last executing test programs:

59.213233769s ago: executing program 3 (id=1042):
socket$nl_route(0x10, 0x3, 0x0)
syz_open_procfs(0x0, &(0x7f0000000200)='map_files\x00')
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86ddf9fffffffffffffffc010000000000000000000000000001fe8000000000000000000000000000aa"], 0x0)
connect$l2tp6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x0, @remote, 0xa}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x20, 0x3, &(0x7f0000000340)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66b80e010f00d0b0060f21a20f01c40f009b2700000066b80c008ee00f3235008000000f30b80e0000000f23d80f21f835800000a00f23f8c9b9490300000f60b932c00a00b9730200000f32328fe858b660002fb90d090000b800680000ba000000000f30", 0x65}], 0x1, 0x0, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000140))
ioctl$KVM_RUN(r2, 0xae80, 0x0)

58.890287288s ago: executing program 3 (id=1045):
pipe(0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
getpid()
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
readv(0xffffffffffffffff, &(0x7f0000001500)=[{&(0x7f0000000000)=""/107, 0x6b}], 0x1)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
read$char_usb(r2, &(0x7f0000001840)=""/4090, 0xffa)
add_key(0x0, 0x0, &(0x7f0000000080), 0x0, 0xfffffffffffffffb)
read$char_usb(r2, &(0x7f0000000240)=""/34, 0x43)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x88, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0xd000, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200004c0], 0x0, 0x0, 0x0}, 0x280)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x4ffe2, 0x0)

58.183391268s ago: executing program 1 (id=1047):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
rseq(&(0x7f0000000380)={0x0, 0x0, 0x0, 0x4}, 0x20, 0x1, 0x0)
nanosleep(&(0x7f0000000300), 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = socket(0x40000000002, 0x3, 0x2)
setsockopt$EBT_SO_SET_ENTRIES(r1, 0x0, 0x80, &(0x7f0000001080)=@nat={'nat\x00', 0x19, 0x1, 0x1b8, [], 0x6c, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="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"/412]}, 0x1ec)
mknod$loop(&(0x7f0000000240)='./file0\x00', 0x0, 0x1)
r2 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
socket$rds(0x15, 0x5, 0x0)
connect$llc(r2, &(0x7f00000001c0)={0x1a, 0x0, 0xe, 0x0, 0x0, 0x0, @dev}, 0x10)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @thr={&(0x7f00000007c0)="033a9712d643563dd4317bc952a8198a7f844e54deada9b73e25cf5eff51960c2bfcfa620c3279618211bf5116b6b2ce20dfe37533fac32446aec5705d01e7e67a1362c6e17c148c061941c75dcc8a144c1cfe30a54c590cf46b9f5dfa60574c2cf933eda3fb10777aa1af35694691e7b33396b081efddfd4f4198135f3b218c0548fa123f1b3465149aebc791290fc01fae0b7a57274a14748d72e353bfe142a36c25b50106e3c1a50a8d900bfb4569bac7e18e3316b76e7113a95656697222dbf6a8ef13b5b3a6f530e7c706839510757e", &(0x7f0000002100)="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"}}, &(0x7f0000bbdffc))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0x2, 0x0, 0x3, 0x9}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
r6 = memfd_create(&(0x7f0000000180)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xc0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G\xd1c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xcd\xfb\xcc\x82n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3', 0x0)
r7 = socket$inet6_udp(0xa, 0x2, 0x0)
r8 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000003f000000000000000000f195"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f0000000240)={r8, 0xf, 0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
ioctl$sock_SIOCETHTOOL(r7, 0x8946, &(0x7f00000002c0)={'bond_slave_0\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2}})
close_range(r6, 0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x9, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1})
io_uring_enter(r3, 0x20003d16, 0x80000, 0x0, 0x0, 0x0)
io_setup(0x2, &(0x7f0000000000)=<r9=>0x0)
io_pgetevents(r9, 0x8, 0x8, &(0x7f0000000ac0)=[{}, {}, {}, {}, {}, {}, {}, {}], 0x0, 0x0)

57.340646973s ago: executing program 2 (id=1050):
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000000)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="020500090e00000000000000fcdbdf250500068578990185efaad9d10000000e000a004e22000000eafe8000000000000000000000000000aa020000000000d7000200010000000000000000000000000005000500000000000a004e2400070000008000f7ad0110e67cde76a5fa396bf619b1b9d9744e02d0adc632b331c901cf3d11e56f95da9a5f2f4c3ccd540bb3393f932c4c4fa09525707c984b5455a0eceeaecbf1f5a614cd2c83f4cccc27638d0291cf2f84b29635e37365e265f22762a39a456f264875e0aa25657f2e78ae8dcdd8c164656e407cdb1cb6dd67"], 0x70}, 0x1, 0x400000000000000}, 0x0)
setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x3c, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x801}], {0x14}}, 0x5c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0)
r3 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000080)={<r4=>0x0, @multicast1, @private}, &(0x7f0000000300)=0xc)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000340)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @loopback, @empty, 0x6, 0xae4, 0x8001, 0x0, 0x8, 0x3140040, r4})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r3)
sendmsg$NL80211_CMD_GET_MPP(r3, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x38, r5, 0x400, 0x70bd25, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0xc844)
mmap$IORING_OFF_SQES(&(0x7f00004cd000/0x3000)=nil, 0x3000, 0x2000005, 0x80010, r3, 0x10000000)

57.044936555s ago: executing program 2 (id=1053):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r0)
sendmsg$NFC_CMD_ACTIVATE_TARGET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000800)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=<r2=>r1, @ANYBLOB="010023050000340200001c00000008000100", @ANYRES32, @ANYBLOB="0800040000000000080003"], 0x2c}}, 0x0)
r3 = socket(0x840000000002, 0x3, 0xff)
setsockopt$SO_BINDTODEVICE(r3, 0x1, 0x19, &(0x7f00000006c0)='macvtap0\x00', 0x10)
sendmsg$rds(r3, &(0x7f0000000a40)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, &(0x7f0000000480)=[{&(0x7f0000000040)=""/44, 0x2c}], 0x1, 0x0, 0x0, 0x4000040}, 0x4000)
r4 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r5 = dup(r4)
write$6lowpan_enable(r5, &(0x7f0000000000)='0', 0xfffffd2c)
r6 = syz_io_uring_setup(0x239, &(0x7f0000000580)={0x0, 0x1ffffe, 0x7f, 0x3, 0x7, 0x0, r5}, &(0x7f0000000380), &(0x7f00000000c0))
io_uring_enter(r6, 0x2ded, 0x4000, 0x0, 0x0, 0x0)
splice(r6, &(0x7f0000000000)=0x6, 0xffffffffffffffff, &(0x7f0000000040)=0x8, 0x7832, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYRES16=r2], &(0x7f0000000100)='GPL\x00', 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x1a, 0x3, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000020000000000000009500000009000000"], &(0x7f0000000340)='syzkaller\x00', 0x1, 0xc5, &(0x7f0000000180)=""/197, 0x0, 0x0, '\x00', 0x0, 0x19, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x2674, 0x3, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r7 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="1800000000000000000000000001000095000000000000003540578bb289efb88b20c9"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000800)={r7, 0xe0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000080)={r7, 0xfffffffffffffffb, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0x10)
setgroups(0x9143b8907f6c1a5e, 0x0)
r8 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$KDGKBSENT(r8, 0x5608, 0x0)

56.763942118s ago: executing program 3 (id=1056):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000000040000002085000000000071126765000000009500000000000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x8, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

56.762737895s ago: executing program 3 (id=1057):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff})
lstat(&(0x7f0000000000)='./file0\x00', &(0x7f0000000140))
r1 = socket$inet_udp(0x2, 0x2, 0x0)
close(r1)
splice(r0, 0x0, r0, 0x0, 0x4ffe6, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000000c0)={{0x4, 0x2, 0xc, 0x5}, 'syz0\x00', 0x4f})
syz_emit_ethernet(0xfdef, &(0x7f0000000040)=ANY=[@ANYBLOB="0180c2000000a25fb1ddb88c0100c041916dda0f7356639db464dbbbbbbbbbbbbb86dd6001044800203aff200100"/58, @ANYRES32=0x0, @ANYRES64=0x0], 0x0)

56.762645475s ago: executing program 0 (id=1058):
r0 = socket(0x10, 0x80002, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'hsr0\x00', <r2=>0x0})
setsockopt$packet_add_memb(r1, 0x107, 0x1, &(0x7f00000000c0)={r2, 0x3, 0x6, @dev}, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@dellink={0x20, 0x11, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, r2}}, 0x20}}, 0xc3ffffff)

56.673923872s ago: executing program 0 (id=1059):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, 0x0, 0x24000006)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5c00000010003904090000001e00740000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000003c0012800b000100697036746e6c00002c000280140003002001000000000000000000000000000114000200fc"], 0x5c}}, 0x0)

56.672885112s ago: executing program 3 (id=1060):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00'})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000680)=ANY=[@ANYBLOB="30e90000", @ANYRES16=r2, @ANYBLOB="0300435e6f6d6d13c8c24ca60ef4b800dbc3f5d0fb7014bf379fc78c355867fcee0b58dae571de354d2206f642aeb97d29e227a9fc28d834adb89cac8c176620daa122b68a8bcd5e6fe7880f4df9e01bc22e4ac9c501ecc4a32e2760d1db14db01b1eae3531ec80cecbdcbcfc1605698b57ade82f47212dc97b9fe942508", @ANYRES8=r0, @ANYBLOB="08006b00140000000a001800030300000000000007f862c2ee01a5a79ed1c0df2375cb93693de5b76c21ae68a27e4e794575f8d9c3910d669db009290bd8d107378553de99ebb833e554b0f573fd62a32a27fe038ee908e4cc0b876815fabcfb756763dfb7ef603658b09e32dadc9655439846240afe26fcd69dc62764c2907f9395643bf94ab003185e94f05991d69536b165912b"], 0x30}}, 0x494)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x0, 0x0, 0xffffffff}, 0x1c)
listen(r0, 0x5)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x6, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002004000b7080000000000007b8af8ff00000800b7080000000200007b8af0ff00000000bfa100000000000007010000f8"], &(0x7f0000000000)='GPL\x00', 0x8, 0xb9, &(0x7f0000000140)=""/185, 0x41000, 0xb, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000340)=[{0x5, 0x1, 0xa, 0xa}, {0x2, 0x2, 0xf, 0x7}, {0x5, 0x2, 0x17, 0x2}, {0x5, 0x5, 0x5}], 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000001b40)={0xffffffffffffffff, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f00000003c0)=ANY=[@ANYBLOB="180200000000000400000000000000008500000030000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000009b00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$LINK_GET_NEXT_ID(0x1f, 0x0, 0x0)
bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f0000001800), 0x4)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x1, 0xe, &(0x7f0000000dc0)=ANY=[@ANYBLOB="b7000000a5517f5fbfa30000000000000703000028feffff720af0fff8ffffff71a4f0ff00000000b7060000000000012e400300"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000c40)="c10e020022003505d25a806f8c6394f90435fc60040011000a740100053582c137153e37024801", 0x27}], 0x1}, 0x0)
r5 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x92c0199, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003e000b05d25a806c8c6f94f90224fc60100005000a000200053582c137153e37000c0980fc0b10000300", 0x33fe0}], 0x1}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0xffffffffffffff2b, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
syz_io_uring_setup(0x1000010d, &(0x7f0000000140)={0x0, 0xef4d, 0x0, 0x4}, &(0x7f00000000c0)=<r6=>0x0, &(0x7f0000000280)=<r7=>0x0)
syz_io_uring_submit(r6, r7, &(0x7f00000002c0)=@IORING_OP_SHUTDOWN={0x22, 0x9})

56.672670393s ago: executing program 2 (id=1061):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)=ANY=[@ANYBLOB="cc00000019000100000000000000000000000000000000000000000000000000fc1a000000000000000000000000000100000000000000000200000000200000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="01000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f8ffffffffffffff0100000000000000000000000000000000000000000000000900000000000000010000000c00150000000000ffff00000c001c00", @ANYRES32=0x0, @ANYBLOB="03"], 0xcc}}, 0x808c)

56.672377639s ago: executing program 0 (id=1062):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{}, &(0x7f00000000c0), &(0x7f0000000100)}, 0x1c)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{0xffffffffffffffff, <r1=>0xffffffffffffffff}, &(0x7f0000000300), &(0x7f0000000400)}, 0x1c)
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000500)={0x3, 0x4, 0x4, 0xa, 0x0, 0xffffffffffffffff, 0x157, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x5, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{0xffffffffffffffff, <r3=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x1c)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000080)='net/icmp\x00')
read$FUSE(r4, &(0x7f0000000d80)={0x2020}, 0x2020)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0x25, &(0x7f00000006c0)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @initr0={0x18, 0x0, 0x0, 0x0, 0x5b6fa86, 0x0, 0x0, 0x0, 0x9}, @exit, @map_val={0x18, 0x7, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x33a3}, @tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x86}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x2}}, @map_fd={0x18, 0x6, 0x1, 0x0, r2}, @initr0={0x18, 0x0, 0x0, 0x0, 0x88, 0x0, 0x0, 0x0, 0x2}, @ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}}], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000080000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ff"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000004c0)='ext4_ext_remove_space\x00', r5, 0x0, 0x6}, 0x16)
socket$nl_route(0x10, 0x3, 0x0)
r6 = socket(0x10, 0x2, 0x0)
getsockopt$sock_cred(r6, 0x1, 0x1c, 0x0, &(0x7f0000cab000))
socket$nl_route(0x10, 0x3, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, 0x0)
r7 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r7}, 0x4)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x11, &(0x7f0000000200)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x27}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfff}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r7}}]}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r8, 0x0, 0xe, 0x0, &(0x7f0000000680)="b34715ecd14550b3abc89b6f7bec", 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_emit_vhci(&(0x7f0000000480)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @hci_rp_read_def_err_data_reporting}}, 0x8)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r9 = creat(&(0x7f00000001c0)='./bus\x00', 0x35)
fcntl$lock(r9, 0x26, &(0x7f0000000580)={0x1, 0x0, 0xfffffffe, 0x40080})
r10 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
fcntl$lock(r10, 0x5, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2})
ioctl$VIDIOC_SUBSCRIBE_EVENT(0xffffffffffffffff, 0x4020565a, 0x0)
socket(0x10, 0x803, 0x0)

56.604683861s ago: executing program 2 (id=1063):
unshare(0x62040200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000000)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="020500090e00000000000000fcdbdf250500068578990185efaad9d10000000e000a004e22000000eafe8000000000000000000000000000aa020000000000d7000200010000000000000000000000000005000500000000000a004e2400070000008000f7ad0110e67cde76a5fa396bf619b1b9d9744e02d0adc632b331c901cf3d11e56f95da9a5f2f4c3ccd540bb3393f932c4c4fa09525707c984b5455a0eceeaecbf1f5a614cd2c83f4cccc27638d0291cf2f84b29635e37365e265f22762a39a456f264875e0aa25657f2e78ae8dcdd8c164656e407cdb1cb6dd67"], 0x70}, 0x1, 0x400000000000000}, 0x0)
setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x3c, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x14, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x801}], {0x14}}, 0x70}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[], 0x7c}}, 0x0)
r3 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000080)={<r4=>0x0, @multicast1, @private}, &(0x7f0000000300)=0xc)
ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000340)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @loopback, @empty, 0x6, 0xae4, 0x8001, 0x0, 0x8, 0x3140040, r4})
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000400), r3)
sendmsg$NL80211_CMD_GET_MPP(r3, &(0x7f00000004c0)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x38, r5, 0x400, 0x70bd25, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @broadcast}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0xc844)
mmap$IORING_OFF_SQES(&(0x7f00004cd000/0x3000)=nil, 0x3000, 0x2000005, 0x80010, r3, 0x10000000)

56.554629209s ago: executing program 0 (id=1064):
r0 = socket$inet6(0xa, 0x80803, 0x83)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, 0x0, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x100000000000000, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x1, @sliced={0x7, [0x3, 0x6, 0x4, 0x7, 0x7, 0x6, 0x800, 0x0, 0x7, 0x5, 0x1, 0x2, 0x0, 0x7, 0x2, 0x67f3, 0x2, 0x5, 0x2139, 0x6, 0x1768, 0x1, 0x1, 0x3, 0x4, 0x7, 0x7, 0x6, 0x800, 0x3, 0x2, 0x0, 0x1, 0x2, 0x8, 0x3, 0x101, 0x6, 0xf6, 0xff, 0x4, 0x7, 0x2, 0x4, 0x0, 0x7, 0x3, 0xa], 0x802000}})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="b700000081000000bfa30000000000000703000009feffff720a00fef8ffffff71a400fe0000000071101000000000001d300200000000004704000001ed030407000000c00000001d440000000000006b0a00fe0000000072030000000a0000e500f9ff000000009500000000000000023bc065b58111c6dfa041b63af4a3912435f1a864a710aad58db6a693002e7f3be361917adef6ee1c8a2a4f8ef1e50becb19bc461e91a7168c50000000190f32050e436fe275daf51efd601b6bf01c8e8b1b526375ec4dd6fcd82e4fe51bef7af9aa0d7d600c095199fe3ff3128e599b0eaebbdbd732c9cc00eec363e4a8f6456e2cc21557c0afc646cb7798b3e6440c2fbdb00a3e35208b0bb0d2cd829e654400e2438ec649dc74a28610643a98d9ec21ead2ed51b104d4d91af25b845d8a7925c3109b151b8b9f75dd08d123deda88c658d42ecbf28bf7076c15b463bebc72f526d8e8afcb913466aaa7f6df70252e79166d858fcd0e06dd31af9612f2460d0b11008e59a5923906f88b53987ad1714e72ba7a54f0c33d39000d06a59ff616276fd9aa58f2477184b6a89adaf17b0a6041bdef728d236619074d6ebdfd1f5089048ddff6da40f9411fe722631cb467600ade70063e5291569b33d21dae356e1c51f03a801be8189679a16da18ec0ae564162a27afea62d84f3a10746443d6438e959532e0617d419c6bc6ea9f2bca4464f56e24e6d2105bd901204a1deeed4155617572652d950ad31928b0b0c3dc2869f478341d02d0f5ad94b081fcd507acb4b9c65fee9d5a17f48a7382f13d000000225d85ae49cee383dc5049076b989b40000000000000da60d2ae20cfb91d6a49964757cdf538f9ce2bdb1ab062cd54e67011d355d84ce97bb0c6b4a595e487efbb2d71cde2c140952f9a0f0bc6980fe78683ac5c0c31032599ddd71063be9261b2e1aab1675b34a26048ef8c126aeef5f510a8f1aded94a129e4aec6f8d9ab06faffc3a15d96c2ea3e2e04cfe031b2875353193f82ade69d0540059fe6c7fe7cd8697502c7596566d674e425da5e87e59602a9f6590521d31d3804b3e0a1053abdc31282dfb15eb6841bb64a1b304502dda787343ce3c953992e4a982f3c48153baae244e7bf37548c7f1a4cad2422ee965a38f7defbd2160242b104e20dc2d9b0c35608d402ccdd9069bd50b994fda7a9de44028d6112a0c2d21b2dc98816106dec28eaeb883418f562ae00003ea96d10f172c0374d6eed826416050000000bfe9b4a9c5a90ff59d54d1f92ecc4e95dd2d18383117c039862198899b212c55318294270a1ad10c80fef7c24d47afce829ba0f85da6d888f18ea40ab959f6074ab2a40d85d15017ab513cdc6c0e57fb1c1ca571380d7b4ead35a385e0b4a26b702396df7e0c1e02b6e4114f244a9bf93f04bf072f0861f7580e69db384ac7eeedcf2ba1a9508f9d6aba582a896a9f1ffa968eacea75caf822a7a63ba34015ea5aacb1188883ad2a3b1832371fe5bc621426d1ed0a4a99702cc1b6912a1e717d29135753208165b9cdbae2ed9dc7358f0ebadde0b727f27feeb744ddcc536cbae315c7d1fe1399562ba6824840bd2951680f6f2f9a6a8346962a350845ffa0d829e4f79adc287906943408e6df3c391e97ba48db0a5adbfd03aac93df8866fb010aec0e92bed1fe39af169d2a466f0db6f3d9436a7d55fc30511d00e10000c95265b2bd83d64a532869d701723fedcbada1ee7baa5b6a686b50f0937f778af083e055f6138a757ebd0ed91124a6b244f9acf41ac5d73a008364e0606a594817031fc2f52c8785fe0721719b3d654026c6ea08b83b5703dad844ceb201ddeb6dc5f6a903792283c42efc54fa84323afc4c10eff462c8843187f1dd48ef3fa293774d582956ff0f40b10ca94f6feeb2893c17888e1cdba94a6ea80c33ead5722c3293a493f1479531dd88261458f40d31fe8df15efaaeea831555877f9538d6ee6ba65893ff1f908ba7554ba583fef3ec7932f5954f31a878e2fae6691d1aee1da02ba516467df3e7d1daac43738012e4fee18a22da19fcdb4c2890cda1f96b952511e3a69d694d625e0b2f808890205f3a6da2819d2f9e77c7c64affa54fec0136cbafa5f6f096753b639a924599c1f69219927ea5301fff0a6063d427f0688430754c02180d61542c2571f983e9673560000000000000000005a7b57f03ca91a01ba2e30ca99e8ebc15ecb4d91675767999d146aef7799738b292fd640dfef6b04d086f737a159d7e0c6e4d81ad64a8bbca48568325b2969e2b15f36b788bce5ccdbaf75c94cb93499f6947a967a7bce14c6de4e7c0660d80010f5c653d22d490cba8c2a4ab595bf4238f18ca428dafc7ac96d404607a0000000051a2104f22e6db5a62b5089c1b45282d38864daa3ae81d6b0968d1d2867b91b7d120617d12d91db2633d6864da40b54783a17aaeb6737c323f9f98e354cc98dcfe23ad01bd1c61563e69ffe1c2c73e16e1461173f359e93d2c5e424c17998809ec8f0232b3955e052a4cecd89008f70314a0bdec86f9b1eb93d491ec86a4555d89fe0120f64c62e8e3ed8bcb45202c3d4bbec8d722824c0ebca8db1ea4a003d2fbdc1f9be78537756ab5bbe4fe9af5d785d0128171c90d9900ce2532b0f9d01c4b45294fbba468df3e1b583cb4e62e754598e47df6bd06431c94bc5d047899fd219f448bf9189c65c9d91eda6b52a373803a9efe44f86909bc90addb7b9aee813df534aac4b3093c91b8068cd84990453f806694d461b76a58d88cf0f520310a1e80dc18cde9ad662eee077515d0a8811922929e085392ab3d1311b8243266d87047f601fa88a0da36b9f302e8262395174328f2482d14008de83070744f143fdec90ba5a82668d5fac114c13955ad6dca5db2231d8ba14c54c47ed04a4b4ace17e357e1d6432399f87a7a14245bbd796a090f3b247b95d37ff40a404bdad74bd20000000000000000000099fef7cd7af3ce64a92f95d89d125b1e641240d7e5e27a3d1f7684448c3e3822d617e205061298b939a191be4b48e169bde2cae3accc5bd40a2968b59c93d35f8e42366fdef9a2abae1cf01ce68abff28861aac8302d268569dd42e194e330c7aaa54ebbcefd23f21ce8153b9926e12e925cb56119df72c7533a48d028ad0c74e2a9478fa3be18a1a2b65079cc1c00000000000000f59dd19e8d525206c0a728cfd42193abe8130bc01a2d69841f3d7799ac04bdc590bb1c89b9c695f163e57343c9bfb59909433c9001c5f8b23e38534a538fc933cac6c2a92d038df638a0f226df9fb857bd414c2cd69985e8053e3dfa41614d7c74d04d8c2471041d17c730fad28395f8d4688898cd58b9d600c851626529bb58aa364b55e73f053450665e7b94ed1012fd7a8139166fd5e59c84f4ab279b1b99c028db4cb9680c8035f967db18de738844da7e260a830c1ffa49f5af3c15423a0e315acb82a3e89218cb314e68fda4d94aa1d815babc13b9fd336d205c5913ef67cf0216e2d81e6127bd9d7fab28800eaab2355992f8ce4cd38add4b272c0bee4076ca4847ffa691cf78fb7ec212bad3bef29f577ea7159b7f3025b3d977ff7c91024cf71126233cb8791c3c"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bind$inet(r4, &(0x7f0000000480)={0x2, 0x4e23, @multicast1}, 0x10)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_buf(r5, 0x0, 0x8008000000010, &(0x7f0000005e40), 0x0)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000000000)={0x2, 0x24e23, @loopback}, 0x10)
sendmsg$inet(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{0x0}], 0x1}, 0x0)
r6 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})
r7 = dup(0xffffffffffffffff)
ioctl$TIOCL_SETSEL(r7, 0x541c, &(0x7f0000001200)={0x2, {0xc, 0xa03, 0x100}})
bind$netlink(r7, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbff, 0x17000020}, 0xc)
close(r6)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000000280)={'veth1_macvtap\x00', @multicast})
fsmount(0xffffffffffffffff, 0x0, 0x80)

56.024750818s ago: executing program 1 (id=1065):
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x8, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x4e}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value=0x20}, 0x90)

56.024478052s ago: executing program 1 (id=1066):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x10, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000002000000b7080000000000007b8af800007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085000000a5000000950000000000"], &(0x7f0000000000)='GPL\x00', 0x8, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x8, 0x4}, 0x8, 0x10, &(0x7f0000000240)={0x3, 0x4, 0x3, 0x6}, 0x10, 0x0, 0x0, 0x0, &(0x7f00000016c0)=[0x1], 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = syz_clone(0x800c000, &(0x7f0000001480), 0x0, 0x0, 0x0, &(0x7f00000015c0)="89ef1284c86555bfe69b541fc18b8f329814f57bd00b1b3a660bb38d58430a051059c1c370b570890937d18b73fe9e420f4cbc3542c63678bbce740629919e060e2db370b881e3a3c2")
kcmp(r0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a30fffffff508000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000580)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0904000000000000000002000000400004803c0001800e000100696d6d656469617465000000280002801c000280180002800900020073797a320000000008000180fffffffc08000140000000000900010073797a30000000000900020073797a3200000000140000"], 0x94}}, 0x0)
r6 = socket$unix(0x1, 0x5, 0x0)
r7 = dup2(r6, r4)
r8 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0)
setsockopt$inet6_tcp_int(r8, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
connect$inet6(r8, &(0x7f00000001c0)={0xa, 0x0, 0x0, @loopback}, 0x58)
close_range(r7, 0xffffffffffffffff, 0x0)
symlink(&(0x7f0000002480)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000002240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
creat(0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)

55.903373128s ago: executing program 2 (id=1067):
setrlimit(0x3, &(0x7f0000008240)={0x1, 0x4})
r0 = syz_create_resource$binfmt(&(0x7f0000000e40)='./file0\x00')
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002a000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f0000001040)={0x9b, {"a2e3ad09ed0d09f91a5e070987f70e06d038e7ff7fc6e5539b0d3e0e8b089b3f363063030890e0879b0af8c6e70a9b334a959b669a240d0a0af3988f7ef319520100ffe8d178708c526db51b1b5b31070d0773090acd3b78130daa61d8e8040001000000b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f6709000000a141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7af1d0e54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c01008e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e1a63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0d8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0xfffffffffffffebd}}, 0x1006)
ioctl$sock_inet6_tcp_SIOCINQ(r4, 0x541b, &(0x7f0000000000))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='workqueue_activate_work\x00', r1}, 0x18)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x16, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = openat$binfmt(0xffffff9c, r0, 0x41, 0x1ff)
write$binfmt_script(r5, &(0x7f0000000000)={'#! ', './file0'}, 0xb)
execve(&(0x7f0000000080)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
kcmp(0x0, 0x0, 0x2, 0xffffffffffffffff, 0xffffffffffffffff)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r7, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
sendmmsg$unix(r8, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r7, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0xfffffffffffffc33, &(0x7f0000000280)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
execve(&(0x7f0000001040)='./file0\x00', 0x0, &(0x7f0000000040)={[0x0], 0xb00})

55.454127304s ago: executing program 3 (id=1068):
pipe(0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
close(r0)
socket$nl_xfrm(0x10, 0x3, 0x6)
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x0, 0x0)
getpid()
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
readv(r1, &(0x7f0000001480)=[{&(0x7f0000000000)=""/107, 0x6b}, {&(0x7f0000000380)=""/70, 0x46}, {&(0x7f0000000400)=""/119, 0x77}, {&(0x7f0000000480)=""/4096, 0x1000}], 0x4)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/diskstats\x00', 0x0, 0x0)
read$char_usb(r2, &(0x7f0000001840)=""/4090, 0xffa)
add_key(0x0, 0x0, &(0x7f0000000080), 0x0, 0xfffffffffffffffb)
read$char_usb(r2, &(0x7f0000000240)=""/34, 0x43)
socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0xa, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r3, 0x0, 0x80, &(0x7f0000000300)=@broute={'broute\x00', 0x20, 0xd000, 0x230, [0x0, 0x0, 0x0, 0x0, 0x0, 0x200004c0], 0x0, 0x0, 0x0}, 0x280)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, r0, 0x0, 0x4ffe2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000100), 0x2, 0x4}}, 0x20)

55.16406102s ago: executing program 0 (id=1069):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001000000000000000000ff01000000000000001b000000000001e000040100000400000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000020000000000010510000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e30000000000200000000000003f"], 0xb8}, 0x1, 0xfffff000}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f000014f000)={0x0, 0x0, &(0x7f00000bfff0)={&(0x7f0000000a40)=ANY=[@ANYBLOB="b8000000140001000000000000000000ff01000000000000000000000000000100"/63, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00?'], 0xb8}, 0x1, 0xfffff000}, 0x0)

55.084811483s ago: executing program 1 (id=1070):
r0 = syz_open_dev$video(&(0x7f0000000040), 0x4, 0x0)
ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0185649, &(0x7f0000000140)={0x0, 0x202, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000100)={0x990a7e, 0x0, '\x00', @p_u16=&(0x7f0000000000)=0x1}})

55.084498255s ago: executing program 1 (id=1071):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800e4ffffff0400000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

55.084166344s ago: executing program 0 (id=1072):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_init_net_socket$llc(0x1a, 0x1, 0x0)
connect$llc(r1, &(0x7f00000001c0)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @dev}, 0x10)
capset(&(0x7f0000000100)={0x20071026}, &(0x7f0000002140))
r2 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xd)
r6 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETSF(r6, 0x5404, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "64f30ea84907e175d5966472c23d26ce8d6f3c"})
r7 = syz_open_dev$ttys(0xc, 0x2, 0x1)
r8 = syz_open_dev$ptys(0xc, 0x3, 0x1)
readv(r7, &(0x7f0000000180)=[{&(0x7f0000000280)=""/177, 0xb1}], 0x1)
ioctl$TIOCPKT(r7, 0x5420, &(0x7f00000000c0)=0x8000)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000dd0903000000000000000000010000000900010073797a300000000030000000090a01040000000000000000010000002d32936e8488e13e6793020073797a32000000000800054000000002440000000e0a010200000000000000000100000009986f0073797a32000000001800038014000080100001800c00028008000180000000000900010073797a3000000000140000001000010000000000000000000000000a57cf1d0d5d6f8aa0578fa35578d833560a128e9f71e313d5fb70b14127a9f214a75cafed657ec0108cb9ae499e00ec052ccd02ecd9fb312801f790d6"], 0xbc}}, 0x0)
ioctl$TIOCSTI(r8, 0x5412, &(0x7f0000000040)=0x13)
syz_open_dev$ptys(0xc, 0x3, 0x1)
clock_gettime(0x0, &(0x7f0000000080))

55.032762836s ago: executing program 1 (id=1073):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f0000000080), 0x7, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000002340)={0x0, 0x0, &(0x7f0000002300)={&(0x7f00000021c0)=ANY=[@ANYBLOB="08010000", @ANYRES16=0x0, @ANYBLOB], 0x108}, 0x1, 0x0, 0x0, 0x4008000}, 0x4801)
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, &(0x7f00000000c0)={0x7, 0x0, 0x0, 0x0, 0x0, "4102000000ff000000000006bbff0f00"})
syz_open_pts(0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001500), 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f00000005c0)=ANY=[@ANYBLOB="18809900000000000800000000000000009500"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049e9)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"85f080a4933d55266e07e799aa0cc421388242df2a3c6b631b65b1c061edd2aa108c3528fe9b0bb3a53ab1200f5d01a68a4acdec8fee09648222f908c1fedc3000342e6139de28366c13509306d00ebcc67497181ac916db98af9d366b76e427d9ab5bb68095f0fb246df32b8af0783653136f8a04c03690312125c7ded6a24fda8685340c575ead69519e3583f89d467ec232d6a1ffd0463ba4ea3cbae5dae6654b5547b5458f02ac307729e57b09e134f68be44f88d72517b230b066f6315b5fb80206397bbff8cbc2a36e01c2e7b3aadb32bd3dd5288a69a991d9c674717e3abba7167280b2db3b1b8502afa4f3f296c532510c9d2dd79bb5eeb25adb5edddbdd069c09d14d15c2e7e1e2bd6c108fab3590bb22e97d6992236d2273c8bb95536f7118d007965008b125c7daac2814e6bbe1adbfa3572ad0b7ad5c26c8014118d8374ca9f285779dfee7715a403908146a74de61b3853914c89f444c12e7a38bdd46c4ed36eb806ea598f44d1dec9eff9e2476f43802211f0762b66673b45d236b2391ce322e30fb9c69fe0d514dc1f8b6e3979c1205fd5224b07d18a44fec4f6f1a6f65158bb6adcc295bf2dd7dea107f59d7e03c61fe5822292e45968956b931bdc4d6445ff1631e0b98e4b4448774dd4b9cd53a45896fdb3f03702778741ae2b45a25bf9a23fc02fb97a630f132bf9def6c6d080000000000000014f6f2377bcfc78e2e86368c138510a04cedf7175af8c2034fae7413e3ace8c71ab9a0af1ca7042011a6ed028e205648535dabf3b2f85196ae18d36b839e3cd54ae4933ad529888fdac7bb8a70c72bc0fc81ba06506f2d5bc7686e219bbe5283959cbef9950e071cb6d9f341fc624a5110341f26cebd7100599a06e61f66fae120c7fc2b34c6221200eba75bdd277114671a3fa8f058b27fd897b052f4a52afcea814df526181c75c4497210a2b8b74e26601561e78735387cf123654b0295d1d60556956b36d96dd038866c4b4db31ebdcddd4829bbc2850cd4901389e6ea6e86041e0efa1158f334e7afda0e11c2fb0e6df6364cb95659f506d5c7e63fb67c8116577d15e4a4b1fc4c27de2e52586cb1f52be9c3601f5066549de8bdc3ec07d1a84caf1961323ec2487a37b751aeabaf18647ce2dae5d9499c0f969467e6cabad198669ac96bd1488954eff0854ee0c83d7b596d273625bdb16270782321071fda5d980ded78ffa9dc2b56037d7cbf942547f48a5131f1991f6c17ae1ed5120ca6878f98e68e7997a9a2b70be640a70a34adb80de286c6692abb5f092e4e3a15283217e03d02a4054f34af3a65ef6b36f395b76a0579cffafd5d3bb0e704c935caecf3a7ab756c23fd60c9fe3f4fb2be7504f5bae22b116ff1588dcf02b327d31bf0488dba8af5b33ccf2d7d87f43bbc48fcd4f191ad6af9313ad38b8b29674bfabd6651bc1f6ce5abb4a2f1413194f96b26d7d6edc4e013fba549075c97eef508af5ca7873664b058b7bcf455a8a04b591d29fab6366c844bb75576bac2d52323e747303d00a5736c9812922b0e17bcec9135550736b54cf6407d61e22e62d7bb75f62935b665acf33e75f688c36ef416f1b890d0f0c8ad1df00e02ec45967834d5649c8e7143978622fa3704672970b7993a87e97d3d926a14265647bc8b8c9e6f83e29572608d24b42c2635ef4abbd0af83860e99c90d7471cf6e8ce99507f5ec2bc572212fa9ee3f5a9dfa3815fe55f0bbb119acce062ae37f2ff921707abba139bccdf42bfd174d29b540161b4113c4e1a13f3a62bc093e23ec0d0671b46b41dc8b42d950c8615ba5ee87f49b5d0910ffa4871207995001920db05a95199967f097ba7b55bbd271d818690c4238406b40a3dfc42fa56a67173b53a96b543326c56738b6d043195934018696f5ab49347e5148a78f2d1369a71afab8330273d46ecfba4ee05802a5385649851db949dbfb39e290941641c50b1ac20fb3102754a760b097f464ddb0b83f8168badfa71db6621dcf22fb081e3403f3bac5c7e65905aca52885c807f8ddab18bb2f12ef952c50483c0e251968bc70ff0d42a638ca744dea4c7ebb4fea777cf663bb4f1505ed79730c45bc86e488a13f924377a8e2ee6670a02ca52874ae1c42a35d55b9765757047b2cc3742aa51fa3e43fb2c113c92ad213bad252c1a82966dd016f12a7f1c3900c0f1ab455035163f31899bdd30f3ff43ad17d9e45bb7438c1c986712736f24be14f71ab1bfe92a25ec07f086ee8c7971b8077a13e58a8e8bea39c8e06b251909f02cb0080abf020f27ca160eb26c082dda1fa54ea4094dfdbcb2fa7bddccb67a844e8075f4cc08dad35757006d051e183dced336bc0c2502f93ffc87dca622286ba174c24e1f53f27dc2777baafe170348b0e8d3e743b3aa906bc0764bbe7da08ff403efe2212627d672250658bb513b7312517d1f88c61c7ba5f9647cd619281c5b391b48606ee39fb4171103df2e09d7cfd56c06c721f7c24ad8cce383623fc2dcb15ac56438ea331820ae59c8c474e36fc73f7b1b3b86df1b42490815501681aafbf7e871b4b9686efae6c45ecfca60a640a6f071dfd31f9437c3d03086164b48c1ed802986864bfe0d49bdd7709662262368dbc3ecc05eb240ecc41904c76d78ab5c52b66af5a720fdd6a92f52be0676427a56e32e5bc5085b25f90add38a76f2fce6f8f0ef74f4659698549646bd63175adf77b5cdcfe676e1b1a9af15102946554ba6136cbc83c6268ee40318f3c9d4718025688b35d2265bf60bf889581c750c34586ef46eab7a9176337536bb6001e676546b987f36b1fe4b9f6e46a8ce73eb22ebbb9c14d8e2b43ea77ef887e5a26448f4086fa819a25e27725ac10298851c8bc45f2ce4430b07917ade5ea8c434c3f2576effbeb521173736e5c9557450643068b0c0fb132a7e99de6ca292246a9937fa7d7e06e59cf59ce5b9f842629049931146af40a8a1256ba373a88d09dc00cdf4453cc6ba78572bf3e1f2352a978cdbad60220cb8ac37d7f614a306492a4b5eee9244b0ca84b6cf2e23013bfb1cb92bf6d126fe550e58c19f84e7a4081437b75b31b2b9fb658dcd8ba077962e0f3359721a148d4fefe5c97941ca9688cb85adf38fd10f5811cdd8e074a21bbfc9541c71465b08d7321281b68ed52bfab789b9c83849c09d52376d419b1e7ba367603236e119cdf4a7b7cf9d81f2229601deace53cea2f14a05f7fa0ca04b39e31c6453e332f4bd0915c0e09e28f4d1125c390c6ff0833a04b6fc37855e65de90333e505b9eb66e00686a3ed499cfb7b8b215dbdc9787b5baa724cfa71ee6745b41e203de8b7004757ac328ec5567540b951b50530c3d4ee34705ea1c66fd6591e88561083e86d48c45ef3b83a3029319d8f3d8e65ce14c1dc3cb92d0a7dbeb609a8d2793928caa079f0fbbb2bc90b9f058cc048f4032041d14c5bca00e99b3027ec3a50c4957199cf016a4594069af8659df0973f20ffb15dbc265ac5b8a2203e90b114a3e9441e357c60ce0b550a7fe66fc34f5702ac8e8992a22e89194c1df69e81a9b7ad3d2634ea8c0388588192fd47d8e803b10044d558617fb2921b69eb4d85c051f86ef63a2f4382b9becd870fb2ecadca6902712b88680792e2f2ec89591cfebb6db3ad31c2a339af10465fcf7988519d382218df52261234f26a6f66ad0d1859de505d0fe819caf2f8d30aa9fd1228ac91d11c39d6fdcf5926d6ad5c441514321507dff6c6ea3cff6f340a1c11e0c40f419e8e60fc94d8828fa47a96cdf7ee4f61e23f40751b25cf9ca1295041a350f83f0e679515d6b4b46e2c9ce8999e07f835abc1663cefcf728df37831f4e17f8c8a4feaf1fbf44c38c9313284404a50ba4cd8abe835b33bfecb02cd6c9d7f435853b4c8d505ab83cf46512739116694765658bae64b3127152d216055aef9b25c70a8a3b302752d7b1e8791c657b9f3fc9001ef299fd1a349491ae6ee9940149160507fc4130fb825d47d97dc2c243209d2403583ac3ef6ddbedcaa76432255487c0a06e59e043e572ab3aec002af6a6b6a2dc9cfaeefa70557886c4d12924a038813f2bc8e89e4cfa69705d1ef3c4658f8616278b588011d9dd914beec0b151d65b6524fba3e3f235d58373e021699b07622a51504eade747e0b2f9cf38bc167cabc8cb18c708d1337e25648707e8c0872876514c7a49c0b2aaee5ed9e9ecfcbcc23e032c4deb63e48e7120188056468fad31448e4b42e7d62fbcfc1c2cfb01fcf0db5e8a162bdb9bd820c763f17b96c23f32db9d1c1d74ddbe657b4f9595a9796982a0742153111b15e484d8ffebe47ce0a78a41e470a341616ec2eb6eef813fb415fab50fa965bec6a5977a0ade4fed67f86fc24e11b0e2f5364079f7c7c35b560cac726dbc80f29dbd248f7ecda0286a23ef172a28c96d9bdb1f598eab31c6baf0321312da23920c074b9d2d2e442717f2c21001142a39c2da6b8bd9d06b05a6a8deae1bd1be4108a636ddbebc682d113e715f2f3ee506abc28b1c654b3d2d28e02f73b171ed0deed71dda90ce4a0b728cc75cb576385e7418b545b992b1dd98e2ee53355f464f9250a2a03b3d1e4d2ac1aa71d01de2573530324e14d15a507883411ddbd37be21dc929db9b11f11010e4d2a04c7325a5ae6d24d19900ff97a8a89438f8676457a78cff05201528f4358fe67f61288bf042a8f3c2e0f8b4997b8fb74996b80d465489b2d7807a945eba72a945e8cf8625dbad6f6f6e30537b29e558ca8a8b0625f578c766d34f2d28d704715f94df1f6318a308042aa494baa500a0000000000006a8308af8ce6441d5ad8a2f3d477eb5307af0dfae6644493f1434030b8361621340ad3dcefa6d8f090ed3929d89ad9c0ba01a6903033428dd8f98619304b1803187d2a6130bf1e009b5eb0e7e21c75594b3b8470f3106c92a9e55bfeb026091ced127a90a1f1247f3c07e36d3572923e0de3f73518d0369a25fcd4e65d243b7eab91063a7bfd8bc8ac9e39fbbb32b5c9517886287a18eacd8dbfda9b91db693cb12e42cba5988280e09e51e72b91a0f360656d8f21cc1eb3248ac345ad51d1a6172b18419277851dab01e028c7e8e2cf34095efd28267852a08fccf61c45b5e46930160daf50282be058274e7ff58c48b60b86d0c8cc886ab8778a2a2b5fa2557ad7bf7f01f2175523ce758871d334c20a9839f7a89fe2867c06289c8a2f6456ac7e4fbadee53ac41aee68214bc76669853baa4f58255b39ba581414f2e8c4b49303f8936a33bae5cbc96b29a5c724d5b50e1614144c2acd03bd90de891c3d36ce040d57543682ecbfcae66c4153c337c3a5d01896524c8e0c27e9a08919821ca27bbfe3fc9ba24a823aeec8d4ad8ef8a65c585bee4dcf1acaa3da501a8c11a23b2e22920c1ad0129a038b31fe16c2abc80589dbf7c37211afc5d1a6db908bc5fe8a692060069fcbcdcba7c523d3c424aa3b0c6556387e0e51bcde9e5f850abf62d2c2101c3a2786a0cb94932877a09cb6b64aa61da8cab3b423e7adc4c4700418a65e87225710e1691f6d9cb2eb63cce5b605ce0a4a89cf519767e00845397c5e381141a0ed8a89b01064b495ec8d1e2da37433bf1597d919a69610d2ad26bdf6fca8de422bb2cb80d0516206e8194ee51445a3dcb5dee33c0c310b4751e68e58bebda2fb586985a5a5b06456756f44e6dbfef4bb99ca732f00fb9ea35775f7419681bfbe6f43dc7c4650c13b63d93c1d490bf0173f287a4309531f13ecb1a775d0bd881a00", 0xfffffffffffffe43}}, 0x1006)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0500000002000000020000000400000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x00'], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB="0000000000004ca3668a00249373b502353d2400", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000180)={0xffffffffffffffff, 0xfffffffffffffdf7, 0x0}, 0x10)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
kexec_load(0x0, 0x1, &(0x7f00000012c0)=[{0x0}], 0x160000)
kexec_load(0x0, 0x0, 0x0, 0x140000)
ioctl$SIOCGIFMTU(r0, 0x8921, &(0x7f0000000000)={'veth1\x00'})

0s ago: executing program 2 (id=1074):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000011000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x2c, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
syz_emit_ethernet(0x86, &(0x7f0000000500)={@local, @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x0, 0x2, 0x0, 0x11, 0x0, @dev={0xac, 0x14, 0x14, 0x1f}, @empty}, {0x0, 0x0, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "9d42a08597d3b2f44ac89b1b52cc6728d6697d4cebc8f2f062c6f91f224aaacc", "99bd3410936eefeb3ea898dafab974aa", {"96deedc95f5d10a12027128db2e9bdf6", "f838a300b01b0e19ecdf00b20600"}}}}}}}, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@random="e90c630faca2", @multicast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0xe000, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x0, 0x18, 0x0, @opaque="6c143c63ed3c111c57b8327a5d244c00"}}}}}, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
sendfile64(r2, 0xffffffffffffffff, 0x0, 0x0)

kernel console output (not intermixed with test programs):

7632] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  134.451580][ T7632] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  134.454235][ T7632] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  134.458051][ T7632] batman_adv: batadv0: Interface activated: batadv_slave_1
[  134.462784][ T7632] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  134.464981][ T7632] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  134.467323][ T7632] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  134.469509][ T7632] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  134.504239][   T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  134.507144][   T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  134.519435][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  134.522046][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  134.536995][ T5346] Bluetooth: hci5: command tx timeout
[  134.537863][ T4788] Bluetooth: hci6: command tx timeout
[  134.537939][   T64] Bluetooth: hci4: command tx timeout
[  134.542337][ T7635] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  134.547122][ T7635] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  134.566548][ T7710] No control pipe specified
[  134.580879][ T7631] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.599874][   T82] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.605603][ T7635] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  134.609840][ T7635] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  134.625991][ T4788] Bluetooth: hci2: command tx timeout
[  134.649968][ T7631] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.684751][   T82] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.695274][ T7635] 8021q: adding VLAN 0 to HW filter on device bond0
[  134.701817][ T7635] 8021q: adding VLAN 0 to HW filter on device team0
[  134.705579][   T97] bridge0: port 1(bridge_slave_0) entered blocking state
[  134.707523][   T97] bridge0: port 1(bridge_slave_0) entered forwarding state
[  134.714558][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  134.716487][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  134.758617][ T7631] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.794495][ T7635] 8021q: adding VLAN 0 to HW filter on device batadv0
[  134.817757][ T7635] veth0_vlan: entered promiscuous mode
[  134.825893][ T7635] veth1_vlan: entered promiscuous mode
[  134.844851][   T82] bridge_slave_1: left allmulticast mode
[  134.847526][   T82] bridge_slave_1: left promiscuous mode
[  134.849219][   T82] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.852253][   T82] bridge_slave_0: left allmulticast mode
[  134.853727][   T82] bridge_slave_0: left promiscuous mode
[  134.855224][   T82] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.863182][   T82] bridge_slave_1: left allmulticast mode
[  134.864709][   T82] bridge_slave_1: left promiscuous mode
[  134.866541][   T82] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.870808][   T82] bridge_slave_0: left allmulticast mode
[  134.872235][   T82] bridge_slave_0: left promiscuous mode
[  134.873695][   T82] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.020177][   T82] gretap0 (unregistering): left promiscuous mode
[  135.410978][   T82] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  135.415232][   T82] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.419758][   T82] bond0 (unregistering): Released all slaves
[  135.499921][   T82] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  135.504756][   T82] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  135.510212][   T82] bond0 (unregistering): Released all slaves
[  135.526117][ T7631] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.550194][ T7635] veth0_macvtap: entered promiscuous mode
[  135.553139][ T7635] veth1_macvtap: entered promiscuous mode
[  135.562742][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  135.566369][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.568956][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  135.572252][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.575418][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  135.578807][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.581876][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  135.585202][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.594661][ T7635] batman_adv: batadv0: Interface activated: batadv_slave_0
[  135.608926][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  135.611691][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.614103][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  135.619020][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.621631][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  135.624985][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.628391][ T7635] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  135.631589][ T7635] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  135.640926][ T7635] batman_adv: batadv0: Interface activated: batadv_slave_1
[  135.652672][ T7635] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  135.655046][ T7635] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  135.662866][ T7635] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  135.665176][ T7635] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  135.751158][ T7631] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  135.755047][ T7631] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  135.769254][ T7631] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  135.781480][ T7631] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  135.788613][   T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  135.790636][   T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.814498][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  135.821927][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  135.845336][ T7631] 8021q: adding VLAN 0 to HW filter on device bond0
[  135.857168][ T7631] 8021q: adding VLAN 0 to HW filter on device team0
[  135.861035][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.863374][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  135.883806][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.886107][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.071272][ T7631] 8021q: adding VLAN 0 to HW filter on device batadv0
[  136.179135][ T7631] veth0_vlan: entered promiscuous mode
[  136.213211][ T7631] veth1_vlan: entered promiscuous mode
[  136.228525][ T7636] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  136.237358][ T7631] veth0_macvtap: entered promiscuous mode
[  136.239313][ T7636] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  136.245006][ T7631] veth1_macvtap: entered promiscuous mode
[  136.250261][ T7636] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  136.257645][ T7636] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  136.297098][ T7631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.304687][ T7631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.308271][ T7631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.311191][ T7631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.313813][ T7631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.317714][ T7631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.320539][ T7631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.323346][ T7631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.326210][ T7631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  136.329095][ T7631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.333252][ T7631] batman_adv: batadv0: Interface activated: batadv_slave_0
[  136.345574][ T7631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.348568][ T7631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.351088][ T7631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.353681][ T7631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.356984][ T7631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.359678][ T7631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.362180][ T7631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.364943][ T7631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.367591][ T7631] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  136.370338][ T7631] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  136.374158][ T7631] batman_adv: batadv0: Interface activated: batadv_slave_1
[  136.414373][ T7631] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  136.416922][ T7631] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  136.419127][ T7631] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  136.421407][ T7631] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  136.473246][   T68] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  136.475287][   T68] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  136.475307][   T82] batadv_slave_1: left promiscuous mode
[  136.482900][   T82] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  136.485197][   T82] batman_adv: batadv0: Removing interface: batadv_slave_0
[  136.488922][   T82] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  136.490842][   T82] batman_adv: batadv0: Removing interface: batadv_slave_1
[  136.496880][   T82] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  136.498893][   T82] batman_adv: batadv0: Removing interface: batadv_slave_0
[  136.501654][   T82] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  136.503666][   T82] batman_adv: batadv0: Removing interface: batadv_slave_1
[  136.553429][   T82] veth1_macvtap: left promiscuous mode
[  136.554957][   T82] veth0_macvtap: left promiscuous mode
[  136.559756][   T82] veth1_macvtap: left promiscuous mode
[  136.561418][   T82] veth0_macvtap: left promiscuous mode
[  136.562999][   T82] veth1_vlan: left promiscuous mode
[  136.564415][   T82] veth0_vlan: left promiscuous mode
[  136.616014][ T4788] Bluetooth: hci6: command tx timeout
[  136.617457][ T4788] Bluetooth: hci5: command tx timeout
[  136.617697][ T5346] Bluetooth: hci4: command tx timeout
[  136.706473][ T5346] Bluetooth: hci2: command tx timeout
[  137.359927][   T82] team0 (unregistering): Port device team_slave_1 removed
[  137.435670][   T82] team0 (unregistering): Port device team_slave_0 removed
[  137.595526][ T7766] input: syz0 as /devices/virtual/input/input18
[  138.567532][   T82] team0 (unregistering): Port device team_slave_1 removed
[  138.696291][   T64] Bluetooth: hci5: command tx timeout
[  138.698230][   T64] Bluetooth: hci6: command tx timeout
[  138.699814][ T5346] Bluetooth: hci4: command tx timeout
[  138.709521][   T82] team0 (unregistering): Port device team_slave_0 removed
[  138.776035][ T5346] Bluetooth: hci2: command tx timeout
[  139.370810][ T7636] 8021q: adding VLAN 0 to HW filter on device bond0
[  139.387026][ T7636] 8021q: adding VLAN 0 to HW filter on device team0
[  139.406245][   T97] bridge0: port 1(bridge_slave_0) entered blocking state
[  139.408216][   T97] bridge0: port 1(bridge_slave_0) entered forwarding state
[  139.425600][  T210] bridge0: port 2(bridge_slave_1) entered blocking state
[  139.428242][  T210] bridge0: port 2(bridge_slave_1) entered forwarding state
[  139.448806][   T97] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.450846][   T97] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.592189][ T7636] 8021q: adding VLAN 0 to HW filter on device batadv0
[  139.627450][ T7636] veth0_vlan: entered promiscuous mode
[  139.632745][ T7636] veth1_vlan: entered promiscuous mode
[  139.648316][ T7636] veth0_macvtap: entered promiscuous mode
[  139.652154][ T7636] veth1_macvtap: entered promiscuous mode
[  139.660692][ T7636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.664227][ T7636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.668793][ T7636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.672313][ T7636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.675475][ T7636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.679451][ T7636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.682048][ T7636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.684651][ T7636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.689053][ T7636] batman_adv: batadv0: Interface activated: batadv_slave_0
[  139.693725][ T7636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.701116][ T7636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.703791][ T7636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.707021][ T7636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.709508][ T7636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.712077][ T7636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.714700][ T7636] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.717802][ T7636] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.721066][ T7636] batman_adv: batadv0: Interface activated: batadv_slave_1
[  139.725784][ T7636] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  139.728800][ T7636] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  139.731061][ T7636] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  139.733270][ T7636] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  139.797137][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.799268][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.809949][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.812004][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.870291][ T7799] netlink: 4 bytes leftover after parsing attributes in process `syz.3.683'.
[  140.183025][   T82] IPVS: stop unused estimator thread 0...
[  140.189669][   T82] IPVS: stop unused estimator thread 0...
[  141.322852][ T7836] input: syz0 as /devices/virtual/input/input19
[  141.816129][ T7839] netlink: 24 bytes leftover after parsing attributes in process `syz.1.706'.
[  141.896186][ T5346] Bluetooth: hci5: command tx timeout
[  142.394721][ T7846] syzkaller0: entered promiscuous mode
[  142.396749][ T7846] syzkaller0: entered allmulticast mode
[  142.401266][ T7846] syzkaller0: tun_chr_ioctl cmd 1074025677
[  142.403286][ T7846] syzkaller0: Linktype set failed because interface is up
[  142.973806][ T7853] xt_hashlimit: Unknown mode mask 80FFFFFF, kernel too old?
[  143.813542][ T7865] openvswitch: netlink: Message has 4 unknown bytes.
[  143.815412][ T7865] openvswitch: netlink: Actions may not be safe on all matching packets
[  143.874495][   T39] kauditd_printk_skb: 38 callbacks suppressed
[  143.874507][   T39] audit: type=1326 audit(1729445715.263:1680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7864 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  143.882497][   T39] audit: type=1326 audit(1729445715.263:1681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7864 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=290 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  143.888627][   T39] audit: type=1326 audit(1729445715.263:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7864 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  143.894163][   T39] audit: type=1326 audit(1729445715.263:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7864 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  143.905894][   T39] audit: type=1326 audit(1729445715.283:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7864 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  143.911352][   T39] audit: type=1326 audit(1729445715.283:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7864 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  143.914585][ T7873] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  143.920787][ T7854] veth0_vlan: left promiscuous mode
[  143.922681][   T39] audit: type=1326 audit(1729445715.283:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7864 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  143.924047][ T7873] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  143.928761][   T39] audit: type=1326 audit(1729445715.283:1687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7864 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  143.936708][   T39] audit: type=1326 audit(1729445715.283:1688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7864 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=346 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  143.943937][   T39] audit: type=1326 audit(1729445715.283:1689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7864 comm="syz.1.716" exe="/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7fa5579 code=0x7ffc0000
[  144.603735][ T7908] FAULT_INJECTION: forcing a failure.
[  144.603735][ T7908] name failslab, interval 1, probability 0, space 0, times 0
[  144.608426][ T7908] CPU: 2 UID: 0 PID: 7908 Comm: syz.2.727 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  144.612268][ T7908] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  144.616228][ T7908] Call Trace:
[  144.617485][ T7908]  <TASK>
[  144.618617][ T7908]  dump_stack_lvl+0x16c/0x1f0
[  144.620397][ T7908]  should_fail_ex+0x497/0x5b0
[  144.622204][ T7908]  ? fs_reclaim_acquire+0xae/0x150
[  144.624081][ T7908]  should_failslab+0xc2/0x120
[  144.625804][ T7908]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  144.627789][ T7908]  ? __kernfs_new_node+0xd3/0x890
[  144.629653][ T7908]  __kernfs_new_node+0xd3/0x890
[  144.631482][ T7908]  ? __pfx___kernfs_new_node+0x10/0x10
[  144.633514][ T7908]  ? __pfx___lock_acquire+0x10/0x10
[  144.635455][ T7908]  kernfs_new_node+0x186/0x240
[  144.637242][ T7908]  __kernfs_create_file+0x53/0x350
[  144.639165][ T7908]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  144.641113][ T7908]  sysfs_create_file_ns+0x13e/0x1d0
[  144.643070][ T7908]  ? __pfx_sysfs_create_file_ns+0x10/0x10
[  144.645160][ T7908]  ? down_read+0xc9/0x330
[  144.646777][ T7908]  ? __pfx___up_read+0x10/0x10
[  144.648555][ T7908]  ? kobject_put+0xab/0x5a0
[  144.650247][ T7908]  device_create_file+0xf2/0x1e0
[  144.652092][ T7908]  device_add+0x2c0/0x1a70
[  144.653742][ T7908]  ? __pfx_dev_set_name+0x10/0x10
[  144.655604][ T7908]  ? __pfx_device_add+0x10/0x10
[  144.657417][ T7908]  ? __init_waitqueue_head+0xca/0x150
[  144.659382][ T7908]  wakeup_source_device_create+0x214/0x2a0
[  144.661546][ T7908]  wakeup_source_sysfs_add+0x1c/0x90
[  144.663533][ T7908]  wakeup_source_register+0xaa/0x140
[  144.665491][ T7908]  ep_create_wakeup_source+0x13a/0x2e0
[  144.667516][ T7908]  ? __pfx_ep_create_wakeup_source+0x10/0x10
[  144.669714][ T7908]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  144.671691][ T7908]  ? lock_acquire+0x2f/0xb0
[  144.673377][ T7908]  ? do_epoll_ctl+0x2319/0x3580
[  144.675182][ T7908]  do_epoll_ctl+0x1dae/0x3580
[  144.676897][ T7908]  ? __pfx_do_epoll_ctl+0x10/0x10
[  144.678779][ T7908]  ? lock_acquire+0x2f/0xb0
[  144.680477][ T7908]  ? __might_fault+0xe3/0x190
[  144.682271][ T7908]  ? __ia32_sys_epoll_ctl+0x15c/0x1e0
[  144.684261][ T7908]  __ia32_sys_epoll_ctl+0x15c/0x1e0
[  144.686189][ T7908]  ? __pfx___ia32_sys_epoll_ctl+0x10/0x10
[  144.688303][ T7908]  __do_fast_syscall_32+0x73/0x120
[  144.690213][ T7908]  do_fast_syscall_32+0x32/0x80
[  144.691968][ T7908]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  144.694296][ T7908] RIP: 0023:0xf7f26579
[  144.695789][ T7908] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  144.702881][ T7908] RSP: 002b:00000000f566456c EFLAGS: 00000296 ORIG_RAX: 00000000000000ff
[  144.706141][ T7908] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000000001
[  144.709065][ T7908] RDX: 0000000000000007 RSI: 0000000020000040 RDI: 0000000000000000
[  144.712020][ T7908] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  144.715061][ T7908] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  144.718155][ T7908] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  144.721070][ T7908]  </TASK>
[  145.118498][ T7915] veth0_vlan: left promiscuous mode
[  145.278261][ T7920] netlink: 'syz.3.732': attribute type 3 has an invalid length.
[  145.486791][ T5346] Bluetooth: hci5: unexpected event 0x34 length: 10 > 6
[  145.487398][ T7927] netlink: 1264 bytes leftover after parsing attributes in process `syz.2.734'.
[  145.810625][ T7941] syz.1.741[7941] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  145.931234][ T7944] input: syz0 as /devices/virtual/input/input21
[  146.417750][ T7953] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  146.420463][ T7953] IPv6: NLM_F_CREATE should be set when creating new route
[  146.425153][ T7953] netlink: 'syz.2.745': attribute type 27 has an invalid length.
[  146.532804][ T7953] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.535256][ T7953] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.734351][ T7953] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  146.751537][ T7953] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  146.881771][ T7953] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  146.884231][ T7953] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  146.889280][ T7953] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  146.891915][ T7953] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  147.908517][ T7978] netlink: 8 bytes leftover after parsing attributes in process `syz.1.754'.
[  151.494030][ T7990] netlink: 4 bytes leftover after parsing attributes in process `syz.3.759'.
[  151.496903][ T7990] netlink: 104 bytes leftover after parsing attributes in process `syz.3.759'.
[  151.499192][ T7990] netlink: 104 bytes leftover after parsing attributes in process `syz.3.759'.
[  151.596820][ T8004] FAULT_INJECTION: forcing a failure.
[  151.596820][ T8004] name failslab, interval 1, probability 0, space 0, times 0
[  151.600325][ T8004] CPU: 0 UID: 0 PID: 8004 Comm: syz.1.763 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  151.603051][ T8004] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  151.605791][ T8004] Call Trace:
[  151.606716][ T8004]  <TASK>
[  151.607475][ T8004]  dump_stack_lvl+0x16c/0x1f0
[  151.608699][ T8004]  should_fail_ex+0x497/0x5b0
[  151.609848][ T8004]  ? fs_reclaim_acquire+0xae/0x150
[  151.611148][ T8004]  should_failslab+0xc2/0x120
[  151.612355][ T8004]  __kmalloc_cache_noprof+0x6b/0x310
[  151.613734][ T8004]  ? ____ip_mc_inc_group+0x273/0xcf0
[  151.615134][ T8004]  ____ip_mc_inc_group+0x273/0xcf0
[  151.616423][ T8004]  ? __pfx_____ip_mc_inc_group+0x10/0x10
[  151.617863][ T8004]  __ip_mc_join_group+0x44c/0x600
[  151.619191][ T8004]  do_ip_setsockopt+0x268d/0x38c0
[  151.620503][ T8004]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  151.621931][ T8004]  ip_setsockopt+0x59/0xf0
[  151.623118][ T8004]  raw_setsockopt+0xb8/0x290
[  151.624328][ T8004]  ? __pfx_raw_setsockopt+0x10/0x10
[  151.625676][ T8004]  ? do_sock_setsockopt+0xce/0x480
[  151.627031][ T8004]  ? sock_common_setsockopt+0x2e/0xf0
[  151.628421][ T8004]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  151.629975][ T8004]  do_sock_setsockopt+0x222/0x480
[  151.631282][ T8004]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  151.632705][ T8004]  ? fdget+0x176/0x210
[  151.633775][ T8004]  __sys_setsockopt+0x1a4/0x270
[  151.635055][ T8004]  ? __pfx___sys_setsockopt+0x10/0x10
[  151.636438][ T8004]  ? fput+0x30/0x390
[  151.637460][ T8004]  ? ksys_write+0x1ad/0x260
[  151.638657][ T8004]  ? __pfx_ksys_write+0x10/0x10
[  151.639929][ T8004]  __ia32_sys_setsockopt+0xbc/0x160
[  151.641237][ T8004]  ? lockdep_hardirqs_on+0x7c/0x110
[  151.642622][ T8004]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  151.644320][ T8004]  __do_fast_syscall_32+0x73/0x120
[  151.645609][ T8004]  do_fast_syscall_32+0x32/0x80
[  151.646904][ T8004]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  151.648538][ T8004] RIP: 0023:0xf7fa5579
[  151.649603][ T8004] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  151.654559][ T8004] RSP: 002b:00000000f570556c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  151.656720][ T8004] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000000
[  151.658777][ T8004] RDX: 0000000000000027 RSI: 0000000020000040 RDI: 000000000000000c
[  151.660827][ T8004] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  151.662902][ T8004] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  151.664948][ T8004] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  151.667017][ T8004]  </TASK>
[  151.784881][ T8015] netlink: 4 bytes leftover after parsing attributes in process `syz.2.766'.
[  151.948105][ T8023] netlink: 24 bytes leftover after parsing attributes in process `syz.0.769'.
[  154.495925][ T8045] xt_hashlimit: Unknown mode mask 88000000, kernel too old?
[  155.220991][   T39] kauditd_printk_skb: 19 callbacks suppressed
[  155.221002][   T39] audit: type=1326 audit(1729445726.613:1709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.2.783" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  155.238770][   T39] audit: type=1326 audit(1729445726.613:1710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.2.783" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  155.254070][   T39] audit: type=1326 audit(1729445726.643:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.2.783" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  155.266104][   T39] audit: type=1326 audit(1729445726.653:1712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.2.783" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  155.272473][   T39] audit: type=1326 audit(1729445726.663:1713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.2.783" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  155.280898][   T39] audit: type=1326 audit(1729445726.663:1714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.2.783" exe="/syz-executor" sig=0 arch=40000003 syscall=102 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  155.287960][   T39] audit: type=1326 audit(1729445726.663:1715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.2.783" exe="/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  155.294203][   T39] audit: type=1326 audit(1729445726.663:1716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.2.783" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  155.301814][   T39] audit: type=1326 audit(1729445726.663:1717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.2.783" exe="/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  155.310037][   T39] audit: type=1326 audit(1729445726.673:1718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8067 comm="syz.2.783" exe="/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26579 code=0x7ffc0000
[  155.969474][ T8091] netlink: 'syz.3.791': attribute type 4 has an invalid length.
[  155.979606][ T8091] netlink: 'syz.3.791': attribute type 4 has an invalid length.
[  156.960415][ T8118] FAULT_INJECTION: forcing a failure.
[  156.960415][ T8118] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[  156.964013][ T8119] binder: 8117:8119 ioctl c0306201 0 returned -14
[  156.967218][ T8118] CPU: 2 UID: 0 PID: 8118 Comm: syz.3.801 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  156.967244][ T8118] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  156.967255][ T8118] Call Trace:
[  156.967261][ T8118]  <TASK>
[  156.967269][ T8118]  dump_stack_lvl+0x16c/0x1f0
[  156.967300][ T8118]  should_fail_ex+0x497/0x5b0
[  156.967328][ T8118]  ? fs_reclaim_acquire+0xae/0x150
[  156.967351][ T8118]  should_fail_alloc_page+0xe7/0x130
[  156.967379][ T8118]  prepare_alloc_pages.constprop.0+0x16f/0x560
[  156.967405][ T8118]  __alloc_pages_noprof+0x190/0x25a0
[  156.967440][ T8118]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  156.967476][ T8118]  ? rcu_is_watching+0x12/0xc0
[  156.967496][ T8118]  ? trace_kmalloc+0x2d/0xe0
[  156.967520][ T8118]  ? __kmalloc_node_track_caller_noprof+0x22d/0x440
[  156.967546][ T8118]  ? __alloc_skb+0x164/0x380
[  156.967572][ T8118]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  156.967599][ T8118]  ? policy_nodemask+0xea/0x4e0
[  156.967626][ T8118]  alloc_pages_mpol_noprof+0x2c9/0x610
[  156.967656][ T8118]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  156.967684][ T8118]  ? __pfx_mark_lock+0x10/0x10
[  156.971549][ T8119] binder: BINDER_SET_CONTEXT_MGR already set
[  156.974250][ T8118]  ? hlock_class+0x4e/0x130
[  156.974281][ T8118]  alloc_skb_with_frags+0x24b/0x850
[  156.975633][ T8119] binder: 8117:8119 ioctl 4018620d 20000040 returned -16
[  156.976249][ T8118]  sock_alloc_send_pskb+0x7f1/0x980
[  156.976278][ T8118]  ? __pfx___lock_acquire+0x10/0x10
[  156.976311][ T8118]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  157.021071][ T8118]  ? hlock_class+0x4e/0x130
[  157.022753][ T8118]  ? __lock_acquire+0xbdd/0x3ce0
[  157.024562][ T8118]  tun_get_user+0xd3d/0x3d70
[  157.026226][ T8118]  ? find_held_lock+0x2d/0x110
[  157.027935][ T8118]  ? __pfx_tun_get_user+0x10/0x10
[  157.029765][ T8118]  ? find_held_lock+0x2d/0x110
[  157.031518][ T8118]  ? __pfx_lock_release+0x10/0x10
[  157.033338][ T8118]  tun_chr_write_iter+0xdc/0x210
[  157.035152][ T8118]  vfs_write+0x6b5/0x1140
[  157.036725][ T8118]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  157.038707][ T8118]  ? trace_lock_acquire+0x14a/0x1d0
[  157.040589][ T8118]  ? __pfx_vfs_write+0x10/0x10
[  157.042377][ T8118]  ? __fget_files+0x40/0x3f0
[  157.044078][ T8118]  ksys_write+0x12f/0x260
[  157.045738][ T8118]  ? __pfx_ksys_write+0x10/0x10
[  157.047531][ T8118]  __do_fast_syscall_32+0x73/0x120
[  157.049358][ T8118]  do_fast_syscall_32+0x32/0x80
[  157.051105][ T8118]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  157.053396][ T8118] RIP: 0023:0xf748e579
[  157.054887][ T8118] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  157.061703][ T8118] RSP: 002b:00000000f5776530 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  157.064719][ T8118] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000000
[  157.067527][ T8118] RDX: 000000000000fdef RSI: 00000000f747bff4 RDI: 0000000000000000
[  157.069888][ T8118] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  157.071982][ T8118] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  157.074031][ T8118] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  157.076197][ T8118]  </TASK>
[  157.193437][ T8136] netlink: 8 bytes leftover after parsing attributes in process `syz.1.808'.
[  157.199764][ T8139] Cannot find map_set index 0 as target
[  157.228737][ T8138] mmap: syz.0.806 (8138) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  157.254510][ T8147] netlink: 272 bytes leftover after parsing attributes in process `syz.2.812'.
[  157.437181][ T8160] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  157.459421][ T8160] netlink: 120 bytes leftover after parsing attributes in process `syz.1.816'.
[  157.699739][ T8169] Cannot find set identified by id 0 to match
[  158.370851][ T8187] netlink: 76 bytes leftover after parsing attributes in process `syz.3.825'.
[  158.534505][ T8191] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=536871680 (1073743360 ns) > initial count (152 ns). Using initial count to start timer.
[  159.148681][ T8197] netlink: 4 bytes leftover after parsing attributes in process `syz.2.828'.
[  159.152548][ T8197] netlink: 104 bytes leftover after parsing attributes in process `syz.2.828'.
[  159.155180][ T8197] netlink: 104 bytes leftover after parsing attributes in process `syz.2.828'.
[  159.445331][ T8211] netlink: 4 bytes leftover after parsing attributes in process `syz.2.832'.
[  159.474460][ T8215] netlink: 24 bytes leftover after parsing attributes in process `syz.0.836'.
[  159.478240][ T8217] netlink: 12 bytes leftover after parsing attributes in process `syz.2.837'.
[  159.508321][ T8219] input: syz0 as /devices/virtual/input/input22
[  159.896985][ T5346] Bluetooth: hci6: Controller not accepting commands anymore: ncmd = 0
[  159.900225][ T5346] Bluetooth: hci6: Injecting HCI hardware error event
[  159.905345][ T5346] Bluetooth: hci6: hardware error 0x00
[  159.933013][ T8241] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  160.252346][ T8261] netlink: 'syz.3.851': attribute type 1 has an invalid length.
[  160.694327][ T8279] xt_hashlimit: Unknown mode mask 88040000, kernel too old?
[  162.586029][ T5346] Bluetooth: hci6: Opcode 0x0c03 failed: -110
[  172.577009][ T4788] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  172.587258][ T4788] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  172.590003][ T4788] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  172.592139][ T4788] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  172.594584][ T4788] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  172.596478][ T4788] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  172.608757][   T64] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  172.613872][ T5355] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  172.617371][ T5355] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  172.620427][ T5351] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  172.620429][ T5355] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  172.627526][ T5350] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  172.627593][ T5351] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  172.636620][ T5351] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  172.639148][ T5350] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  172.641509][ T5350] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  172.645062][ T5351] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  172.653948][ T5351] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  172.654660][ T5350] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  172.654685][ T5354] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  172.667289][ T5346] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  172.674182][ T4788] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  172.696576][ T4788] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  172.699388][ T4788] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  172.874461][   T97] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  172.918538][ T8290] chnl_net:caif_netlink_parms(): no params data found
[  173.014220][   T97] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.061612][ T8290] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.063544][ T8290] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.065425][ T8290] bridge_slave_0: entered allmulticast mode
[  173.068862][ T8290] bridge_slave_0: entered promiscuous mode
[  173.073788][ T8290] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.076563][ T8290] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.078338][ T8290] bridge_slave_1: entered allmulticast mode
[  173.080246][ T8290] bridge_slave_1: entered promiscuous mode
[  173.119811][   T97] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.124900][ T8292] chnl_net:caif_netlink_parms(): no params data found
[  173.138669][ T8290] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  173.146119][ T8290] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  173.185804][ T8296] chnl_net:caif_netlink_parms(): no params data found
[  173.201792][   T97] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.230580][ T8290] team0: Port device team_slave_0 added
[  173.238661][ T8290] team0: Port device team_slave_1 added
[  173.255499][ T8292] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.258399][ T8292] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.260821][ T8292] bridge_slave_0: entered allmulticast mode
[  173.263336][ T8292] bridge_slave_0: entered promiscuous mode
[  173.266440][ T8292] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.268779][ T8292] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.271211][ T8292] bridge_slave_1: entered allmulticast mode
[  173.273645][ T8292] bridge_slave_1: entered promiscuous mode
[  173.325296][ T8293] chnl_net:caif_netlink_parms(): no params data found
[  173.329498][ T8290] batman_adv: batadv0: Adding interface: batadv_slave_0
[  173.331768][ T8290] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.343175][ T8290] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  173.351458][ T8290] batman_adv: batadv0: Adding interface: batadv_slave_1
[  173.354382][ T8290] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  173.364611][ T8290] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  173.374687][ T8292] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  173.381784][ T8292] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  173.460699][ T8296] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.462678][ T8296] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.464587][ T8296] bridge_slave_0: entered allmulticast mode
[  173.467380][ T8296] bridge_slave_0: entered promiscuous mode
[  173.482550][ T8292] team0: Port device team_slave_0 added
[  173.520050][ T8296] bridge0: port 2(bridge_slave_1) entered blocking state
[  173.522543][ T8296] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.525036][ T8296] bridge_slave_1: entered allmulticast mode
[  173.528255][ T8296] bridge_slave_1: entered promiscuous mode
[  173.544395][ T8292] team0: Port device team_slave_1 added
[  173.560396][   T97] bridge_slave_1: left allmulticast mode
[  173.562071][   T97] bridge_slave_1: left promiscuous mode
[  173.563609][   T97] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.568212][   T97] bridge_slave_0: left allmulticast mode
[  173.569746][   T97] bridge_slave_0: left promiscuous mode
[  173.571257][   T97] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.968416][   T97] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  173.973423][   T97] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  173.977316][   T97] bond0 (unregistering): Released all slaves
[  173.988959][ T8293] bridge0: port 1(bridge_slave_0) entered blocking state
[  173.990870][ T8293] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.992754][ T8293] bridge_slave_0: entered allmulticast mode
[  173.994787][ T8293] bridge_slave_0: entered promiscuous mode
[  174.000737][ T8290] hsr_slave_0: entered promiscuous mode
[  174.003489][ T8290] hsr_slave_1: entered promiscuous mode
[  174.005295][ T8290] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  174.007702][ T8290] Cannot create hsr debugfs directory
[  174.040723][ T8292] batman_adv: batadv0: Adding interface: batadv_slave_0
[  174.042748][ T8292] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  174.050118][ T8292] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  174.090233][ T8293] bridge0: port 2(bridge_slave_1) entered blocking state
[  174.092329][ T8293] bridge0: port 2(bridge_slave_1) entered disabled state
[  174.095001][ T8293] bridge_slave_1: entered allmulticast mode
[  174.099404][ T8293] bridge_slave_1: entered promiscuous mode
[  174.118972][ T8296] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  174.123728][ T8292] batman_adv: batadv0: Adding interface: batadv_slave_1
[  174.126216][ T8292] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  174.134431][ T8292] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  174.184997][ T8296] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  174.218142][ T8292] hsr_slave_0: entered promiscuous mode
[  174.221151][ T8292] hsr_slave_1: entered promiscuous mode
[  174.223850][ T8292] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  174.226900][ T8292] Cannot create hsr debugfs directory
[  174.230299][ T8293] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  174.274573][ T8293] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  174.279855][ T8296] team0: Port device team_slave_0 added
[  174.288725][ T8296] team0: Port device team_slave_1 added
[  174.363681][   T97] hsr_slave_0: left promiscuous mode
[  174.366622][   T97] hsr_slave_1: left promiscuous mode
[  174.368759][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  174.370714][   T97] batman_adv: batadv0: Removing interface: batadv_slave_0
[  174.372996][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  174.374954][   T97] batman_adv: batadv0: Removing interface: batadv_slave_1
[  174.400399][   T97] veth1_macvtap: left promiscuous mode
[  174.401947][   T97] veth0_macvtap: left promiscuous mode
[  174.403403][   T97] veth1_vlan: left promiscuous mode
[  174.626130][ T5355] Bluetooth: hci0: command tx timeout
[  174.699618][ T5355] Bluetooth: hci1: command tx timeout
[  174.788976][   T64] Bluetooth: hci3: command tx timeout
[  174.789147][ T5355] Bluetooth: hci7: command tx timeout
[  175.162320][   T97] team0 (unregistering): Port device team_slave_1 removed
[  175.254133][   T97] team0 (unregistering): Port device team_slave_0 removed
[  175.897908][ T8293] team0: Port device team_slave_0 added
[  175.903433][ T8293] team0: Port device team_slave_1 added
[  175.915494][ T8296] batman_adv: batadv0: Adding interface: batadv_slave_0
[  175.917769][ T8296] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.924225][ T8296] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  175.928164][ T8296] batman_adv: batadv0: Adding interface: batadv_slave_1
[  175.929958][ T8296] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.939020][ T8296] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  175.995006][ T8293] batman_adv: batadv0: Adding interface: batadv_slave_0
[  175.996762][ T8293] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.003589][ T8293] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  176.008649][ T8293] batman_adv: batadv0: Adding interface: batadv_slave_1
[  176.010993][ T8293] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.018018][ T8293] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  176.094952][ T8293] hsr_slave_0: entered promiscuous mode
[  176.096770][ T8293] hsr_slave_1: entered promiscuous mode
[  176.098345][ T8293] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  176.100017][ T8293] Cannot create hsr debugfs directory
[  176.127507][ T8290] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.150432][ T8296] hsr_slave_0: entered promiscuous mode
[  176.157478][ T8296] hsr_slave_1: entered promiscuous mode
[  176.161805][ T8296] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  176.164582][ T8296] Cannot create hsr debugfs directory
[  176.226875][ T8290] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.321792][ T8290] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.410336][ T8290] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.603270][   T97] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.695959][ T5355] Bluetooth: hci0: command tx timeout
[  176.718994][   T97] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.775995][ T5355] Bluetooth: hci1: command tx timeout
[  176.856529][ T5355] Bluetooth: hci3: command tx timeout
[  176.862225][   T97] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.865978][ T5355] Bluetooth: hci7: command tx timeout
[  177.013756][   T97] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.099585][ T8292] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  177.104840][ T8292] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  177.109707][ T8292] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  177.113017][ T8292] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  177.243106][ T8292] 8021q: adding VLAN 0 to HW filter on device bond0
[  177.251873][ T8292] 8021q: adding VLAN 0 to HW filter on device team0
[  177.256925][   T68] bridge0: port 1(bridge_slave_0) entered blocking state
[  177.258994][   T68] bridge0: port 1(bridge_slave_0) entered forwarding state
[  177.263252][  T210] bridge0: port 2(bridge_slave_1) entered blocking state
[  177.265110][  T210] bridge0: port 2(bridge_slave_1) entered forwarding state
[  177.356289][ T8292] 8021q: adding VLAN 0 to HW filter on device batadv0
[  177.378443][ T8292] veth0_vlan: entered promiscuous mode
[  177.383298][ T8292] veth1_vlan: entered promiscuous mode
[  177.401757][ T8292] veth0_macvtap: entered promiscuous mode
[  177.407370][ T8292] veth1_macvtap: entered promiscuous mode
[  177.424321][ T8292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.427878][ T8292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.430522][ T8292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.433293][ T8292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.436040][ T8292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  177.438961][ T8292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.443138][ T8292] batman_adv: batadv0: Interface activated: batadv_slave_0
[  177.448378][ T8292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.451129][ T8292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.453625][ T8292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.457206][ T8292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.459724][ T8292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  177.462528][ T8292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  177.466152][ T8292] batman_adv: batadv0: Interface activated: batadv_slave_1
[  177.470008][ T8292] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  177.472254][ T8292] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  177.474504][ T8292] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  177.477024][ T8292] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  177.511779][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  177.514616][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  177.525532][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  177.528062][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  177.660140][   T97] bridge_slave_1: left allmulticast mode
[  177.662163][   T97] bridge_slave_1: left promiscuous mode
[  177.663949][   T97] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.669295][   T97] bridge_slave_0: left allmulticast mode
[  177.671318][   T97] bridge_slave_0: left promiscuous mode
[  177.673360][   T97] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.678506][   T97] bridge_slave_1: left allmulticast mode
[  177.680509][   T97] bridge_slave_1: left promiscuous mode
[  177.682589][   T97] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.688597][   T97] bridge_slave_0: left allmulticast mode
[  177.690636][   T97] bridge_slave_0: left promiscuous mode
[  177.692689][   T97] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.707966][   T97] bridge_slave_1: left allmulticast mode
[  177.710056][   T97] bridge_slave_1: left promiscuous mode
[  177.712092][   T97] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.716741][   T97] bridge_slave_0: left allmulticast mode
[  177.718815][   T97] bridge_slave_0: left promiscuous mode
[  177.720869][   T97] bridge0: port 1(bridge_slave_0) entered disabled state
[  178.360762][   T97] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  178.366280][   T97] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  178.370618][   T97] bond0 (unregistering): Released all slaves
[  178.445772][   T97] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  178.451433][   T97] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  178.458090][   T97] bond0 (unregistering): Released all slaves
[  178.528599][   T97] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  178.534132][   T97] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  178.538011][   T97] bond0 (unregistering): Released all slaves
[  178.776977][ T5355] Bluetooth: hci0: command tx timeout
[  178.815787][ T8407] FAULT_INJECTION: forcing a failure.
[  178.815787][ T8407] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  178.823605][ T8407] CPU: 0 UID: 0 PID: 8407 Comm: syz.3.863 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  178.826578][ T8407] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  178.829559][ T8407] Call Trace:
[  178.830524][ T8407]  <TASK>
[  178.831369][ T8407]  dump_stack_lvl+0x16c/0x1f0
[  178.832756][ T8407]  should_fail_ex+0x497/0x5b0
[  178.834099][ T8407]  _copy_from_user+0x30/0xf0
[  178.835397][ T8407]  compat_copy_ebt_replace_from_user+0x130/0x420
[  178.837349][ T8407]  ? __pfx_compat_copy_ebt_replace_from_user+0x10/0x10
[  178.839163][ T8407]  ? __pfx___lock_acquire+0x10/0x10
[  178.840547][ T8407]  compat_do_replace+0xd5/0x750
[  178.841875][ T8407]  ? __pfx_compat_do_replace+0x10/0x10
[  178.843305][ T8407]  ? aa_get_newest_label+0x376/0x680
[  178.844769][ T8407]  ? __pfx_aa_get_newest_label+0x10/0x10
[  178.846387][ T8407]  ? bpf_lsm_capable+0x9/0x10
[  178.847910][ T8407]  ? security_capable+0x7e/0x260
[  178.849521][ T8407]  do_ebt_set_ctl+0x4af/0x580
[  178.851112][ T8407]  ? __pfx___mutex_lock+0x10/0x10
[  178.852568][ T8407]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  178.853964][ T8407]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  178.855402][ T8407]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  178.857062][ T8407]  nf_setsockopt+0x8a/0xf0
[  178.858260][ T8407]  ip_setsockopt+0xcb/0xf0
[  178.859435][ T8407]  ipv6_setsockopt+0x155/0x170
[  178.860719][ T8407]  udpv6_setsockopt+0x7d/0xd0
[  178.862001][ T8407]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  178.863524][ T8407]  do_sock_setsockopt+0x222/0x480
[  178.864846][ T8407]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  178.866278][ T8407]  ? fdget+0x176/0x210
[  178.867309][ T8407]  __sys_setsockopt+0x1a4/0x270
[  178.868550][ T8407]  ? __pfx___sys_setsockopt+0x10/0x10
[  178.869964][ T8407]  ? fput+0x30/0x390
[  178.871010][ T8407]  ? ksys_write+0x1ad/0x260
[  178.872330][ T8407]  ? __pfx_ksys_write+0x10/0x10
[  178.873867][ T8407]  __ia32_sys_setsockopt+0xbc/0x160
[  178.875240][ T8407]  ? lockdep_hardirqs_on+0x7c/0x110
[  178.876599][ T8407]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  178.878398][ T8407]  __do_fast_syscall_32+0x73/0x120
[  178.879784][ T8407]  do_fast_syscall_32+0x32/0x80
[  178.881129][ T8407]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  178.882882][ T8407] RIP: 0023:0xf744e579
[  178.884006][ T8407] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  178.886290][ T5355] Bluetooth: hci1: command tx timeout
[  178.888999][ T8407] RSP: 002b:00000000f571556c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  178.892708][ T8407] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000000000
[  178.894858][ T8407] RDX: 0000000000000080 RSI: 0000000020000300 RDI: 0000000000000280
[  178.897040][ T8407] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  178.899216][ T8407] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  178.901303][ T8407] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  178.903381][ T8407]  </TASK>
[  178.936519][ T5355] Bluetooth: hci7: command tx timeout
[  178.936664][   T64] Bluetooth: hci3: command tx timeout
[  179.058969][ T8296] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  179.063497][ T8296] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  179.066588][ T8296] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  179.083029][ T8296] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  179.124152][ T8290] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  179.131472][ T8290] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  179.139580][ T8290] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  179.144424][ T8290] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  179.206774][ T8293] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  179.210566][ T8293] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  179.217231][ T8293] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  179.225969][ T8293] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  179.335499][ T8290] 8021q: adding VLAN 0 to HW filter on device bond0
[  179.353199][   T97] hsr_slave_0: left promiscuous mode
[  179.359297][   T97] hsr_slave_1: left promiscuous mode
[  179.361863][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  179.364025][   T97] batman_adv: batadv0: Removing interface: batadv_slave_0
[  179.367066][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  179.369286][   T97] batman_adv: batadv0: Removing interface: batadv_slave_1
[  179.375670][   T97] hsr_slave_0: left promiscuous mode
[  179.380369][   T97] hsr_slave_1: left promiscuous mode
[  179.383329][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  179.385685][   T97] batman_adv: batadv0: Removing interface: batadv_slave_0
[  179.388456][   T97] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  179.390489][   T97] batman_adv: batadv0: Removing interface: batadv_slave_1
[  179.396374][   T97] hsr_slave_0: left promiscuous mode
[  179.398828][   T97] hsr_slave_1: left promiscuous mode
[  179.401536][   T97] batman_adv: batadv0: Removing interface: batadv_slave_0
[  179.404887][   T97] batman_adv: batadv0: Removing interface: batadv_slave_1
[  179.461329][   T97] veth1_macvtap: left promiscuous mode
[  179.462886][   T97] veth0_macvtap: left promiscuous mode
[  179.464458][   T97] veth1_vlan: left promiscuous mode
[  179.468361][   T97] veth1_macvtap: left promiscuous mode
[  179.469878][   T97] veth0_macvtap: left promiscuous mode
[  179.471533][   T97] veth1_vlan: left promiscuous mode
[  179.472991][   T97] veth0_vlan: left promiscuous mode
[  180.036715][ T8418] Falling back ldisc for ttyprintk.
[  180.125294][   T97] team0 (unregistering): Port device team_slave_1 removed
[  180.198440][   T97] team0 (unregistering): Port device team_slave_0 removed
[  180.867156][   T64] Bluetooth: hci0: command tx timeout
[  180.936012][   T64] Bluetooth: hci1: command tx timeout
[  181.015981][   T64] Bluetooth: hci3: command tx timeout
[  181.019981][   T64] Bluetooth: hci7: command tx timeout
[  181.303193][   T97] team0 (unregistering): Port device team_slave_1 removed
[  181.377014][   T97] team0 (unregistering): Port device team_slave_0 removed
[  182.559999][   T97] team0 (unregistering): Port device team_slave_1 removed
[  182.626672][   T97] team0 (unregistering): Port device team_slave_0 removed
[  183.120314][ T8296] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.129754][ T8417] team_slave_0: entered promiscuous mode
[  183.131356][ T8417] team_slave_1: entered promiscuous mode
[  183.146801][ T8296] 8021q: adding VLAN 0 to HW filter on device team0
[  183.151684][ T8290] 8021q: adding VLAN 0 to HW filter on device team0
[  183.158728][ T8293] 8021q: adding VLAN 0 to HW filter on device bond0
[  183.166439][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.169412][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.187891][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.189822][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  183.192281][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.194137][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.198426][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.200469][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  183.236002][ T8293] 8021q: adding VLAN 0 to HW filter on device team0
[  183.247723][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.249746][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.274123][  T210] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.276215][  T210] bridge0: port 2(bridge_slave_1) entered forwarding state
[  183.407957][ T8296] 8021q: adding VLAN 0 to HW filter on device batadv0
[  183.429875][ T8296] veth0_vlan: entered promiscuous mode
[  183.435740][ T8296] veth1_vlan: entered promiscuous mode
[  183.453291][ T8296] veth0_macvtap: entered promiscuous mode
[  183.458273][ T8296] veth1_macvtap: entered promiscuous mode
[  183.483666][ T8296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.487886][ T8296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.491255][ T8296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.494839][ T8296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.499294][ T8296] batman_adv: batadv0: Interface activated: batadv_slave_0
[  183.509137][ T8290] 8021q: adding VLAN 0 to HW filter on device batadv0
[  183.525482][ T8296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.529127][ T8296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.532502][ T8296] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.536086][ T8296] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.540499][ T8296] batman_adv: batadv0: Interface activated: batadv_slave_1
[  183.546214][ T8293] 8021q: adding VLAN 0 to HW filter on device batadv0
[  183.549542][ T8296] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  183.552622][ T8296] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  183.555612][ T8296] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  183.559143][ T8296] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  183.610405][ T8290] veth0_vlan: entered promiscuous mode
[  183.631594][ T8293] veth0_vlan: entered promiscuous mode
[  183.644749][ T8293] veth1_vlan: entered promiscuous mode
[  183.654291][ T8290] veth1_vlan: entered promiscuous mode
[  183.669960][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  183.672178][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  183.693455][ T8293] veth0_macvtap: entered promiscuous mode
[  183.702935][ T8293] veth1_macvtap: entered promiscuous mode
[  183.713903][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  183.718471][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  183.722032][ T8293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.724825][ T8293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.728497][ T8293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.732185][ T8293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.734880][ T8293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.737964][ T8293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.741227][ T8293] batman_adv: batadv0: Interface activated: batadv_slave_0
[  183.756571][ T8290] veth0_macvtap: entered promiscuous mode
[  183.769948][ T8293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.772707][ T8293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.775270][ T8293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.779453][ T8293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.782896][ T8293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.785583][ T8293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.796157][ T8293] batman_adv: batadv0: Interface activated: batadv_slave_1
[  183.799608][ T8290] veth1_macvtap: entered promiscuous mode
[  183.811744][ T8290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.815011][ T8290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.817977][ T8290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.820758][ T8290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.823334][ T8290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.826612][ T8290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.830093][ T8290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.833398][ T8290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.837446][ T8290] batman_adv: batadv0: Interface activated: batadv_slave_0
[  183.843926][ T8293] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  183.847145][ T8293] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  183.850287][ T8293] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  183.853377][ T8293] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  183.867809][ T8290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.871937][ T8290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.875439][ T8290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.879781][ T8290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.883376][ T8290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.887282][ T8290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.891106][ T8290] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.894228][ T8290] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.899254][ T8290] batman_adv: batadv0: Interface activated: batadv_slave_1
[  183.921588][ T8290] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  183.923915][ T8290] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  183.935702][ T8290] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  183.938561][ T8290] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  183.974228][ T1102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  183.986300][ T1102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  184.012882][   T45] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  184.020717][   T45] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  184.041927][   T45] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  184.044495][   T45] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  184.057529][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  184.059592][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  184.426664][ T8467] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  184.469861][ T8467] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  184.885109][ T8492] netlink: 'syz.2.879': attribute type 13 has an invalid length.
[  184.890539][ T8492] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  184.893196][ T8492] gretap1: entered promiscuous mode
[  184.895231][ T8492] gretap1: entered allmulticast mode
[  185.643965][ T8511] __nla_validate_parse: 2 callbacks suppressed
[  185.643986][ T8511] netlink: 4 bytes leftover after parsing attributes in process `syz.0.886'.
[  185.651961][ T8511] bond_slave_0: entered promiscuous mode
[  185.653800][ T8511] bond_slave_1: entered promiscuous mode
[  185.655480][ T8511] macsec1: entered promiscuous mode
[  185.659539][ T8511] bond0: entered promiscuous mode
[  185.661454][ T8511] macsec1: entered allmulticast mode
[  185.663203][ T8511] bond0: entered allmulticast mode
[  185.665090][ T8511] bond_slave_0: entered allmulticast mode
[  185.671361][ T8511] bond_slave_1: entered allmulticast mode
[  185.674727][ T8511] bond0: left allmulticast mode
[  185.676786][ T8511] bond_slave_0: left allmulticast mode
[  185.678850][ T8511] bond_slave_1: left allmulticast mode
[  185.680859][ T8511] bond0: left promiscuous mode
[  185.682953][ T8511] bond_slave_0: left promiscuous mode
[  185.684968][ T8511] bond_slave_1: left promiscuous mode
[  185.862849][ T8522] pim6reg1: entered promiscuous mode
[  185.865083][ T8522] pim6reg1: entered allmulticast mode
[  187.285939][ T7726] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  187.455999][ T7726] usb 5-1: Using ep0 maxpacket: 32
[  187.458702][ T7726] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  187.461850][ T7726] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  187.464639][ T7726] usb 5-1: New USB device found, idVendor=056e, idProduct=00e6, bcdDevice= 0.00
[  187.468002][ T7726] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  187.474666][ T7726] usb 5-1: config 0 descriptor??
[  187.949510][ T8562] netlink: 4 bytes leftover after parsing attributes in process `syz.0.895'.
[  188.547839][ T8565] binder: 8564:8565 ioctl c0306201 0 returned -14
[  188.551601][ T8565] binder: BINDER_SET_CONTEXT_MGR already set
[  188.553174][ T8565] binder: 8564:8565 ioctl 4018620d 20000040 returned -16
[  188.624926][ T8569] FAULT_INJECTION: forcing a failure.
[  188.624926][ T8569] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  188.629331][ T8569] CPU: 2 UID: 0 PID: 8569 Comm: syz.2.904 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  188.632106][ T8569] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  188.634868][ T8569] Call Trace:
[  188.635743][ T8569]  <TASK>
[  188.636516][ T8569]  dump_stack_lvl+0x16c/0x1f0
[  188.636644][ T8571] netlink: 36 bytes leftover after parsing attributes in process `syz.3.905'.
[  188.637750][ T8569]  should_fail_ex+0x497/0x5b0
[  188.641984][ T8569]  _copy_from_iter+0x29b/0x13e0
[  188.643271][ T8569]  ? _copy_from_iter+0x159/0x13e0
[  188.644597][ T8569]  ? __pfx__copy_from_iter+0x10/0x10
[  188.645996][ T8569]  ? __pfx__copy_from_iter+0x10/0x10
[  188.647379][ T8569]  ? __virt_addr_valid+0x1a4/0x590
[  188.648718][ T8569]  copy_page_from_iter+0xa5/0x120
[  188.650034][ T8569]  skb_copy_datagram_from_iter+0x29b/0x710
[  188.651553][ T8569]  tun_get_user+0x1964/0x3d70
[  188.652792][ T8569]  ? find_held_lock+0x2d/0x110
[  188.654055][ T8569]  ? __pfx_tun_get_user+0x10/0x10
[  188.655369][ T8569]  ? find_held_lock+0x2d/0x110
[  188.656626][ T8569]  ? __pfx_lock_release+0x10/0x10
[  188.657957][ T8569]  tun_chr_write_iter+0xdc/0x210
[  188.659258][ T8569]  vfs_write+0x6b5/0x1140
[  188.660384][ T8569]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  188.661844][ T8569]  ? trace_lock_acquire+0x14a/0x1d0
[  188.663196][ T8569]  ? __pfx_vfs_write+0x10/0x10
[  188.664449][ T8569]  ? __fget_files+0x40/0x3f0
[  188.665668][ T8569]  ksys_write+0x12f/0x260
[  188.666797][ T8569]  ? __pfx_ksys_write+0x10/0x10
[  188.668067][ T8569]  __do_fast_syscall_32+0x73/0x120
[  188.669407][ T8569]  do_fast_syscall_32+0x32/0x80
[  188.670700][ T8569]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  188.672349][ T8569] RIP: 0023:0xf745e579
[  188.673414][ T8569] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  188.678329][ T8569] RSP: 002b:00000000f5746530 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  188.680474][ T8569] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000000
[  188.682541][ T8569] RDX: 000000000000fdef RSI: 00000000f744bff4 RDI: 0000000000000000
[  188.684591][ T8569] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  188.686639][ T8569] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  188.688684][ T8569] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  188.690754][ T8569]  </TASK>
[  189.046947][ T8581] FAULT_INJECTION: forcing a failure.
[  189.046947][ T8581] name failslab, interval 1, probability 0, space 0, times 0
[  189.050559][ T8581] CPU: 1 UID: 0 PID: 8581 Comm: syz.3.908 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  189.053278][ T8581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  189.056075][ T8581] Call Trace:
[  189.056950][ T8581]  <TASK>
[  189.057741][ T8581]  dump_stack_lvl+0x16c/0x1f0
[  189.058979][ T8581]  should_fail_ex+0x497/0x5b0
[  189.060208][ T8581]  ? fs_reclaim_acquire+0xae/0x150
[  189.061597][ T8581]  should_failslab+0xc2/0x120
[  189.062838][ T8581]  __kmalloc_cache_node_noprof+0x6e/0x360
[  189.064319][ T8581]  ? __get_vm_area_node+0xe1/0x2d0
[  189.065663][ T8581]  __get_vm_area_node+0xe1/0x2d0
[  189.066956][ T8581]  __vmalloc_node_range_noprof+0x26a/0x15a0
[  189.068489][ T8581]  ? compat_do_replace+0x1ae/0x750
[  189.069833][ T8581]  ? __might_fault+0xe3/0x190
[  189.071068][ T8581]  ? compat_do_replace+0x1ae/0x750
[  189.072420][ T8581]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  189.074103][ T8581]  ? mark_held_locks+0x11/0xe0
[  189.075373][ T8581]  ? compat_do_replace+0x1ae/0x750
[  189.076707][ T8581]  vmalloc_noprof+0x6b/0x90
[  189.077903][ T8581]  ? compat_do_replace+0x1ae/0x750
[  189.079228][ T8581]  compat_do_replace+0x1ae/0x750
[  189.080520][ T8581]  ? __pfx_compat_do_replace+0x10/0x10
[  189.081951][ T8581]  ? aa_get_newest_label+0x376/0x680
[  189.083320][ T8581]  ? __pfx_aa_get_newest_label+0x10/0x10
[  189.084793][ T8581]  ? bpf_lsm_capable+0x9/0x10
[  189.086022][ T8581]  ? security_capable+0x7e/0x260
[  189.087318][ T8581]  do_ebt_set_ctl+0x4af/0x580
[  189.088542][ T8581]  ? __pfx___mutex_lock+0x10/0x10
[  189.089852][ T8581]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  189.091205][ T8581]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  189.092590][ T8581]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  189.094156][ T8581]  nf_setsockopt+0x8a/0xf0
[  189.095352][ T8581]  ip_setsockopt+0xcb/0xf0
[  189.096540][ T8581]  ipv6_setsockopt+0x155/0x170
[  189.097814][ T8581]  udpv6_setsockopt+0x7d/0xd0
[  189.099057][ T8581]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  189.100601][ T8581]  do_sock_setsockopt+0x222/0x480
[  189.101937][ T8581]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  189.103370][ T8581]  ? fdget+0x176/0x210
[  189.104436][ T8581]  __sys_setsockopt+0x1a4/0x270
[  189.105709][ T8581]  ? __pfx___sys_setsockopt+0x10/0x10
[  189.107105][ T8581]  ? fput+0x30/0x390
[  189.108132][ T8581]  ? ksys_write+0x1ad/0x260
[  189.109320][ T8581]  ? __pfx_ksys_write+0x10/0x10
[  189.110601][ T8581]  __ia32_sys_setsockopt+0xbc/0x160
[  189.111979][ T8581]  ? lockdep_hardirqs_on+0x7c/0x110
[  189.113347][ T8581]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  189.115066][ T8581]  __do_fast_syscall_32+0x73/0x120
[  189.116410][ T8581]  do_fast_syscall_32+0x32/0x80
[  189.117708][ T8581]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  189.119362][ T8581] RIP: 0023:0xf744e579
[  189.120491][ T8581] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  189.126659][ T8581] RSP: 002b:00000000f571556c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  189.129261][ T8581] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000000000
[  189.131919][ T8581] RDX: 0000000000000080 RSI: 0000000020000300 RDI: 0000000000000280
[  189.134571][ T8581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  189.137373][ T8581] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  189.140080][ T8581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  189.142810][ T8581]  </TASK>
[  189.146530][ T8581] syz.3.908: vmalloc error: size 6815872, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1
[  189.153714][ T8581] CPU: 0 UID: 0 PID: 8581 Comm: syz.3.908 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  189.156442][ T8581] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  189.159315][ T8581] Call Trace:
[  189.160424][ T8581]  <TASK>
[  189.161523][ T8581]  dump_stack_lvl+0x16c/0x1f0
[  189.163218][ T8581]  warn_alloc+0x24d/0x3a0
[  189.164788][ T8581]  ? __pfx_warn_alloc+0x10/0x10
[  189.166547][ T8581]  ? rcu_is_watching+0x12/0xc0
[  189.168249][ T8581]  ? trace_kmalloc+0x2d/0xe0
[  189.169932][ T8581]  ? __kasan_kmalloc+0x8a/0xb0
[  189.171654][ T8581]  ? __get_vm_area_node+0x1bc/0x2d0
[  189.173525][ T8581]  __vmalloc_node_range_noprof+0xd27/0x15a0
[  189.175657][ T8581]  ? __might_fault+0xe3/0x190
[  189.177364][ T8581]  ? compat_do_replace+0x1ae/0x750
[  189.179246][ T8581]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  189.181329][ T8581]  ? mark_held_locks+0x11/0xe0
[  189.183134][ T8581]  ? compat_do_replace+0x1ae/0x750
[  189.184894][ T8581]  vmalloc_noprof+0x6b/0x90
[  189.186480][ T8581]  ? compat_do_replace+0x1ae/0x750
[  189.188249][ T8581]  compat_do_replace+0x1ae/0x750
[  189.189704][ T8581]  ? __pfx_compat_do_replace+0x10/0x10
[  189.191118][ T8581]  ? aa_get_newest_label+0x376/0x680
[  189.192758][ T8581]  ? __pfx_aa_get_newest_label+0x10/0x10
[  189.194795][ T8581]  ? bpf_lsm_capable+0x9/0x10
[  189.196503][ T8581]  ? security_capable+0x7e/0x260
[  189.197885][ T8581]  do_ebt_set_ctl+0x4af/0x580
[  189.199259][ T8581]  ? __pfx___mutex_lock+0x10/0x10
[  189.200568][ T8581]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  189.202094][ T8581]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  189.203482][ T8581]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  189.205071][ T8581]  nf_setsockopt+0x8a/0xf0
[  189.206615][ T8581]  ip_setsockopt+0xcb/0xf0
[  189.208227][ T8581]  ipv6_setsockopt+0x155/0x170
[  189.209984][ T8581]  udpv6_setsockopt+0x7d/0xd0
[  189.211687][ T8581]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  189.213763][ T8581]  do_sock_setsockopt+0x222/0x480
[  189.215076][ T8581]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  189.216842][ T8581]  ? fdget+0x176/0x210
[  189.218300][ T8581]  __sys_setsockopt+0x1a4/0x270
[  189.219987][ T8581]  ? __pfx___sys_setsockopt+0x10/0x10
[  189.221670][ T8581]  ? fput+0x30/0x390
[  189.222883][ T8581]  ? ksys_write+0x1ad/0x260
[  189.224506][ T8581]  ? __pfx_ksys_write+0x10/0x10
[  189.226264][ T8581]  __ia32_sys_setsockopt+0xbc/0x160
[  189.228136][ T8581]  ? lockdep_hardirqs_on+0x7c/0x110
[  189.230001][ T8581]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  189.232348][ T8581]  __do_fast_syscall_32+0x73/0x120
[  189.234203][ T8581]  do_fast_syscall_32+0x32/0x80
[  189.235972][ T8581]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  189.238259][ T8581] RIP: 0023:0xf744e579
[  189.239720][ T8581] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  189.245157][ T8581] RSP: 002b:00000000f571556c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  189.247840][ T8581] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000000000
[  189.250337][ T8581] RDX: 0000000000000080 RSI: 0000000020000300 RDI: 0000000000000280
[  189.253193][ T8581] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  189.256052][ T8581] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  189.258464][ T8581] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  189.260507][ T8581]  </TASK>
[  189.262139][ T8581] Mem-Info:
[  189.263361][ T8581] active_anon:6626 inactive_anon:301 isolated_anon:0
[  189.263361][ T8581]  active_file:20517 inactive_file:19574 isolated_file:0
[  189.263361][ T8581]  unevictable:768 dirty:299 writeback:0
[  189.263361][ T8581]  slab_reclaimable:6153 slab_unreclaimable:58099
[  189.263361][ T8581]  mapped:21888 shmem:4114 pagetables:641
[  189.263361][ T8581]  sec_pagetables:305 bounce:0
[  189.263361][ T8581]  kernel_misc_reclaimable:0
[  189.263361][ T8581]  free:83424 free_pcp:2108 free_cma:0
[  189.275763][ T8581] Node 0 active_anon:1636kB inactive_anon:1204kB active_file:2984kB inactive_file:6276kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:7552kB dirty:180kB writeback:0kB shmem:1812kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9104kB pagetables:1000kB sec_pagetables:1164kB all_unreclaimable? yes
[  189.284229][ T8581] Node 1 active_anon:24868kB inactive_anon:0kB active_file:79084kB inactive_file:72020kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:80000kB dirty:1016kB writeback:0kB shmem:14644kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2232kB pagetables:1564kB sec_pagetables:56kB all_unreclaimable? no
[  189.293082][ T8581] Node 0 DMA free:2960kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:204kB inactive_anon:0kB active_file:424kB inactive_file:140kB unevictable:0kB writepending:12kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:460kB local_pcp:24kB free_cma:0kB
[  189.304385][ T8581] lowmem_reserve[]: 0 273 0 0 0
[  189.306737][ T8581] Node 0 DMA32 free:27660kB boost:6144kB min:20048kB low:23524kB high:27000kB reserved_highatomic:4096KB active_anon:1432kB inactive_anon:1204kB active_file:2560kB inactive_file:6136kB unevictable:1536kB writepending:168kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:1260kB local_pcp:620kB free_cma:0kB
[  189.316352][ T8581] lowmem_reserve[]: 0 0 0 0 0
[  189.318689][ T8581] Node 1 DMA32 free:303408kB boost:16384kB min:63528kB low:75312kB high:87096kB reserved_highatomic:0KB active_anon:24768kB inactive_anon:0kB active_file:79084kB inactive_file:72020kB unevictable:1536kB writepending:1016kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:6796kB local_pcp:1236kB free_cma:0kB
[  189.328687][ T8581] lowmem_reserve[]: 0 0 0 0 0
[  189.330532][ T8581] Node 0 DMA: 24*4kB (U) 76*8kB (U) 103*16kB (U) 19*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 2960kB
[  189.335044][ T8581] Node 0 DMA32: 365*4kB (UMEH) 426*8kB (UEH) 119*16kB (UMEH) 64*32kB (UMEH) 56*64kB (UMEH) 30*128kB (UME) 11*256kB (UME) 7*512kB (UME) 5*1024kB (ME) 0*2048kB 0*4096kB = 27764kB
[  189.341915][ T8581] Node 1 DMA32: 223*4kB (UM) 453*8kB (UME) 794*16kB (UME) 671*32kB (UME) 692*64kB (UME) 206*128kB (UME) 163*256kB (UME) 88*512kB (UME) 45*1024kB (UME) 18*2048kB (UME) 6*4096kB (ME) = 303652kB
[  189.343512][ T8585] hsr0: entered promiscuous mode
[  189.348388][ T8581] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  189.353040][ T8581] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  189.356551][ T8581] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  189.360018][ T8581] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  189.363316][ T8581] 44225 total pagecache pages
[  189.364736][ T8581] 20 pages in swap cache
[  189.366538][ T8581] Free swap  = 122856kB
[  189.368148][ T8581] Total swap = 124996kB
[  189.369651][ T8581] 524155 pages RAM
[  189.371020][ T8581] 0 pages HighMem/MovableOnly
[  189.372709][ T8581] 206681 pages reserved
[  189.374172][ T8581] 0 pages cma reserved
[  190.056217][ T7726] usbhid 5-1:0.0: can't add hid device: -71
[  190.057845][ T7726] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  190.066504][ T7726] usb 5-1: USB disconnect, device number 2
[  190.087808][ T8599] netlink: 8 bytes leftover after parsing attributes in process `syz.0.912'.
[  190.354534][ T8609] Cannot find map_set index 0 as target
[  190.463556][ T8614] netlink: 36 bytes leftover after parsing attributes in process `syz.1.917'.
[  190.466174][ T8614] netlink: 36 bytes leftover after parsing attributes in process `syz.1.917'.
[  191.470165][ T8625] netlink: 4 bytes leftover after parsing attributes in process `syz.1.921'.
[  191.474430][ T8625] netlink: 104 bytes leftover after parsing attributes in process `syz.1.921'.
[  191.477790][ T8625] netlink: 104 bytes leftover after parsing attributes in process `syz.1.921'.
[  191.534284][ T8628] netlink: 4 bytes leftover after parsing attributes in process `syz.3.923'.
[  191.596719][ T8631] Cannot find set identified by id 0 to match
[  192.196118][ T8665] FAULT_INJECTION: forcing a failure.
[  192.196118][ T8665] name failslab, interval 1, probability 0, space 0, times 0
[  192.199668][ T8665] CPU: 1 UID: 0 PID: 8665 Comm: syz.1.931 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  192.203186][ T8665] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  192.207085][ T8665] Call Trace:
[  192.207958][ T8665]  <TASK>
[  192.208862][ T8665]  dump_stack_lvl+0x16c/0x1f0
[  192.210568][ T8665]  should_fail_ex+0x497/0x5b0
[  192.212286][ T8665]  ? fs_reclaim_acquire+0xae/0x150
[  192.214160][ T8665]  should_failslab+0xc2/0x120
[  192.215466][ T8665]  kmem_cache_alloc_node_noprof+0x71/0x310
[  192.217209][ T8665]  ? __alloc_skb+0x2b3/0x380
[  192.218735][ T8665]  ? __pfx_mark_lock+0x10/0x10
[  192.219967][ T8665]  __alloc_skb+0x2b3/0x380
[  192.221116][ T8665]  ? __pfx___alloc_skb+0x10/0x10
[  192.222697][ T8665]  ? __pfx_mark_lock+0x10/0x10
[  192.223943][ T8665]  ? hlock_class+0x4e/0x130
[  192.225188][ T8665]  alloc_skb_with_frags+0xe4/0x850
[  192.226751][ T8665]  ? mark_lock+0xb5/0xc60
[  192.228331][ T8665]  sock_alloc_send_pskb+0x7f1/0x980
[  192.230150][ T8665]  ? __pfx___lock_acquire+0x10/0x10
[  192.231516][ T8665]  ? __pfx_sock_alloc_send_pskb+0x10/0x10
[  192.233095][ T8665]  ? hlock_class+0x4e/0x130
[  192.234279][ T8665]  ? __lock_acquire+0xbdd/0x3ce0
[  192.235571][ T8665]  tun_get_user+0xd3d/0x3d70
[  192.236765][ T8665]  ? find_held_lock+0x2d/0x110
[  192.238018][ T8665]  ? __pfx_tun_get_user+0x10/0x10
[  192.239320][ T8665]  ? find_held_lock+0x2d/0x110
[  192.240726][ T8665]  ? __pfx_lock_release+0x10/0x10
[  192.242571][ T8665]  tun_chr_write_iter+0xdc/0x210
[  192.244394][ T8665]  vfs_write+0x6b5/0x1140
[  192.245946][ T8665]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  192.247649][ T8665]  ? trace_lock_acquire+0x14a/0x1d0
[  192.248986][ T8665]  ? __pfx_vfs_write+0x10/0x10
[  192.250236][ T8665]  ? __fget_files+0x40/0x3f0
[  192.251492][ T8665]  ksys_write+0x12f/0x260
[  192.252915][ T8665]  ? __pfx_ksys_write+0x10/0x10
[  192.254191][ T8665]  __do_fast_syscall_32+0x73/0x120
[  192.255513][ T8665]  do_fast_syscall_32+0x32/0x80
[  192.256771][ T8665]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  192.258935][ T8665] RIP: 0023:0xf7fcf579
[  192.260299][ T8665] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  192.265905][ T8665] RSP: 002b:00000000f5756530 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  192.268024][ T8665] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000000
[  192.270788][ T8665] RDX: 0000000000000f87 RSI: 00000000f745bff4 RDI: 0000000000000000
[  192.273623][ T8665] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  192.276464][ T8665] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  192.279274][ T8665] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  192.282166][ T8665]  </TASK>
[  192.464765][ T8673] delete_channel: no stack
[  192.942647][ T8698] netlink: 4 bytes leftover after parsing attributes in process `syz.2.944'.
[  192.948973][ T8698] bond_slave_0: entered promiscuous mode
[  192.951051][ T8698] bond_slave_1: entered promiscuous mode
[  192.953148][ T8698] macsec1: entered promiscuous mode
[  192.955034][ T8698] bond0: entered promiscuous mode
[  192.957876][ T8698] macsec1: entered allmulticast mode
[  192.959770][ T8698] bond0: entered allmulticast mode
[  192.961096][ T8698] bond_slave_0: entered allmulticast mode
[  192.962902][ T8698] bond_slave_1: entered allmulticast mode
[  192.966237][ T8698] bond0: left allmulticast mode
[  192.967892][ T8698] bond_slave_0: left allmulticast mode
[  192.969450][ T8698] bond_slave_1: left allmulticast mode
[  192.970928][ T8698] bond0: left promiscuous mode
[  192.972609][ T8698] bond_slave_0: left promiscuous mode
[  192.974291][ T8698] bond_slave_1: left promiscuous mode
[  193.250396][ T8671] delete_channel: no stack
[  193.262381][ T8713] xt_hashlimit: Unknown mode mask FF0F0000, kernel too old?
[  193.374327][ T8717] libceph: resolve '.
[  193.374327][ T8717] #)|.زf͹Ç�²a×ïÅ2sˆoÖw¿úÕ?£'Ê%Ð�KAq‰f»�CÖê¨Âz¿e­Sb3L)Hyúo¤¶ÿÿÿÿÿÿÿ÷ǤÜYšM�¤¨ìó¤h‡E$
[  193.374327][ T8717] ' (ret=-3): failed
[  193.382680][ T8720] libceph: resolve '.
[  193.382680][ T8720] #)|.زf͹Ç�²a×ïÅ2sˆoÖw¿úÕ?£'Ê%Ð�KAq‰f»�CÖê¨Âz¿e­Sb3L)Hyúo¤¶ÿÿÿÿÿÿÿ÷ǤÜYšM�¤¨ìó¤h‡E$
[  193.382680][ T8720] ' (ret=-3): failed
[  193.389368][ T8717] No control pipe specified
[  193.504711][ T8726] syz.1.952[8726] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  193.504781][ T8726] syz.1.952[8726] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  193.513608][ T8726] syz.1.952[8726] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  193.525466][ T8726] overlayfs: workdir and upperdir must reside under the same mount
[  193.580523][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[  194.058130][ T8739] netlink: 20 bytes leftover after parsing attributes in process `syz.1.958'.
[  194.320658][ T8747] binder: 8746:8747 ioctl c0306201 0 returned -14
[  194.323736][ T8747] binder: BINDER_SET_CONTEXT_MGR already set
[  194.325943][ T8747] binder: 8746:8747 ioctl 4018620d 20000040 returned -16
[  194.361923][ T8751] FAULT_INJECTION: forcing a failure.
[  194.361923][ T8751] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.366933][ T8751] CPU: 0 UID: 0 PID: 8751 Comm: syz.1.963 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  194.370059][ T8751] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  194.373492][ T8751] Call Trace:
[  194.374753][ T8751]  <TASK>
[  194.375786][ T8751]  dump_stack_lvl+0x16c/0x1f0
[  194.377445][ T8751]  should_fail_ex+0x497/0x5b0
[  194.378839][ T8751]  _copy_from_iter+0x29b/0x13e0
[  194.380509][ T8751]  ? _copy_from_iter+0x159/0x13e0
[  194.382193][ T8751]  ? __pfx__copy_from_iter+0x10/0x10
[  194.383733][ T8751]  ? __pfx__copy_from_iter+0x10/0x10
[  194.385247][ T8751]  ? __virt_addr_valid+0x1a4/0x590
[  194.386879][ T8751]  copy_page_from_iter+0xa5/0x120
[  194.388487][ T8751]  skb_copy_datagram_from_iter+0x29b/0x710
[  194.390400][ T8751]  tun_get_user+0x1964/0x3d70
[  194.392167][ T8751]  ? find_held_lock+0x2d/0x110
[  194.393892][ T8751]  ? __pfx_tun_get_user+0x10/0x10
[  194.395731][ T8751]  ? find_held_lock+0x2d/0x110
[  194.397195][ T8751]  ? __pfx_lock_release+0x10/0x10
[  194.398868][ T8751]  tun_chr_write_iter+0xdc/0x210
[  194.400730][ T8751]  vfs_write+0x6b5/0x1140
[  194.402167][ T8751]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  194.403972][ T8751]  ? trace_lock_acquire+0x14a/0x1d0
[  194.406060][ T8751]  ? __pfx_vfs_write+0x10/0x10
[  194.407468][ T8751]  ? __fget_files+0x40/0x3f0
[  194.409073][ T8751]  ksys_write+0x12f/0x260
[  194.410565][ T8751]  ? __pfx_ksys_write+0x10/0x10
[  194.412297][ T8751]  __do_fast_syscall_32+0x73/0x120
[  194.413825][ T8751]  do_fast_syscall_32+0x32/0x80
[  194.415448][ T8751]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  194.417578][ T8751] RIP: 0023:0xf7fcf579
[  194.418918][ T8751] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  194.426253][ T8751] RSP: 002b:00000000f5756530 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  194.426865][   T64] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  194.428813][ T8751] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000000
[  194.428825][ T8751] RDX: 000000000000fdef RSI: 00000000f745bff4 RDI: 0000000000000000
[  194.431124][   T64] Bluetooth: hci1: Injecting HCI hardware error event
[  194.433443][ T8751] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  194.437836][   T64] Bluetooth: hci1: hardware error 0x00
[  194.437935][ T8751] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  194.444573][ T8751] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  194.447125][ T8751]  </TASK>
[  194.448110][    C0] vkms_vblank_simulate: vblank timer overrun
[  195.149678][ T8769] netlink: 8 bytes leftover after parsing attributes in process `syz.3.967'.
[  195.299940][ T8774] random: crng reseeded on system resumption
[  195.469858][ T8780] FAULT_INJECTION: forcing a failure.
[  195.469858][ T8780] name failslab, interval 1, probability 0, space 0, times 0
[  195.473158][ T8780] CPU: 2 UID: 0 PID: 8780 Comm: syz.3.971 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  195.475871][ T8780] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  195.478608][ T8780] Call Trace:
[  195.479471][ T8780]  <TASK>
[  195.480241][ T8780]  dump_stack_lvl+0x16c/0x1f0
[  195.481487][ T8780]  should_fail_ex+0x497/0x5b0
[  195.483081][ T8780]  ? fs_reclaim_acquire+0xae/0x150
[  195.484935][ T8780]  should_failslab+0xc2/0x120
[  195.486656][ T8780]  kmem_cache_alloc_node_noprof+0x71/0x310
[  195.488753][ T8780]  ? alloc_vmap_area+0x636/0x2a70
[  195.490309][ T8780]  alloc_vmap_area+0x636/0x2a70
[  195.491672][ T8780]  ? __pfx_alloc_vmap_area+0x10/0x10
[  195.493535][ T8780]  __get_vm_area_node+0x17e/0x2d0
[  195.495282][ T8780]  __vmalloc_node_range_noprof+0x26a/0x15a0
[  195.496995][ T8780]  ? compat_do_replace+0x1ae/0x750
[  195.498716][ T8780]  ? __might_fault+0xe3/0x190
[  195.500381][ T8780]  ? compat_do_replace+0x1ae/0x750
[  195.502084][ T8780]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  195.503941][ T8780]  ? compat_do_replace+0x1ae/0x750
[  195.505641][ T8780]  vmalloc_noprof+0x6b/0x90
[  195.506994][ T8780]  ? compat_do_replace+0x1ae/0x750
[  195.508848][ T8780]  compat_do_replace+0x1ae/0x750
[  195.510514][ T8780]  ? __pfx_compat_do_replace+0x10/0x10
[  195.511948][ T8780]  ? aa_get_newest_label+0x376/0x680
[  195.513343][ T8780]  ? __pfx_aa_get_newest_label+0x10/0x10
[  195.515195][ T8780]  ? bpf_lsm_capable+0x9/0x10
[  195.516996][ T8780]  ? security_capable+0x7e/0x260
[  195.518337][ T8780]  do_ebt_set_ctl+0x4af/0x580
[  195.519579][ T8780]  ? __pfx___mutex_lock+0x10/0x10
[  195.520931][ T8780]  ? __pfx_do_ebt_set_ctl+0x10/0x10
[  195.522334][ T8780]  ? __pfx_do_ip_setsockopt+0x10/0x10
[  195.523764][ T8780]  ? nf_sockopt_find.constprop.0+0x221/0x290
[  195.525355][ T8780]  nf_setsockopt+0x8a/0xf0
[  195.526559][ T8780]  ip_setsockopt+0xcb/0xf0
[  195.527737][ T8780]  ipv6_setsockopt+0x155/0x170
[  195.529026][ T8780]  udpv6_setsockopt+0x7d/0xd0
[  195.530294][ T8780]  ? __pfx_sock_common_setsockopt+0x10/0x10
[  195.531848][ T8780]  do_sock_setsockopt+0x222/0x480
[  195.533709][ T8780]  ? __pfx_do_sock_setsockopt+0x10/0x10
[  195.535587][ T8780]  ? fdget+0x176/0x210
[  195.536982][ T8780]  __sys_setsockopt+0x1a4/0x270
[  195.538718][ T8780]  ? __pfx___sys_setsockopt+0x10/0x10
[  195.540537][ T8780]  ? fput+0x30/0x390
[  195.541619][ T8780]  ? ksys_write+0x1ad/0x260
[  195.542828][ T8780]  ? __pfx_ksys_write+0x10/0x10
[  195.544127][ T8780]  __ia32_sys_setsockopt+0xbc/0x160
[  195.545519][ T8780]  ? lockdep_hardirqs_on+0x7c/0x110
[  195.546911][ T8780]  ? syscall_enter_from_user_mode_prepare+0x68/0xe0
[  195.548638][ T8780]  __do_fast_syscall_32+0x73/0x120
[  195.549995][ T8780]  do_fast_syscall_32+0x32/0x80
[  195.551272][ T8780]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  195.552926][ T8780] RIP: 0023:0xf744e579
[  195.554004][ T8780] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  195.558976][ T8780] RSP: 002b:00000000f571556c EFLAGS: 00000296 ORIG_RAX: 000000000000016e
[  195.561144][ T8780] RAX: ffffffffffffffda RBX: 0000000000000009 RCX: 0000000000000000
[  195.563422][ T8780] RDX: 0000000000000080 RSI: 0000000020000300 RDI: 0000000000000280
[  195.566147][ T8780] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  195.568822][ T8780] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  195.571500][ T8780] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  195.574184][ T8780]  </TASK>
[  196.246315][ T8786] netlink: 8 bytes leftover after parsing attributes in process `syz.2.973'.
[  196.248627][ T8786] netlink: 64 bytes leftover after parsing attributes in process `syz.2.973'.
[  196.288588][ T8788] x_tables: ip6_tables: mh match: only valid for protocol 135
[  196.541907][   T64] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  197.241158][ T8806] A link change request failed with some changes committed already. Interface sit0 may have been left with an inconsistent configuration, please check.
[  197.579522][ T8823] 9pnet_fd: Insufficient options for proto=fd
[  198.742332][ T8853] dccp_flush_write_queue: CCID did not manage to send all packets
[  198.784334][ T8859] netlink: 4 bytes leftover after parsing attributes in process `syz.3.997'.
[  198.789347][ T8859] bond_slave_0: entered promiscuous mode
[  198.791032][ T8859] bond_slave_1: entered promiscuous mode
[  198.792556][ T8859] macsec1: entered promiscuous mode
[  198.794097][ T8859] bond0: entered promiscuous mode
[  198.799139][ T8859] macsec1: entered allmulticast mode
[  198.800553][ T8859] bond0: entered allmulticast mode
[  198.801934][ T8859] bond_slave_0: entered allmulticast mode
[  198.803633][ T8859] bond_slave_1: entered allmulticast mode
[  198.807331][ T8859] bond0: left allmulticast mode
[  198.808958][ T8859] bond_slave_0: left allmulticast mode
[  198.810502][ T8859] bond_slave_1: left allmulticast mode
[  198.811937][ T8859] bond0: left promiscuous mode
[  198.813254][ T8860] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.996'.
[  198.813710][ T8859] bond_slave_0: left promiscuous mode
[  198.817334][ T8859] bond_slave_1: left promiscuous mode
[  199.762228][ T8902] netlink: 'syz.0.1010': attribute type 1 has an invalid length.
[  200.064391][ T8914] siw: device registration error -23
[  200.073741][ T8916] FAULT_INJECTION: forcing a failure.
[  200.073741][ T8916] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  200.080739][ T8916] CPU: 2 UID: 0 PID: 8916 Comm: syz.2.1015 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  200.084586][ T8916] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  200.088593][ T8916] Call Trace:
[  200.089818][ T8916]  <TASK>
[  200.090893][ T8916]  dump_stack_lvl+0x16c/0x1f0
[  200.092596][ T8916]  should_fail_ex+0x497/0x5b0
[  200.094309][ T8916]  _copy_from_iter+0x29b/0x13e0
[  200.096073][ T8916]  ? _copy_from_iter+0x159/0x13e0
[  200.097919][ T8916]  ? __pfx__copy_from_iter+0x10/0x10
[  200.099935][ T8916]  ? __pfx__copy_from_iter+0x10/0x10
[  200.101894][ T8916]  ? __virt_addr_valid+0x1a4/0x590
[  200.103746][ T8916]  copy_page_from_iter+0xa5/0x120
[  200.105662][ T8916]  skb_copy_datagram_from_iter+0x29b/0x710
[  200.107794][ T8916]  tun_get_user+0x1964/0x3d70
[  200.109597][ T8916]  ? find_held_lock+0x2d/0x110
[  200.111333][ T8916]  ? __pfx_tun_get_user+0x10/0x10
[  200.113146][ T8916]  ? find_held_lock+0x2d/0x110
[  200.114900][ T8916]  ? __pfx_lock_release+0x10/0x10
[  200.116726][ T8916]  tun_chr_write_iter+0xdc/0x210
[  200.118536][ T8916]  vfs_write+0x6b5/0x1140
[  200.120097][ T8916]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  200.122167][ T8916]  ? trace_lock_acquire+0x14a/0x1d0
[  200.124066][ T8916]  ? __pfx_vfs_write+0x10/0x10
[  200.125923][ T8916]  ? __fget_files+0x40/0x3f0
[  200.127684][ T8916]  ksys_write+0x12f/0x260
[  200.129337][ T8916]  ? __pfx_ksys_write+0x10/0x10
[  200.131108][ T8916]  __do_fast_syscall_32+0x73/0x120
[  200.133163][ T8916]  do_fast_syscall_32+0x32/0x80
[  200.134947][ T8916]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  200.137292][ T8916] RIP: 0023:0xf745e579
[  200.138774][ T8916] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  200.145614][ T8916] RSP: 002b:00000000f5746530 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  200.148578][ T8916] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000000
[  200.151366][ T8916] RDX: 000000000000fdef RSI: 00000000f744bff4 RDI: 0000000000000000
[  200.154171][ T8916] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  200.156514][ T8916] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  200.158535][ T8916] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  200.160458][ T8916]  </TASK>
[  200.164028][ T8919] hsr0: entered promiscuous mode
[  200.213425][ T8922] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1018'.
[  201.228084][ T8957] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1028'.
[  201.237293][ T8957] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1028'.
[  201.242140][ T8957] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1028'.
[  201.396986][ T8961] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1029'.
[  201.522038][ T8965] x_tables: ip6_tables: mh match: only valid for protocol 135
[  201.765993][   T57] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  201.935912][   T57] usb 5-1: Using ep0 maxpacket: 8
[  201.938991][   T57] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  201.941257][   T57] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[  201.943161][   T57] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[  201.945401][   T57] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  201.948438][   T57] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  201.951468][   T57] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  201.954266][   T57] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  201.962653][   T57] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  201.964955][   T57] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[  201.966938][   T57] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[  201.969279][   T57] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  201.972303][   T57] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  201.975114][   T57] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  201.978033][   T57] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  201.982902][   T57] usb 5-1: config 246 has too many interfaces: 42, using maximum allowed: 32
[  201.985209][   T57] usb 5-1: config 246 descriptor has 1 excess byte, ignoring
[  201.987271][   T57] usb 5-1: config 246 has 1 interface, different from the descriptor's value: 42
[  201.989729][   T57] usb 5-1: config 246 interface 0 altsetting 0 has an endpoint descriptor with address 0x3F, changing to 0xF
[  201.992728][   T57] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 255, changing to 11
[  201.995644][   T57] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7
[  201.998602][   T57] usb 5-1: config 246 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  202.008594][   T57] usb 5-1: string descriptor 0 read error: -22
[  202.010342][   T57] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  202.012889][   T57] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  202.028832][   T57] adutux 5-1:246.0: ADU100  now attached to /dev/usb/adutux0
[  202.735274][ T8986] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1036'.
[  202.763237][ T8988] syz.2.1037 (8988) used greatest stack depth: 20736 bytes left
[  202.792886][ T8990] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1038'.
[  202.828570][ T5474] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  202.892789][ T8993] delete_channel: no stack
[  202.929000][   T72] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  202.934777][ T8996] FAULT_INJECTION: forcing a failure.
[  202.934777][ T8996] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  202.939654][ T8996] CPU: 1 UID: 0 PID: 8996 Comm: syz.3.1040 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  202.943551][ T8996] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  202.947486][ T8996] Call Trace:
[  202.948732][ T8996]  <TASK>
[  202.949847][ T8996]  dump_stack_lvl+0x16c/0x1f0
[  202.951631][ T8996]  should_fail_ex+0x497/0x5b0
[  202.953386][ T8996]  _copy_from_iter+0x29b/0x13e0
[  202.955186][ T8996]  ? __pfx__copy_from_iter+0x10/0x10
[  202.957135][ T8996]  ? __virt_addr_valid+0x1a4/0x590
[  202.959036][ T8996]  ? __virt_addr_valid+0x5e/0x590
[  202.960903][ T8996]  ? __phys_addr_symbol+0x30/0x80
[  202.962801][ T8996]  ? __check_object_size+0x488/0x710
[  202.964762][ T8996]  skb_copy_datagram_from_iter+0x124/0x710
[  202.966924][ T8996]  ? hlock_class+0x4e/0x130
[  202.968614][ T8996]  ? __lock_acquire+0xbdd/0x3ce0
[  202.970482][ T8996]  tun_get_user+0x1964/0x3d70
[  202.972230][ T8996]  ? find_held_lock+0x2d/0x110
[  202.974009][ T8996]  ? __pfx_tun_get_user+0x10/0x10
[  202.975885][ T8996]  ? find_held_lock+0x2d/0x110
[  202.977758][ T8996]  ? __pfx_lock_release+0x10/0x10
[  202.979638][ T8996]  tun_chr_write_iter+0xdc/0x210
[  202.981470][ T8996]  vfs_write+0x6b5/0x1140
[  202.983068][ T8996]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  202.985109][ T8996]  ? trace_lock_acquire+0x14a/0x1d0
[  202.987022][ T8996]  ? __pfx_vfs_write+0x10/0x10
[  202.988791][ T8996]  ? __fget_files+0x40/0x3f0
[  202.990518][ T8996]  ksys_write+0x12f/0x260
[  202.992115][ T8996]  ? __pfx_ksys_write+0x10/0x10
[  202.993925][ T8996]  __do_fast_syscall_32+0x73/0x120
[  202.995819][ T8996]  do_fast_syscall_32+0x32/0x80
[  202.997636][ T8996]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  202.999953][ T8996] RIP: 0023:0xf744e579
[  203.001484][ T8996] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  203.008441][ T8996] RSP: 002b:00000000f5736530 EFLAGS: 00000293 ORIG_RAX: 0000000000000004
[  203.011458][ T8996] RAX: ffffffffffffffda RBX: 00000000000000c8 RCX: 0000000020000000
[  203.014458][ T8996] RDX: 0000000000000f87 RSI: 00000000f743bff4 RDI: 0000000000000000
[  203.017523][ T8996] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  203.020429][ T8996] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  203.023329][ T8996] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  203.026240][ T8996]  </TASK>
[  203.145993][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  203.176615][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  203.286614][   T72] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  203.385982][ T5474] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  203.446140][ T5474] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  203.536148][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  203.606143][  T979] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  203.669174][ T8991] delete_channel: no stack
[  203.693064][   T57] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  204.310803][ T9029] dvmrp8: entered allmulticast mode
[  204.539993][ T1300] usb 5-1: USB disconnect, device number 3
[  204.603106][ T9040] FAULT_INJECTION: forcing a failure.
[  204.603106][ T9040] name failslab, interval 1, probability 0, space 0, times 0
[  204.606647][ T9040] CPU: 2 UID: 0 PID: 9040 Comm: syz.2.1048 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  204.609390][ T9040] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  204.612187][ T9040] Call Trace:
[  204.613173][ T9040]  <TASK>
[  204.613998][ T9040]  dump_stack_lvl+0x16c/0x1f0
[  204.615248][ T9040]  should_fail_ex+0x497/0x5b0
[  204.616505][ T9040]  ? fs_reclaim_acquire+0xae/0x150
[  204.617852][ T9040]  should_failslab+0xc2/0x120
[  204.619085][ T9040]  kmem_cache_alloc_noprof+0x6e/0x2f0
[  204.620485][ T9040]  ? __kernfs_new_node+0xd3/0x890
[  204.621843][ T9040]  __kernfs_new_node+0xd3/0x890
[  204.623107][ T9040]  ? __pfx___kernfs_new_node+0x10/0x10
[  204.624520][ T9040]  ? __pfx_lock_release+0x10/0x10
[  204.625834][ T9040]  ? kernfs_add_one+0x39d/0x520
[  204.627095][ T9040]  ? up_write+0x1b2/0x520
[  204.628226][ T9040]  kernfs_new_node+0x186/0x240
[  204.629489][ T9040]  __kernfs_create_file+0x53/0x350
[  204.630819][ T9040]  sysfs_add_file_mode_ns+0x1ff/0x3b0
[  204.632214][ T9040]  internal_create_group+0x565/0xe50
[  204.633597][ T9040]  ? __pfx_internal_create_group+0x10/0x10
[  204.635114][ T9040]  ? kernfs_create_link+0x1bd/0x240
[  204.636469][ T9040]  internal_create_groups+0x9d/0x150
[  204.637846][ T9040]  device_add+0xf33/0x1a70
[  204.639014][ T9040]  ? __pfx_device_add+0x10/0x10
[  204.640285][ T9040]  ? __init_waitqueue_head+0xca/0x150
[  204.641698][ T9040]  wakeup_source_device_create+0x214/0x2a0
[  204.643209][ T9040]  wakeup_source_sysfs_add+0x1c/0x90
[  204.644580][ T9040]  wakeup_source_register+0xaa/0x140
[  204.645957][ T9040]  ep_create_wakeup_source+0x13a/0x2e0
[  204.647386][ T9040]  ? __pfx_ep_create_wakeup_source+0x10/0x10
[  204.648941][ T9040]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  204.650345][ T9040]  ? lock_acquire+0x2f/0xb0
[  204.651538][ T9040]  ? do_epoll_ctl+0x2319/0x3580
[  204.652813][ T9040]  do_epoll_ctl+0x1dae/0x3580
[  204.654060][ T9040]  ? __pfx_do_epoll_ctl+0x10/0x10
[  204.655377][ T9040]  ? lock_acquire+0x2f/0xb0
[  204.656561][ T9040]  ? __might_fault+0xe3/0x190
[  204.657796][ T9040]  ? __ia32_sys_epoll_ctl+0x15c/0x1e0
[  204.659199][ T9040]  __ia32_sys_epoll_ctl+0x15c/0x1e0
[  204.660554][ T9040]  ? __pfx___ia32_sys_epoll_ctl+0x10/0x10
[  204.662052][ T9040]  __do_fast_syscall_32+0x73/0x120
[  204.663388][ T9040]  do_fast_syscall_32+0x32/0x80
[  204.664760][ T9040]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  204.666453][ T9040] RIP: 0023:0xf745e579
[  204.667546][ T9040] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  204.672595][ T9040] RSP: 002b:00000000f570456c EFLAGS: 00000296 ORIG_RAX: 00000000000000ff
[  204.674793][ T9040] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000000000001
[  204.676862][ T9040] RDX: 0000000000000007 RSI: 0000000020000040 RDI: 0000000000000000
[  204.678933][ T9040] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  204.680994][ T9040] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000
[  204.683104][ T9040] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  204.685195][ T9040]  </TASK>
[  205.580342][ T9052] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1051'.
[  205.682709][ T9061] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not filter
[  205.692506][ T9061] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not filter
[  205.737028][ T9065] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1055'.
[  205.741744][ T9065] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  205.743860][ T9065] batman_adv: batadv0: Removing interface: batadv_slave_0
[  205.747310][ T9065] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  205.749557][ T9065] batman_adv: batadv0: Removing interface: batadv_slave_1
[  205.949359][ T9070] hsr0: entered promiscuous mode
[  206.111858][ T9074] af_packet: tpacket_rcv: packet too big, clamped from 212960 to 3952. macoff=96
[  206.116059][ T9074] netlink: 191416 bytes leftover after parsing attributes in process `syz.3.1060'.
[  206.119292][ T9074] netlink: zone id is out of range
[  206.120629][ T9074] netlink: zone id is out of range
[  207.565786][ T9107] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1069'.
[  207.569294][ T9107] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1069'.
[  207.571843][ T9107] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1069'.
[  207.609823][ T9113] syz.1.1071[9113] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  207.827993][ T9120] capability: warning: `syz.0.1072' uses deprecated v2 capabilities in a way that may be insecure
[  210.136169][   T64] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  210.138468][   T64] Bluetooth: hci3: Injecting HCI hardware error event
[  210.144293][   T64] Bluetooth: hci3: hardware error 0x00
[  221.496007][   T64] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  222.402739][ T9115] warn_alloc: 1 callbacks suppressed
[  222.402752][ T9115] syz.1.1073: page allocation failure: order:1, mode:0x10cc0(GFP_KERNEL|__GFP_NORETRY), nodemask=(null),cpuset=/,mems_allowed=0-1
[  222.635956][ T9115] CPU: 1 UID: 0 PID: 9115 Comm: syz.1.1073 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  222.638708][ T9115] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  222.641531][ T9115] Call Trace:
[  222.642658][ T9115]  <TASK>
[  222.643785][ T9115]  dump_stack_lvl+0x16c/0x1f0
[  222.645485][ T9115]  warn_alloc+0x24d/0x3a0
[  222.646634][ T9115]  ? __pfx_warn_alloc+0x10/0x10
[  222.647834][ T9115]  ? psi_memstall_leave+0x17d/0x250
[  222.649183][ T9115]  ? __alloc_pages_direct_compact+0x1b1/0x590
[  222.650659][ T9115]  ? __pfx___alloc_pages_direct_compact+0x10/0x10
[  222.652237][ T9115]  ? psi_memstall_leave+0x17d/0x250
[  222.653774][ T9115]  __alloc_pages_noprof+0x159c/0x25a0
[  222.655099][ T9115]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  222.656552][ T9115]  ? lockdep_hardirqs_on+0x7c/0x110
[  222.657855][ T9115]  ? __sanitizer_cov_trace_switch+0x54/0x90
[  222.659359][ T9115]  ? policy_nodemask+0xea/0x4e0
[  222.660600][ T9115]  alloc_pages_mpol_noprof+0x2c9/0x610
[  222.662009][ T9115]  ? __pfx_alloc_pages_mpol_noprof+0x10/0x10
[  222.663518][ T9115]  ? kimage_alloc_pages+0x18d/0x300
[  222.665134][ T9115]  kimage_alloc_pages+0x75/0x300
[  222.666443][ T9115]  kimage_alloc_control_pages+0x148/0x8e0
[  222.667890][ T9115]  ? __pfx_kimage_alloc_control_pages+0x10/0x10
[  222.669586][ T9115]  do_kexec_load+0x38a/0x8c0
[  222.670833][ T9115]  ? __pfx_do_kexec_load+0x10/0x10
[  222.672092][ T9115]  ? _copy_from_user+0xc1/0xf0
[  222.673618][ T9115]  __do_compat_sys_kexec_load+0x2cf/0x330
[  222.675058][ T9115]  ? __pfx___do_compat_sys_kexec_load+0x10/0x10
[  222.676715][ T9115]  __do_fast_syscall_32+0x73/0x120
[  222.678085][ T9115]  do_fast_syscall_32+0x32/0x80
[  222.679308][ T9115]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  222.680901][ T9115] RIP: 0023:0xf7fcf579
[  222.682042][ T9115] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 8d b4 26 00 00 00 00 8d b4 26 00 00 00 00
[  222.688310][ T9115] RSP: 002b:00000000f575656c EFLAGS: 00000296 ORIG_RAX: 000000000000011b
[  222.690413][ T9115] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000000001
[  222.692476][ T9115] RDX: 00000000200012c0 RSI: 0000000000160000 RDI: 0000000000000000
[  222.694451][ T9115] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  222.696643][ T9115] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000
[  222.698715][ T9115] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  222.700751][ T9115]  </TASK>
[  222.906958][ T9115] Mem-Info:
[  222.908051][ T9115] active_anon:145 inactive_anon:2249 isolated_anon:0
[  222.908051][ T9115]  active_file:2060 inactive_file:6409 isolated_file:0
[  222.908051][ T9115]  unevictable:768 dirty:3 writeback:24
[  222.908051][ T9115]  slab_reclaimable:5627 slab_unreclaimable:61505
[  222.908051][ T9115]  mapped:16000 shmem:963 pagetables:606
[  222.908051][ T9115]  sec_pagetables:307 bounce:0
[  222.908051][ T9115]  kernel_misc_reclaimable:0
[  222.908051][ T9115]  free:24977 free_pcp:883 free_cma:0
[  222.988140][ T9115] Node 0 active_anon:16kB inactive_anon:8kB active_file:48kB inactive_file:48kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:1988kB dirty:0kB writeback:32kB shmem:1600kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:9136kB pagetables:1164kB sec_pagetables:1164kB all_unreclaimable? no
[  223.185936][ T9115] Node 1 active_anon:860kB inactive_anon:8428kB active_file:9088kB inactive_file:21900kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:62644kB dirty:16kB writeback:0kB shmem:2236kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2160kB pagetables:1260kB sec_pagetables:64kB all_unreclaimable? no
[  223.194364][ T9115] Node 0 DMA free:788kB boost:2048kB min:2808kB low:2996kB high:3184kB reserved_highatomic:0KB active_anon:4kB inactive_anon:12kB active_file:4kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:360kB local_pcp:4kB free_cma:0kB
[  223.285906][ T9115] lowmem_reserve[]: 0 273 0 0 0
[  223.379095][ T9115] Node 0 DMA32 free:13920kB boost:0kB min:13904kB low:17380kB high:20856kB reserved_highatomic:4096KB active_anon:0kB inactive_anon:0kB active_file:12kB inactive_file:0kB unevictable:1536kB writepending:0kB present:1032196kB managed:306284kB mlocked:0kB bounce:0kB free_pcp:2536kB local_pcp:752kB free_cma:0kB
[  223.435945][ T9115] lowmem_reserve[]: 0 0 0 0 0
[  223.437313][ T9115] Node 1 DMA32 free:90040kB boost:32768kB min:79912kB low:91696kB high:103480kB reserved_highatomic:2048KB active_anon:884kB inactive_anon:7908kB active_file:9088kB inactive_file:18572kB unevictable:1536kB writepending:16kB present:1048432kB managed:948252kB mlocked:0kB bounce:0kB free_pcp:2308kB local_pcp:200kB free_cma:0kB
[  223.445582][ T9115] lowmem_reserve[]: 0 0 0 0 0
[  223.625870][ T9115] Node 0 DMA: 8*4kB (U) 1*8kB (U) 48*16kB (U) 1*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 840kB
[  223.629321][ T9115] Node 0 DMA32: 63*4kB (UMEH) 58*8kB (MEH) 52*16kB (UMEH) 33*32kB (MH) 24*64kB (MH) 11*128kB (UMH) 9*256kB (UMH) 5*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 11436kB
[  223.633760][ T9115] Node 1 DMA32: 1059*4kB (UME) 785*8kB (UME) 603*16kB (UME) 467*32kB (ME) 301*64kB (ME) 97*128kB (UME) 39*256kB (UM) 7*512kB (UM) 3*1024kB (UM) 2*2048kB (MH) 0*4096kB = 87524kB
[  223.785901][ T9115] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  223.788752][ T9115] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  223.791369][ T9115] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  223.793894][ T9115] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  223.925992][ T9115] 7990 total pagecache pages
[  223.927302][ T9115] 42 pages in swap cache
[  223.928502][ T9115] Free swap  = 114628kB
[  223.929643][ T9115] Total swap = 124996kB
[  223.930751][ T9115] 524155 pages RAM
[  223.931798][ T9115] 0 pages HighMem/MovableOnly
[  223.933083][ T9115] 206681 pages reserved
[  223.934230][ T9115] 0 pages cma reserved
[  227.426543][ T9117] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1072'.
[  227.429851][ T9117] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1072'.
[  235.488798][ T9115] kexec: Could not allocate control_code_buffer
[  239.115847][    C1] sched: DL replenish lagged too much
[  258.956622][ T1377] ieee802154 phy1 wpan1: encryption failed: -22
[  262.732753][   T44] page: refcount:2 mapcount:0 mapping:0000000000000000 index:0xffff8880632f7f50 pfn:0x632f7
[  262.738533][   T44] flags: 0x4fff00000010001(locked|reclaim|node=1|zone=1|lastcpupid=0x7ff)
[  262.742123][   T44] raw: 04fff00000010001 ffffc900006af608 ffffc900006af608 ffffffff8b5d5562
[  262.744436][   T44] raw: ffff8880632f7f50 0000000000000000 00000002ffffffff 0000000000000000
[  262.747468][   T44] page dumped because: VM_BUG_ON_PAGE(!((__builtin_constant_p(PAGE_CLAIMED) && __builtin_constant_p((uintptr_t)(&page->private) != (uintptr_t)((void *)0)) && (uintptr_t)(&page->private) != (uintptr_t)((void *)0) && __builtin_constant_p(*(const unsigned long *)(&page->private))) ? const_test_bit(PAGE_CLAIMED, &page->private) : _test_bit(PAGE_CLAIMED, &page->private)))
[  262.759216][   T44] page_owner tracks the page as allocated
[  262.761305][   T44] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12800(GFP_NOWAIT|__GFP_NORETRY), pid 4843, tgid 4843 (udevd), ts 222541144223, free_ts 222538228393
[  262.767564][   T44]  post_alloc_hook+0x2d1/0x350
[  262.769739][   T44]  get_page_from_freelist+0x101e/0x3070
[  262.771959][   T44]  __alloc_pages_noprof+0x6af/0x25a0
[  262.773381][   T44]  alloc_pages_mpol_noprof+0x2c9/0x610
[  262.775173][   T44]  z3fold_zpool_malloc+0x853/0x14f0
[  262.777250][   T44]  zswap_store+0xda1/0x1fe0
[  262.778654][   T44]  swap_writepage+0x3b6/0x990
[  262.780136][   T44]  pageout+0x3b2/0xaa0
[  262.781290][   T44]  shrink_folio_list+0x3025/0x42d0
[  262.783221][   T44]  evict_folios+0x6d6/0x1970
[  262.784903][   T44]  try_to_shrink_lruvec+0x612/0x9b0
[  262.787079][   T44]  shrink_one+0x3e3/0x7b0
[  262.788588][   T44]  shrink_node+0xb15/0x3ad0
[  262.790274][   T44]  do_try_to_free_pages+0x35f/0x1a30
[  262.792166][   T44]  try_to_free_pages+0x2ae/0x6b0
[  262.793917][   T44]  __alloc_pages_noprof+0xb15/0x25a0
[  262.796328][   T44] page last free pid 4843 tgid 4843 stack trace:
[  262.798609][   T44]  free_unref_page+0x5f4/0xdc0
[  262.800354][   T44]  __put_partials+0x14c/0x170
[  262.802152][   T44]  qlist_free_all+0x4e/0x120
[  262.803851][   T44]  kasan_quarantine_reduce+0x192/0x1e0
[  262.805891][   T44]  __kasan_slab_alloc+0x69/0x90
[  262.807673][   T44]  kmem_cache_alloc_node_noprof+0x153/0x310
[  262.810353][   T44]  zswap_store+0x3f0/0x1fe0
[  262.812266][   T44]  swap_writepage+0x3b6/0x990
[  262.814334][   T44]  shmem_writepage+0xf8f/0x14b0
[  262.816432][   T44]  pageout+0x3b2/0xaa0
[  262.817874][   T44]  shrink_folio_list+0x3025/0x42d0
[  262.819660][   T44]  evict_folios+0x6d6/0x1970
[  262.821346][   T44]  try_to_shrink_lruvec+0x612/0x9b0
[  262.823214][   T44]  shrink_one+0x3e3/0x7b0
[  262.824401][   T44]  shrink_node+0xb15/0x3ad0
[  262.825596][   T44]  do_try_to_free_pages+0x35f/0x1a30
[  262.827309][   T44] ------------[ cut here ]------------
[  262.829161][   T44] kernel BUG at mm/z3fold.c:1293!
[  262.830856][   T44] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  262.833556][   T44] CPU: 0 UID: 0 PID: 44 Comm: kcompactd1 Not tainted 6.12.0-rc3-syzkaller-00420-g715ca9dd687f #0
[  262.839278][   T44] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  262.843083][   T44] RIP: 0010:z3fold_page_migrate+0xea1/0x12d0
[  262.845248][   T44] Code: b0 93 ff 48 c7 c6 20 4d 5d 8b 48 89 ef e8 67 69 d9 ff 90 0f 0b e8 5f b0 93 ff 48 c7 c6 80 4d 5d 8b 48 89 ef e8 50 69 d9 ff 90 <0f> 0b e8 48 b0 93 ff 49 8b 6c 24 08 31 ff 48 89 eb 83 e3 01 48 89
[  262.852163][   T44] RSP: 0000:ffffc900006af480 EFLAGS: 00010293
[  262.854521][   T44] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  262.858173][   T44] RDX: ffff88801e5ba440 RSI: ffffffff81f90980 RDI: ffff88801e5ba884
[  262.861236][   T44] RBP: ffffea00018cbdc0 R08: 0000000000000001 R09: 0000000000000001
[  262.863941][   T44] R10: ffffffff901ce54f R11: 0000000000000000 R12: ffffea0001dc9540
[  262.866557][   T44] R13: ffffffff8b5d5560 R14: ffffea00018cbde8 R15: ffffea00018cbdd8
[  262.869644][   T44] FS:  0000000000000000(0000) GS:ffff88802b400000(0000) knlGS:0000000000000000
[  262.873348][   T44] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  262.876005][   T44] CR2: 00000000f745e994 CR3: 000000000db7c000 CR4: 0000000000352ef0
[  262.878745][   T44] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  262.882311][   T44] DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  262.886149][   T44] Call Trace:
[  262.888021][   T44]  <TASK>
[  262.889259][   T44]  ? die+0x31/0x80
[  262.890544][   T44]  ? do_trap+0x232/0x430
[  262.892155][   T44]  ? z3fold_page_migrate+0xea1/0x12d0
[  262.893567][   T44]  ? z3fold_page_migrate+0xea1/0x12d0
[  262.894960][   T44]  ? do_error_trap+0xf4/0x230
[  262.896216][   T44]  ? z3fold_page_migrate+0xea1/0x12d0
[  262.897631][   T44]  ? handle_invalid_op+0x34/0x40
[  262.898927][   T44]  ? z3fold_page_migrate+0xea1/0x12d0
[  262.900323][   T44]  ? exc_invalid_op+0x2e/0x50
[  262.901587][   T44]  ? asm_exc_invalid_op+0x1a/0x20
[  262.903277][   T44]  ? z3fold_page_migrate+0xea0/0x12d0
[  262.905318][   T44]  ? z3fold_page_migrate+0xea1/0x12d0
[  262.907239][   T44]  move_to_new_folio+0x449/0x700
[  262.909034][   T44]  migrate_pages_batch+0x206a/0x31b0
[  262.910933][   T44]  ? __pfx_compaction_free+0x10/0x10
[  262.912830][   T44]  ? __pfx_migrate_pages_batch+0x10/0x10
[  262.914840][   T44]  ? __lock_acquire+0x163e/0x3ce0
[  262.916643][   T44]  migrate_pages_sync+0x4c9/0x8f0
[  262.918411][   T44]  ? __pfx_compaction_alloc+0x10/0x10
[  262.920336][   T44]  ? __pfx_compaction_free+0x10/0x10
[  262.922261][   T44]  ? __pfx_migrate_pages_sync+0x10/0x10
[  262.924246][   T44]  ? __pfx_lock_release+0x10/0x10
[  262.926076][   T44]  ? lock_acquire+0x2f/0xb0
[  262.927432][   T44]  ? isolate_movable_page+0x3b/0x7f0
[  262.929168][   T44]  migrate_pages+0x19ee/0x21f0
[  262.930873][   T44]  ? __pfx_compaction_alloc+0x10/0x10
[  262.932789][   T44]  ? __pfx_compaction_free+0x10/0x10
[  262.934714][   T44]  ? __pfx_migrate_pages+0x10/0x10
[  262.936520][   T44]  ? __pfx_isolate_migratepages_block+0x10/0x10
[  262.938772][   T44]  ? __pfx___might_resched+0x10/0x10
[  262.940691][   T44]  compact_zone+0x1f68/0x4280
[  262.942403][   T44]  ? __pfx_compact_zone+0x10/0x10
[  262.944228][   T44]  ? lock_acquire.part.0+0x11b/0x380
[  262.946140][   T44]  compact_node+0x1a2/0x2d0
[  262.947785][   T44]  ? __pfx_compact_node+0x10/0x10
[  262.949599][   T44]  ? kcompactd+0x55f/0xde0
[  262.951191][   T44]  ? __pfx_extfrag_for_order+0x10/0x10
[  262.953150][   T44]  kcompactd+0x76e/0xde0
[  262.954268][   T44]  ? __pfx_kcompactd+0x10/0x10
[  262.955506][   T44]  ? __pfx_autoremove_wake_function+0x10/0x10
[  262.957087][   T44]  ? lockdep_hardirqs_on+0x7c/0x110
[  262.958427][   T44]  ? __kthread_parkme+0x148/0x220
[  262.959731][   T44]  ? __pfx_kcompactd+0x10/0x10
[  262.961006][   T44]  kthread+0x2c1/0x3a0
[  262.962157][   T44]  ? _raw_spin_unlock_irq+0x23/0x50
[  262.964011][   T44]  ? __pfx_kthread+0x10/0x10
[  262.965638][   T44]  ret_from_fork+0x45/0x80
[  262.966786][   T44]  ? __pfx_kthread+0x10/0x10
[  262.968367][   T44]  ret_from_fork_asm+0x1a/0x30
[  262.970115][   T44]  </TASK>
[  262.971113][   T44] Modules linked in:
[  262.973086][   T44] ---[ end trace 0000000000000000 ]---
[  262.975036][   T44] RIP: 0010:z3fold_page_migrate+0xea1/0x12d0
[  262.978467][   T44] Code: b0 93 ff 48 c7 c6 20 4d 5d 8b 48 89 ef e8 67 69 d9 ff 90 0f 0b e8 5f b0 93 ff 48 c7 c6 80 4d 5d 8b 48 89 ef e8 50 69 d9 ff 90 <0f> 0b e8 48 b0 93 ff 49 8b 6c 24 08 31 ff 48 89 eb 83 e3 01 48 89
[  262.984917][   T44] RSP: 0000:ffffc900006af480 EFLAGS: 00010293
[  262.987222][   T44] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  262.989214][ T5355] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  262.989808][   T44] RDX: ffff88801e5ba440 RSI: ffffffff81f90980 RDI: ffff88801e5ba884
[  262.993353][ T5355] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  262.994881][   T44] RBP: ffffea00018cbdc0 R08: 0000000000000001 R09: 0000000000000001
[  262.999763][ T5355] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  263.000326][   T44] R10: ffffffff901ce54f R11: 0000000000000000 R12: ffffea0001dc9540
[  263.004596][ T5355] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  263.004955][   T44] R13: ffffffff8b5d5560 R14: ffffea00018cbde8 R15: ffffea00018cbdd8
[  263.009322][ T5355] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  263.009401][   T44] FS:  0000000000000000(0000) GS:ffff88802b400000(0000) knlGS:0000000000000000
[  263.012942][ T5355] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  263.014754][   T44] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  263.019017][   T44] CR2: 00000000f745e994 CR3: 000000000db7c000 CR4: 0000000000352ef0
[  263.021146][   T44] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  263.023250][   T44] DR3: 000000000000000e DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  263.025294][   T44] Kernel panic - not syncing: Fatal exception
[  263.027455][   T44] Kernel Offset: disabled
[  263.028580][   T44] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:37:14  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff8503edc5 RDI=ffffffff9a640260 RBP=ffffffff9a640220 RSP=ffffc900006aeda0
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=552030203a555043
R12=0000000000000000 R13=0000000000000020 R14=ffffffff8503ed60 R15=0000000000000000
RIP=ffffffff8503edef RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b400000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000f745e994 CR3=000000000db7c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00001da000000000 0000007200000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 1

CPU#1
RAX=0000000000b050a9 RBX=0000000000000001 RCX=ffffffff8b139ef9 RDX=0000000000000000
RSI=ffffffff8b4cc960 RDI=ffffffff8bb12d20 RBP=ffffed10036e8910 RSP=ffffc90000477e08
R8 =0000000000000001 R9 =ffffed10056a7025 R10=ffff88802b53812b R11=0000000000000000
R12=0000000000000001 R13=ffff88801b744880 R14=ffffffff901ce548 R15=0000000000000000
RIP=ffffffff8b13b2df RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b500000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000581fd05c CR3=0000000026e3c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=00000000e08e9104 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000020000000 Opmask01=00000000fffffffa Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000001
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff8557e870 0000003000000010
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 6565656565656565 6565656565656565
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff ffffffffffff0000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ff00ff0000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f6e3a6d5e007325 2e73250064252e73 2500656c6f736e6f 632f7665642f000a
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4f4b1f485e005600 0b56000041000b56 000040494a564b4a 460a5340410a000a
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000a000a
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 2

CPU#2
RAX=0000000000000000 RBX=0000000000000001 RCX=0000000000000001 RDX=1ffff920000a8147
RSI=0000000000000000 RDI=0000000000000001 RBP=ffffc90000540a80 RSP=ffffc900005409c8
R8 =ffffffff90a74490 R9 =ffffffff90ab8ff6 R10=ffffc90000540a38 R11=000000000000004f
R12=ffffc90000540a88 R13=ffffc90000540a38 R14=ffffc90000540a6d R15=ffffffff90a7446b
RIP=ffffffff813d007e RFL=00000a06 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b600000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=0000000031fedff8 CR3=0000000029ee8000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=00000000fec0ffd0 Opmask01=0000000000000003 Opmask02=000000000000ffdf Opmask03=0000000000000000
Opmask04=00000000ffffffff Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 8f91648bd9413e36 ade9641dec9abe43
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 890c620d006c5c44 1d0a33634f7dc713
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ce28c1ab919903ca 90a75b8a95e623ef
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 73c1a3f64e3dfa6c dd170bc0e276ac3a
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000f40
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 000000a0000000a0 32ac55cb29f234e4
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 27d5251800000000 88d7359b00000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00800100293d98cc 000000a000800100
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2bd517e45e8baa16 000000a0278ba928
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cf03750296d8d022 1d19b7e2bfba7594
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 454476541416111f 599f4bcf64f8917b
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000021 0000000000000000 44455a494c414954 494e495f43455355
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 6f6f742079617272 6120656c75722079 7261726f706d6574 002a3f005b3f2a00
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4a4a51055c445757 440540495057055c 5744574a55484051 000f1a005b1a0f00
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000001a1 0000000000000000 000000003130323a 336963682f336963
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00005572c100ecc8 00005572c100ecc8 0000000000000041 0000000000000030
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 4943213f395b2249 5a6e786b6e646b7e 59647a305f474f5b 647c79303a243a78
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 26483b3a3a264b3b 3a0a00307f617930 3a2433273f397b27 697a787c69303b7e
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692054524f50202c 2064696c61696d20 0070253a20252054 524f504d49005452
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 692020520050202c 2025204f504d4900 0061253a20252000 2527204d49005452
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
info registers vcpu 3

CPU#3
RAX=00000000003828e4 RBX=0000000000000003 RCX=ffffffff8b139ef9 RDX=ffffed10056e7026
RSI=ffffffff8bb12ca0 RDI=ffffffff8164194c RBP=ffffed10036eb488 RSP=ffffc90000497e08
R8 =0000000000000000 R9 =ffffed10056e7025 R10=ffff88802b73812b R11=0000000000000000
R12=0000000000000003 R13=ffff88801b75a440 R14=ffffffff901ce548 R15=0000000000000000
RIP=ffffffff8b13b2df RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0000 0000000000000000 ffffffff 00c00000
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802b700000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 0000ffff
CR0=80050033 CR2=00000000581384ac CR3=000000004b5d4000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=000000000000000e 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000000000000 Opmask01=0000000000000000 Opmask02=0000000000000000 Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858 2e7a7973f741bff4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 f700585858585858
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ffffffffffffffff 0f0e0d0c0b0a0908
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000