5902]  ? __virt_addr_valid+0x5e/0x590
[   58.251238][ T5902]  ? __phys_addr_symbol+0x30/0x80
[   58.252446][ T5902]  ? __check_object_size+0x4a1/0x710
[   58.253695][ T5902]  netlink_sendmsg+0x813/0xd70
[   58.254833][ T5902]  ? __pfx_netlink_sendmsg+0x10/0x10
[   58.256079][ T5902]  ____sys_sendmsg+0x9ae/0xb40
[   58.257203][ T5902]  ? __pfx_____sys_sendmsg+0x10/0x10
[   58.258439][ T5902]  ? get_compat_msghdr+0x11b/0x170
[   58.259642][ T5902]  ? __pfx___lock_acquire+0x10/0x10
[   58.260873][ T5902]  ___sys_sendmsg+0x135/0x1e0
[   58.261984][ T5902]  ? __pfx____sys_sendmsg+0x10/0x10
[   58.263210][ T5902]  ? lock_acquire+0x2f/0xb0
[   58.264271][ T5902]  ? __fget_files+0x40/0x3f0
[   58.265353][ T5902]  ? fdget+0x176/0x210
[   58.266307][ T5902]  __sys_sendmsg+0x117/0x1f0
[   58.267403][ T5902]  ? __pfx___sys_sendmsg+0x10/0x10
[   58.268628][ T5902]  ? __fget_files+0x244/0x3f0
[   58.269750][ T5902]  __do_fast_syscall_32+0x73/0x120
[   58.270966][ T5902]  do_fast_syscall_32+0x32/0x80
[   58.272138][ T5902]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   58.273641][ T5902] RIP: 0023:0xf7f27579
[   58.274589][ T5902] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   58.279070][ T5902] RSP: 002b:00000000f56a656c EFLAGS: 00000296 ORIG_RAX: 0000000000000172
[   58.281032][ T5902] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020000040
[   58.282884][ T5902] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   58.284744][ T5902] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   58.286525][ T5902] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   58.288310][ T5902] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   58.290163][ T5902]  </TASK>
[   58.385087][ T5906] loop7: detected capacity change from 0 to 16384
[   58.486027][ T5912] netlink: 4 bytes leftover after parsing attributes in process `syz.2.173'.
[   58.692894][ T5406] usbhid 8-1:0.0: can't add hid device: -71
[   58.694579][ T5406] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[   58.700159][ T5406] usb 8-1: USB disconnect, device number 3
[   58.773338][ T5933] netlink: 8 bytes leftover after parsing attributes in process `syz.3.181'.
[   58.778138][ T5933] macsec0: entered promiscuous mode
[   58.831008][ T5935] netlink: 'syz.2.180': attribute type 10 has an invalid length.
[   58.862679][ T5935] bond0: (slave wlan1): Enslaving as an active interface with an up link
[   58.866115][ T5938] overlayfs: failed to resolve './file1': -2
[   59.057304][ T5940] netlink: 12 bytes leftover after parsing attributes in process `syz.3.184'.
[   59.085541][   T35] usb 7-1: USB disconnect, device number 5
[   59.473930][ T5957] netlink: 8 bytes leftover after parsing attributes in process `syz.0.189'.
[   59.498027][ T5960] netlink: 8 bytes leftover after parsing attributes in process `syz.0.191'.
[   59.500368][ T5960] netlink: 8 bytes leftover after parsing attributes in process `syz.0.191'.
[   59.587157][   T35] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[   59.737171][   T35] usb 6-1: Using ep0 maxpacket: 16
[   59.741574][   T35] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16
[   59.745202][   T35] usb 6-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1024
[   59.751010][   T35] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   59.754473][   T35] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   59.757978][   T35] usb 6-1: Product: syz
[   59.765117][   T35] usb 6-1: Manufacturer: syz
[   59.769035][   T35] usb 6-1: SerialNumber: syz
[   59.802059][ T5965] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   59.846682][ T5965] batman_adv: batadv0: Removing interface: batadv_slave_1
[   59.979504][ T5970] syz.0.193 uses obsolete (PF_INET,SOCK_PACKET)
[   60.067393][   T39] audit: type=1326 audit(1729476921.123:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5972 comm="syz.2.194" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x0
[   60.170559][ T5979] netlink: 112 bytes leftover after parsing attributes in process `syz.2.194'.
[   60.186079][   T35] cdc_ncm 6-1:1.0: bind() failure
[   60.190556][   T35] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[   60.192466][   T35] cdc_ncm 6-1:1.1: bind() failure
[   60.198545][   T35] usb 6-1: USB disconnect, device number 3
[   60.262184][ T5981] FAULT_INJECTION: forcing a failure.
[   60.262184][ T5981] name failslab, interval 1, probability 0, space 0, times 0
[   60.266409][ T5981] CPU: 0 UID: 0 PID: 5981 Comm: syz.0.197 Not tainted 6.12.0-rc3-syzkaller-00454-gdb87114dcf13 #0
[   60.267509][ T5352] Bluetooth: hci1: command 0x0419 tx timeout
[   60.269803][ T5981] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.274233][ T5981] Call Trace:
[   60.275144][ T5981]  <TASK>
[   60.275924][ T5981]  dump_stack_lvl+0x16c/0x1f0
[   60.277206][ T5981]  should_fail_ex+0x497/0x5b0
[   60.278468][ T5981]  ? fs_reclaim_acquire+0xae/0x150
[   60.279824][ T5981]  should_failslab+0xc2/0x120
[   60.281093][ T5981]  __kmalloc_noprof+0xcb/0x410
[   60.282358][ T5981]  ? rcu_is_watching+0x12/0xc0
[   60.283629][ T5981]  tomoyo_encode2+0x100/0x3e0
[   60.284909][ T5981]  tomoyo_realpath_from_path+0x1a7/0x710
[   60.286379][ T5981]  ? tomoyo_path_number_perm+0x232/0x5b0
[   60.287839][ T5981]  tomoyo_path_number_perm+0x245/0x5b0
[   60.289317][ T5981]  ? tomoyo_path_number_perm+0x232/0x5b0
[   60.290785][ T5981]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   60.292400][ T5981]  ? trace_lock_acquire+0x14a/0x1d0
[   60.293763][ T5981]  ? lock_acquire+0x2f/0xb0
[   60.295214][ T5981]  ? __fget_files+0x40/0x3f0
[   60.296491][ T5981]  ? __fget_files+0x244/0x3f0
[   60.297726][ T5981]  security_file_ioctl_compat+0x9b/0x240
[   60.299191][ T5981]  __do_compat_sys_ioctl+0x52/0x2b0
[   60.300570][ T5981]  __do_fast_syscall_32+0x73/0x120
[   60.301915][ T5981]  do_fast_syscall_32+0x32/0x80
[   60.303194][ T5981]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   60.304915][ T5981] RIP: 0023:0xf7fa6579
[   60.305986][ T5981] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   60.311067][ T5981] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   60.313342][ T5981] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00000000800452d3
[   60.316148][ T5981] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[   60.318274][ T5981] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   60.320498][ T5981] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   60.322638][ T5981] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   60.324755][ T5981]  </TASK>
[   60.326793][ T5981] ERROR: Out of memory at tomoyo_realpath_from_path.
[   60.363159][ T5985] netlink: 112 bytes leftover after parsing attributes in process `syz.3.199'.
[   60.366498][ T5985] FAULT_INJECTION: forcing a failure.
[   60.366498][ T5985] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   60.371431][ T5985] CPU: 0 UID: 0 PID: 5985 Comm: syz.3.199 Not tainted 6.12.0-rc3-syzkaller-00454-gdb87114dcf13 #0
[   60.374728][ T5985] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   60.377519][ T5985] Call Trace:
[   60.378386][ T5985]  <TASK>
[   60.379160][ T5985]  dump_stack_lvl+0x16c/0x1f0
[   60.380708][ T5985]  should_fail_ex+0x497/0x5b0
[   60.382378][ T5985]  _copy_from_user+0x30/0xf0
[   60.384013][ T5985]  rfcomm_dev_ioctl+0xa0e/0x1e70
[   60.385746][ T5985]  ? __pfx_rfcomm_dev_ioctl+0x10/0x10
[   60.387616][ T5985]  ? __pfx_do_vfs_ioctl+0x10/0x10
[   60.389401][ T5985]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   60.391480][ T5985]  rfcomm_sock_compat_ioctl+0xb0/0xd0
[   60.393392][ T5985]  compat_sock_ioctl+0x17b/0x7e0
[   60.395138][ T5985]  ? __pfx_rfcomm_sock_compat_ioctl+0x10/0x10
[   60.397066][ T5985]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   60.398489][ T5985]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   60.399905][ T5985]  __do_compat_sys_ioctl+0x259/0x2b0
[   60.401312][ T5985]  __do_fast_syscall_32+0x73/0x120
[   60.402650][ T5985]  do_fast_syscall_32+0x32/0x80
[   60.403918][ T5985]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   60.405587][ T5985] RIP: 0023:0xf7fe0579
[   60.406652][ T5985] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   60.411967][ T5985] RSP: 002b:00000000f576656c EFLAGS: 00000296 ORIG_RAX: 0000000000000036
[   60.414163][ T5985] RAX: ffffffffffffffda RBX: 000000000000000c RCX: 00000000400452c8
[   60.416219][ T5985] RDX: 0000000020000100 RSI: 0000000000000000 RDI: 0000000000000000
[   60.418288][ T5985] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   60.420362][ T5985] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   60.422436][ T5985] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   60.424522][ T5985]  </TASK>
[   60.489659][ T5990] Trying to write to read-only block-device nullb0
[   60.496879][ T5990] netlink: 20 bytes leftover after parsing attributes in process `syz.3.200'.
[   60.766923][ T6003] netlink: 'syz.3.204': attribute type 1 has an invalid length.
[   60.778181][ T6003] bridge_slave_1: left allmulticast mode
[   60.779733][ T6003] bridge_slave_1: left promiscuous mode
[   60.781989][ T6003] bridge0: port 2(bridge_slave_1) entered disabled state
[   60.789082][ T6003] bridge_slave_0: left allmulticast mode
[   60.790651][ T6003] bridge_slave_0: left promiscuous mode
[   60.792215][ T6003] bridge0: port 1(bridge_slave_0) entered disabled state
[   60.813181][ T6010] kvm: Disabled LAPIC found during irq injection
[   60.890484][ T6009] dummy0: entered promiscuous mode
[   60.893757][ T6009] batman_adv: batadv0: Adding interface: dummy0
[   60.895490][ T6009] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   60.902147][ T6009] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[   60.983308][ T6025] overlayfs: failed to resolve './file1': -2
[   60.990587][ T6023] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   60.992542][ T6023] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   61.055309][ T6023] hsr_slave_0: left promiscuous mode
[   61.060493][ T6023] hsr_slave_1: left promiscuous mode
[   61.074588][ T6028] bond0: (slave batadv0): Releasing backup interface
[   61.099346][ T6028] bridge_slave_0: left allmulticast mode
[   61.100880][ T6028] bridge_slave_0: left promiscuous mode
[   61.102397][ T6028] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.108940][ T6028] bridge_slave_1: left allmulticast mode
[   61.110443][ T6028] bridge_slave_1: left promiscuous mode
[   61.111948][ T6028] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.112585][ T5352] Bluetooth: hci3: unexpected event for opcode 0x0c46
[   61.120323][ T6028] bond0: (slave bond_slave_0): Releasing backup interface
[   61.127884][ T6028] bond0: (slave bond_slave_1): Releasing backup interface
[   61.142434][ T6028] team0: Port device team_slave_0 removed
[   61.148401][ T6028] team0: Port device team_slave_1 removed
[   61.150233][ T6028] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   61.153677][ T6028] batman_adv: batadv0: Removing interface: batadv_slave_0
[   61.267500][ T6039] vlan2: entered allmulticast mode
[   61.269179][ T6039] vlan1: entered allmulticast mode
[   61.270701][ T6039] veth0_vlan: entered allmulticast mode
[   61.273513][ T6039] vlan1: left allmulticast mode
[   61.275037][ T6039] veth0_vlan: left allmulticast mode
[   61.469816][   T39] audit: type=1804 audit(1729476922.523:20): pid=6042 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.219" name="/newroot/48/file0/file0" dev="9p" ino=36317145 res=1 errno=0
[   61.473241][ T6046] 9pnet_virtio: no channels available for device syz
[   61.525399][ T6054] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[   61.752102][ T6071] netlink: 'syz.3.227': attribute type 10 has an invalid length.
[   61.787434][ T5352] Bluetooth: hci2: command 0x0419 tx timeout
[   62.041357][ T6077] macvlan0: entered allmulticast mode
[   62.042812][ T6077] veth1_vlan: entered allmulticast mode
[   62.044602][ T6077] macvlan0: left allmulticast mode
[   62.046149][ T6077] veth1_vlan: left allmulticast mode
[   62.893203][ T6091] __nla_validate_parse: 8 callbacks suppressed
[   62.893214][ T6091] netlink: 12 bytes leftover after parsing attributes in process `syz.1.234'.
[   62.972120][ T6093] overlayfs: missing 'lowerdir'
[   62.975907][ T6093] overlayfs: missing 'lowerdir'
[   63.204681][ T6110] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   63.206518][ T6110] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   63.210002][ T6110] hsr_slave_0: left promiscuous mode
[   63.212367][ T6110] hsr_slave_1: left promiscuous mode
[   63.227258][ T5352] Bluetooth: hci0: command 0x0419 tx timeout
[   63.269230][ T6112] bridge_slave_0: left allmulticast mode
[   63.270805][ T6112] bridge_slave_0: left promiscuous mode
[   63.272483][ T6112] bridge0: port 1(bridge_slave_0) entered disabled state
[   63.278940][ T6112] bridge_slave_1: left allmulticast mode
[   63.281868][ T6112] bridge_slave_1: left promiscuous mode
[   63.283420][ T6112] bridge0: port 2(bridge_slave_1) entered disabled state
[   63.289342][ T6112] bond0: (slave bond_slave_0): Releasing backup interface
[   63.305219][ T6112] bond0: (slave bond_slave_1): Releasing backup interface
[   63.326302][ T6112] team0: Port device team_slave_0 removed
[   63.330760][ T5352] Bluetooth: hci0: unexpected event for opcode 0x0c46
[   63.336554][ T6112] team0: Port device team_slave_1 removed
[   63.339450][ T6112] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   63.341482][ T6112] batman_adv: batadv0: Removing interface: batadv_slave_0
[   63.344812][ T6112] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   63.347131][ T6112] batman_adv: batadv0: Removing interface: batadv_slave_1
[   63.353324][ T6112] bond0: (slave wlan1): Releasing backup interface
[   63.378893][ T6116] netlink: 'syz.0.244': attribute type 10 has an invalid length.
[   63.383894][ T6116] netlink: 40 bytes leftover after parsing attributes in process `syz.0.244'.
[   63.418462][ T5352] Bluetooth: hci0: unexpected event for opcode 0x0000
[   63.483370][ T6120] netlink: 4 bytes leftover after parsing attributes in process `syz.0.246'.
[   63.507425][ T6122] Cannot find set identified by id 0 to match
[   63.618620][ T6129] syz.2.250: attempt to access beyond end of device
[   63.618620][ T6129] loop2: rw=4096, sector=0, nr_sectors = 1 limit=0
[   63.622746][ T6129] XFS (loop2): SB validate failed with error -5.
[   63.665162][ T6144] netlink: 112 bytes leftover after parsing attributes in process `syz.2.253'.
[   64.010387][ T6167] netlink: 8 bytes leftover after parsing attributes in process `syz.3.261'.
[   64.012886][ T6167] netlink: 8 bytes leftover after parsing attributes in process `syz.3.261'.
[   64.020961][ T6165] netlink: 8 bytes leftover after parsing attributes in process `syz.0.260'.
[   64.150028][ T6173] 9pnet_fd: Insufficient options for proto=fd
[   64.153891][ T6173] ptm ptm0: ldisc open failed (-12), clearing slot 0
[   64.184475][ T6177] netlink: 112 bytes leftover after parsing attributes in process `syz.3.264'.
[   64.214887][ T6180] netlink: 112 bytes leftover after parsing attributes in process `syz.3.265'.
[   64.221598][ T6178] netlink: 12 bytes leftover after parsing attributes in process `syz.0.262'.
[   64.384641][   T39] audit: type=1326 audit(1729476925.433:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6191 comm="syz.3.269" exe="/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x0
[   65.175808][ T6209] netlink: 'syz.0.274': attribute type 10 has an invalid length.
[   65.181767][ T6209] 8021q: adding VLAN 0 to HW filter on device batadv0
[   65.184333][ T6209] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   65.197709][ T6206] No control pipe specified
[   65.597952][ T6253] binder: BINDER_SET_CONTEXT_MGR already set
[   65.601385][ T6253] binder: 6252:6253 ioctl 4018620d 200001c0 returned -16
[   65.628794][ T6255] netlink: 'syz.1.290': attribute type 1 has an invalid length.
[   65.955807][ T6249] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   65.987556][ T6249] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   65.989792][ T6249] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   66.022953][ T6249] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   66.602332][ T5350] Bluetooth: hci2: unexpected event for opcode 0x1003
[   66.826942][   T39] audit: type=1804 audit(1729476927.873:22): pid=6276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.296" name="/newroot/73/file0/file0" dev="9p" ino=36317145 res=1 errno=0
[   66.984063][ T6291] raw_sendmsg: syz.3.299 forgot to set AF_INET. Fix it!
[   67.100761][   T39] audit: type=1326 audit(1729476928.153:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6290 comm="syz.3.299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7fc00000
[   67.109902][ T6294] xt_cgroup: invalid path, errno=-2
[   67.158478][ T6296] capability: warning: `syz.2.302' uses 32-bit capabilities (legacy support in use)
[   67.456330][ T6298] tmpfs: Bad value for 'mpol'
[   67.465860][ T5350] Bluetooth: hci3: Received unexpected HCI Event 0x00
[   67.707235][ T5350] Bluetooth: hci0: command 0x0419 tx timeout
[   67.813373][   T39] audit: type=1326 audit(1729476928.863:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6290 comm="syz.3.299" exe="/syz-executor" sig=0 arch=40000003 syscall=248 compat=1 ip=0xf7fe0579 code=0x7fc00000
[   67.819922][   T39] audit: type=1326 audit(1729476928.863:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6290 comm="syz.3.299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7fc00000
[   67.829124][   T39] audit: type=1326 audit(1729476928.863:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6290 comm="syz.3.299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7fc00000
[   67.839195][   T39] audit: type=1326 audit(1729476928.863:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6290 comm="syz.3.299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7fc00000
[   67.846201][   T39] audit: type=1326 audit(1729476928.863:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6290 comm="syz.3.299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7fc00000
[   67.852790][   T39] audit: type=1326 audit(1729476928.863:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6290 comm="syz.3.299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7fc00000
[   67.859047][   T39] audit: type=1326 audit(1729476928.863:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6290 comm="syz.3.299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7fc00000
[   67.865111][   T39] audit: type=1326 audit(1729476928.863:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6290 comm="syz.3.299" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fe0579 code=0x7fc00000
[   67.946212][ T6319] netlink: 'syz.2.311': attribute type 1 has an invalid length.
[   68.027325][ T5352] Bluetooth: hci3: command 0x0419 tx timeout
[   68.027370][ T4780] Bluetooth: hci1: command 0x0419 tx timeout
[   68.084820][ T6316] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   68.086739][ T6316] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   68.088956][ T6316] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   68.091243][ T6316] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   68.387142][ T6327] program syz.1.314 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   68.422297][ T6329] __nla_validate_parse: 7 callbacks suppressed
[   68.422312][ T6329] netlink: 4 bytes leftover after parsing attributes in process `syz.0.315'.
[   68.497742][ T6332] Cannot find set identified by id 0 to match
[   68.545830][ T6336] x_tables: duplicate underflow at hook 3
[   68.862014][ T6344] FAULT_INJECTION: forcing a failure.
[   68.862014][ T6344] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   68.866029][ T6344] CPU: 3 UID: 0 PID: 6344 Comm: syz.0.320 Not tainted 6.12.0-rc3-syzkaller-00454-gdb87114dcf13 #0
[   68.869016][ T6344] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   68.871929][ T6344] Call Trace:
[   68.873001][ T6344]  <TASK>
[   68.874041][ T6344]  dump_stack_lvl+0x16c/0x1f0
[   68.875669][ T6344]  should_fail_ex+0x497/0x5b0
[   68.877339][ T6344]  ? page_copy_sane+0xcd/0x2d0
[   68.878977][ T6344]  copy_page_from_iter_atomic+0x246/0x1440
[   68.881029][ T6344]  ? __pfx_copy_page_from_iter_atomic+0x10/0x10
[   68.883193][ T6344]  ? folio_wait_stable+0x59/0x90
[   68.884814][ T6344]  ? __filemap_get_folio+0x2a5/0xaf0
[   68.886626][ T6344]  netfs_perform_write+0x1842/0x21a0
[   68.888532][ T6344]  ? __pfx_netfs_perform_write+0x10/0x10
[   68.890487][ T6344]  ? find_held_lock+0x2d/0x110
[   68.892303][ T6344]  ? __pfx_generic_write_checks+0x10/0x10
[   68.894181][ T6344]  netfs_file_write_iter+0x432/0x4f0
[   68.895877][ T6344]  v9fs_file_write_iter+0x9b/0x100
[   68.897327][ T6344]  aio_write+0x3b2/0x8c0
[   68.898550][ T6344]  ? __pfx_aio_write+0x10/0x10
[   68.900228][ T6344]  ? find_held_lock+0x2d/0x110
[   68.901608][ T6344]  ? lock_acquire+0x2f/0xb0
[   68.902820][ T6344]  ? __might_fault+0xe3/0x190
[   68.904043][ T6344]  ? io_submit_one+0x1248/0x1da0
[   68.905320][ T6344]  io_submit_one+0x1248/0x1da0
[   68.907027][ T6344]  ? __pfx_io_submit_one+0x10/0x10
[   68.908880][ T6344]  ? __might_fault+0x13b/0x190
[   68.910502][ T6344]  ? lock_acquire+0x2f/0xb0
[   68.911856][ T6344]  ? __might_fault+0xe3/0x190
[   68.913558][ T6344]  ? __ia32_compat_sys_io_submit+0x1af/0x390
[   68.915518][ T6344]  __ia32_compat_sys_io_submit+0x1af/0x390
[   68.917712][ T6344]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[   68.919965][ T6344]  __do_fast_syscall_32+0x73/0x120
[   68.921806][ T6344]  do_fast_syscall_32+0x32/0x80
[   68.923561][ T6344]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   68.925836][ T6344] RIP: 0023:0xf7fa6579
[   68.927275][ T6344] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   68.934021][ T6344] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[   68.937037][ T6344] RAX: ffffffffffffffda RBX: 00000000f7438000 RCX: 0000000000000001
[   68.939396][ T6344] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[   68.941472][ T6344] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   68.943532][ T6344] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   68.945628][ T6344] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   68.947704][ T6344]  </TASK>
[   68.948788][    C3] vkms_vblank_simulate: vblank timer overrun
[   69.127743][ T6346] overlayfs: failed to resolve './file1': -2
[   69.564529][ T6370] vivid-002: disconnect
[   69.756564][ T6375] netlink: 36 bytes leftover after parsing attributes in process `syz.2.330'.
[   70.000180][ T5350] Bluetooth: hci0: unexpected event 0x03 length: 16 > 11
[   70.037887][ T5350] Bluetooth: hci0: command 0x0419 tx timeout
[   70.107285][ T5350] Bluetooth: hci3: command 0x0419 tx timeout
[   70.109505][ T5350] Bluetooth: hci2: command 0x0419 tx timeout
[   70.110786][ T4780] Bluetooth: hci1: command 0x0419 tx timeout
[   70.205101][ T6390] netlink: 'syz.0.336': attribute type 10 has an invalid length.
[   70.346437][ T6369] vivid-002: reconnect
[   70.446866][ T6403] netlink: 'syz.1.341': attribute type 4 has an invalid length.
[   70.483159][ T6404] serio: Serial port pts1
[   70.507316][   T25] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[   70.680543][ T1376] ieee802154 phy0 wpan0: encryption failed: -22
[   70.684507][   T25] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   70.688641][   T25] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   70.692545][   T25] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   70.695957][   T25] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   70.700972][   T25] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   70.704222][   T25] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   70.709436][   T25] usb 8-1: config 0 descriptor??
[   71.117343][ T1284] IPVS: starting estimator thread 0...
[   71.120184][   T25] usbhid 8-1:0.0: can't add hid device: -71
[   71.123543][   T25] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[   71.123761][ T6408] tipc: Started in network mode
[   71.127491][   T25] usb 8-1: USB disconnect, device number 4
[   71.128103][ T6408] tipc: Node identity ac1414aa, cluster identity 4711
[   71.131544][ T6408] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   71.133565][ T6408] tipc: Enabled bearer <udp:s>, priority 10
[   71.138100][ T4780] Bluetooth: hci0: ACL packet for unknown connection handle 200
[   71.177186][ T6411] binder: BINDER_SET_CONTEXT_MGR already set
[   71.178990][ T6411] binder: 6410:6411 ioctl 4018620d 200001c0 returned -16
[   71.217447][ T6409] IPVS: using max 34 ests per chain, 81600 per kthread
[   71.267207][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   71.407184][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   71.487770][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.489902][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.491857][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.493825][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.495775][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.498127][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.500128][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.502098][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.504070][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.506038][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.508135][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.510109][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.512080][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.514060][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.516040][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.518579][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.520575][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.522528][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.524492][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.526497][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.529176][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.531186][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.533169][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.535120][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.537172][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.539117][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.541085][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.543033][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.544993][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.546951][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.547156][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   71.549099][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.552727][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.554679][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.556659][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.558675][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.560651][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.562615][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.564582][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.566550][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.568663][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.570635][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.572608][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.575113][ T5387] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[   71.579573][ T5387] hid-generic 0000:0000:0000.0007: hidraw1: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[   71.687132][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   71.735860][ T6436] overlayfs: failed to resolve './file0': -2
[   71.802163][ T6440] netlink: 4 bytes leftover after parsing attributes in process `syz.2.354'.
[   71.837181][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   71.858589][ T6445] netlink: 'syz.0.355': attribute type 1 has an invalid length.
[   71.977129][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   71.988768][ T6442] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   71.996297][ T6442] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   71.998609][ T6442] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   72.002549][ T6442] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   72.117123][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   72.257125][ T1284] tipc: Node number set to 2886997162
[   72.397146][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   72.407229][ T1413] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[   72.568847][ T1413] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   72.572023][ T1413] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   72.574873][ T1413] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   72.577817][ T1413] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   72.581209][ T1413] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   72.583483][ T1413] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   72.586405][ T1413] usb 7-1: config 0 descriptor??
[   72.677099][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   72.690516][ T6465] overlayfs: failed to resolve './file0': -2
[   72.723221][ T6467] netlink: 'syz.0.363': attribute type 7 has an invalid length.
[   72.725355][ T6467] netlink: 'syz.0.363': attribute type 8 has an invalid length.
[   72.808858][ T6473] syz.0.363: attempt to access beyond end of device
[   72.808858][ T6473] loop0: rw=4096, sector=2, nr_sectors = 2 limit=0
[   72.812314][ T6473] EXT4-fs (loop0): unable to read superblock
[   72.816921][ T6473] usb 2-1: USB disconnect, device number 2
[   72.850468][ T6475] netlink: 20 bytes leftover after parsing attributes in process `syz.3.364'.
[   72.891100][ T6476] hub 2-0:1.0: USB hub found
[   72.892891][ T6476] hub 2-0:1.0: 6 ports detected
[   72.945446][ T6481] netlink: 'syz.3.366': attribute type 10 has an invalid length.
[   72.948259][ T6481] netlink: 40 bytes leftover after parsing attributes in process `syz.3.366'.
[   72.996646][ T1413] usbhid 7-1:0.0: can't add hid device: -71
[   73.000412][ T1413] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[   73.004356][ T1413] usb 7-1: USB disconnect, device number 6
[   73.059104][   T35] usb 2-1: new high-speed USB device number 3 using ehci-pci
[   73.244102][   T35] usb 2-1: New USB device found, idVendor=0627, idProduct=0001, bcdDevice= 0.00
[   73.246474][   T35] usb 2-1: New USB device strings: Mfr=1, Product=3, SerialNumber=10
[   73.248810][   T35] usb 2-1: Product: QEMU USB Tablet
[   73.250358][   T35] usb 2-1: Manufacturer: QEMU
[   73.251746][   T35] usb 2-1: SerialNumber: 28754-0000:00:1d.7-1
[   73.268509][   T35] input: QEMU QEMU USB Tablet as /devices/pci0000:00/0000:00:1d.7/usb2/2-1/2-1:1.0/0003:0627:0001.0008/input/input9
[   73.273540][   T35] hid-generic 0003:0627:0001.0008: input,hidraw0: USB HID v0.01 Mouse [QEMU QEMU USB Tablet] on usb-0000:00:1d.7-1/input0
[   73.387609][ T6403] syz.1.341 (6403) used greatest stack depth: 21104 bytes left
[   73.947469][ T4780] Bluetooth: hci0: command 0x0419 tx timeout
[   74.027177][ T4780] Bluetooth: hci3: command 0x0419 tx timeout
[   74.037266][ T4780] Bluetooth: hci2: command 0x0419 tx timeout
[   74.039131][ T5350] Bluetooth: hci1: command 0x0419 tx timeout
[   74.675761][ T5350] Bluetooth: hci3: unexpected event for opcode 0x0c05
[   74.676607][ T6502] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(10)
[   74.679812][ T6502] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[   74.687965][ T6502] vhci_hcd vhci_hcd.0: Device attached
[   75.008431][   T35] usb 14-1: SetAddress Request (2) to port 0
[   75.010128][   T35] usb 14-1: new SuperSpeed USB device number 2 using vhci_hcd
[   75.163398][ T6518] hsr_slave_0: left promiscuous mode
[   75.166181][ T6518] hsr_slave_1: left promiscuous mode
[   75.190681][ T6519] tmpfs: Unknown parameter 'Î'
[   75.219523][ T6520] bond0: (slave batadv0): Releasing backup interface
[   75.227933][ T6520] bond0: (slave bond_slave_0): Releasing backup interface
[   75.234442][ T6520] bond0: (slave bond_slave_1): Releasing backup interface
[   75.261643][ T6520] team0: Port device team_slave_0 removed
[   75.274369][ T5350] Bluetooth: hci2: unexpected event for opcode 0x0c46
[   75.278019][ T6520] team0: Port device team_slave_1 removed
[   75.280578][ T6520] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   75.283184][ T6520] batman_adv: batadv0: Removing interface: batadv_slave_0
[   75.288463][ T6520] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   75.291147][ T6520] batman_adv: batadv0: Removing interface: batadv_slave_1
[   75.311640][ T6520] bond0: (slave wlan1): Releasing backup interface
[   75.807719][   T72] cfg80211: failed to load regulatory.db
[   75.821602][   T39] kauditd_printk_skb: 59 callbacks suppressed
[   75.821639][   T39] audit: type=1326 audit(1729476936.873:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6510 comm="syz.2.376" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f27579 code=0x7fc00000
[   75.996956][ T6504] vhci_hcd: connection reset by peer
[   76.002154][   T45] vhci_hcd: stop threads
[   76.003756][   T45] vhci_hcd: release socket
[   76.006629][   T45] vhci_hcd: disconnect device
[   76.014685][ T6533] netlink: 144 bytes leftover after parsing attributes in process `syz.2.381'.
[   76.018041][ T6533] netlink: 144 bytes leftover after parsing attributes in process `syz.2.381'.
[   76.191271][ T6539] netlink: 'syz.0.383': attribute type 1 has an invalid length.
[   76.323914][ T6538] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   76.325803][ T6538] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   76.327601][ T6538] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   76.329901][ T6538] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   76.347173][    C1] net_ratelimit: 5 callbacks suppressed
[   76.347184][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   76.350727][ T6543] netlink: 20 bytes leftover after parsing attributes in process `syz.2.384'.
[   76.629156][ T6557] netlink: 112 bytes leftover after parsing attributes in process `syz.2.389'.
[   76.634094][ T6557] FAULT_INJECTION: forcing a failure.
[   76.634094][ T6557] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   76.637750][ T6557] CPU: 3 UID: 0 PID: 6557 Comm: syz.2.389 Not tainted 6.12.0-rc3-syzkaller-00454-gdb87114dcf13 #0
[   76.640493][ T6557] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   76.643535][ T6557] Call Trace:
[   76.644764][ T6557]  <TASK>
[   76.645846][ T6557]  dump_stack_lvl+0x16c/0x1f0
[   76.647618][ T6557]  should_fail_ex+0x497/0x5b0
[   76.649161][ T6557]  _copy_to_user+0x30/0xc0
[   76.650591][ T6557]  simple_read_from_buffer+0xd0/0x160
[   76.652381][ T6557]  proc_fail_nth_read+0x198/0x270
[   76.654118][ T6557]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   76.656091][ T6557]  ? __pfx_proc_fail_nth_read+0x10/0x10
[   76.658089][ T6557]  vfs_read+0x1ce/0xbd0
[   76.659607][ T6557]  ? __pfx_vfs_read+0x10/0x10
[   76.661319][ T6557]  ? rfcomm_sock_compat_ioctl+0xb7/0xd0
[   76.663298][ T6557]  ? compat_sock_ioctl+0x1a3/0x7e0
[   76.665128][ T6557]  ? __pfx_rfcomm_sock_compat_ioctl+0x10/0x10
[   76.667279][ T6557]  ? __pfx_compat_sock_ioctl+0x10/0x10
[   76.669270][ T6557]  ksys_read+0x12f/0x260
[   76.670799][ T6557]  ? __pfx_ksys_read+0x10/0x10
[   76.672461][ T6557]  __do_fast_syscall_32+0x73/0x120
[   76.673782][ T6557]  do_fast_syscall_32+0x32/0x80
[   76.675039][ T6557]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   76.676673][ T6557] RIP: 0023:0xf7f27579
[   76.677760][ T6557] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   76.682641][ T6557] RSP: 002b:00000000f56a65a0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[   76.684772][ T6557] RAX: ffffffffffffffda RBX: 000000000000000b RCX: 00000000f56a6620
[   76.686785][ T6557] RDX: 000000000000000f RSI: 00000000f73abff4 RDI: 0000000000000000
[   76.688810][ T6557] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000000
[   76.690815][ T6557] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[   76.692848][ T6557] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   76.694840][ T6557]  </TASK>
[   76.695742][    C3] vkms_vblank_simulate: vblank timer overrun
[   77.199452][ T6564] netlink: 9412 bytes leftover after parsing attributes in process `syz.0.391'.
[   77.320359][ T5387] libceph: connect (1)[c::]:6789 error -101
[   77.322488][ T5387] libceph: mon0 (1)[c::]:6789 connect error
[   77.387219][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   77.499630][ T6564] ceph: No mds server is up or the cluster is laggy
[   77.909582][ T6579] netlink: 'syz.0.394': attribute type 1 has an invalid length.
[   78.042437][ T6578] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   78.044587][ T6578] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   78.046085][ T6578] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   78.047918][ T6578] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   78.427142][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   78.490368][ T6586] netlink: 4 bytes leftover after parsing attributes in process `syz.3.396'.
[   78.547273][   T39] audit: type=1804 audit(1729476939.593:92): pid=6590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.398" name="/newroot/95/file0/file0" dev="9p" ino=36317145 res=1 errno=0
[   78.705208][ T6595] vlan2: entered allmulticast mode
[   78.707153][ T6595] vlan1: entered allmulticast mode
[   78.708567][ T6595] veth0_vlan: entered allmulticast mode
[   78.711968][ T6595] vlan1: left allmulticast mode
[   78.713408][ T6595] veth0_vlan: left allmulticast mode
[   78.847493][ T6602] program syz.3.400 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   78.850082][ T6604] overlayfs: missing 'lowerdir'
[   78.939905][ T6607] netlink: 'syz.0.404': attribute type 1 has an invalid length.
[   79.075971][ T6606] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   79.084003][ T6606] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   79.085843][ T6606] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   79.088281][ T6606] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   79.467119][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   79.573058][ T6612] netlink: 'syz.2.405': attribute type 1 has an invalid length.
[   79.994290][ T6618] netlink: 'syz.3.406': attribute type 4 has an invalid length.
[   80.013945][ T6618] netlink: 'syz.3.406': attribute type 4 has an invalid length.
[   80.107318][   T35] usb 14-1: device descriptor read/8, error -110
[   80.497535][   T35] usb usb14-port1: attempt power cycle
[   80.517108][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   80.903689][ T6632] netlink: 12 bytes leftover after parsing attributes in process `syz.2.411'.
[   80.926626][ T6634] overlayfs: missing 'lowerdir'
[   80.988332][ T4780] Bluetooth: hci0: command 0x0419 tx timeout
[   80.989182][ T6638] bridge: RTM_NEWNEIGH with invalid ether address
[   81.068718][   T35] usb usb14-port1: unable to enumerate USB device
[   81.147232][ T4780] Bluetooth: hci3: command 0x0419 tx timeout
[   81.159203][ T5352] Bluetooth: hci2: command 0x0419 tx timeout
[   81.159412][ T5358] Bluetooth: hci1: command 0x0419 tx timeout
[   81.163288][ T4780] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   81.166352][ T4780] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   81.175041][ T4780] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   81.184004][ T6646] ebtables: wrong size: *len 264, entries_size 144, replsz 144
[   81.187590][ T4780] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   81.191392][ T4780] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   81.193886][ T4780] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   81.280584][ T6654] netlink: 112 bytes leftover after parsing attributes in process `syz.0.420'.
[   81.280899][ T6658] loop7: detected capacity change from 0 to 16384
[   81.309508][ T6628] chnl_net:caif_netlink_parms(): no params data found
[   81.326889][ T6661] vivid-001: disconnect
[   81.377004][ T6628] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.378975][ T6628] bridge0: port 1(bridge_slave_0) entered disabled state
[   81.380837][ T6628] bridge_slave_0: entered allmulticast mode
[   81.382897][ T6628] bridge_slave_0: entered promiscuous mode
[   81.385595][ T6628] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.387821][ T6628] bridge0: port 2(bridge_slave_1) entered disabled state
[   81.389771][ T6628] bridge_slave_1: entered allmulticast mode
[   81.391749][ T6628] bridge_slave_1: entered promiscuous mode
[   81.413387][ T6628] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   81.416925][ T6628] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.437937][ T6628] team0: Port device team_slave_0 added
[   81.442273][ T6628] team0: Port device team_slave_1 added
[   81.459076][ T6628] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.460899][ T6628] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.467658][ T6628] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.471162][ T6628] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.472962][ T6628] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   81.481018][ T6628] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.490551][ T6677] netlink: 'syz.0.425': attribute type 1 has an invalid length.
[   81.517261][ T6628] hsr_slave_0: entered promiscuous mode
[   81.519285][ T6628] hsr_slave_1: entered promiscuous mode
[   81.557141][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   81.564121][ T6676] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[   81.565898][ T6676] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[   81.568416][ T6676] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[   81.570120][ T6676] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[   81.571745][ T6676] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[   81.573360][ T6676] Bluetooth: hci4: Opcode 0x0406 failed: -4
[   81.583061][ T6676] Bluetooth: hci4: Opcode 0x0406 failed: -4
[   81.610714][ T6628] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.617190][   T35] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[   81.677176][ T6628] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.762530][ T6628] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.771051][   T35] usb 7-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[   81.774929][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[   81.778722][   T35] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[   81.781996][   T35] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[   81.786270][   T35] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   81.791250][   T35] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   81.794990][   T35] usb 7-1: config 0 descriptor??
[   81.844301][ T6628] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.946275][ T6628] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   81.958993][ T6628] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   81.963186][ T6628] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   81.967601][ T6628] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   81.981638][ T6628] bridge0: port 2(bridge_slave_1) entered blocking state
[   81.984352][ T6628] bridge0: port 2(bridge_slave_1) entered forwarding state
[   81.986987][ T6628] bridge0: port 1(bridge_slave_0) entered blocking state
[   81.989279][ T6628] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.024803][ T6628] 8021q: adding VLAN 0 to HW filter on device bond0
[   82.034034][   T76] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.038650][   T76] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.060988][ T6628] 8021q: adding VLAN 0 to HW filter on device team0
[   82.068325][   T45] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.070739][   T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[   82.075466][ T1098] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.077666][ T1098] bridge0: port 2(bridge_slave_1) entered forwarding state
[   82.109135][ T6656] vivid-001: reconnect
[   82.204926][ T6628] 8021q: adding VLAN 0 to HW filter on device batadv0
[   82.237184][ T6628] veth0_vlan: entered promiscuous mode
[   82.244737][ T6628] veth1_vlan: entered promiscuous mode
[   82.249055][   T35] usbhid 7-1:0.0: can't add hid device: -71
[   82.250687][   T35] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[   82.253377][   T35] usb 7-1: USB disconnect, device number 7
[   82.263430][ T6628] veth0_macvtap: entered promiscuous mode
[   82.273796][ T6628] veth1_macvtap: entered promiscuous mode
[   82.285004][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   82.287963][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.292715][ T6628] batman_adv: batadv0: Interface activated: batadv_slave_0
[   82.306626][ T6628] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   82.309494][ T6628] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   82.313996][ T6628] batman_adv: batadv0: Interface activated: batadv_slave_1
[   82.321927][ T6628] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   82.324238][ T6628] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   82.326584][ T6628] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   82.329615][ T6628] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   82.414224][  T770] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.417519][  T770] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.437785][ T1098] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   82.439948][ T1098] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   82.587127][    C1] IPVS: nq: UDP 224.0.0.2:0 - no destination available
[   82.736535][ T6700] FAULT_INJECTION: forcing a failure.
[   82.736535][ T6700] name failslab, interval 1, probability 0, space 0, times 0
[   82.740449][ T6700] CPU: 1 UID: 0 PID: 6700 Comm: syz.0.430 Not tainted 6.12.0-rc3-syzkaller-00454-gdb87114dcf13 #0
[   82.743653][ T6700] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.746860][ T6700] Call Trace:
[   82.747838][ T6700]  <TASK>
[   82.748685][ T6700]  dump_stack_lvl+0x16c/0x1f0
[   82.750104][ T6700]  should_fail_ex+0x497/0x5b0
[   82.751382][ T6700]  ? fs_reclaim_acquire+0xae/0x150
[   82.752863][ T6700]  should_failslab+0xc2/0x120
[   82.754150][ T6700]  __kmalloc_cache_noprof+0x6b/0x310
[   82.755582][ T6700]  ? netfs_buffer_make_space+0x432/0x6b0
[   82.757147][ T6700]  netfs_buffer_make_space+0x432/0x6b0
[   82.758614][ T6700]  netfs_buffer_append_folio+0x298/0x360
[   82.760123][ T6700]  netfs_write_folio+0x540/0x1930
[   82.761528][ T6700]  ? trace_netfs_folio+0x193/0x220
[   82.762857][ T6700]  ? __pfx___might_resched+0x10/0x10
[   82.764769][ T6700]  netfs_end_writethrough+0x53/0x170
[   82.766186][ T4780] Bluetooth: hci0: Malformed Event: 0x13
[   82.766365][ T6700]  netfs_perform_write+0x1b1c/0x21a0
[   82.769626][ T6700]  ? __pfx_netfs_perform_write+0x10/0x10
[   82.771455][ T6700]  ? find_held_lock+0x2d/0x110
[   82.773291][ T6700]  ? __pfx_generic_write_checks+0x10/0x10
[   82.775355][ T6700]  netfs_file_write_iter+0x432/0x4f0
[   82.777306][ T6700]  v9fs_file_write_iter+0x9b/0x100
[   82.778875][ T6700]  aio_write+0x3b2/0x8c0
[   82.780180][ T6700]  ? __pfx_aio_write+0x10/0x10
[   82.781484][ T6700]  ? find_held_lock+0x2d/0x110
[   82.782769][ T6700]  ? lock_acquire+0x2f/0xb0
[   82.783989][ T6700]  ? __might_fault+0xe3/0x190
[   82.785265][ T6700]  ? io_submit_one+0x1248/0x1da0
[   82.786588][ T6700]  io_submit_one+0x1248/0x1da0
[   82.787870][ T6700]  ? __pfx_io_submit_one+0x10/0x10
[   82.789262][ T6700]  ? __might_fault+0x13b/0x190
[   82.790544][ T6700]  ? lock_acquire+0x2f/0xb0
[   82.792108][ T6700]  ? __might_fault+0xe3/0x190
[   82.793751][ T6700]  ? __ia32_compat_sys_io_submit+0x1af/0x390
[   82.795644][ T6700]  __ia32_compat_sys_io_submit+0x1af/0x390
[   82.797391][ T6700]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[   82.799434][ T6700]  __do_fast_syscall_32+0x73/0x120
[   82.800981][ T6700]  do_fast_syscall_32+0x32/0x80
[   82.802326][ T6700]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.804016][ T6700] RIP: 0023:0xf7fa6579
[   82.805094][ T6700] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   82.810178][ T6700] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[   82.812465][ T6700] RAX: ffffffffffffffda RBX: 00000000f7438000 RCX: 0000000000000001
[   82.814605][ T6700] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[   82.816673][ T6700] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   82.818736][ T6700] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   82.820749][ T6700] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   82.822770][ T6700]  </TASK>
[   82.824247][ T6700] ------------[ cut here ]------------
[   82.825870][ T6700] WARNING: CPU: 0 PID: 6700 at lib/iov_iter.c:255 _copy_from_iter+0x390/0x13e0
[   82.828954][ T6700] Modules linked in:
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[   82.830112][ T6700] CPU: 0 UID: 0 PID: 6700 Comm: syz.0.430 Not tainted 6.12.0-rc3-syzkaller-00454-gdb87114dcf13 #0
[   82.834656][ T6700] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   82.838485][ T6700] RIP: 0010:_copy_from_iter+0x390/0x13e0
[   82.840208][ T6700] Code: 66 fd 0f 01 cb 4c 89 f9 4c 89 f7 48 89 de f3 a4 0f 1f 00 48 89 cb 0f 01 ca 4d 89 fc 49 29 cc e9 28 ff ff ff e8 a1 4d 05 fd 90 <0f> 0b 90 e9 b9 fd ff ff e8 93 4d 05 fd 89 de bf 01 00 00 00 e8 67
[   82.845214][ T6700] RSP: 0018:ffffc9000358efc8 EFLAGS: 00010293
[   82.846825][ T6700] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff848767d8
[   82.849037][ T6700] RDX: ffff8880215b8000 RSI: ffffffff84876aaf RDI: 0000000000000001
[   82.851169][ T6700] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[   82.853472][ T6700] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88802a7787e0
[   82.855941][ T6700] R13: ffff8880601ff050 R14: ffff88802a7787e0 R15: 0000000000000001
[   82.858994][ T6700] FS:  0000000000000000(0000) GS:ffff88802b400000(0063) knlGS:00000000f5726b40
[   82.861522][ T6700] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[   82.863456][ T6700] CR2: 00000000f71e18e0 CR3: 000000004fdd2000 CR4: 0000000000352ef0
[   82.865626][ T6700] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   82.868113][ T6700] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   82.870356][ T6700] Call Trace:
[   82.871282][ T6700]  <TASK>
[   82.872102][ T6700]  ? __warn+0xea/0x3d0
[   82.873167][ T6700]  ? _copy_from_iter+0x390/0x13e0
[   82.874558][ T6700]  ? report_bug+0x3c0/0x580
[   82.875832][ T6700]  ? handle_bug+0x54/0xa0
[   82.877024][ T6700]  ? exc_invalid_op+0x17/0x50
[   82.878476][ T6700]  ? asm_exc_invalid_op+0x1a/0x20
[   82.879874][ T6700]  ? _copy_from_iter+0xb8/0x13e0
[   82.881310][ T6700]  ? _copy_from_iter+0x38f/0x13e0
[   82.882720][ T6700]  ? _copy_from_iter+0x390/0x13e0
[   82.884082][ T6700]  ? _copy_from_iter+0x38f/0x13e0
[   82.885487][ T6700]  ? trace_lock_acquire+0x14a/0x1d0
[   82.886850][ T6700]  ? __pfx__copy_from_iter+0x10/0x10
[   82.888714][ T6700]  ? __virt_addr_valid+0x1a4/0x590
[   82.890430][ T6700]  ? __virt_addr_valid+0x5e/0x590
[   82.891804][ T6700]  ? __phys_addr_symbol+0x30/0x80
[   82.893254][ T6700]  ? __check_object_size+0x488/0x710
[   82.894726][ T6700]  p9pdu_vwritef+0x2cb/0x21d0
[   82.896498][ T6700]  ? p9pdu_writef+0xc4/0x100
[   82.897937][ T6700]  ? __pfx_p9pdu_vwritef+0x10/0x10
[   82.899389][ T6700]  ? __pfx_p9_tag_alloc+0x10/0x10
[   82.900867][ T6700]  ? hlock_class+0x4e/0x130
[   82.902173][ T6700]  ? mark_lock+0xb5/0xc60
[   82.903497][ T6700]  p9_client_prepare_req+0x244/0x4d0
[   82.905125][ T6700]  ? __pfx_p9_client_prepare_req+0x10/0x10
[   82.907013][ T6700]  ? register_lock_class+0xb1/0x1240
[   82.908526][ T6700]  ? mark_lock+0xb5/0xc60
[   82.909800][ T6700]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[   82.911395][ T6700]  p9_client_rpc+0x1c3/0xc10
[   82.912758][ T6700]  ? __pfx_p9_client_rpc+0x10/0x10
[   82.914259][ T6700]  ? hlock_class+0x4e/0x130
[   82.915587][ T6700]  ? __lock_acquire+0x163e/0x3ce0
[   82.917220][ T6700]  ? hlock_class+0x4e/0x130
[   82.918508][ T6700]  ? __pfx___lock_acquire+0x10/0x10
[   82.920051][ T6700]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[   82.921805][ T6700]  p9_client_write+0x31f/0x680
[   82.923195][ T6700]  ? __pfx_p9_client_write+0x10/0x10
[   82.924723][ T6700]  v9fs_issue_write+0xe2/0x180
[   82.926135][ T6700]  ? __pfx_v9fs_issue_write+0x10/0x10
[   82.927794][ T6700]  ? __local_bh_enable_ip+0xa4/0x120
[   82.929375][ T6700]  ? rcu_is_watching+0x12/0xc0
[   82.930774][ T6700]  ? trace_netfs_sreq+0x193/0x220
[   82.932144][ T6700]  netfs_do_issue_write+0x92/0x110
[   82.933574][ T6700]  netfs_write_folio+0x82f/0x1930
[   82.934940][ T6700]  ? __pfx___might_resched+0x10/0x10
[   82.936350][ T6700]  netfs_end_writethrough+0x53/0x170
[   82.937942][ T6700]  netfs_perform_write+0x1b1c/0x21a0
[   82.939428][ T6700]  ? __pfx_netfs_perform_write+0x10/0x10
[   82.940994][ T6700]  ? find_held_lock+0x2d/0x110
[   82.942368][ T6700]  ? __pfx_generic_write_checks+0x10/0x10
[   82.943920][ T6700]  netfs_file_write_iter+0x432/0x4f0
[   82.945436][ T6700]  v9fs_file_write_iter+0x9b/0x100
[   82.946864][ T6700]  aio_write+0x3b2/0x8c0
[   82.948102][ T6700]  ? __pfx_aio_write+0x10/0x10
[   82.949410][ T6700]  ? find_held_lock+0x2d/0x110
[   82.950771][ T6700]  ? lock_acquire+0x2f/0xb0
[   82.952066][ T6700]  ? __might_fault+0xe3/0x190
[   82.953424][ T6700]  ? io_submit_one+0x1248/0x1da0
[   82.954815][ T6700]  io_submit_one+0x1248/0x1da0
[   82.956255][ T6700]  ? __pfx_io_submit_one+0x10/0x10
[   82.957747][ T6700]  ? __might_fault+0x13b/0x190
[   82.959180][ T6700]  ? lock_acquire+0x2f/0xb0
[   82.960532][ T6700]  ? __might_fault+0xe3/0x190
[   82.961845][ T6700]  ? __ia32_compat_sys_io_submit+0x1af/0x390
[   82.963519][ T6700]  __ia32_compat_sys_io_submit+0x1af/0x390
[   82.965178][ T6700]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[   82.966954][ T6700]  __do_fast_syscall_32+0x73/0x120
[   82.968508][ T6700]  do_fast_syscall_32+0x32/0x80
[   82.969844][ T6700]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   82.971610][ T6700] RIP: 0023:0xf7fa6579
[   82.972776][ T6700] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   82.978087][ T6700] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[   82.980374][ T6700] RAX: ffffffffffffffda RBX: 00000000f7438000 RCX: 0000000000000001
[   82.982514][ T6700] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[   82.984644][ T6700] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   82.986811][ T6700] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   82.989156][ T6700] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   82.991371][ T6700]  </TASK>
[   82.992309][ T6700] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   82.994306][ T6700] CPU: 0 UID: 0 PID: 6700 Comm: syz.0.430 Not tainted 6.12.0-rc3-syzkaller-00454-gdb87114dcf13 #0
[   82.997679][ T6700] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   83.001385][ T6700] Call Trace:
[   83.002313][ T6700]  <TASK>
[   83.003136][ T6700]  dump_stack_lvl+0x3d/0x1f0
[   83.004413][ T6700]  panic+0x71d/0x800
[   83.005578][ T6700]  ? __pfx_panic+0x10/0x10
[   83.007189][ T6700]  ? show_trace_log_lvl+0x29d/0x3d0
[   83.009082][ T6700]  ? check_panic_on_warn+0x1f/0xb0
[   83.010648][ T6700]  ? _copy_from_iter+0x390/0x13e0
[   83.012093][ T6700]  check_panic_on_warn+0xab/0xb0
[   83.013454][ T6700]  __warn+0xf6/0x3d0
[   83.014526][ T6700]  ? _copy_from_iter+0x390/0x13e0
[   83.016018][ T6700]  report_bug+0x3c0/0x580
[   83.017225][ T6700]  handle_bug+0x54/0xa0
[   83.018366][ T6700]  exc_invalid_op+0x17/0x50
[   83.019622][ T6700]  asm_exc_invalid_op+0x1a/0x20
[   83.020951][ T6700] RIP: 0010:_copy_from_iter+0x390/0x13e0
[   83.022550][ T6700] Code: 66 fd 0f 01 cb 4c 89 f9 4c 89 f7 48 89 de f3 a4 0f 1f 00 48 89 cb 0f 01 ca 4d 89 fc 49 29 cc e9 28 ff ff ff e8 a1 4d 05 fd 90 <0f> 0b 90 e9 b9 fd ff ff e8 93 4d 05 fd 89 de bf 01 00 00 00 e8 67
[   83.027817][ T6700] RSP: 0018:ffffc9000358efc8 EFLAGS: 00010293
[   83.029445][ T6700] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff848767d8
[   83.031633][ T6700] RDX: ffff8880215b8000 RSI: ffffffff84876aaf RDI: 0000000000000001
[   83.033819][ T6700] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[   83.036014][ T6700] R10: 0000000000000000 R11: 0000000000000000 R12: ffff88802a7787e0
[   83.038180][ T6700] R13: ffff8880601ff050 R14: ffff88802a7787e0 R15: 0000000000000001
[   83.040427][ T6700]  ? _copy_from_iter+0xb8/0x13e0
[   83.041820][ T6700]  ? _copy_from_iter+0x38f/0x13e0
[   83.043199][ T6700]  ? _copy_from_iter+0x38f/0x13e0
[   83.044620][ T6700]  ? trace_lock_acquire+0x14a/0x1d0
[   83.046054][ T6700]  ? __pfx__copy_from_iter+0x10/0x10
[   83.047515][ T6700]  ? __virt_addr_valid+0x1a4/0x590
[   83.048932][ T6700]  ? __virt_addr_valid+0x5e/0x590
[   83.050331][ T6700]  ? __phys_addr_symbol+0x30/0x80
[   83.051715][ T6700]  ? __check_object_size+0x488/0x710
[   83.053193][ T6700]  p9pdu_vwritef+0x2cb/0x21d0
[   83.054519][ T6700]  ? p9pdu_writef+0xc4/0x100
[   83.055857][ T6700]  ? __pfx_p9pdu_vwritef+0x10/0x10
[   83.057274][ T6700]  ? __pfx_p9_tag_alloc+0x10/0x10
[   83.058649][ T6700]  ? hlock_class+0x4e/0x130
[   83.059873][ T6700]  ? mark_lock+0xb5/0xc60
[   83.061166][ T6700]  p9_client_prepare_req+0x244/0x4d0
[   83.062642][ T6700]  ? __pfx_p9_client_prepare_req+0x10/0x10
[   83.064225][ T6700]  ? register_lock_class+0xb1/0x1240
[   83.065770][ T6700]  ? mark_lock+0xb5/0xc60
[   83.067102][ T6700]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[   83.068668][ T6700]  p9_client_rpc+0x1c3/0xc10
[   83.069923][ T6700]  ? __pfx_p9_client_rpc+0x10/0x10
[   83.071321][ T6700]  ? hlock_class+0x4e/0x130
[   83.072631][ T6700]  ? __lock_acquire+0x163e/0x3ce0
[   83.074026][ T6700]  ? hlock_class+0x4e/0x130
[   83.075289][ T6700]  ? __pfx___lock_acquire+0x10/0x10
[   83.077127][ T6700]  ? __pfx_p9_virtio_zc_request+0x10/0x10
[   83.078939][ T6700]  p9_client_write+0x31f/0x680
[   83.080263][ T6700]  ? __pfx_p9_client_write+0x10/0x10
[   83.081719][ T6700]  v9fs_issue_write+0xe2/0x180
[   83.083101][ T6700]  ? __pfx_v9fs_issue_write+0x10/0x10
[   83.084553][ T6700]  ? __local_bh_enable_ip+0xa4/0x120
[   83.086023][ T6700]  ? rcu_is_watching+0x12/0xc0
[   83.087322][ T6700]  ? trace_netfs_sreq+0x193/0x220
[   83.088745][ T6700]  netfs_do_issue_write+0x92/0x110
[   83.090170][ T6700]  netfs_write_folio+0x82f/0x1930
[   83.091539][ T6700]  ? __pfx___might_resched+0x10/0x10
[   83.093024][ T6700]  netfs_end_writethrough+0x53/0x170
[   83.094467][ T6700]  netfs_perform_write+0x1b1c/0x21a0
[   83.096107][ T6700]  ? __pfx_netfs_perform_write+0x10/0x10
[   83.098147][ T6700]  ? find_held_lock+0x2d/0x110
[   83.099594][ T6700]  ? __pfx_generic_write_checks+0x10/0x10
[   83.101120][ T6700]  netfs_file_write_iter+0x432/0x4f0
[   83.102771][ T6700]  v9fs_file_write_iter+0x9b/0x100
[   83.104323][ T6700]  aio_write+0x3b2/0x8c0
[   83.105761][ T6700]  ? __pfx_aio_write+0x10/0x10
[   83.107337][ T6700]  ? find_held_lock+0x2d/0x110
[   83.108645][ T6700]  ? lock_acquire+0x2f/0xb0
[   83.109882][ T6700]  ? __might_fault+0xe3/0x190
[   83.111143][ T6700]  ? io_submit_one+0x1248/0x1da0
[   83.112553][ T6700]  io_submit_one+0x1248/0x1da0
[   83.113825][ T6700]  ? __pfx_io_submit_one+0x10/0x10
[   83.115212][ T6700]  ? __might_fault+0x13b/0x190
[   83.116800][ T6700]  ? lock_acquire+0x2f/0xb0
[   83.117988][ T6700]  ? __might_fault+0xe3/0x190
[   83.119236][ T6700]  ? __ia32_compat_sys_io_submit+0x1af/0x390
[   83.120939][ T6700]  __ia32_compat_sys_io_submit+0x1af/0x390
[   83.122573][ T6700]  ? __pfx___ia32_compat_sys_io_submit+0x10/0x10
[   83.124325][ T6700]  __do_fast_syscall_32+0x73/0x120
[   83.125864][ T6700]  do_fast_syscall_32+0x32/0x80
[   83.127631][ T6700]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[   83.129607][ T6700] RIP: 0023:0xf7fa6579
[   83.130787][ T6700] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[   83.136164][ T6700] RSP: 002b:00000000f572656c EFLAGS: 00000296 ORIG_RAX: 00000000000000f8
[   83.138424][ T6700] RAX: ffffffffffffffda RBX: 00000000f7438000 RCX: 0000000000000001
[   83.140587][ T6700] RDX: 0000000020000040 RSI: 0000000000000000 RDI: 0000000000000000
[   83.142732][ T6700] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   83.144917][ T6700] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[   83.147101][ T6700] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   83.149298][ T6700]  </TASK>
[   83.150796][ T6700] Kernel Offset: disabled
[   83.152077][ T6700] Rebooting in 86400 seconds..

VM DIAGNOSIS:
02:15:44  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000032 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8503ecc5 RDI=ffffffff9a640260 RBP=ffffffff9a640220 RSP=ffffc9000358e928
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000032 R14=ffffffff8503ec60 R15=0000000000000000
RIP=ffffffff8503ecef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b400000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f71e18e0 CR3=000000004fdd2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000004 00c800a400000000
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000100000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=dffffc0000000000 RBX=ffffea0001004c80 RCX=ffffffff81c5a701 RDX=1ffffd4000200990
RSI=0000000000000008 RDI=ffffea0001004c80 RBP=ffffea0001004c80 RSP=ffffc900032ff350
R8 =0000000000000000 R9 =fffff94000200990 R10=ffffea0001004c87 R11=0000000000000000
R12=ffff8880404f0048 R13=04fff80000020828 R14=0000000000000004 R15=04fff00000020901
RIP=ffffffff81c5a71e RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00007ffe3559fc08 CR3=000000004fdd2000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000001cc00000000 0000000500000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000001000 RCX=ffffffff84877e24 RDX=1ffff920006afeb1
RSI=0000000000000002 RDI=0000000000000000 RBP=0000000000000002 RSP=ffffc9000357f150
R8 =0000000000000007 R9 =0000000000000000 R10=0000000000001000 R11=0000000000000000
R12=ffffc9000357f588 R13=ffff88802525c880 R14=ffffc9000357f5a0 R15=0000000000001000
RIP=ffffffff818cba38 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0063 ffff88802b600000 ffffffff 00d0f300 DPL=3 DS   [-WA]
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000000000000 CR3=0000000050286000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000002
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000003000000000 0000000100000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=0000000000000046 RBX=ffffffff8150398d RCX=0000000000000001 RDX=0000000000000000
RSI=ffffffff8b4cc9a0 RDI=ffffffff8bb12da0 RBP=ffffffff8ad7f866 RSP=ffffc90000dffae8
R8 =0000000000000000 R9 =ffffed100c48c818 R10=ffff8880624640c3 R11=0000000000000000
R12=ffffffff8ad7fc10 R13=ffff8880624640c0 R14=0000000000000000 R15=ffff88802261bd80
RIP=ffffffff8b138d43 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f73e5008 CR3=000000000db7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 09e6f951bb2a6911 e0744a1fadc4e5f2
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f5f8a3936da202d8 1c6bed2aa250213d
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 492baf561a080ffa da12eaca51379546
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0605947b642f6080 354212bf5be8a2e8
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000ffffffff 00000000000000b4
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000034
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4fd9a57fcf27f257 4aa56094d1d11abc
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 909ec3f02fb8b493 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 4d18973fb92fa0d9 e84ba2ab000915b8
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 fa29e32000000000 61d3dc798daed29f
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 20c9c28d425fd12d d524f0d5d7ae44d8
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1b05991581b3aced be89601e99dac0a7
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000